POSITION : AUDITOR / LEAD AUDITOR ITC - To be based in RINA Simtex Bucharest REPORTING LINE : - Reports to Certifications Manager KEY DUTIES Performing 3rd part audit connected to ICT schemes, in accordance with RINA requirements : Information Security Management (ISO / IEC 27001);
Service Management (ISO / IEC 20000); Data Storage (for example AgID). Preparing audit reports and delivering findings to clients to ensure client understanding of the assessment decision and clear direction to particular items of corrective action where appropriate;
Recommending the issue, re-issue or withdrawal of certificates, and reporting recommendations in accordance with RINA policy, procedures and prescribed time frame;
Leading audit teams as required ensuring that team members are adequately briefed so that quality of service is maintained and that effective working relationships are sustained both with Clients and within the team;
Establishing and developing an effective partnership, which secures the relationship with the clients in your portfolio;
Providing accurate and prompt information to support services, working closely with them to ensure that client records are up to date and complete and that all other internal information requirements are met;
Planning / scheduling workloads to make best use of own time and maximize revenue-earning activity; Maintaining and developing audit skills and technical and management system standards knowledge.
DESIRED SKILLS AND EXPERIENCE Diploma or degree in ITC subjects; Lead Auditor ISO / IEC 27001 o ISO / IEC 20000 (40 hours course);
Professional experience (minimum 4 years), gained in the last 10 years, in technical activities concerning Information Technologies a previous experience (minimum 2 years) in information security;
Preferably professional certification / inclusion in ICT registers : ITIL, CRISC, CISA, CISM, CISSP, LA ISO / IEC 27001, ISO / IEC 20000-1, ISO 22301, CEH.
Demonstrates interpersonal skills with the proven ability to communicate effectively at all levels within an organization;
Proven negotiation skills to be able to explain audit findings to organization’s management; Learning ability to keep up with changes to business, industry, management thinking and developing assessment styles Strong written communication skills able to formulate clear, concise and professional reports, explaining technical issues, within required timeframes.
Self-organisation skills / self-motivated, able to manage own workload to maximize self-effectiveness Fluent knowledge of English Good knowledge of MS Office Ability to manage and negotiate as a problem solver Excellent customer orientation Reliable and committed MP2