ISO Lead Auditor

ISO Lead Auditor

ISO Lead Auditor


Job description

Job Description Job Role

ISO Lead Auditor

Sub Team

Enterprise Customer Service



Experience Required

1- 3 years

Job Purpose

ISMS Consultant


#isms #iso27001 #lead auditor #leadimplementer

#risk #governance #compliance

Job Responsibilities

Design policy framework based on ISO 27001:2013

Conduct ISMS audit for clients

Develop and maintain audit checklist and documents

Work closely with the VAPT team

Create and update the hardening checklist

Help client to upgrade from the old standards e.g. ISO 27001:2005 to ISO 27001:2013

Perform risk assessment and impact analysis

Conduct training sessions for clients and the internal team

Map various compliances with each- other

Skills Required

Sound knowledge of IT Security and Infrastructure audits

Proven ability to conduct ISMS audit independently

Must have audited minimum 3 clients/ implemented minimum 2 clients

Must possess basic knowledge of networking, different flavours of operating system, endpoint devices and security devices

Should be a self learner and must keep herself updated with latest threats and vulnerabilities researched/ discovered

knowledge of business continuity framework and standards

Basic knowledge of different compliance standards such as PCI DSS, HIPAA, etc. in addition to ISO 27001

Excellent written and Verbal communication skill

Education Qualification



B.Sc- Computers

ISO 27001 lead auditor/ Lead Implementer

Working Conditions

Monday to Friday with 1st Saturday working

Role: QA / QC Executive

Industry Type: IT Services & Consulting

Department Quality Assurance

Employment TypeFull Time, Permanent

Role Category Production & Manufacturing


UG :Any Graduate

PG :Any Postgraduate

Key Skills


(ii) Networking

(iii) ISMS

(iv) Business continuity



About Company

Lucideus is an Indian Global Enterprise IT Security Services & Solutions Company that focuses on solving issues of concern to senior management in regards to cyber security. It helps corporates guard against generic information security threats along with combating advanced persistent threats and customized zero day exploits as per today's IT threat landscape ensuring an organization stays ahead of the security curve. The firm also serves as information security adviser to businesses, governments and institutions around the world.