You will support our organisation's efforts to achieve ISO27001 certification. As an internal auditor, you will be responsible for planning, conducting, and reporting on internal audits to assess the organization's information security management system (ISMS) against the requirements of the ISO27001 standard. You will work closely with the project team and provide recommendations for improving the ISMS to meet certification requirements. You will have strong communication and analytical skills, attention to detail, and an understanding of the information security management system framework.
RESPONSIBILITIES Audit Compliance: Develop an internal audit program and schedule to cover all applicable ISO27001 requirements and conduct regular audits to assess compliance with ISO 27001 standards and best security practices.Policy Evaluation: Conduct thorough, objective audits of the organisation's ISMS, including policies, procedures, processes, and controls to ensure effectiveness and adherence to ISO 27001 requirements.Gap Identification: Identify gaps, nonconformities, and areas for improvement in the information security management system (ISMS).Reporting: Prepare comprehensive audit reports detailing audit findings, recommendations, and corrective actions. Liaise with the certification body and support the external audit process.Collaboration: Collaborate with cross-functional teams to follow up on corrective and preventive actions to address audit issues. Provide guidance and training to process owners on ISO27001 audit requirements.Stay-Informed: Stay informed about updates to ISO 27001 standards and industry best practices.MINIMUM REQUIREMENTS Bachelor's degree in Information Technology, Computer Science, Information Security, or a related field.Minimum 3-5 years of experience conducting internal audits, preferably in information security management systems.Strong understanding of ISO27001, information security principles, risk management, and control frameworks.Strong communication and analytical skills to assess complex systems and processes.Excellent communication, interpersonal, and report-writing skills.Ability to work independently and as part of a cross-functional team.Attention to detail and analytical thinking skills.
#J-18808-Ljbffr