2 of 2 ISO 27001 Lead Auditor Jobs in Nottinghamshire

performing IT Audit or security control testing. Knowledge of internal audit methodologies, including risk assessment, execution, and reporting. Proficiency in industry standards and frameworks (e.g., NIST 800-53, ISO 27001 / 27002). Familiarity with privacy regulations (e.g., GDPR, CCPA) and breach notification laws. Experience with sector-specific frameworks (e.g., HIPAA, PCI). Technical … analysis, and interpretation. Experience Researching and applying latest technologies. Experience with Agile methodology. Big 4 accounting experience. Hold a professional certification such as CISA, CISM, CISSP, PCI QSA, ISO 27001 Lead Auditor, or equivalent. Additional Information This is a permanent hybrid role in Costa Rica. No relocation available. More ❯

As a Lead Security Control Assessor, you will be responsible for leading the assessment and evaluation of security controls across systems and processes both on-premise and in the cloud, to ensure they effectively mitigate risks and comply with regulatory and industry standards. You will oversee and conduct security control testing, to verify the design, implementation, and … control assurance testing, including automated testing steps for cloud environments. Ensure control tests are well-planned, including risk identification, sampling, selection of controls, testing methods, and reporting criteria. Lead control testing teams to perform design and operating effectiveness testing of information security controls, including fieldwork, testing, and reporting activities. Provide quality assurance for control testing documentation produced … improvement. Create and present reports of control testing findings to stakeholders, socialising any findings effectively. Serve as the primary contact with business stakeholders for the controls tests you lead, ensuring the quality of control testing engagements and stakeholder communications, including regular status updates. Contribute to the efficiency of the control testing program by ensuring KPIs are measurable More ❯