Information Security Auditor

Join Freshfields' Information Security Group (ISG) as an Information Security Auditor and play a key role in strengthening our information and cyber security operations during a period of significant technological change.

Key Responsibilities:

• Perform security assessments for 150+ new and current suppliers annually.
• Audit ISO controls across the firm’s core operations.
• Regularly update policies, processes, and risk mitigation measures.
• Ensure compliance with security standards like ISO27001 and NIST.
• Assess and address third-party security risks, providing recommendations for improvements.

Who We're Looking For:

• IT/Information Security Auditing experience, ideally in third-party risk management.
• Strong knowledge of ISO 27001, with relevant auditing qualifications (Lead/Internal Auditor, etc.).
• Proven ability to collaborate across teams, influencing stakeholders and translating complex technical requirements.
• Motivated, proactive, and eager to learn and grow in the security space.

Desirable Skills:

• Certifications like CISM, CISSP, CISA.
• Knowledge of Cloud services (SaaS, PaaS, IaaS).
• Familiarity with global cyber security and privacy laws.

If you’re detail-oriented, organized, and excited to be a part of a forward-thinking team, apply now to make an impact!