Internal Auditor

Internal Auditor - ISO 27001
Location: Portsmouth (Hybrid - 1 day per week onsite)
Contract: initial 12-month FTC

We're seeking an Internal Auditor with experience as a lead auditor or certified in ISO 27001 to support our integrated management system and drive continuous improvement across information security and quality standards.

Key Responsibilities

• Audit Delivery - Plan and conduct risk-based audits (ISO 27001 & ISO 9001), both onsite and remotely, assessing processes, controls, and compliance.
• Reporting & Recommendations - Produce clear reports highlighting non-conformances, risks, and opportunities, with actionable recommendations and timelines.
• Follow-Up & Closure - Work with stakeholders to agree corrective actions, track progress, and verify remediation.
• Management Reviews - Support quarterly reviews by compiling data, metrics, and reports.
• Policy & Documentation - Maintain audit procedures and ensure policies reflect current standards and best practice.
• Awareness & Training - Deliver workshops to strengthen understanding of ISO 27001 and related standards.
• Cross-Functional Projects - Contribute to supplier audits, business continuity exercises, and risk assessments.

About You

• Essential:
• Experience auditing ISO 27001.
• Certified Internal Auditor (CIA, CISA, or ISO 27001 Lead Auditor).
• Strong background in risk-based auditing, gap analysis, and root cause investigations.
• Desirable:
• Exposure to additional standards (ISO 14001, ISO 22301, ISO (phone number removed), ISO 45001 ISO 9001).
• Experience in IT, software, or managed services.

Skills & Attributes

• Analytical and detail-oriented with excellent report writing.
• Strong communication and stakeholder engagement skills.
• Able to manage multiple audits and deadlines effectively.
• Integrity, objectivity, and a proactive approach to assurance.

Disclaimer:

This vacancy is being advertised by either Advanced Resource Managers Limited, Advanced Resource Managers IT Limited or Advanced Resource Managers Engineering Limited ("ARM"). ARM is a specialist talent acquisition and management consultancy. We provide technical contingency recruitment and a portfolio of more complex resource solutions. Our specialist recruitment divisions cover the entire technical arena, including some of the most economically and strategically important industries in the UK and the world today. We will never send your CV without your permission.