Lead Auditor/ Auditor - ISMS/ Cybersecurity

1.     Position Details

1.1.  Position

Lead Auditor/ Lead Auditor - ISMS/ Cybersecurity

1.2.  Office / Department

CER

1.3.  Reporting to

Certification Manager

1.4.  Key Working Relationship

Certification Manager

Technical Manager

Training Manager

Scheduler

CER Coordinator

2.     Minimum Required Qualifications

2.1.  Specialty

Qualification and work experience as Lead Auditor in ISO/IEC 27001:2022, ISO/IEC 20000-1:2018, ISO/IEC 27001:2019, ISO 22301:2019 (Minimum 2 years of work with Certification Body)

2.2.  Education

The applicant shall have completed secondary education (as part of educational system between primary or elementary stage, and university or similar educational institute). Graduate / Diploma in Engineering discipline or equivalent in Engineering (Computer Science, Information Techology, Cybersecurity)

2.3.  Training

IRCA Registered Lead Auditor Training in all the Management System standards for the position.

2.4.  Technical knowledge

Sector specific knowledge with related to the  management system qualification is required.

2.5.  Experience

The candidate should have at least 4 years total work experience in IT & Cybersecurity field

3.     Responsibilities / Authorities / Accountabilities

3.1.  Primary Functions

·       Planning and performing audits in the capacity as Auditor/Lead Auditor

·       Preparation of audit plan and audit report in a timely manner and working within Key performance indicators.

·       Participate and contribute as required for the review of new standards.

·       Ability to handle the clients in a diplomatic manner

3.2.  Technical Expertise

·       Technical expertise in the fields of Engineering, Science and Technology is required as per the sector specific requirements.

·       Review of applicable contractual requirements

3.3.  Business Requirements

·       Having adequate communication and leadership skills

·       Ensuring quality of Audit according to ISO 17021 requirements

·       Interpretation of results of auditing

3.4.  Customer Focus

·       Focussed to meet the requirements of Customer satisfaction

·       Develop trust and open communication with the client.

3.5.  HSE Requirements

·       Maintain up-to-date awareness of Corporate HSE policy, procedures and practices

·       Comply at all times with all applicable legal requirements, BV Dubai HSE Policies and procedures, client’s HSE procedures and practices.

·       Maintain personal work areas tidy and hazard free and report any deviation/fault/hazard immediately to the location manager/line manager/supervisor

·       Report immediately any newly identified hazard and participate in devising suitable operational control to eliminate/minimize the pertinent risk.

·       Report immediately any HSE incident and cooperate in investigation

·       Take care of your own health and safety and that of people who may be affected by what you do (or do not do).

·       Co-operate with others on health and safety, and not interfere with, or misuse, anything provided for your health, safety or welfare.

·       Communicate to their immediate manager any unsafe work practice or condition and opportunities for improvement of HSE practices.

·       Comply with client’s site specific HSE regulations.

·       Comply at all times with all applicable legal requirements, BV Group HSE policies and procedures, clients HSE procedures and practices.

·       Maintain up-to-date awareness of Corporate HSE policy, procedures and practices

4.     Performance Monitoring

4.1.  Continual Development

As per the MPMD process, on yearly basis.

§  Complete requirements for appropriate professional training in specified time frames.

§  Attend appropriate training courses/seminars/etc

§  Progress towards developing individual distinctive competence targets.

4.2.  KPI’s

Achieve production KPIs for auditors

Timely Submission of audit plans

Timely Submission of audit reports

Timely Closure of NCR

Ensuring customer satisfaction

Ensuring defect-free technical review outcome

4.3.  Monitored By

CER  Manager