Internal ISO Auditor
3 months ago
**Who are we?**
First Rail is one of the UK's most experienced rail operators, carrying more than 345m passengers across Three franchises (Great Western Railway, South Western Railway, and Avanti West Coast) and our open access operators (Hull Trains and Lumo). We operate all types of passenger railways - intercity, commuter, regional and sleeper services.
We are continually seeking ways in which to improve the experience for our customers. Our Customer Contact Centre will therefore use industry leading systems to deliver excellent customer service and ensure that requests are speedily and effectively resolved.
Our delivery teams are responsible for a variety of customer support matters which range from processing customer compensation claims to complaints handling, group bookings and assisted/special services, quality assurance and fraud prevention and detection and retails sales to individuals and corporates.
**First Customer Contact** is part of FirstGroup, the largest rail operator in the UK and second largest bus operator in the UK outside London. FirstGroup operates services throughout the UK and Ireland, with over 30,000 employees providing services that make travel smoother and life easier. FirstGroup works hard to reduce its impact on the environment, introducing cleaner and more environmentally responsible methods of transport.
**About the team**
The Business integrity and Compliance Team are responsible for all Fraud control, GDPR and ISO compliance within our organisation.
**About the job**
Reporting to the Counter Fraud & Privacy Manager, this role will be responsible for maintaining compliance with ISO27001 standard. The role will collaborate with teams across the organisation to ensure compliance to the ISO standards, clauses and controls whilst ensuring the education of our colleagues, internal auditing, corrective actions and managing these through to completion.
The role involves conducting regular checks and audits to validate the effectiveness of the ISMS which involves managing the Legal Register, Risk Registers, and Corrective Actions Log. The goal is to ensure that the IMS continues to provide value to the organization and supports ongoing certification efforts. - The CO will also support the introduction of certifications as needed by the organisation e.g. ISO9001, ISO27701, PSI DSS
**Your main responsibilities will be**:
- Ensure the organisation adheres to ISO27001.
- Foster a culture of information security awareness and compliance throughout the organisation.
- Work with the L&D teams to provide sign off to training materials pertaining to areas of responsibility to educate and inform our colleagues.
- Oversee the ISMS Information Security Management System, ensuring its continuous effectiveness and relevance within the organisation.
- Maintenance of the Corrective Actions Log, Risk Registers, Legal Register, ISO Objectives, and Performance Monitoring.
- Develop and maintain policies, procedures, and documentation to meet ISO 27001 requirements.
- Collaborate with operational and support teams, particularly IT, HR and Ops leads to support continuous improvement.
- Update the internal auditing schedule to provide governance to the process, whilst continually improving the process, documentation based on feedback and industry best practice.
- Support the arrangement of external audits, including preparing teams, coordinating dates and availability, and communicating relevant information.
- Generate detailed reports on audit findings, highlighting both best practices and areas for improvement.
- Identify the root causes of any non-conformances and develop improvement plans to address and rectify them.
- Support the implementation of corrective actions to prevent the recurrence of security incidents.
- Contribute to DSMC meetings, providing ISMS overview, progress update and present improvement opportunities.
- Support FCC in adopting any new relevant certifications as needed e.g. ISO9001, ISO27701, PSI DSS
**You'll need to be**:
- A strong communicator with good interpersonal skills
- A proactive problem solver who takes ownership when resolving issues
- Logical and methodical with a keen eye for detail
- Able to build strong relationships with internal and external stakeholders
- Excellent written and verbal communication skills
**As a minimum, you will need to have**:
- Experience of internal auditing.
- In-depth knowledge of ISO 27001 standard and its implementation or the methodology around ISO auditing and implementation.
- Strong understanding of information security principles, risk management, and compliance requirements.
- Experience in developing and implementing policies and procedures.
- Strong communication and interpersonal skills for training and awareness initiatives.
- Good knowledge of IT systems including MS suite and ability to adapt to bespoke CRM systems.
- Proactive 'problem resolver', owning and resolving issues; a self-starter who is results-d
-
Internal Auditor
3 months ago
Sheffield, United Kingdom First Customer Contact Ltd Full time**Internal ISO Auditor** **Your Role** You will be working within the Business integrity and Compliance Team here at First Customer Contact. The team are responsible for all fraud control, GDPR and ISO Compliance within our organisation. As our Internal ISO Auditor you will be responsible for maintaining compliance with IS027001 standard by collaborating...
