Lead Auditor

Description:

We are seeking a highly skilled Lead Auditor for Information Security Management Systems (ISMS) to join our dynamic team. The ideal candidate will be responsible for planning and executing comprehensive audits, assessing information security systems, and ensuring compliance with established standards and regulations. The Lead Auditor will play a pivotal role in identifying potential risks, implementing effective strategies, and providing expert guidance to enhance information security practices.

**Key Responsibilities:**

1. Conducting detailed assessments and audits of Information Security Management Systems (ISMS) in accordance with international standards.

2. Analyzing existing security protocols and identifying areas for improvement.

3. Developing comprehensive audit reports with actionable recommendations for enhancing information security measures.

4. Collaborating with cross-functional teams to ensure the implementation of effective security strategies and controls.

5. Providing expert guidance and support to internal stakeholders on ISMS best practices and compliance requirements.

6. Keeping abreast of industry trends, emerging technologies, and evolving security threats to proactively address potential risks.

7. Participating in regular training sessions and workshops to further enhance auditing and information security expertise.

**Qualifications and Requirements:**

1. Bachelor's degree in Information Technology, Computer Science, or a related field. Master's degree is a plus.

2. Professional certifications such as ISO 27001 Lead Auditor Certification, Certified Information Systems Auditor (CISA), and Certified Information Security Manager (CISM) are mandatory.

3. Proven experience as an ISMS Lead Auditor, demonstrating comprehensive knowledge of auditing principles and practices.

4. Strong understanding of international information security standards and regulatory requirements.

5. Excellent communication and interpersonal skills, with the ability to effectively convey complex technical information to non-technical stakeholders.

6. Strong analytical and problem-solving abilities, with a keen eye for detail and a proactive approach to risk management.

7. Ability to work independently and collaboratively within a team environment, managing multiple priorities and deadlines effectively.