Consultant, ISO Management Systems

Company Overview / Employee Value Proposition

Lloyd McGill is a management and sustainability consultancy and training services company specializing in management systems for International Standards (ISO) in Information Security, Data Privacy, Quality, Environmental, Occupational Health & Safety, Business Continuity, Carbon Emission and Management, and Sustainable business practices. We are a DPTM-certified organisation and an Approved consultancy service provider of Data Protection Trust Mark (DPTM) by IMDA. We provide a one-stop solution to help organizations achieve International Standard (ISO) Certification and add value by assisting them in achieving business excellence while improving business processes and productivity.

Job Summary

Provide expert consultancy and training services to clients to establish, implement, and maintain management systems aligned with ISO standards and data privacy requirements, driving certification readiness and business process improvements.

Responsibilities

• Lead consultancy projects to establish and maintain management systems in Information Security (ISO 27001), Data & Information Privacy, Business Continuity Management (ISO 22301), and Quality, Environmental, and Occupational Health & Safety (QEHS) standards
• Conduct comprehensive gap analyses to identify compliance and improvement areas for client management systems
• Perform internal audits to assess client readiness and compliance with relevant ISO and DPTM standards
• Design and deliver targeted training courses to prepare clients for certification assessments and enhance their management system capabilities
• Manage client expectations and project timelines independently to ensure successful delivery of consultancy and training services
• Interpret information security principles and controls to provide actionable recommendations and vulnerability assessments using appropriate tools
• Collaborate with clients to improve business processes and productivity through effective management system implementation
• Undertake additional assignments as required to support business objectives and client success

Required competencies and certifications

• Diploma, degree, or professional certifications in data and information privacy or cybersecurity
• Minimum 3 years of experience in management system implementation, audits, consultancy projects, and/or training
• Ability to work independently and manage projects and client expectations effectively
• Strong communication skills to interact professionally with clients
• Certified ISO Internal Auditor or Auditor in ISO 27001, ISO 22301, DPTM, or QEHS standards
• Experience interpreting information security principles and controls, conducting vulnerability assessments, and reporting findings