Aberdeen, Aberdeenshire, United Kingdom Hybrid/Remote Options
Orion Group
CIO-ready reporting on issues and residual risk. Coordinate with the Business and 1st Line risk owners, as well as with the Assurance parties such as InternalAudit (LOD3) and the major IT and SOC managed service providers to close control gaps, and feed lessons learnt into standards and patterns. Role Dimensions Organisation-wide information security remit … plans, acting as a trusted advisor. Mix of advisory, oversight and hands-on walkthroughs; pragmatic, proportionate risk approach. Role Requirements 7+ years in information risk, security assurance or IT audit within regulated, safety-critical or industrial environments (energy/oil & gas preferred). Strong knowledge of NIST CSF, ISO 27001, UK GDPR and supplier assurance practices; familiarity with the … clear, concise, business-outcome focused). Tooling familiarity: GRC/IRM platforms (e.g., ServiceNow), and common cloud services (M365/Azure) for workflows and evidence capture. Advantageous Certifications: Governance & Audit: ISO 27001 Lead Auditor, CISM Architecture & Design: SABSA, CISSP OT/ICS: SANS GICSP, ISA/IEC 62443 Our role in supporting diversity and inclusion As an international workforce More ❯
Aberdeen, City of Aberdeen, United Kingdom Hybrid/Remote Options
Orion Group
CIO-ready reporting on issues and residual risk. Coordinate with the Business and 1st Line risk owners, as well as with the Assurance parties such as InternalAudit (LOD3) and the major IT and SOC managed service providers to close control gaps, and feed lessons learnt into standards and patterns. Role Dimensions Organisation-wide information security remit … plans, acting as a trusted advisor. Mix of advisory, oversight and hands-on walkthroughs; pragmatic, proportionate risk approach. Role Requirements 7+ years in information risk, security assurance or IT audit within regulated, safety-critical or industrial environments (energy/oil & gas preferred). Strong knowledge of NIST CSF, ISO 27001, UK GDPR and supplier assurance practices; familiarity with the … clear, concise, business-outcome focused). Tooling familiarity: GRC/IRM platforms (e.g., ServiceNow), and common cloud services (M365/Azure) for workflows and evidence capture. Advantageous Certifications: Governance & Audit: ISO 27001 Lead Auditor, CISM Architecture & Design: SABSA, CISSP OT/ICS: SANS GICSP, ISA/IEC 62443 Our role in supporting diversity and inclusion As an international workforce More ❯
IT Auditor, you will have the freedom to work on projects that you choose, whether full or part-time within Business Risk Services and support our clients and internal teams on short to medium-term assignments. Skills we are looking for: Assess the risks and controls within OT infrastructure, which includes the hardware and software that monitor and More ❯
