ISO 9001 Lead auditor (PTDE)

At TUV SUD we are passionate about technology. Innovations impact our daily lives in countless ways, and we are dedicated to being a part of that progress. We test, we audit, we inspect, we advise. We never stop challenging ourselves for the safety of society and its people. We breathe technology, we strive for professional excellence, and we leave a mark. We take the future into our hands. We are TUV SUD.

• 
  

  Lead third-party audits of Information Security Management Systems (ISMS) based on ISO/IEC 27001, in compliance with ISO/IEC 17021-1 and TUV SUD procedures.

  
  
• 
  

  Plan audit scope, conduct risk-based audit activities, chair opening and closing meetings, and manage interactions with client representatives.

  
  
• 
  

  Evaluate policies, controls, risk assessments, incident response, business continuity, and compliance with applicable legal and regulatory information security requirements.

  
  
• 
  

  Lead audit teams, assign responsibilities, and ensure audit findings are consistent, objective, and well-documented.

  
  
• 
  

  Identify and classify nonconformities, verify corrective actions, and make certification recommendations.

  
  
• 
  

  Prepare detailed audit reports aligned with TUV SUD's quality system and client-specific requirements.

  
  
• 
  

  Participate in internal calibration, witness audits, and continual improvement activities.

  
  
• 
  

  Contribute to the training and development of junior auditors and technical reviewers.

  
  

• 
  

  Bachelor's degree in information technology, cybersecurity, computer science, engineering, or related field.

  
  
• 
  

  At least 8 years of professional experience, including minimum 3 years of auditing or implementing ISO/IEC 27001.

  
  
• 
  

  IRCA-registered ISO/IEC 27001 Lead Auditor certification is mandatory.

  
  
• 
  

  Proven experience conducting third-party ISMS audits for a recognized certification body.

  
  
• 
  

  Strong knowledge of risk assessment methodologies, information security controls (Annex A), and regulatory frameworks (e.g., GDPR, HIPAA, NIST, COBIT).

  
  
• 
  

  Excellent report writing, communication, and stakeholder management skills.

  
  
• 
  

  High standards of ethics, impartiality, and professionalism.

  
  
• 
  

  Fluent in English; other languages are a plus.

  
  
• 
  

  Willing to travel frequently to conduct audits on-site.

  
  

• 
  

  Exposure to leading global clients and industries.

  
  
• 
  

  Opportunities for professional development and calibration participation.

  
  
• 
  

  A framework that emphasizes impartiality, professionalism, and continuous improvement.

  
  

• 
  

  This is a subcontractor role.

  
  
• 
  

  Frequent travel is required to perform audits on-site.

  
  

Equal Opportunity Employer - Disability and Veteran

TUV SUD America, Inc. is an equal opportunity, affirmative action employer and considers qualified applicants for employment without regard to race, color, creed, religion, ancestry, marital status, genetics, national origin, sex, sexual orientation, gender identity and expression, age, physical or mental disability, veteran status and those laws, directives, and regulations of Federal, State, and Local governing bodies or agencies. We participate in the E-Verify Employment Verification Program.