CrawlJobs Logo

Information Security Auditor & Standards Lead

Bridge Soft Solutions

Location Icon

Location:
India

Category Icon
Category:
IT - Administration

Job Type Icon

Contract Type:
Not provided

Salary Icon

Salary:

Not provided
Save Job
Save Icon
Apply Position

Job Description:

We are seeking a highly experienced Information Security Auditor & Standards Lead with deep, hands-on knowledge of global information security standards and best practices. The individual will independently lead security governance, audit, and compliance activities across frameworks such as ISO 27001 and SOC 2, and continuously enhance the organization’s security and compliance maturity.

Job Responsibility:

  • Act as Subject Matter Expert (SME) for ISO 27001, SOC 1 / SOC 2, NIST, and CIS frameworks
  • Interpret security standards and translate requirements into auditable controls
  • Ensure controls are designed, implemented, and maintained effectively
  • Provide guidance on mandatory requirements versus best practices
  • Plan and manage ISO 27001 and SOC audits end-to-end
  • Conduct internal audits and ongoing compliance assessments
  • Serve as primary point of contact for auditors and certification bodies
  • Track audit findings, non-conformities, and corrective actions to closure
  • Own and maintain the Information Security Management System (ISMS)
  • Maintain risk assessments, risk treatment plans, and Statement of Applicability (SoA)
  • Develop, review, and enforce security policies, standards, and procedures
  • Provide standards-driven guidance for new systems, applications, and infrastructure
  • Review new implementations for compliance alignment
  • Advise on control selection, design, and evidence requirements
  • Ensure new implementations are audit-ready by design
  • Provide compliance guidance to Security, Network, IT, Cloud, and HR teams
  • Identify gaps and drive continuous improvement initiatives
  • Support management reviews and executive-level reporting

Requirements:

  • 5–8 years of experience in Information Security Auditing / GRC
  • Strong hands-on experience with ISO 27001 and SOC 1 / SOC 2 audits
  • Strong understanding of security principles and control frameworks
  • Excellent communication and documentation skills

Additional Information:

Job Posted:
February 01, 2026

Employment Type:
Fulltime
Icon
Bridge Soft Solutions - All Job Offers
Job Link Share:
Copy Link Icon
Facebook Icon Twitter Icon LinkedIn Icon

Looking for more opportunities? Search for other job offers that match your skills and interests.

Briefcase Icon

Similar Jobs for Information Security Auditor & Standards Lead

Information Security Consultant

PGI is seeking experienced Information Security Consultants to join our contract...
Location
Location
United Kingdom , London
Salary
Salary:
Not provided
pgitl.com Logo
Protection Group International
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Proven people and relationship management skills
  • Demonstrable experience providing Information Assurance consultancy
  • Experience in or knowledge of the PCI DSS standard, NIST CSF, DORA, GDPR/DPA
  • ISO 27001 Lead Auditor, ISO 27001 Lead Implementer, Business Continuity or Cloud Security accreditations are highly desirable
  • Experience in conducting risk assessments and forming risk management policies
  • Excellent verbal and written communication skills, with the ability to present to clients and business stakeholders
  • A positive approach to problem-solving and possesses the ability to work smart and collaboratively to prioritise and set deadlines
Job Responsibility
Job Responsibility
  • Engaging confidently with clients relating to solving Information Security Governance, Risk, and Compliance problems
  • Providing hands-on compliance and consultancy services across a range of requirements for clients, such as ISO 27001, business continuity, data protection, DORA, or other regulatory compliance needs, including IASME Cyber Essentials
  • Support colleagues in delivery by also assisting with: Information Security Management System (ISMS) design and implementation
  • GDPR gap assessments and implementation support
  • PCI DSS scoping, gap assessments, implementation guidance, and compliance reporting
  • Maturity Assessments
  • Third-party / supplier assurance reviews
  • Providing expertise to enhance our international capacity-building offer and value
  • Contribute towards the maintenance of PGI’s own accreditations, including ISO 27001, ISO 9001 and business continuity as well as compliance with data protection regulations
  • Maintaining your own continuing professional development, keeping up to date with security industry trends and best practices
Read More
Arrow Right

