We are seeking an experienced ISO 27001 Lead to drive end‑to‑end implementation and certification across a global organisation. This role will lead the design, build and operationalisation of the ISMS in line with ISO/IEC 27001:2022.
Key Responsibilities
- Conduct enterprise‑wide ISO 27001:2022 gap assessment
- Define ISMS scope, context, governance and risk methodology.
- Develop the risk register, Statement of Applicability (SoA) and risk treatment plans.
- Deliver a prioritised implementation roadmap including budget, resourcing and timelines.
- Establish ISMS governance, metrics, management review and audit readiness.
- Coordinate cross‑functionally with Technology, Security, Legal, HR, Procurement and Business Units.
Required Experience
- Proven track record leading ISO 27001 certification end‑to‑end in complex environments.
- Strong knowledge of ISO/IEC 27001:2022 and ISO 27002:2022.
- Experience implementing risk management frameworks, ISMS governance and controls.
- Cloud security familiarity (Azure/M365, AWS, GCP) and core disciplines (IAM, monitoring, incident & vulnerability management).
- Strong stakeholder engagement and programme delivery capability.
Deliverables
- Gap assessment report
- Defined ISMS scope and governance model
- Implementation roadmap with budget & resource plan
- Audit-ready documentation and KPI dashboard
Qualifications
ISO 27001 Lead Implementer and/or Lead Auditor.
#J-18808-Ljbffr