Our Group Information Assurance function is responsible for the security management of Computacenter’s information assets and those of our Managed Service customers.
Our mission statement is:
To facilitate the identification and operation of all applicable requirements to security compliance, safeguarding valued and valuable information. We work in collaboration with the business to achieve strategic objectives by driving the adoption of best practice methodologies, whilst focusing on continual improvement to enhance our customer experience.
Continued growth means we are looking to add to our team. We have a fantastic opportunity for you to join us at Computacenter as a Group Lead Auditor.
Working as a Group Lead Auditor you will effectively perform and manage the delivery of the internal audit programme across respective business unit; in line with the business and certification requirements to International Standards, Industry Best Practice Frameworks and aligned with. Businesses policies, processes, and procedures. To ensure the effective delivery of internal/customer and supplier audit requirements.
We are a company where people matter. We are diverse, flexible, and open. We are family friendly, supportive and offer flexible hybrid working. We have a can-do attitude, and we aim to support and grow our Computacenter family in whichever direction they choose to go, be that up or to a completely new part of the business.
Join us at Computacenter and you’ll feel right at home in an environment where you can work with freedom and flexibility in a team that is open, supportive and always on hand to help -as if they were family.
What you’ll do
- Takes accountability and acts as a single point of contact for the operation and application of an effective ISO Audit Programme in accordance with published standards and frameworks across aligned Group Business Unit (GBU)
- Understand GBU Risks and provide support through the audit program that risks have been mitigated appropriately (effective controls)
- Continually improving our management systems with aligned GBU to ensure ongoing conformance
- Takes accountability for the aligned GBU in maintaining and/or achieve its ISO certifications with our aligned Registered Certified Body (RCB), where required
- Establishes productive relationships at Senior management levels within GBU to build and maintain customer relationships
- Understand the strategy of the aligned GBU and their major projects to ensure effective audit programme
- Collaboration with GIA Group Business Information Security Officer (GBISO) to ensure cohesive approach to our certification strategy is maintained
- Ensures liaison and provision of audit support with GIA GBISO on any issues relating to the GBU
- Liaise with external assessment parties and/or customer auditors, where required to ensure effective assessments or customer audits take place relevant to the GBU
- Participate in Industry External Audits for the relevant GBU e.g Archilles PCI-DSS
- Ensure objectivity and impartiality is always maintained
- Provides consultancy role within specialist areas to team and relevant business area reviewing for any changes affecting the organisation
What you’ll need
- Group Lead audit - Ability to Lead Audits and work on multiple management systems or other industry standards e.g ISO27001, ISO20000, ISO9001, ISO14001, ISO18001/ISO45001, PCI-DSS, TISAX, HDS. Must have as a minimum 2 Lead auditor qualifications including ISO 27001 and ISO 9001.
- Hold one or more - CISMP (BCS Certification in Security Management Principals) CISA (ISACA Certified Information Systems Auditor) Certificate in ISO20000 Practitioner / Consultant
- Proven experience of leading audits across geographies
- Understanding of ITIL framework
- Working knowledge of legislative & regulatory requirements including GDPR
- Can interpret and apply the requirements of the relevant management system(s) to the business in relation to their operational processes and procedures
- Plan and organise own workload
- Good administrative experience, attention to detail, ensures accuracy of data, provides data for reporting and processing of information
- Ability to build relationships at all levels within the aligned GBU and influence senior management on the compliance of the management system requirements
- Strong orientation in commercial and organisational business practices and procedures
- Strong knowledge of Information Security frameworks and standards such as ISO, PCI DSS, ITIL etc
- Management of audit findings through to effective resolution
- Ability to identify and drive best practice requirements
- Willingness to self-development of own knowledge according to market, customer and CC requirements
- Ability to work from the locations where Computacenter’s internal customers and ISP are based
- Ability to attain relevant security clearance
- Occasional business travel required
