- Plan and conduct ISO/IEC 27001 audits (internal, external, or third-party) as per audit schedules and client requirements.
- Lead audit teams and manage the entire audit process including opening/closing meetings, audit planning, evidence gathering, and reporting.
- Evaluate the effectiveness of the ISMS, controls, risk assessments, and compliance to policies and legal/regulatory requirements.
- Identify non-conformities and areas for improvement, and prepare detailed audit reports with clear findings and recommendations.
- Guide clients in implementing corrective actions and follow-up on audit outcomes.
- Maintain impartiality, objectivity, and confidentiality throughout the audit process.
- Keep updated on ISO/IEC 27001:2022 standards, data protection laws (e.g., GDPR), and best practices.
- Contribute to internal quality assurance and improvement of the auditing processes.
Qualifications & Skills:
- Bachelor's degree in Information Security, IT, Computer Science, or related field.
- Certified ISO/IEC 27001 Lead Auditor (by IRCA, PECB, or equivalent).
- Minimum [X] years of experience in auditing ISMS or working within information security management.
- Knowledge of ISO 19011 (audit guidelines) and ISO 27002 (controls).
- Strong understanding of risk management, cybersecurity principles, and data protection regulations.
- Excellent analytical, communication, and report-writing skills.
- Ability to manage audit teams and projects effectively.
- High integrity and professionalism.
Job Type: Part-time
Pay: QAR3,000.00 - QAR5,000.00 per month
الإبلاغ عن وظيفة
