|
At TUV SUD we are passionate about technology. Innovations impact our daily lives in countless ways, and we are dedicated to being a part of that progress. We test, we audit, we inspect, we advise. We never stop challenging ourselves for the safety of society and its people. We breathe technology, we strive for professional excellence, and we leave a mark. We take the future into our hands. We are TUV SUD.
Your Tasks
Lead and execute third-party audits of Information Security Management Systems (ISMS) and Privacy Information Management Systems (PIMS) in line with ISO/IEC 27001, ISO/IEC 27701, ISO/IEC 17021-1, and TUV SUD procedures.
Plan audit scope and objectives, conduct risk-based audit activities, and chair opening and closing meetings with client stakeholders.
Evaluate information security policies, controls, risk assessments, incident response, business continuity, and compliance with applicable legal and regulatory requirements (e.g. GDPR, HIPAA).
Lead audit teams, assign responsibilities, and ensure audit findings are consistent, objective, and clearly documented.
Identify and classify nonconformities, verify corrective actions, and provide well-founded certification recommendations.
Prepare structured, detailed audit reports that meet TUV SUD quality system standards and client requirements.
Contribute to calibration sessions, witness audits, and continuous improvement activities.
Support the development and training of junior auditors and technical reviewers.
Your Qualifications
Must-have:
Bachelor's degree in Information Technology, Cybersecurity, Computer Science, Engineering, or a related field.
At least 8 years of professional experience, including a minimum of 3 years auditing or implementing ISO/IEC 27001.
IRCA-registered ISO/IEC 27001 Lead Auditor certification.
Demonstrated experience conducting third-party ISMS audits for an accredited certification body.
Solid understanding of risk assessment methodologies, Annex A controls, and regulatory frameworks such as GDPR, HIPAA, NIST, COBIT.
Strong report writing, communication, and stakeholder management skills.
High standards of ethics, impartiality, and professionalism.
Excellent command of English, both written and spoken.
Nice-to-have:
Proficiency in additional languages.
Experience auditing against ISO/IEC 27701.
Familiarity with industry-specific standards and privacy laws in different regions.
What We Offer
The opportunity to work with a globally recognized certification body.
Exposure to diverse industries, clients, and regulatory frameworks.
Professional development through training, calibration, and continual improvement activities.
Collaboration with international colleagues and technical experts.
A culture that values impartiality, quality, and professional growth.
Additional Information
This is a subcontractor position.
Frequent domestic and international travel is required.
We welcome applications from people of all backgrounds, experiences, and perspectives.
Equal Opportunity Employer - Disability and Veteran TUV SUD America, Inc. is an equal opportunity, affirmative action employer and considers qualified applicants for employment without regard to race, color, creed, religion, ancestry, marital status, genetics, national origin, sex, sexual orientation, gender identity and expression, age, physical or mental disability, veteran status and those laws, directives, and regulations of Federal, State, and Local governing bodies or agencies. We participate in the E-Verify Employment Verification Program.
|
TUV SUD America
Sep 25, 2025