The ISO Analyst supports the audit and assurance teams in performing ISO 27001 certification assessments and related information security audits.
Requirements
- Ensure that all internal processes are followed correctly and consistently.
- Assist in the creation of audit programs and plans for clients and upcoming audits.
- Support evidence classification, review, and sampling activities.
- Take detailed notes during audits and assist in preparing high-quality reports.
- Send recap and follow-up communications as required.
- Collect statistics and support KPI reporting.
- Communicate effectively with stakeholders at all organizational levels using professional language and terminology.
- Maintain ethics, fairness, and accuracy in all audit documentation and reporting.
- Protect confidentiality of personally identifiable information (PII) and intellectual property (IP) belonging to both the firm and clients.
- Demonstrate professionalism and responsibility in all interactions.
- Handle client ingestion and onboarding activities.
- Perform HubSpot data scrubbing and updates.
- Register new engagements in Asana and coordinate Insight ONE transfers (in or out).
- Create SharePoint folders and upload Evidence Lists (EL).
- Follow up on CUP (Client Upload Portal) submissions.
- Follow up on CUP status and pending uploads.
- Send planning call recaps and assist with scheduling.
- Communicate auditor assignments and update Asana tasks.
- Collect and report metrics on Turnaround Time (TAT) for audit plan delivery.
- Ensure auditors have access to necessary GRC platforms and client systems.
- Collect metrics on TAT for archive submissions.
- Register findings in the Universal Registry of Findings.
- Complete archive QA forms and support non-technical QA reviews, including: Audit Report, Audit Plan, Audit Program, Registry of Findings, Certificate & Registry Management.
Benefits
- Opportunity to work with global experts in cybersecurity and ISO assurance.
- Exposure to top-tier clients and diverse industries.
- Professional development and certification support.
- Collaborative and remote-friendly work environment.
- Competitive compensation and growth opportunities.
