About the job

The Project Manager will play a critical role in collaborating with the company's internal Governance, Risk, and Compliance (GRC) board and Chief Information Security Officer (CISO). This includes overseeing the development and execution of the ISO 27001 certification plan and ensuring alignment with organizational goals and regulatory requirements. This is a part-time role with flexible hours designed to support the company's compliance and information security initiatives

Key competencies:

• The ISO 27001 project manager should possess a blend of technical, managerial, and interpersonal skills to effectively oversee the implementation of the company’s Information Security Management System (ISMS).

  1. Understanding of IT and Information Security :

  A. Solid grasp of IT infrastructure and cybersecurity principles. B. Expertise in information security management to support robust ISMS development.

  2. Project Management Skills :

  A. 10+ years of project management experience, including planning, executing, and closing projects.

  B. Familiarity with methodologies like Agile or PRINCE2 is highly beneficial.

  C. Proven ability to manage complex, cross-functional initiatives.

  3. Knowledge of ISO 27001 Standards :

  A. Deep understanding of ISO 27001 requirements and controls to ensure compliance.

  B. Experience in aligning policies, procedures, and operational controls with ISO 27001.

  4. Risk Management

  A. Proficient in assessing and managing information security risks.

  B. Skilled in identifying vulnerabilities, implementing controls, and designing workarounds.

  5. Communication Skills :

  A. Strong verbal and written communication skills to engage stakeholders effectively.

  B. Capable of translating complex ISO 27001 requirements into actionable deliverables.

  6. Leadership and Team Management

  A. Demonstrated ability to lead teams, manage resources, and foster collaboration across departments.

  B. Motivates and aligns team efforts to achieve project goals.

  7. Problem-Solving Skills :

  A. Analytical mindset with the ability to anticipate issues and develop effective solutions.

  Responsibilities:

  1. Project Management :

• Develop, maintain, and manage project plans, timelines, and deliverables for ISO 27001 certification efforts.

• Coordinate cross-functional teams to ensure timely and quality completion of tasks.

• Track and report project progress, risks, and milestones to relevant stakeholders and keep relevant stakeholders informed in a timely manner about the progress.

• Guarantee expectations regarding risk and quality are shared and transparent, and address escalations regarding the project in a timely manner.

  2. ISO 27001 Certification :

• Oversee the implementation and ongoing maintenance of the ISMS.

• Facilitate gap analyses, risk assessments, and internal audits to identify areas for improvement.

• Collaborate with internal teams to ensure compliance with ISO 27001 requirements.

  3. Governance, Risk, and Compliance (GRC) :

• Support the development and refinement of GRC policies, processes, and frameworks.

• Coordinate risk assessments, mitigation plans, and compliance reviews.

• Align organizational practices with regulations and standards.

  4. Stakeholder Engagement :

• Serve as the central point of contact for all GRC and ISO 27001 initiatives.

• Provide updates and seek approvals for major milestones from senior leadership.

• Work closely with technical teams, legal, and operations to align project objectives with business needs.

• Required Skills and Experience:

  • Proven experience managing ISO 27001 certification projects or similar information security/compliance frameworks.

  • Strong understanding of GRC principles and the role of a CISO function within an organization.

  • Excellent project management skills, including proficiency related tools.

  • Strong communication and organizational skills, with the ability to influence and collaborate across various levels of the organization.

• Preferred Certifications:

  • PMP (Project Management Professional)

  • Additional certifications in ISO 27001, GRC, or information security are a plus.

  • Certifications in Agile methodologies (e.g., Scrum, PMI-ACP) or PRINCE2 frameworks are also highly valued.

• Work Schedule: This is a fully remote part-time position, requiring 20 hours per week. The schedule is flexible and can be adjusted to accommodate project deadlines and team needs.

• Ideal Candidate: The ideal candidate is a self-starter with a passion for information security, compliance, and governance. They are organized, detail-oriented, and capable of balancing multiple priorities while driving project success. This role is perfect for someone seeking remote part-time work with impactful outcomes in a dynamic environment. You show a high level of organizational sensitivity because of your deep understanding of the underlying issues, opportunities and dynamics of the organization. This makes you broadly accepted as a sparring partner and advisor. You have strong analytical skills and bring planning and structure to the initiatives. You can transform an idea into an understandable story