Lead Implementer / Auditor (ISO 22301 & ISO 27001) Training Hub Limited | Jobs in Nigeria

Training Hub is wholly owned subsidiary that provides a full spectrum of manpower solutions ranging from talent driven outsourcing, staffing solutions, temporary resourcing, permanent placement and apprenticeship/mentorship programmes.

Our team of seasoned professionals manage all aspects of recruitment, pre-screening, testing / interviewing, training and coaching process activities. Our personnel resource persons are positioned for long term on-the-job success. Personnel resources within our database include administration officers, drivers, auditors, logistics officers, procurement expediters, project managers, contact centre and customer service executives, buyers, technicians, engineers, chief executives and other professionals.

We manage and implement comprehensive monitoring, evaluation, and learning projects, including methods to assess advocacy and long term policy change efforts. Our team typically utilizes a blend of quantitative and qualitative methods to conduct rigorous data collection for design, implementation and evaluation of projects, programmes and policies.

We are recruiting to fill the position below:

Job Title: Lead Implementer / Auditor (ISO 22301 & ISO 27001)

Location: Lagos
Employment Type: Full-time / 6-months (renewable)

Role Summary

• We are seeking a highly experienced Lead auditor with a minimum of six (6) years of progressive experience in implementing, managing, and auditing ISO 22301 (Business Continuity Management System – BCMS) and ISO 27001 (Information Security Management System – ISMS).
• The successful candidate will serve a Lead Implementer and Lead Auditor, responsible for establishing, maintaining, and continually improving the organization’s operational resilience and data protection frameworks.
• The role ensures compliance with international standards, regulatory requirements, and industry best practices.

Key Responsibilities
ISO 22301 – Business Continuity Management (BCMS):

• Lead the design, implementation, and maintenance of the Business Continuity Management System.
• Conduct Business Impact Analysis (BIA) and risk assessments across business units.
• Develop and maintain business continuity strategies, plans, and recovery procedures.
• Coordinate and oversee disaster recovery planning and testing exercises.
• Ensure periodic simulation exercises and resilience testing.
• Monitor compliance with ISO 22301 requirements and drive continual improvement.

ISO 27001 – Information Security Management (ISMS):

• Lead the implementation and ongoing management of the ISMS framework.
• Conduct enterprise-wide information security risk assessments.
• Develop, review, and enforce information security policies and procedures.
• Ensure effective implementation of Annex A controls.
• Coordinate internal and external ISO 27001 audits.
• Manage security incidents and ensure corrective/preventive actions are implemented.

Governance, Risk & Compliance:

• Ensure alignment of BCMS and ISMS with organizational strategy.
• Liaise with regulators, certification bodies, and external auditors.
• Monitor regulatory and statutory requirements related to information security and business continuity.
• Present compliance reports and risk posture updates to senior management.

Internal & External Audits:

• Act as Lead Auditor for ISO 22301 and ISO 27001 internal audits.
• Plan, conduct, and report audit findings.
• Track corrective actions and ensure timely closure.
• Prepare the organization for surveillance and recertification audits.

Training & Awareness:

• Develop and deliver awareness programs on business continuity and information security.
• Promote a culture of operational resilience and data protection.
• Facilitate internal auditor course
• Provide advisory support to management and business units.

Qualifications & Requirements

• Bachelor’s Degree in Information Technology, computer Science/Engineering Data Management, Data Science etc.
• Professional certifications such as CISA, CRISC, CISSP, or equivalent (added advantage).
• Minimum of 6 years’ relevant experience in ISO 22301 and ISO 27001 implementation and auditing.
• Certified ISO 22301 Lead Implementer.
• Certified ISO 22301 Lead Auditor.
• Certified ISO 27001 Lead Implementer.
• Certified ISO 27001 Lead Auditor.
• Strong knowledge of risk assessment methodologies.
• Experience managing certification audits with accredited bodies.
• Demonstrated experience in disaster recovery planning and information security governance.

Core Competencies:

• Enterprise Risk Management
• Business Impact Analysis
• Information Security Controls
• Incident Response Management
• Policy Development
• Regulatory Compliance
• Audit & Assurance
• Stakeholder Management
• Analytical & Problem-Solving Skills
• Strong Communication & Reporting Skills
• Lead implementer and Auditor Certified
• Background Computer science.