×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Cybersecurity Information Security Data Security

ISO Analyst - EMEA

Job in Essex Junction, Chittenden County, Vermont, 05452, USA
Listing for: Insight Assurance
Full Time position
Listed on 2026-06-06
Job specializations:
  • IT/Tech
    Cybersecurity, Information Security, Data Security
Salary/Wage Range or Industry Benchmark: 80000 - 100000 USD Yearly USD 80000.00 100000.00 YEAR
Job Description & How to Apply Below
Position: ISO 27001 Analyst - EMEA
Location: Essex Junction

About Insight Assurance

Insight Assurance is a global audit firm on a mission to transform how organizations achieve cybersecurity and compliance. Founded by former Big 4 professionals, we deliver next‑generation audit services across SOC 2, ISO 27001, PCI DSS, HITRUST, CMMC, and FedRAMP frameworks.

Position Summary

The ISO Analyst supports the audit and assurance teams in performing ISO 27001 certification assessments and related information security audits. Working under the supervision of an Auditor, Lead Auditor, or Manager, the ISO Analyst assists in audit planning, evidence review, report preparation, and overall quality assurance.

Key Responsibilities

General Audit Support

  • Ensure internal processes are followed correctly and consistently.
  • Assist in the creation of audit programs and plans for clients and upcoming audits.
  • Support evidence classification, review, and sampling activities.
  • Take detailed notes during audits and assist in preparing high‑quality reports.
  • Send recap and follow‑up communications as required.
  • Collect statistics and support KPI reporting.
  • Communicate effectively with stakeholders at all organizational levels using professional language and terminology.
  • Maintain ethics, fairness, and accuracy in all audit documentation and reporting.
  • Protect confidentiality of personally identifiable information (PII) and intellectual property (IP) belonging to both the firm and clients.
  • Demonstrate professionalism and responsibility in all interactions.

Administrative & Coordination Tasks

  • Handle client ingestion and onboarding activities.
  • Perform Hub Spot data scrubbing and updates.
  • Register new engagements in Asana and coordinate Insight ONE transfers (in or out).
  • Create SharePoint folders and upload Evidence Lists.
  • Follow up on CUP submissions.

Audit Planning Support (in collaboration with ISO Manager)

  • Follow up on CUP status and pending uploads.
  • Send planning call recaps and assist with scheduling.
  • Communicate auditor assignments and update Asana tasks.
  • Collect and report metrics on turnaround time (TAT) for audit plan delivery.

Audit Execution Support (in collaboration with ISO Auditors)

  • Ensure auditors have access to necessary GRC platforms and client systems.

Audit Reporting & Quality Assurance (in collaboration with ISO Manager)

  • Collect metrics on TAT for archive submissions.
  • Register findings in the Universal Registry of Findings.
  • Complete archive QA forms and support non‑technical QA reviews, including Audit Report, Audit Plan, Audit Program, and Registry of Findings.

Certificate & Registry Management

  • Handle certificate registration in the appropriate database.
  • Maintain IAF Cert Search registrations and updates.
Knowledge Requirements
  • Organizational structures, governance, and workplace practices.
  • Information and data systems, documentation systems, and IT fundamentals.
  • Audit principles, practices, and techniques in accordance with ISO standards.
  • Management system standards and normative documents required for certification.
  • Certification Body (CB) processes and procedures.
  • Industry terminology, practices, and expectations relevant to the client’s business sector.
  • Common products, processes, and operations across industries to understand client context.
  • Application of management system requirements to various organizational types.
  • ISMS‑specific documentation structures and interrelationships.
  • Information security management tools, methods, and techniques.
  • Information security risk assessment and risk management principles.
  • ISMS processes and current information security technologies.
  • ISO/IEC 27001 requirements and implementation principles.
  • ISO/IEC 27002 controls (and sector‑specific standards if applicable), including:
    • Information security policies
    • Organization of information security
    • Human resource security
    • Asset management
    • Access control and authorization
    • Cryptography
    • Physical and environmental security
    • Operations and IT service security
    • Communications and network security
    • System acquisition, development, and maintenance
    • Supplier relationships and outsourced services
    • Information security incident management
    • Business continuity and redundancy planning
    • Compliance and information security reviews
    • Legal and regulatory requirements…
To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)
0
200
Filters
Education Level
Experience Level (years)
Posted in last:
Salary
Advanced Search