-
Junior ISO Auditor
3 months ago
Sheffield, United Kingdom Insight Full time**Position Overview** The Associate ISO Auditor facilitates and ensures Insights ISO accreditations for quality, environmental, social and information security management systems across EMEA. The ISO Team are responsible for driving continous improvements to internal EMEA processes, procedures and systems to reduce operating costs and improve client...
-
Internal Auditor
4 days ago
Sheffield, Sheffield, United Kingdom Sheffield City Council HQ Full timeJob Title: Internal AuditorWe are seeking a highly motivated and detail-oriented Internal Auditor to join our team at Sheffield City Council HQ.About the Role:Conduct internal audits to ensure the Council's financial control framework is effective and efficient.Identify and assess risks to the Council's operations and provide recommendations for...
-
Internal Auditor
4 days ago
Sheffield, Sheffield, United Kingdom Sheffield City Council HQ Full timeJob Title: Internal AuditorWe are seeking a highly motivated and detail-oriented Internal Auditor to join our team at Sheffield City Council HQ.About the Role:Conduct internal audits to ensure the Council's financial control framework is effective and efficient.Identify and assess risks to the Council's operations and provide recommendations for...
-
Internal Auditor
2 days ago
Sheffield, Sheffield, United Kingdom Sheffield City Council HQ Full timeJob Title: Internal AuditorWe are seeking a highly motivated and detail-oriented Internal Auditor to join our Finance and Commercial Services Department at Sheffield City Council HQ.About the Role:Conduct internal audits to ensure the Council's financial control framework is effective and efficient.Identify and assess risks to the Council's operations and...
-
Internal Auditor
2 days ago
Sheffield, Sheffield, United Kingdom Sheffield City Council HQ Full timeJob Title: Internal AuditorWe are seeking a highly motivated and detail-oriented Internal Auditor to join our Finance and Commercial Services Department at Sheffield City Council HQ.About the Role:Conduct internal audits to ensure the Council's financial control framework is effective and efficient.Identify and assess risks to the Council's operations and...
-
Internal Auditor
7 hours ago
Sheffield, Sheffield, United Kingdom Sheffield City Council HQ Full timeJob Title: Internal AuditorWe are seeking a highly motivated and detail-oriented Internal Auditor to join our Finance and Commercial Services Department at Sheffield City Council HQ.About the Role:Conduct internal audits to ensure the Council's financial control framework is effective and efficient.Identify and assess risks to the Council's operations and...
-
Internal Auditor
3 hours ago
Sheffield, Sheffield, United Kingdom Sheffield City Council HQ Full timeJob Title: Internal AuditorWe are seeking a highly motivated and detail-oriented Internal Auditor to join our Finance and Commercial Services Department at Sheffield City Council HQ.About the Role:Conduct internal audits to ensure the Council's financial control framework is effective and efficient.Identify and assess risks to the Council's operations and...
-
Senior Internal Auditor and Risk Advisor
2 weeks ago
Sheffield, Sheffield, United Kingdom Royal Mail Full timeAbout the RoleWe are seeking a highly skilled and experienced Senior Internal Auditor and Risk Advisor to join our Global Audit & Risk team at Royal Mail. As a key member of our team, you will play a critical role in identifying, assessing, and mitigating risks across our operations.Key ResponsibilitiesDesign and execute risk-based internal audits to ensure...
-
Senior Internal Auditor and Risk Advisor
2 weeks ago
Sheffield, Sheffield, United Kingdom Royal Mail Full timeAbout the RoleWe are seeking a highly skilled and experienced Senior Internal Auditor and Risk Advisor to join our Global Audit & Risk team at Royal Mail. As a key member of our team, you will play a critical role in identifying, assessing, and mitigating risks across our operations.Key ResponsibilitiesDesign and execute risk-based internal audits to ensure...
-
Senior Internal Auditor
2 weeks ago
Sheffield, Sheffield, United Kingdom Royal Mail Full timeAbout the RoleWe are seeking a highly skilled Senior Internal Auditor to join our Global Audit & Risk team at Royal Mail. As a key member of our team, you will be responsible for identifying, planning, executing, and reporting on risk-based internal audits in line with the Audit Manual and best practice methodology.You will propose risk-based audits over...
