ISO 27002 Implementer / Information Security Consultant
Job Summary
We are seeking an experienced ISO 27002 Implementer to design, implement, and maintain security controls in line with ISO/IEC 27002 best practices. The role involves working closely with stakeholders to strengthen our Information Security Management System (ISMS), ensure compliance with ISO 27001 certification requirements, and embed security into daily operations.
Key Responsibilities
* Implement and operationalize ISO 27002 security controls across the organization.
* Support the maintenance and continuous improvement of the ISMS (aligned with ISO 27001).
* Conduct risk assessments and recommend appropriate security measures.
* Develop and update security policies, standards, and procedures.
* Collaborate with IT, business, and compliance teams to ensure proper implementation of security controls.
* Perform security awareness and training activities.
* Support internal and external audits, including remediation of identified gaps.
* Monitor effectiveness of implemented controls and suggest improvements.
Required Skills & Qualifications
* Proven experience implementing ISO 27002 or ISO 27001 controls.
* Strong knowledge of information security frameworks, policies, and risk management.
* Hands-on experience with security governance, compliance, and audit support.
* Excellent communication skills and ability to collaborate with technical and non-technical stakeholders.
* Certifications such as ISO 27001 Lead Implementer, ISO 27002 Implementer, CISM, or CISSP are a plus.
Profile
* Analytical mindset with attention to detail.
* Proactive and able to work independently.
* Strong organizational skills with the ability to manage multiple priorities.