Senior Information Security / Cyber Security Auditor (Accreditation)

• Responsible for the conduct of
  the day to day of accreditation services.
  
• Maintain detailed and organized
  records of the accreditation process, ensuring accuracy and completeness.
  
• Ensuring that the highest
  standards of competence and impartiality are maintained, and that consistency
  is achieved across accreditation activities;
  
• Undertake compliance activities
  against security standards.
  
• Operational role, to manage
  national accreditation scheme applications.
  
• Document observations/findings in
  such a manner that they are clearly understandable and traceable and are based
  on objective evidence.
  
• Develop and maintain
  accreditation procedures and required tools based on National Information
  Security Compliance framework.
  
• Maintain impartiality,
  confidentiality and to declare any potential conflicts of interest that might
  jeopardize an objective assessment as required.
  
• Perform periodic surveillance
  accreditation assessment on Third parties to monitor and review compliance.
  
• Develop measurement and
  compliance mechanisms & tools to monitor improvements.
  
• Knowledge of various
  international standards, regulation, and best practices, (ISO27001, OWASP,
  PTES, SOC CMM etc.) and implementation experience against at least one.
  
• Knowledge of Local Laws &
  Regulations in different sectors: Cybercrime, PDPPL, eCommerce, etc.
  
• Knowledge about national cyber
  security standards and frameworks (NIA, CSF…)
  
• Stay up to date with the latest
  developments in security, emerging threats, and evolving technology to ensure
  the accreditation process remains relevant.
  
• Manage the external communication
  during the assessment: from the application till the issue of decision.
  
• Act as escalation point of
  contact for accreditation issues/requests.
  
• Team player who
  collaborates with the team to maintain, improve the accreditation program.
  

Requirements

• Bachelor’s degree in Computer Science, Information Technology, Information Systems, Cybersecurity, or equivalent.
  
• Minimum 12 years of experience in Information Security, Cybersecurity, Risk Assessment, or Assurance.
  
• Hands -on experience in information security auditing, accreditation, or cybersecurity management.
  
• Experience in cybersecurity consulting or implementation aligned with national/international standards is an advantage.
  

Certifications (Preferred):

• NIA Certified Auditor, CISSP, CISA, CISM, ISO 27001 Lead Auditor or equivalent.
  

Technical Skills:

• Strong knowledge of cybersecurity frameworks and standards (ISO 27001, NIST, NIA, OWASP, PTES, SOC -CMM, etc.).
  
• Understanding of accreditation standards (ISO/IEC 17011, ISO/IEC 17025) and certification processes.
  
• Experience in risk assessment and audit methodologies.
  
• Knowledge of national cybersecurity laws and regulations (e.g., Cybercrime laws, data protection, eCommerce regulations).
  
• Strong awareness of third -party audit and certification practices.
  
• Ability to assess security controls and compliance against formal schemes objectively.
  

Core Skills:

• Strong analytical thinking and problem -solving abilities.
  
• Excellent technical report writing and documentation skills.
  
• Ability to communicate clearly with technical and senior executive stakeholders.
  
• Experience in delivering workshops, training, or knowledge -sharing sessions.
  
• Strong attention to detail and ability to work under pressure and tight deadlines.
  

Behavioral Competencies:

• Strong teamwork and collaboration skills.
  
• High level of integrity, impartiality, and professionalism.
  
• Ability to manage multiple stakeholders and competing priorities.
  
• Strong interpersonal and communication skills.
  
• Proactive, self -driven, and able to work independently with minimal supervision.