ISO Audit Specialist
Posting Date: 1 May 2025
Function: Risk, Compliance and Assurance
Unit: Business
Location: UK Wide, United Kingdom
About the role
As our ISO Audit Specialist, you’ll lead audits across multiple ISO Standards servicing BT group (Openreach, Digital, Business, Networks, Corporate Units).
ISO standards directly impact our customers and non-compliance risks include loss of certification, customer confidence, contracts, reputation, and marketability. You’ll audit functions and sites across multinational organizations and major government contracts, ideally with experience in telecommunications or technology industries.
You will maintain ISO standards linked to BT Group Risks, such as ISO27001 for Cyber & Information Security, ISO22301 for Service Interruption, and ISO14001 for Major Contracts. Your role involves identifying and implementing actions to mitigate risks from non-compliance, with a strong understanding of technological controls and ISMS documentation, especially within ISO27001.
You will collaborate with diverse stakeholders internally and externally, providing assurance against ISO standards and internal controls to help BT retain ISO certifications.
Key responsibilities
* Planning, performing, and reporting on ISO internal audits, creating audit programs for 3-year certification cycles.
* Leading audit activities and delivering comprehensive audit reports.
* Tracking audit findings and ensuring appropriate mitigation and evidence are reviewed.
* Updating audit plans and strategies as needed throughout the year.
* Communicating audit results effectively to stakeholders.
* Analyzing trends in audit findings and reporting risks.
* Supporting the ISO Audit Manager by highlighting concerns timely.
* Contributing to the maintenance of the ISO Certificate database and audit universe.
Required experience and qualifications
* Lead Auditor qualification to ISO standards, primarily ISO27001, plus another ISO standard (e.g., ISO9001, ISO14001, ISO22301).
* Experience designing, implementing, and maintaining management systems (ISO 27001 preferred).
* Proven ability to lead audit programs in large, complex multinational organizations.
* Experience in telecommunications or technology industry auditing.
* Knowledge of IT security issues across various infrastructures.
* Professional certifications like CISA, CISM, or CISSP are preferred or in progress.
Skills required
* Certified Lead Auditor (essential)
* Data analysis and reporting skills
* Organizational and planning skills
* Effective communication and stakeholder engagement
* Analytical thinking
Benefits
* 10% annual bonus
* x4 salary life assurance
* Flexible benefits including Cycle to Work, Healthcare, Season Ticket Loan, Electric Vehicle Salary Sacrifice
* 25 days annual leave plus bank holidays, increasing with service
* Family leave policy from January 2025
* Enhanced women’s health and menopause support
* Private virtual GP services
* Carer’s leave, training, share schemes, discounts, and more
We encourage flexible working arrangements and are committed to diversity and inclusion. If you’re interested but don’t meet every qualification, please apply—you might be the perfect fit for this or other roles.
#J-18808-Ljbffr