Client Manager / Auditor (ISMS)

Great that you're thinking about a career with BSI!

Purpose of the role

• As the face of BSI, the role of the information security auditor is to work closely with BSI clients across New Zealand to help them improve their performance by assessing their Information Security Management Systems and processes against Information security techniques – Information security management systems requirements ISO/IEC 27001 and other relevant standards. At the end of each assessment, the Client Manager compiles an assessment report and presents this to the client.

Key Responsibilities & Accountabilities:

• Ensure that value is added to customers and their business/organisation through the assessment of their information security management systems and processes against various international information security standards requirements.

• Assessment role includes auditing against the Annex A control objectives and controls in ISO 27001:2013 and ISO 27001:2022 such as information security policies, organisation of information security, human resource security, asset management, information classification, media handling, access control, user access management, system and application access control, cryptography, physical and environmental security, operational security, communications security, system acquisition, development and maintenance, security in development and support processes, supplier relationships, information security incident management, information security business continuity and compliance with legal and contractual obligations

• Prepare information security assessment reports and deliver findings with relation to IT security documentation, policies, procedures, and information security controls to ensure client understanding of the assessment decision and clear direction to particular items of corrective action where appropriate.

• Recommend the issue, re-issue or withdrawal of ISO 27001 certificates, and report recommendations in accordance with BSI policy, procedures, and prescribed time frame.

• Continually enhance & uphold the reputation and perception of BSI through excellent planning, delivery, report writing and day-to-day interactions with customers and other key stakeholders.

• Demonstrate commercial acumen and real added value when providing feedback to clients.

• Continually demonstrate a professional and engaging approach whilst assessing clients, lead assessment teams as required ensuring that team members are adequately briefed so that quality of service is maintained and that effective working relationships are sustained both with Clients and within the team.

• Establish and develop an effective partnership, which secures the commercial relationship and encourages opportunities for business development and increased client satisfaction with clients in your portfolio.

• Provide accurate and prompt information to support services, working closely with them to ensure that client records are up to date and complete and that all other internal information requirements are met.

• Plan/schedule workloads to make the best use of your own time and maximize revenue-earning activity.

• Coach colleagues as appropriate, especially where those members are inexperienced assessors or unfamiliar with clients' business/technology, and assist in the induction and coaching of new colleagues as requested.

• Maintain and enhance appropriate professional qualification status in relevant disciplines.

• Be an active member of the Operational Delivery Team and proactively engage with peers and key stakeholders to ensure continual improvement in line with the BSI standards of Assessor Excellence putting the customer first.

Key Performance Indicators

• Be the BSI Brand Ambassador

• Work with scheduling & planning to ensure your work is booked 3 to 6 months ahead. Book the next visit at the current audit if possible

• Produce high-quality, accurate, and professional client reports

• Complete the client report before you leave the site for 50% of audits or within 5 days of the audit end date for 100% of audits and upload the eReport

• Discuss Driving Force opportunities in relation to BSI products and services with clients. Leads of 2 per month are required to be entered into the Point Global system

• Be 100% productive and aim to exceed your delivery target days per year

• Maintain and gain more T/P/I codes – own your own development

• Be part of the BSI team

• Zero complaints from clients managed by you

Our Excellence Behaviours: Client-centric, Agile, Collaborative. These three behaviours represent how we do things at BSI. They help us ensure that BSI is a great place to work and a highly successful business.

BSI is conducting face-to-face interviews where appropriate and possible. If you are invited to a face-to-face interview but feel more comfortable with conducting the interview virtually, please speak to a member of our recruitment team.