Featured

Internal Auditor

Posted 21 July 2025
LocationLondon
Job type Contract
Discipline Engineering and RenewablesTechnology

Job description

(Hybrid)​

Internal Auditor - Contract - Inside IR35 - Energy Sector - 3 months

We are seeking an experienced Internal Auditor for a three-month contract to lead and execute a series of audits, including ISO 27001 and ISO 9001 compliance audits, as well as a follow-up audit on findings from an ISAE 3402 report. The ideal candidate will be a self-starter with a strong understanding of audit frameworks, risks and associated controls, and audit standards including ISO Information Security and Quality management standards and ISAE3402 auditing.

Key Responsibilities:

  • Plan and perform an internal audit against ISO/IEC 27001

    (Information Security Management System), ensuring appropriate documentation, risk assessment, and control testing.

  • Plan and perform an internal audit against ISO 9001

    (Quality Management System), assessing process adherence and effectiveness.

  • Perform a follow-up audit on previously identified findings

    from an ISAE 3402 report to evaluate remediation status and sufficiency of corrective actions.

  • Prepare comprehensive audit plans, checklists, and schedules in alignment with applicable standards and internal procedures (which will be provided upon start).

  • Document audit observations, findings, and recommendations in a clear and structured format.

  • Engage with process and control owners to obtain necessary evidence and clarify issues during the audits.

  • Draft and present audit reports to relevant stakeholders, highlighting key risks, control deficiencies, and recommended improvements.

  • Support management in understanding audit outcomes and in developing and tracking action plans for resolution.

  • Incorporating findings into the Internal Audit continuous improvement cycle.

  • Ensure audit activities are completed within agreed timelines and project scope.

Requirements:

  • Proven experience conducting internal audits across ISO 27001, ISO 9001, and/or ISAE 3402 frameworks.

  • Solid understanding of information security principles, quality management systems, and service organisation controls.

  • Strong analytical, investigative, and problem-solving skills.

  • Excellent verbal and written communication skills.

  • Ability to work independently and manage multiple audit assignments concurrently.

  • Relevant certifications (e.g., CIA, ISO 27001 Auditor, ISO 9001 Auditor, etc.) are highly desirable.