-
Senior Internal Auditor
2 weeks ago
Sheffield, Sheffield, United Kingdom Royal Mail Full timeAbout the RoleWe are seeking a highly skilled Senior Internal Auditor to join our Global Audit & Risk team at Royal Mail. As a key member of our team, you will be responsible for identifying, planning, executing, and reporting on risk-based internal audits in line with the Audit Manual and best practice methodology.You will propose risk-based audits over...
-
Senior Internal Auditor and Risk Advisor
3 weeks ago
Sheffield, Sheffield, United Kingdom Royal Mail Group Full timeAbout the RoleThis is a challenging and rewarding opportunity to join the Global Audit & Risk team at Royal Mail Group as a Senior Internal Auditor and Risk Advisor. As a key member of the team, you will be responsible for identifying, planning, executing, and reporting on risk-based internal audits in line with the Audit Manual and best practice...
-
Senior Internal Auditor and Risk Advisor
3 weeks ago
Sheffield, Sheffield, United Kingdom Royal Mail Group Full timeAbout the RoleThis is a challenging and rewarding opportunity to join the Global Audit & Risk team at Royal Mail Group as a Senior Internal Auditor and Risk Advisor. As a key member of the team, you will be responsible for identifying, planning, executing, and reporting on risk-based internal audits in line with the Audit Manual and best practice...
-
Senior Internal Auditor and Risk Advisor
3 weeks ago
Sheffield, Sheffield, United Kingdom Royal Mail Full timeAbout the RoleWe are seeking a highly skilled and experienced Senior Internal Auditor and Risk Advisor to join our Global Audit & Risk team at Royal Mail. As a key member of our team, you will play a critical role in identifying, assessing, and mitigating risks across our operations.Key ResponsibilitiesDesign and execute risk-based internal audits to ensure...
-
Senior Internal Auditor and Risk Advisor
3 weeks ago
Sheffield, Sheffield, United Kingdom Royal Mail Full timeAbout the RoleWe are seeking a highly skilled and experienced Senior Internal Auditor and Risk Advisor to join our Global Audit & Risk team at Royal Mail. As a key member of our team, you will play a critical role in identifying, assessing, and mitigating risks across our operations.Key ResponsibilitiesDesign and execute risk-based internal audits to ensure...
-
Senior Internal Auditor
2 weeks ago
Sheffield, Sheffield, United Kingdom Royal Mail Group Full timeAbout the RoleThis is a challenging and rewarding opportunity to join the Global Audit & Risk team at Royal Mail Group as a Senior Internal Auditor - Risk Management Expert. As a key member of the team, you will be responsible for identifying, planning, executing, and reporting on risk-based internal audits in line with the Audit Manual and best practice...
-
Senior Internal Auditor
2 weeks ago
Sheffield, Sheffield, United Kingdom Royal Mail Group Full timeAbout the RoleThis is a challenging and rewarding opportunity to join the Global Audit & Risk team at Royal Mail Group as a Senior Internal Auditor - Risk Management Expert. As a key member of the team, you will be responsible for identifying, planning, executing, and reporting on risk-based internal audits in line with the Audit Manual and best practice...
-
Lead Internal Auditor and Risk Advisor
2 weeks ago
Sheffield, Sheffield, United Kingdom Royal Mail Group Full timeAbout the RoleWe are seeking a highly skilled and experienced Lead Internal Auditor and Risk Advisor to join our Global Audit and Risk team at Royal Mail Group. As a key member of our team, you will play a critical role in identifying, assessing, and mitigating risks across the organization.As a Lead Internal Auditor, you will be responsible for designing...
-
Lead Internal Auditor and Risk Advisor
2 weeks ago
Sheffield, Sheffield, United Kingdom Royal Mail Group Full timeAbout the RoleWe are seeking a highly skilled and experienced Lead Internal Auditor and Risk Advisor to join our Global Audit and Risk team at Royal Mail Group. As a key member of our team, you will play a critical role in identifying, assessing, and mitigating risks across the organization.As a Lead Internal Auditor, you will be responsible for designing...
