and Compliance (GRC): Develop and implement information security policies, procedures, and standards aligned with industry best practices. Ensure compliance with relevant regulations, including ISO27001, ISO 9001 and GDPR. Engaging with key company stakeholders, assessing and actively managing risk through effective … mitigation strategies. 5. ISO27001 & ISO 9001 Compliance: LeadISO27001 & ISO 9001 compliance activities. Maintain our integrated management systems for information security and quality management. Monitor and audit … controls to ensure ongoing compliance. Qualifications Proven experience in information security management. Strong knowledge of information security frameworks and regulations such as, ISO27001, NIST 800 series, NERC-CIP, NIS and GDPR requirements. Knowledge and experience of quality management systems, especially in an ISOmore »
Third-Party Audit Consultant is responsible for conducting customer audits, managing short-term projects, and assessing third-party security compliance. This role requires ISO27001LeadAuditor certification and a solid understanding of risk management principles. Requirements Certification … as an ISO27001LeadAuditor, with hands-on experience conducting audits and managing audit processes. Ability to manage short-term projects independently, from planning to execution, including audit preparation and report generation. Familiarity with technology systems, infrastructure … partners to ensure compliance with security standards. Understanding of risk management principles and their application in security audits. Knowledge of compliance frameworks like ISO27001, SOC 2, or similar, and their implementation within enterprise environments. Experience with audit tools and software used for planning more »
also happy to consider flexible working arrangements, such as condensed hours, which you can discuss with Talent Acquisition. What you'll be doing: Lead the audit / assessment of operations controls and processes against the required internal and industry standards, including but not limited to COBIT, ISO27001 … the ability to process, collate and present data Pragmatic approach to problem solving and issue resolution Professional certification is desirable; CISA, CRISC, CISM, ISO27001LeadAuditor, ISO27001Leadmore »
record of delivering secure, compliant and robust systems and procedures. Prior experience using Azure and Microsoft cloud products and a CISSP, CISA, CISM, ISO27001leadauditor/ implementor or similar accreditation would be highly advantageous to your more »
to be able to evidence success in a senior manager position within a complex health care environment is essential. You'll take the lead on a number of key responsibilities including the below, as part of the Trust's new vision that is outlined within the job … Desirable Data Security / Information Security Qualification Certified Information Systems Security Professional (CISSP) Certified Cloud Security Professional (CCSP) Certified Ethical Hacker (CEH) ISO27001 LeadAuditor Certification Formal management / leadership training / qualification Service Improvement training / qualification Experience Essential Significant operational management experience … Department of Health (DoH) Experience Integrated Care Boards (ICB), NHS England and National Cyber Security Centre (NCSC) Cyber Essentials Plus, Cyber Assessment Framework & ISO27001 Experience of managing a demanding and expanding service creatively and efficient in an agile manner Awareness of corporate and more »
Desirable: Experience of the implementation or operation of security policies Cyber security Experience Degree level or equivalent worked experience in related field ISO27001 LeadAuditor Experience of working with commercial or legal documents Experience of producing reports / formal documents Benefits: You'll receive more »