ISMS Lead Auditor

Company description:

TÜV SÜD PSB previously known as PSB Corporation is a wholly owned subsidiary of TÜV SÜD AG. With a sterling record of over 50 years, TÜV SÜD PSB over the years has worked with companies across sectors to help them achieve business excellence. Today, we are at the forefront of partnering with companies to help them realize their Digital Transformation initiatives. To address the specific needs of safety, security, quality and sustainability, we work with stakeholders throughout the business life-cycle to provide an integrated approach.

TÜV SÜD PSB is accredited under the Singapore Accreditation Council Singapore Laboratory Accreditation (SAC-Singlas) Scheme to ISO/IEC Guide 25 (ISO/IEC and ISO Guide 65 (ISO/IEC 17065), and is also accredited by SAC for ISO/IEC

With a strength of over 500 employees in Singapore, we have extensive network of offices and labs across ASEAN - Thailand, Indonesia, Malaysia, Philippines and Vietnam to support your requirements across the region.

Job description:

ISO ISMS) LEAD AUDITOR

Business Assurance - Management Service

The ISMS Lead Auditor will take a leadership role in conducting audits and assessments of client organizations' information security management systems. You will be responsible for evaluating and ensuring compliance with ISO 27001 standards, providing expert guidance, and helping clients enhance their information security practices. Your expertise in auditing and information security will be instrumental in strengthening our clients' security postures

Key Responsibilities:

• Develop comprehensive audit plans and schedules in collaboration with clients, taking into consideration their specific information security requirements and objectives.
• Conduct ISO 27001 audits, assessing the effectiveness of information security controls and practices within client organizations.
• Analyse and evaluate client documentation, policies, procedures, risk assessments, and records to ensure compliance with ISO 27001 standards.
• Perform on-site audits at client locations, including interviews with personnel and inspections of information security processes and systems.
• Document audit findings, non-conformities, and areas for improvement, and prepare detailed audit reports that provide actionable recommendations to clients.
• Offer expert recommendations to clients for strengthening their information security management systems and achieving ISO 27001 certification.
• Communicate audit results and recommendations clearly and effectively with client management and staff, addressing any inquiries or concerns.

• Stay abreast of changes to ISO 27001 standards and information security best practices, ensuring that audit processes align with the latest requirements.

• Identify opportunities to enhance the audit program and contribute to the development of best practices in information security auditing.

• Perform other tasks that may be assigned by the immediate superior and/or management from time-to-time.

Key Requirements:

• Bachelor's degree in a relevant field, such as Information Security, Cybersecurity, or IT Management.
• ISO 27001 Lead Auditor certification or equivalent.
• Proven experience as a Lead Auditor conducting ISO 27001 audits and assessments.
• Deep knowledge of ISO 27001 standards, information security controls, and regulatory requirements.
• Strong analytical and problem-solving skills, with meticulous attention to detail.
• Excellent communication skills, both written and verbal, for report writing and client interactions.
• Ability to work independently and collaboratively within a team, managing multiple audit projects concurrently.
• Willing to travel locally.