ISMS Lead Auditor (IT) - Rapid Progression

Main Job Responsibilities:

• Conduct 3rd party audits to assess organizations' Information Security Management System and related Statement of Applicability (SoA) for conformity with ISO/IEC 27001 and in strict compliance with GIC's Code of Ethics and established audit procedures
• Conduct other related Information Security, Cybersecurity, Data Protection audits – ISO/IEC 27701, ISO/IEC 27017, ISO/IEC 27018, CSA Cyber Essentials mark, CSA Cyber Trust mark, IMDA Data Protection Trust mark, GDPR Compliance audits, Second Party IT audits
• Conduct Information Security, Cybersecurity, Data Protection trainings/workshops/seminars
• Manage the entire audit process from planning, conducting, reporting, and following up on the assigned audits.
• Support in technical review of audit reports and technical advice to Sales Team and Certification Team as and when required.

Job Qualifications / Requirements:

• Possess a professional degree/ diploma in Computer Science/Information Security/Cybersecurity or related fields to Information Technology.
• At least three years full time working experience in information technology, of which at least two years are in a role or function relating to information security.
• Successfully completed a Lead Auditor Course in Information Security Management System.
• Preferably possessed experience in auditing ISMS in accordance with ISO/IEC 27001 or similar standard.
• Having completed training courses in ISO/IEC 27701, ISO/IEC 27017, ISO/IEC 27018, PDPA Fundamentals/Practitioner and holding industry certifications like CISA, CIPM, CISSP will be advantageous.