Senior Information Security / Cyber Security Auditor (Accreditation)

• Responsible for the conduct of the day to day of accreditation services.
  
• Maintain detailed and organized records of the accreditation process, ensuring accuracy and completeness.
  
• Ensuring that the highest standards of competence and impartiality are maintained, and that consistency is achieved across accreditation activities;
  
• Undertake compliance activities against security standards.
  
• Operational role, to manage national accreditation scheme applications.
  
• Document observations/findings in such a manner that they are clearly understandable and traceable and are based on objective evidence.
  
• Develop and maintain accreditation procedures and required tools based on National Information Security Compliance framework.
  
• Maintain impartiality, confidentiality and to declare any potential conflicts of interest that might jeopardize an objective assessment as required.
  
• Perform periodic surveillance accreditation assessment on Third parties to monitor and review compliance.
  
• Develop measurement and compliance mechanisms & tools to monitor improvements.
  
• Knowledge of various international standards, regulation, and best practices, (ISO27001, OWASP, PTES, SOC CMM etc.) and implementation experience against at least one.
  
• Knowledge of Local Laws & Regulations in different sectors: Cybercrime, PDPPL, eCommerce, etc.
  
• Knowledge about national cyber security standards and frameworks (NIA, CSF…)
  
• Stay up to date with the latest developments in security, emerging threats, and evolving technology to ensure the accreditation process remains relevant.
  
• Manage the external communication during the assessment: from the application till the issue of decision.
  
• Act as escalation point of contact for accreditation issues/requests.
  
• Team player who collaborates with the team to maintain, improve the accreditation program.
  

• Bachelor’s degree in Computer Science, Information Technology, Information Systems, Cybersecurity, or equivalent.
  
• Minimum 12 years of experience in Information Security, Cybersecurity, Risk Assessment, or Assurance.
  
• Hands-on experience in information security auditing, accreditation, or cybersecurity management.
  
• Experience in cybersecurity consulting or implementation aligned with national/international standards is an advantage.
  

Certifications (Preferred):

• NIA Certified Auditor, CISSP, CISA, CISM, ISO 27001 Lead Auditor or equivalent.
  

Technical Skills:

• Strong knowledge of cybersecurity frameworks and standards (ISO 27001, NIST, NIA, OWASP, PTES, SOC-CMM, etc.).
  
• Understanding of accreditation standards (ISO/IEC 17011, ISO/IEC 17025) and certification processes.
  
• Experience in risk assessment and audit methodologies.
  
• Knowledge of national cybersecurity laws and regulations (e.g., Cybercrime laws, data protection, eCommerce regulations).
  
• Strong awareness of third-party audit and certification practices.
  
• Ability to assess security controls and compliance against formal schemes objectively.
  

Core Skills:

• Strong analytical thinking and problem-solving abilities.
  
• Excellent technical report writing and documentation skills.
  
• Ability to communicate clearly with technical and senior executive stakeholders.
  
• Experience in delivering workshops, training, or knowledge-sharing sessions.
  
• Strong attention to detail and ability to work under pressure and tight deadlines.
  

Behavioral Competencies:

• Strong teamwork and collaboration skills.
  
• High level of integrity, impartiality, and professionalism.
  
• Ability to manage multiple stakeholders and competing priorities.
  
• Strong interpersonal and communication skills.
  
• Proactive, self-driven, and able to work independently with minimal supervision.