Job Description
As a Lead Auditor – Information Security you’ll be responsible for planning and conducting professional management system audits in accordance SGS’ procedures to enable delivery of assessment and certification services that meet customer requirements and appropriate accreditation standards. You’ll assist in business development as required and to provide specific technical support to expand the Company’s capability to offer valued services to customers.
Key Accountabilities;
1. Conduct audits (desk-based or on client’s sites) in accordance with established procedures, maintaining a high standard of service delivery that ensures effective customer relationships
2. Ensuring completion of all assigned work and relevant documentation in accordance with required procedures and standards to fulfil customer expectations
3. Manage schedule to work efficiently and to meet target chargeability requirements as defined by the Certification Manager
4. Undertake personal professional development and ensure appropriate training records and personal logs are updated to maintain relevant auditor registrations and relevant industry knowledge
If required, to provide technical support and staff training to all parts of the business to enhance the service capability of the business
Qualifications
To be successful in this role, you’ll need recent experience with Quality, Security & Safety systems and qualified to Lead Auditor status in 9001 and 27001.
In addition to the above you’ll also need to demonstrate the following;
5. Excellent working knowledge of management systems, standards and compliance/auditing techniques
6. You’ll demonstrate strong working knowledge and experience of ISO 9001 ,ISO 27001, management system standards, compliance and auditing techniques.
7. 4-5+ of industry sector full-time workplace experience in information technology or an IT related background (ideally across IT and data security), of which at least 2 years are in the role or function relating to information and/or data security.
8. A detailed understanding of the relevant legal and regulatory framework relating to the relevant sectors of information security under ISO 27001
9. Effective interpersonal skills and an understanding of how to manage client relationships.
10. Competent in the use of Mobile phones, Laptops and computer and communication technology.
11. Working Knowledge of MS Office applications including Microsoft Teams.
12. Ability in planning and prioritising workloads.
The following attributes would be desirable, but not essential;
13. Ability to identify and capitalise on any potential to maximise sales/revenue generated by the business
14. Experience in ISO 22301
15. Security Clearance
16. Understanding of Cloud platforms & software development technology
17. Knowledge of financials
18. Insight in digital security counter measures