Remote ISO27001 Implementation Project Manager

Summary

Join our Information Security Office team as an ISO 27001 Implementation Project Manager, leading the end-to-end execution of our ISO 27001 certification project, collaborating with cross-functional teams to drive implementation and continuous improvement, and managing relationships with third-party auditors.

Requirements

• Proven experience in project management of ISO27001 implementation
• Working knowledge of risk frameworks and industry best practices (e.g., ISO 27001, NIST CSF, SOC 2, Cedar policy language)
• Ability to work cross-functionally within a complex organisation and communicate with senior leadership
• Experience with verifying policy as code and implementing repeatable and automatable processes to meet GRC requirements
• Strong ethics, integrity, and advocacy for diversity, equity, and inclusion
• Adaptability to shifting priorities and problem-solving capabilities
• Proven people, portfolio, programme, and project management skills

Responsibilities

• Project Manage OVO's ISO 27001:2022 programme
• Facilitate the assessment and certification of OVO’s Information Security Management System upgrade
• Organise and lead a 'Centre of Excellence' for ISO 27001 leaders across business and technology departments
• Identify opportunities for continuous improvement and share best practices
• Manage relationships with third-party auditors and achieve ISMS audit efficiencies through common data collection and pulling from APIs and scaling common control practices
• Lead the reporting, dashboards, and analysis of programme status and effectiveness
• Lead delivery of initiatives to develop and configure tools to support cybersecurity governance, risk, and compliance management including ISO toolkits and job aids to enhance performance and productivity
• Report to senior leadership on non-conformities, action plans, and remediation progress
• Foster an environment that encourages innovation and continuous improvement in risk and compliance
• Support OVO’s privacy and security GRC team on their initiatives and in their interactions on information security risk and control matters

Benefits

• Salary between £71,240.00 - £102,584 depending on specific skills and experience
• On-target bonus of 15%
• Flex pay: an extra 9% of salary to use as you like
• 34 days of holiday (including bank holidays)
• Healthcare cash plan or private medical insurance depending on career level
• Critical illness cover, life assurance, health assessments, and more
• Gym membership
• Gadget, travel, and cyber insurance
• Workplace ISA
• Will writing services
• DNA testing, dental insurance, and more
• Extra holiday buying
• Discount dining, culture cards, tech loans
• Give-as-you-earn donations to support favourite charities
• Up to £400 off any OVO Energy plan (when you pay by Direct Debit)
• Personal carbon offsetting and great discounts on smart thermostats and EV chargers
• Ultra-low emission car leasing
• Cycle to work scheme and public transport season ticket loans