Location: On-site for first 4-6 weeks, then Remote
Duration: 6+ months
Start Date: ASAP
We are seeking an experienced OT Security Auditor to assist a client with a critical backlog of remediation on the OT side as they work towards ISO 27001 and TISAX certifications. This is a contract opportunity with an expected duration of 6+ months (strong possibility of extensions), starting with a 4-6 week on-site onboarding before transitioning to remote work.
Key Responsibilities:
ISO 27001 Compliance: Leverage your deep knowledge of ISO 27001 to support the development and implementation of Information Security Management Systems (ISMS), including risk assessment methodologies and security controls.
Risk Management: Identify, assess, and manage OT-related risks in compliance with ISO 27001 standards.
Remediation Documentation: Document remediation efforts related to compliance and regulatory frameworks. Ensure clear and actionable steps are outlined.
Audit and Gap Analysis: Conduct compliance audits, perform gap analyses, and provide recommendations for remediation to align with ISO 27001 and TSAX standards.
Policy and Procedure Development: Draft, refine, and implement information security policies and procedures in accordance with ISO 27001 requirements.
Project Management: Coordinate remediation efforts across multiple stakeholders, track progress, and ensure timely completion of tasks to meet project goals and certification timelines.
Technical and IT Security: Provide technical expertise in areas such as encryption, access control, network security, and vulnerability management to create effective remediation strategies.
Required Skills & Experience:
ISO 27001 Expertise: Demonstrated experience in ISO 27001 standards, including ISMS, risk assessments, and controls.
Risk Management Experience: Strong background in identifying and managing risks in OT environments.
Remediation Documentation: Proven ability to document and manage remediation efforts, including policy and procedure development.
Compliance and Regulatory Knowledge: In-depth understanding of regulatory frameworks and industry standards related to OT environments.
Audit & Gap Analysis: Experience in performing compliance audits and gap analyses to support certifications.
Project Management: Strong project management skills to coordinate remediation efforts and ensure alignment across teams.
Technical Security Knowledge: Familiarity with encryption, network security, access control, and vulnerability management.
Contract Details:
On-site Requirements: Candidates must be available to work on-site for the first 4-6 weeks to ramp up, with remote work available afterward.
Duration: 6+ months with potential for extension.
Please share your current resume if you are interested in being considered for this role. Thank you for your time!