• Conduct ISO 27001 audits, assessing the effectiveness of information security controls and practices within client organizations.
• Analyse and evaluate client documentation, policies, procedures, risk assessments, and records to ensure compliance with ISO 27001 standards.
• Perform on-site audits at client locations, including interviews with personnel and inspections of information security processes and systems. Document audit findings, non-conformities, and areas for improvement, and prepare detailed audit reports that provide actionable recommendations to clients.
• Offer expert recommendations to clients for strengthening their information security management systems and achieving ISO 27001 certification.
• Communicate audit results and recommendations clearly and effectively with client management and staff, addressing any inquiries or concerns.
• Stay abreast of changes to ISO 27001 standards and information security best practices, ensuring that audit processes align with the latest requirements.
• Identify opportunities to enhance the audit program and contribute to the development of best practices in information security auditing.
• Perform other tasks that may be assigned by the immediate superior and/or management from time-to-time. Key Requirements:
  
  

• Deep knowledge of ISO 27001 standards, information security controls, and regulatory requirements.
• Strong analytical and problem-solving skills, with meticulous attention to detail. Excellent communication skills, both written and verbal, for report writing and client interactions.
• Ability to work independently and collaboratively within a team, managing multiple audit projects concurrently.
  
  

Please refer to job description.