Iso 27001 Sme

Summary

Join TestPros as a Part-Time ISO 27001 Subject Matter Expert (SME) and lead the development, implementation, and maintenance of our Information Security Management System (ISMS). You will conduct risk assessments, internal audits, and develop training programs. This remote position requires a Bachelor's degree in a related field and 5+ years of experience in information security management with a focus on ISO 27001. You will work with cross-functional teams, maintain ISMS documentation, and stay current on industry trends. TestPros offers competitive benefits including medical/dental/vision insurance, life insurance, paid time off, a 401k plan, and opportunities for professional growth.

Requirements

• Bachelor’s degree in Information Security, Computer Science, Information Technology, or a related field
• Minimum of 5 years of experience in information security management, with a focus on ISO 27001
• In-depth knowledge of ISO 27001 standards and best practices for information security management
• Experience conducting risk assessments and managing risk treatment plans
• Strong project management skills with the ability to lead cross-functional teams
• Excellent communication and interpersonal skills, with the ability to effectively train and educate employees on information security practices
• Strong analytical and problem-solving skills
• Ability to stay current with the latest industry trends and developments in information security

Responsibilities

• Lead the design, implementation, and maintenance of the ISMS in compliance with ISO 27001 standards
• Conduct risk assessments and develop risk treatment plans to mitigate information security risks
• Coordinate and conduct internal audits to ensure ongoing compliance with ISO 27001 and prepare the organization for external audits
• Develop and deliver training programs to raise awareness of information security policies and procedures across the organization
• Work closely with cross-functional teams to ensure information security is integrated into all business processes and projects
• Maintain up-to-date documentation of the ISMS, including policies, procedures, and audit records
• Monitor and report on the performance of the ISMS, including metrics and key performance indicators (KPIs)
• Stay current with the latest developments in information security and ISO 27001 standards to ensure continuous improvement of the ISMS
• Provide expert guidance and support to the organization on all matters related to ISO 27001 and information security
• Collaborate with external auditors and regulatory bodies as needed

Preferred Qualifications

• Master’s degree in Information Security, Computer Science, Information Technology, or a related field
• ISO 27001 Lead Auditor or Lead Implementer certification
• Additional certifications such as CISSP, CISM, or CISA
• Experience working in a [specific industry, e.g., finance, healthcare, technology] environment

Benefits

• Competitive salary
• Medical/dental/vision insurance
• Life insurance
• Paid time off
• Paid holidays
• 401(k) retirement plan with company match
• Opportunities for professional growth
• Cell phone discounts