Senior Cybersecurity Accreditation Auditor

Overview

Key Responsibilities

• Responsible for the conduct of the day to day of accreditation services.
• Maintain detailed and organized records of the accreditation process, ensuring accuracy and completeness.
• Ensuring that the highest standards of competence and impartiality are maintained, and that consistency is achieved across accreditation activities;
• Undertake compliance activities against security standards.
• Operational role, to manage national accreditation scheme applications.
• Document observations/findings in such a manner that they are clearly understandable and traceable and are based on objective evidence.
• Develop and maintain accreditation procedures and required tools based on National Information Security Compliance framework.
• Maintain impartiality, confidentiality and to declare any potential conflicts of interest that might jeopardize an objective assessment as required.
• Perform periodic surveillance accreditation assessment on Third parties to monitor and review compliance.
• Develop measurement and compliance mechanisms & tools to monitor improvements.
• Knowledge of various international standards, regulation, and best practices, (ISO27001, OWASP, PTES, SOC CMM etc.) and implementation experience against at least one.
• Knowledge of Local Laws & Regulations in different sectors: Cybercrime, PDPPL, eCommerce, etc.
• Knowledge about national cyber security standards and frameworks (NIA, CSF…)
• Stay up to date with the latest developments in security, emerging threats, and evolving technology to ensure the accreditation process remains relevant.
• Manage the external communication during the assessment: from the application till the issue of decision.
• Act as escalation point of contact for accreditation issues/requests.
• Team player who collaborates with the team to maintain, improve the accreditation program.

Education & Experience

• Bachelor’s degree in Computer Science, Information Technology, Information Systems, Cybersecurity, or equivalent.
• Minimum 12 years of experience in Information Security, Cybersecurity, Risk Assessment, or Assurance.
• Hands-on experience in information security auditing, accreditation, or cybersecurity management.
• Experience in cybersecurity consulting or implementation aligned with national/international standards is an advantage.

Certifications (Preferred)

• NIA Certified Auditor, CISSP, CISA, CISM, ISO 27001 Lead Auditor or equivalent.

Technical Skills

• Strong knowledge of cybersecurity frameworks and standards (ISO 27001, NIST, NIA, OWASP, PTES, SOC-CMM, etc.).
• Understanding of accreditation standards (ISO/IEC 17011, ISO/IEC 17025) and certification processes.
• Experience in risk assessment and audit methodologies.
• Knowledge of national cybersecurity laws and regulations (e.g., Cybercrime laws, data protection, eCommerce regulations).
• Strong awareness of third-party audit and certification practices.
• Ability to assess security controls and compliance against formal schemes objectively.

Core Skills

• Strong analytical thinking and problem-solving abilities.
• Excellent technical report writing and documentation skills.
• Ability to communicate clearly with technical and senior executive stakeholders.
• Experience in delivering workshops, training, or knowledge-sharing sessions.
• Strong attention to detail and ability to work under pressure and tight deadlines.

Behavioral Competencies

• Strong teamwork and collaboration skills.
• High level of integrity, impartiality, and professionalism.
• Ability to manage multiple stakeholders and competing priorities.
• Strong interpersonal and communication skills.
• Proactive, self-driven, and able to work independently with minimal supervision.

Availability