ISO 27001 Consultant [Remote]

SojoJobPoland99 days ago

Full-timeRemote Friendly

Track This Job

Add this job to your tracking list to:

Monitor application status and updates
Change status (Applied, Interview, Offer, etc.)
Add personal notes and comments
Set reminders for follow-ups
Track your entire application journey

Save This Job

Add this job to your saved collection to:

Access easily from your saved jobs dashboard
Review job details later without searching again
Compare with other saved opportunities
Keep a collection of interesting positions
Receive notifications about saved jobs before they expire

AI-Powered Job Summary

Get a concise overview of key job requirements, responsibilities, and qualifications in seconds.

Pro Tip: Use this feature to quickly decide if a job matches your skills before reading the full description.

About the Role

We are seeking a highly skilled and motivated ISO 27001 Implementation Consultant to join our team. In this full-time, remote position, you will play a key role in helping organizations achieve and maintain ISO 27001 certification. You will lead risk assessments, implement compliance programs, identify vulnerabilities, and conduct security audits. This role also involves developing and enhancing information security policies and procedures while communicating technical findings in a clear, actionable manner.

Key Responsibilities

Lead ISO 27001 implementation and readiness projects for clients.
Conduct comprehensive risk assessments and gap analyses.
Identify vulnerabilities and recommend mitigation strategies.
Design, implement, and maintain information security management systems (ISMS).
Create, update, and review security policies, procedures, and controls.
Conduct internal audits and prepare organizations for external certification audits.
Provide strategic guidance to improve clients’ security postures.
Prepare detailed reports and present findings to technical and non-technical stakeholders.
Collaborate with cross-functional teams including IT, Compliance, and Risk.

Qualifications

Expert knowledge of ISO 27001 and other security frameworks (e.g., SOC 2, PCI DSS, HIPAA, GDPR).
Proven experience in risk management, vulnerability assessments, and security audits.
Strong analytical and problem-solving capabilities.
Excellent written and verbal communication skills.
Demonstrated ability to translate complex security concepts for non-technical audiences.
Experience with developing and maintaining security documentation and controls.
Certifications such as CISA, CISSP, CRISC, or ISO 27001 Lead Implementer/Auditor (preferred).
Bachelor’s degree in Cybersecurity, Risk Management, Information Systems, or a related field (preferred).

We’re Looking For Someone Who Is

Self-driven and highly proactive.
Experienced in GRC implementation and IT audit processes.
Confident in client-facing presentations and stakeholder engagement.
Adaptable, with a track record of achieving KPIs and delivering high-quality outcomes.

Must-Haves

Hands-on experience with GRC tools, frameworks, and/or compliance audits.
Outstanding presentation and client communication skills.
University degree in a relevant field.
Proven ability to work independently and meet project deadlines.

Nice-to-Haves

Previous experience in a fast-growing tech startup environment.
Familiarity with cloud security standards and modern DevSecOps practices.

Key Skills

Ranked by relevance

Ready to apply?

Join SojoJob and take your career to the next level!

Application takes less than 5 minutes

Apply