Business Information Security Officer

A senior individual contributor role serving as the cybersecurity liaison for HP...
Location
Location
Ireland , Leixlip
Salary
Salary:
Not provided
https://www.hpe.com/ Logo
Hewlett Packard Enterprise
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 12+ years of experience in cybersecurity, risk management, or related fields, with significant exposure to financial services regulatory environments
  • proven ability to partner with business executives and influence decision-making through clear articulation of cyber risk in business and regulatory terms
  • deep knowledge of cybersecurity frameworks and controls relevant to financial institutions (NIST, ISO 27001, DORA, SOX, GDPR, etc.)
  • experience engaging with financial regulators, auditors, and external examiners on cybersecurity compliance
  • strong understanding of incident response processes, with the ability to coordinate remediation and communication at the business unit level
  • exceptional communication, stakeholder management, and executive presence
  • bachelor’s degree required
  • advanced degree and/or certifications (e.g., CISM, CISSP, CRISC) preferred.
Job Responsibility
Job Responsibility
  • act as the primary cybersecurity liaison for HPEFS, partnering with executives to translate cyber risk into business and regulatory impact and enable informed leadership decisions
  • inform the HPEFS leadership about emerging cyber threat landscape to be proactive in protecting the business
  • drive cybersecurity strategies tailored to the regulatory environment for financial services, including but not limited to Central Bank of Ireland requirements, Digital Operational Resilience Act (DORA), SOX, GDPR (cyber-related obligations)
  • lead cyber risk assessments for products, services, and bank operations, ensuring controls meet both enterprise and banking regulatory expectations
  • serve as the on-point liaison during security incidents impacting HPEFS, coordinating with CDRM’s centralized incident response team and driving business-side remediation and communication
  • oversee vulnerability management for HPEFS assets, ensuring issues are tracked, prioritized, and remediated in alignment with regulatory timelines and enterprise standards
  • partner with the HPEFS IT leader to align on security priorities, infrastructure controls, and technology programs impacting financial services operations
  • support closure of audit, regulatory, and compliance findings through coordination of corrective action plans and, where appropriate, risk acceptance processes
  • monitor evolving regulatory requirements and industry trends, advising leadership on compliance gaps, risk exposure, and readiness for regulatory examinations
  • influence enterprise cybersecurity priorities by advocating for HPEFS needs within the broader CDRM strategy
What we offer
What we offer
  • health and wellbeing benefits
  • personal and professional development programs
  • unconditional inclusion in the workplace.
  • Fulltime
Read More
Arrow Right

Security Compliance Officer

As an IT compliance manager, you are part of the information security team. This...
Location
Location
Netherlands , Diemen
Salary
Salary:
Not provided
https://www.randstad.com Logo
Randstad
Expiration Date
February 28, 2026
Flip Icon
Requirements
Requirements
  • Bachelor's degree in Information Technology, Cybersecurity, or a related field
  • Certified Lead Auditor in ISO 27001:2013 or 2022 standard
  • At least 5 years of experience in conducting internal audits and implementing information security best practices
  • Strong understanding of information security principles, controls, and frameworks
  • Basic understanding and some experience in Third-Party Risk Management (TPRM) is preferred but not mandatory
  • Excellent communication and interpersonal skills, with the ability to collaborate effectively with diverse teams
  • Able to prepare concise reports for senior management, including C-level
  • Proficiency in relevant tools and technologies related to information security auditing
  • Good command of the English language
  • Excellent analytical skills
Job Responsibility
Job Responsibility
  • Improve Information security 2nd line of defense role at Randstad Global, in overseeing risk and monitoring of IT and IS related first-line-of-defense controls in our Operating Companies/markets
  • Conduct periodic internal compliance reviews / audits to assess and enhance the effectiveness of the information security management system of operating companies/markets , adhering to ISO 27001 standard
  • Ensure compliance with regulatory requirements and industry best practices
  • Perform gap analysis to evaluate the effectiveness and compliance of operational processes with our corporate security policies and guidelines
  • and provide recommendations to identify areas for improvement, with proposed remediation
  • Provide guidance to our colleagues located globally in becoming compliant with our control frameworks
  • Prepare comprehensive audit reports, highlighting findings and recommendations for improvement
  • Fulltime
Read More
Arrow Right

