Job Description

1. Position Details

1.1. Position

Lead Auditor/ Lead Auditor - ISMS/ Cybersecurity

1.2. Office / Department

CER

1.3. Reporting to

Certification Manager

1.4. Key Working Relationship

Certification Manager
Technical Manager
Training Manager
Scheduler
CER Coordinator

2. Minimum Required Qualifications

2.1. Specialty

Qualification and work experience as Lead Auditor in ISO/IEC 27001:2022, ISO/IEC 20000-1:2018, ISO/IEC 27001:2019, ISO 22301:2019 (Minimum 2 years of work with Certification Body)

2.2. Education

The applicant shall have completed secondary education (as part of educational system between primary or elementary stage, and university or similar educational institute). Graduate / Diploma in Engineering discipline or equivalent in Engineering (Computer Science, Information Techology, Cybersecurity)

2.3. Training

IRCA Registered Lead Auditor Training in all the Management System standards for the position.



2.4. Technical knowledge

Sector specific knowledge with related to the management system qualification is required.



2.5. Experience

The candidate should have at least 4 years total work experience in IT & Cybersecurity field

3. Responsibilities / Authorities / Accountabilities

3.1. Primary FunctionsPlanning and performing audits in the capacity as Auditor/Lead Auditor Preparation of audit plan and audit report in a timely manner and working within Key performance indicators. Participate and contribute as required for the review of new standards. Ability to handle the clients in a diplomatic manner

3.2. Technical ExpertiseTechnical expertise in the fields of Engineering, Science and Technology is required as per the sector specific requirements. Review of applicable contractual requirements

3.3. Business RequirementsHaving adequate communication and leadership skills Ensuring quality of Audit according to ISO 17021 requirements Interpretation of results of auditing

3.4. Customer FocusFocussed to meet the requirements of Customer satisfaction Develop trust and open communication with the client.

3.5. HSE RequirementsMaintain up-to-date awareness of Corporate HSE policy, procedures and practices Comply at all times with all applicable legal requirements, BV Dubai HSE Policies and procedures, client's HSE procedures and practices. Maintain personal work areas tidy and hazard free and report any deviation/fault/hazard immediately to the location manager/line manager/supervisor Report immediately any newly identified hazard and participate in devising suitable operational control to eliminate/minimize the pertinent risk. Report immediately any HSE incident and cooperate in investigation Take care of your own health and safety and that of people who may be affected by what you do (or do not do). Co-operate with others on health and safety, and not interfere with, or misuse, anything provided for your health, safety or welfare.
Communicate to their immediate manager any unsafe work practice or condition and opportunities for improvement of HSE practices. Comply with client's site specific HSE regulations. Comply at all times with all applicable legal requirements, BV Group HSE policies and procedures, clients HSE procedures and practices. Maintain up-to-date awareness of Corporate HSE policy, procedures and practices

4. Performance Monitoring

4.1. Continual Development

As per the MPMD process, on yearly basis.
Complete requirements for appropriate professional training in specified time frames.
Attend appropriate training courses/seminars/etc
Progress towards developing individual distinctive competence targets.

4.2. KPI's

Achieve production KPIs for auditors
Timely Submission of audit plans
Timely Submission of audit reports
Timely Closure of NCR
Ensuring customer satisfaction
Ensuring defect-free technical review outcome

4.3. Monitored By

CER Manager