Supply Chain Security Consultant

About the job

Supply Chain Security Consultant (ISO 28000 Specialist) Freelancer Supply Chain Security Consultant – ISO 28000 Role Purpose The Supply Chain Security Consultant is responsible for supporting the design, implementation, and continuous improvement of the Supply Chain Security Management System (SCSMS) in accordance with ISO 28000 standards. The consultant will conduct risk assessments, develop policies and procedures, perform gap analysis, and support organizations in achieving certification while ensuring the protection of supply chain operations, assets, and stakeholders. Key Responsibilities 1. Establish of Security System • Lead the design and implementation of the ISO 28000 Supply Chain Security Management System. • Conduct gap analysis between current practices and ISO 28000 requirements. • Develop and implement supply chain security policies, procedures, and controls. • Support organizations in preparing for ISO 28000 certification audits. 2. Supply Chain Security Risk Management • Conduct comprehensive security risk assessments across supply chain operations including pipelines, transportation, logistics, warehouses, and distribution networks. • Identify threats, vulnerabilities, and potential impacts on supply chain operations. • Develop risk registers, risk treatment plans, and security mitigation strategies. 3. Security Governance and Compliance • Ensure compliance with regulatory, governmental, and industry security requirements. • Develop security governance frameworks, roles, responsibilities, and reporting structures. • Support integration with related standards such as ISO 31000 (Risk Management), ISO 22301 (Business Continuity), and ISO 27001 (Information Security). 4. Security Procedures and Operational Controls • Develop Standard Operating Procedures (SOPs) for supply chain security operations. • Establish procedures for access control, cargo security, incident management, supplier security, and transportation security. • Implement monitoring mechanisms and security performance indicators. 5. Training and Awareness • Develop and deliver training programs and awareness sessions on supply chain security practices. • Support the development of internal capabilities and security culture within the organization. 6. Internal Audit and Certification Support • Plan and conduct internal audits in accordance with ISO 19011 auditing guidelines. • Prepare audit reports, identify nonconformities, and support corrective actions. • Assist the organization during external certification audits. Required Qualifications • Bachelor’s degree in Supply Chain Management, Security Management, Risk Management, Logistics, or a related field. • Professional certifications in ISO 28000, security risk assessment, or supply chain security are highly preferred. • Additional certifications such as ISO 31000, ISO 22301, ISO 27001 Lead Auditor, or ASIS Security Certifications are advantageous. Experience Requirements • Minimum 7–10 years of professional experience in supply chain security, risk management, logistics security, or security consulting. • Proven experience implementing ISO 28000 Supply Chain Security Management Systems. • Experience in industries such as energy, oil & gas, transportation, logistics, ports, or critical infrastructure is highly desirable.

Requirements

• ISO 28000 Standards
• Risk Assessment
• Security Governance
• Supply Chain Operations Management
• Training Development

Qualifications

• Bachelor’s degree in Supply Chain Management, Security Management, Risk Management, Logistics, or a related field.
• Professional certifications in ISO 28000

Preferred Technologies

• ISO 28000 Standards
• Risk Assessment
• Security Governance
• Supply Chain Operations Management
• Training Development