Senior Cybersecurity Engineer

As a Senior Cybersecurity Engineer, you will be at the forefront of driving secu...
Location
Location
United States , Bellevue; Overland Park; Frisco; Herndon
Salary
Salary:
103400.00 - 186400.00 USD / Year
https://www.t-mobile.com Logo
T-Mobile
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's Degree Computer Science or Information Technology or equivalent work experience
  • 4-7 years Experience in info security technology or related field
  • Experience with incident handling for Security breaches
  • Expert in security subject areas
  • 2-4 years Technical Project Management
  • Experience with high level design architecture, security technologies, Networking, web services and SOA
  • Understanding of encryption, obfuscation, tokenization technologies
  • Medium to advance knowledge of Scripting tools (Python/Perl/Shell/HTML/PHP)
  • Knowledge of federal & compliance regulations e.g. SOX, PCI & CPNI
  • Familiarity with load balancers (ex – A10, F5), firewalls (ex – CheckPoint), Venafi, MDM (ex - Mobile Iron), Cloud (ex - AWS, Azure), Malware Protection (ex -FireEye), Advanced Persistent Threats (ex - Damballa), Privileged Accounts (ex – CyberArk), SIEM (ex – ArcSight), Log & Event (ex – Splunk), Intrusion IDS/IPS (ex – Symantec) , Cloud Platform (ex – PCF, Docker), Scanning (ex – Qualys), AppSec (ex - Veracode)
Job Responsibility
Job Responsibility
  • Leads security, compliance, and risk assessments on projects throughout project lifecycle
  • Improves process efficiency by creating and implementing creative and sustainable changes to existing deployment methodologies
  • Leads the identification of security needs & recommends plans/resolutions
  • Implements, tests & monitors info security improvements
  • Maintains transparency inside & outside of information security at the People management level
  • Communicate with groups such as application support, engineering ops, finance, privacy, risk management, etc
  • Leads information security policy lifecycle throughout, including intake, creation, review, approval, implementation, publishing, communication & maintenance
  • Implements security projects driven by groups both internal and external to info security
  • Mentors peers and junior team members in security technologies, enterprise solution design and facilitation and effective customer interaction
  • Experience with implementation of various threat modeling approaches pertaining to one or more of the following STRIDE, PASTA, TRIKE, ATTACK TREE, DREAD, KILL CHAIN, CAPEC, Mobile Application threat model, Cyber Threat Tree, and data flow diagram
What we offer
What we offer
  • Competitive base salary and compensation package
  • Annual stock grant
  • Employee stock purchase plan
  • 401(k)
  • Access to free, year-round money coaches
  • Medical, dental and vision insurance
  • Flexible spending account
  • Paid time off
  • Up to 12 paid holidays
  • Paid parental and family leave
  • Fulltime
Read More
Arrow Right

Information Technology (IT) Sr Auditor

The Information Technology (IT) Senior Auditor is an intermediate level role res...
Location
Location
Mexico , Ciudad De Mexico
Salary
Salary:
Not provided
https://www.citi.com/ Logo
Citi
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 5-8 years of relevant experience
  • Related certifications (CPA, ACA, CFA, CIA, CISA or similar) preferred
  • Effective verbal and written communication and negotiation skills in English
  • Subject matter expertise regarding audit technology’s application
  • Effective project management skills
  • Effective influencing and relationship management skills
  • Demonstrated ability to remain unbiased in a diverse working environment
  • Effective presentation skills to leading meetings and present to executive leaderships
  • Effective problem-solving skillset
Job Responsibility
Job Responsibility
  • Perform moderately complex audits including drafting audit reports, presenting issues to the business, and discussing practical solutions
  • Draft audit reports and present issues to the business while discussing practical cross-functional solutions
  • Complete assigned audits within budgeted timeframes, and budgeted costs
  • Monitor, assess, and recommend solutions to emerging risks
  • Contribute to the development of audit processes improvements, including the development of automated routines
  • Apply internal audit standards, policies, and regulations to provide timely audit assurance and influence audit scope
  • Develop effective line management relationships to ensure strong understanding of the business
  • Experience in testing access security controls, change management controls, computer operations, automated controls, and IT dependencies (such as system interfaces, key reports)
  • Has the ability to operate with a limited level of direct supervision
  • Can exercise independence of judgement and autonomy
What we offer
What we offer
  • Equal opportunity employer
  • Global benefits
  • Accessibility support
  • Fulltime
Read More
Arrow Right

Chief Information Security Officer

We are seeking an experienced Chief Information Security Officer to lead our inf...
Location
Location
United Kingdom , London
Salary
Salary:
Not provided
sokin.com Logo
Sokin
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 10+ years in information security with 5+ years in senior security leadership roles
  • Experience in regulated financial services (payments, banking, or fintech)
  • Track record of building and leading security teams in scale-up environments
  • Experience with FCA regulation, PCI-DSS compliance, and financial services audits
  • Hands-on experience with security incident response and crisis management
  • Deep knowledge of AWS security services (GuardDuty, Security Hub, WAF, KMS, CloudTrail, Config)
  • Experience with containerised environments (EKS/Kubernetes) and serverless security
  • Strong understanding of network security, zero trust architecture, and micro-segmentation
  • Proficiency with SIEM platforms (Splunk, Datadog Security, or equivalent)
  • Knowledge of application security tools: Wiz, SonarQube, Burp Suite, OWASP ZAP
Job Responsibility
Job Responsibility
  • Define and execute the enterprise information security strategy aligned with business objectives
  • Establish and maintain the Information Security Management System (ISMS) to support constant certification readiness with PCI DSS, ISO 27001 and SOC2
  • Own security policies, standards, and procedures across the organisation
  • Report to the Board and senior leadership on security posture, risk exposure and programme maturity
  • Manage security budget and resource allocation
  • Lead enterprise security risk assessments and maintain the infosec item on the risk register
  • Ensure compliance with FCA operational resilience requirements and SYSC guidelines
  • Maintain PCI-DSS Level 1 compliance across payment processing infrastructure
  • Oversee GDPR, UK Data Protection Act, and international privacy compliance
  • Manage relationships with external auditors, penetration testers, and regulatory bodies
What we offer
What we offer
  • Competitive salary and equity participation
  • Hybrid working with flexibility
  • Private healthcare
  • Pension contribution
  • Professional development budget
  • Opportunity to shape security strategy at a high-growth fintech
Read More
Arrow Right
New

