Our client is seeking an experienced ISO 27001 Lead Auditor to join their certification team. This role involves conducting external audits of organisations seeking certification against the ISO/IEC 27001 standard and assessing the effectiveness of their Information Security Management Systems (ISMS).
This position is ideal for professionals with experience in information security governance, risk, compliance, or audit who are looking to work in a certification and assurance environment.
Key Responsibilities
* Conduct ISO 27001 certification audits for organisations across various industries
* Assess the design and effectiveness of Information Security Management Systems (ISMS)
* Perform Stage 1 and Stage 2 audits, including documentation reviews and implementation assessments
* Identify non-conformities and compliance gaps against ISO 27001 requirements
* Prepare detailed audit reports and certification recommendations
* Engage with client stakeholders to review security governance, risk management, and control frameworks
* Conduct surveillance and recertification audits for existing certified clients
* Maintain audit documentation in accordance with accreditation requirements
Requirements
* Certified ISO 27001 Lead Auditor or equivalent
* Experience auditing or implementing ISO 27001 Information Security Management Systems
* Strong understanding of information security risk management and governance frameworks
* Background in GRC, IT audit, compliance, or information security
* Ability to engage with senior stakeholders during audit engagements
* Strong report writing and documentation skills
* Experience auditing additional ISO standards such as:
* ISO 9001
* ISO 22301
* ISO 27701
* Experience working for a certification body, consulting firm, or internal audit function
* Knowledge of broader cybersecurity frameworks such as NIST or CIS Controls
#J-18808-Ljbffr