ISMS Auditor
2 weeks ago
Company Description
Cyberhealth is a cybersecurity consulting and advisory firm based in Ireland, specializing in strategic governance, regulatory compliance, and resilience-building for organizations across all sectors. We provide expert services in cyber risk management, supply chain security, data protection, and compliance with emerging EU regulations, including NIS2, DORA, the AI Act, and the Cyber Resilience Act.
Our services include:
- Cybersecurity governance and risk advisory
- Regulatory impact assessments and readiness programs
- ISO/IEC certification support, including ISO 27001 and ISO 42001
- Cybersecurity program design and implementation
- Incident readiness and response planning
- Supplier risk management and third-party security assessments
Role Description
This is a
full-time, remote role
for an
ISO 27001 Implementer / Auditor
responsible for supporting clients through the design, implementation, and continual improvement of Information Security Management Systems (ISMS). The successful candidate will conduct ISO 27001 internal audits, perform risk assessments, identify control gaps, and guide organizations toward certification readiness.
Daily tasks include developing ISMS documentation (policies, procedures, risk registers, audit reports), conducting internal and supplier audits, advising on corrective actions, and ensuring compliance with relevant information security standards and regulations. The role requires close collaboration with cross-functional teams to ensure that security governance, risk, and compliance practices are embedded across client environments.
Key Responsibilities
- Lead or support ISO/IEC 27001:2022 implementations and internal audits.
- Conduct information security risk assessments and recommend appropriate controls.
- Develop and maintain ISMS documentation, audit programs, and corrective action plans.
- Provide guidance and training to client teams on ISO 27001 requirements and best practices.
- Perform gap assessments and maturity evaluations against ISO 27001, NIST CSF, and client-specific standards.
- Support compliance initiatives related to EU cybersecurity regulations (NIS2, DORA, CRA, etc.).
- Prepare audit reports, management review inputs, and certification readiness documentation.
- Contribute to continuous improvement initiatives within Cyberhealth's governance and assurance service lines.
Qualifications
- ISO/IEC 27001 Lead Auditor (LA)
or
Lead Implementer (LI)
certification is
mandatory
. - Minimum
2+ years of hands-on experience
implementing or auditing ISMS frameworks. - Strong knowledge of
NIST Cybersecurity Framework
and other risk management frameworks. - Familiarity with
EU and international cybersecurity regulations
(e.g., NIS2, DORA, CRA, GDPR). - Excellent communication, report-writing, and stakeholder management skills.
- Strong analytical, problem-solving, and attention-to-detail capabilities.
- Ability to work
independently and remotely
while managing multiple client engagements. - Experience in
consulting or professional services
environments preferred. - Bachelor's degree in
Cybersecurity, Computer Science, Information Systems, Business, or related discipline
. - Additional certifications (e.g.,
CISA, CISSP, CISM
) are advantageous.
-
Full Time and Subcon Auditor
5 days ago
Manila, National Capital Region, Philippines ACubeTIC Full time $40,000 - $60,000 per yearWe're Hiring | Join Our Team as an ISMS, FSMS, QMS, or EMS AuditorAre you a certified auditor with a passion for driving continuous improvement and helping organizations meet global standards?We're looking for experienced and motivated Auditors to join our growing team in the following disciplines: Information Security Management System (ISMS) – ISO/IEC...
-
SECAT Environmental Trainer
5 days ago
Manila, National Capital Region, Philippines Scorpio Group Full time $60,000 - $80,000 per yearKey ResponsibilitiesConduct training sessions for seafarers of all ranks, both in-office and on-board vessels.Carry out on-board environmental audits to ensure compliance with MARPOL, ISM, PSC, Class, and other statutory requirementsDevelop and deliver structured training modules tailored to various ranks and vessel typesSupport the Group's initiatives on...
-
SECAT Environmental Trainer
5 days ago
Manila, National Capital Region, Philippines Scorpio Group Full time $60,000 - $80,000 per yearKey ResponsibilitiesConduct training sessions for seafarers of all ranks, both in-office and on-board vessels.Carry out on-board environmental audits to ensure compliance with MARPOL, ISM, PSC, Class, and other statutory requirementsDevelop and deliver structured training modules tailored to various ranks and vessel typesSupport the Group's initiatives on...
-
SECAT Environmental Trainer
2 weeks ago
, Metro Manila, Philippines Optimum Marine Management Ltd (Affiliate of Scorpio Group) Full timeJoin to apply for the SECAT Environmental Trainer & Auditor role at Optimum Marine Management Ltd (Affiliate of Scorpio Group) The role involves conducting training sessions for seafarers of all ranks, both in-office and on-board vessels, and carrying out on-board environmental audits to ensure compliance with MARPOL, ISM, PSC, Class, and other statutory...
-
Compliance Coordinator
4 weeks ago
Manila, Philippines Phil National Lines, Inc. Full timeOVERVIEW The Compliance Coordinator is responsible for monitoring, implementing, and maintaining compliance programs across the company. This role ensures that operations, documentation, and reporting meet internal control standards, maritime regulations, and statutory requirements, while providing guidance to teams on best practices. KEY RESPONSIBILITIES ...
-
Assistant manager Info- security and Compliance
3 weeks ago
Manila, Philippines T3Cogno Full timeAssistant Manager – Compliance & Information Security Location: T3Cogno Manila, National Capital Region, Philippines Overview We are looking for an Assistant Manager – Compliance & Information Security with strong expertise in Compliance, Information Security, and BCM domains. The ideal candidate will be responsible for managing audits, risk assessments,...
-
Senior Information Technology Auditor
3 weeks ago
, Metro Manila, Philippines Buscojobs Full timeInformation Security IT Audit Senior Specialist – Philippines Posted today Job Description About The Team Sea Limited (NYSE: SE) is a leading global consumer internet company founded in Singapore in 2009. Our mission is to better the lives of consumers and small businesses with technology. We operate three core businesses across digital entertainment,...
-
Quality Assurance Manager
3 weeks ago
, Metro Manila, Philippines Buscojobs Full timeQuality Assurance Manager (BPO) – Taguig Quality Assurance Manager Bpo jobs in Taguig Posted 1 day ago Job Description Develop and implement quality management systems aligned with industry standards. Monitor and analyze quality performance metrics. Conduct internal audits and ensure compliance with procedures. Facilitate training sessions on...
-
Six Sigma Consultant
3 weeks ago
, Metro Manila, Philippines Buscojobs Full timeSix Sigma Consultant Black Belt jobs in Taguig Posted 1 day ago Job Description Develop and implement quality management systems aligned with industry standards. Monitor and analyze quality performance metrics. Conduct internal audits and ensure compliance with procedures. Facilitate training sessions on quality protocols for staff. Collaborate with teams to...
-
Senior Vulnerability Management Consultant
3 weeks ago
, Metro Manila, Philippines Buscojobs Full timeSenior Vulnerability Management Consultant Mandaluyong, National Capital Region ₱ - ₱ Y Bank of Commerce (Philippines)Posted 1 day ago Job Description JOB SUMMARY Oversee employees, consultant, subsidiaries and vendor's compliance with ISPP regarding the security of the Bank's information assets; Monitor the adequacy and effectiveness of the systems...