Senior Information Security Auditor

The Senior Information Security Auditor is responsible for leading internal audi...
Location
Location
Spain , Barcelona
Salary
Salary:
Not provided
nttdata.com Logo
NTT DATA
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Strong background in ISO standards and GDPR
  • At least 5 years of experience in information security or IT audit roles
  • Excellent communication skills
  • Excellent analytical skills
Job Responsibility
Job Responsibility
  • Leading internal audits
  • Ensuring compliance with security standards
  • Mentoring junior auditors
Read More
Arrow Right

Senior GRC Analyst

We are seeking an experienced Senior Governance, Risk, and Compliance (GRC) Anal...
Location
Location
United States , Chicago
Salary
Salary:
90000.00 - 130000.00 USD / Year
blumeglobal.com Logo
Blume Global
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 5+ years of hands-on experience in GRC, preferably with a focus on acquisition integration
  • Strong knowledge of regulatory compliance requirements, risk management frameworks, including ISO 27001, NIST
  • Experience with SOC1/2, GDPR, and privacy frameworks
  • Proficiency in information security tools, techniques, and controls
  • Experience with metrics and KPIs to measure and track information security risk
  • Ability to develop policies, standards, and guidelines
  • ISO27001:2022 Lead Implementer and lead auditor certifications are a must
  • CISA, CISM, CISSP, or CRISC certifications are desirable
  • Experience with GRC tools, such as Vanta, Archer, ServiceNow Risk modules is highly desirable
  • Exposure to CMMC/FedRAMP is highly desirable
Job Responsibility
Job Responsibility
  • Acquisition Assessment: Collaborate with cross-functional teams to assess the GRC landscape of newly acquired companies, identifying gaps and alignment opportunities
  • Integration Planning: Develop comprehensive integration plans tailored to each acquisition, ensuring alignment with the company's overarching GRC strategy
  • Risk Management: Evaluate and mitigate risks associated with integration processes, working closely with risk management teams
  • Policy and Procedure Harmonization: Bridge gaps between existing practices and those of acquired entities, harmonizing policies, procedures, and controls
  • Communication and Stakeholder Management: Effectively communicate integration plans and progress, fostering strong relationships with key stakeholders
  • Reporting and Documentation: Maintain accurate documentation of integration activities and generate insightful reports for senior management
  • Continuous Improvement: Identify areas for improvement and drive enhancements to the integration process
  • Customer Security Questionnaire Support: Collaborate with various teams to ensure accurate and comprehensive responses to customer security questionnaires
  • Fulltime
Read More
Arrow Right
Jobs by Category
Art and Entertainment Jobs Banking Jobs Call Center Jobs Construction Jobs Consulting Jobs Customer Service Jobs Education Jobs Energy Jobs Finance Jobs Gastronomy Jobs Health and Beauty Jobs Hospitality and Tourism Jobs Human Resources Jobs Insurance Jobs IT - Administration Jobs IT - Software Development Jobs Legal Jobs Logistics Jobs Manufacturing Jobs Marketing, Digital Marketing, SEO, SEM Jobs Media Jobs Nursing Jobs Office Administration Jobs Pharmacy Jobs Physical Work Jobs Public Relations Jobs Public Sector Jobs Purchasing Jobs Quality Control Jobs Real Estate Jobs Research and Development Jobs Sales Jobs
Job Positions Jobs by Country
United States Jobs United Kingdom Jobs India Jobs Canada Jobs Australia Jobs Germany Jobs Ireland Jobs Poland Jobs
Company
Blog About Us Contact
Follow Us
Facebook
X (Twitter)
LinkedIn
Instagram
CrawlJobs Group
ITFlashcards AllDevBlogs
© 2026 CrawlJobs Ltd. All Rights Reserved
Terms & Conditions Privacy Policy