Iso Consultant

Job Summary

We are seeking an experienced ISO27001 Consultant to lead and support our organization in

achieving ISO27001 certification. This role will also contribute to SOX compliance, information security initiatives, general IT administration, and Azure cloud administration. The ideal candidate

will possess a strong understanding of information security standards, regulatory compliance frameworks, and hands-on technical expertise in IT operations.

Key Responsibilities:

• Lead and manage the end-to-end ISO27001 certification process.

• Develop and implement information security policies, procedures, and controls.

• Conduct internal audits and coordinate external audits for ISO27001 and SOX compliance.

• Support and guide the organization through SOX readiness and ongoing compliance.

• Perform risk assessments and security gap analyses; recommend corrective actions.

• Collaborate with cross-functional teams to enforce security and compliance practices.

• Maintain documentation and evidence required for audits and certifications.

• Administer IT systems including identity and access management, system configurations,

and patch management.

• Provide Azure administration support, including resource provisioning, security

configurations, and monitoring.

• Offer guidance and training to internal teams on security and compliance best practices.

Technical Skills Required:

• Deep knowledge of ISO/IEC 27001 standards and implementation methodology.

• Experience with SOX compliance controls and audit processes.

• Strong understanding of information security principles and risk management.

• Hands-on experience with Azure administration and Microsoft 365 security features.

• Familiarity with ITIL practices and IT operational controls.

• Experience in vulnerability management, endpoint protection, and incident response.

• Proficiency in preparing and maintaining compliance documentation.

Qualifications:

• Bachelor's degree in computer science, Information Technology, or a related field.

• ISO27001 Lead Implementer or Auditor certification is highly desirable.

• Azure Administrator certification (e.g., AZ-104) preferred.

• Minimum 5 years of experience in IT security, compliance, or IT administration.

• Strong written and verbal communication skills.

• Ability to work independently and manage multiple priorities in a fast-paced environment.