Senior ISO 27001 Consultant

Cybertify is Australia's premier compliance-first cybersecurity consulting firm, proudly Australian owned, fully independent, and sovereign in every respect. We specialise in protecting and enabling organisations in the country's most heavily regulated sectors: financial services, superannuation, legal, aged care, healthcare, banking, technology, and government-aligned enterprises.

Our clients demand more than security, they demand speed, trust, and board-level credibility. Cybertify delivers with rapid scoping, swift execution, and executive-ready outcomes that boards, regulators, insurers, and auditors respect.

Our Elite Cyber Squad, a hand-picked team of industry-leading red teaming, penetration testing, governance, and defensive experts, brings Big 4 calibre expertise with boutique agility, ensuring precision, independence, and uncompromising results.

We are seeking a Senior ISO 27001 Consultant (Auditor & Implementor) to lead our ISO 27001 engagements across Australia. This is a client-facing consulting role requiring hands-on delivery of audit, implementation, and certification readiness services. You will manage projects end-to-end, working with executives and technical teams to design, implement, and certify robust ISMS frameworks.

Key Responsibilities

• Deliver ISO 27001 gap assessments, audits, and certification readiness engagements.
• Lead the design and implementation of ISMS frameworks tailored to client environments.
• Prepare clients for external certification audits, including internal audit delivery.
• Scope engagements during discovery calls and translate client requirements into delivery frameworks.
• Develop comprehensive pitch decks and proposals for ISO 27001 audits and implementations.
• Advise on risk management, control alignment, and continual improvement strategies.
• Produce clear, executive-ready reporting, policies, and governance documentation.
• Mentor consultants and contribute to Cybertify's ISO 27001 methodologies, templates, and playbooks.

Mandatory Requirements

• Proven consulting experience delivering ISO 27001 engagements for multiple clients.
• ISO 27001 Lead Auditor certification.
• ISO 27001 Lead Implementor certification.
• Strong knowledge of ISMS design, audit methodology, and certification processes.
• Proven ability to participate in discovery calls, lead scoping, and prepare detailed client proposals and pitch decks.
• Excellent client-facing and stakeholder engagement skills.
• Strong technical and governance writing skills (policies, procedures, risk registers, reports).

Desirable

• Broader exposure to frameworks such as SOC 2, NIST, Essential Eight, CPS 234, and PCI DSS.
• Prior experience in a Big 4 or tier-one consultancy environment.
• Familiarity with regulated sectors including finance, healthcare, legal, and technology.

• Elite Cyber Squad Advantage: Work directly with Australia's most experienced cybersecurity professionals.
• Agile Disruption: Be part of a lean, fast-moving firm that delivers high-value results without the red tape and politics of bloated consultancies.
• Impactful Work: Solve complex, high-stakes cybersecurity and compliance challenges for boards, regulators, and executives across Australia's most critical sectors.
• Compliance-First DNA: Operate at the unique intersection of security and governance where GRC integration is not an add-on, but the foundation of every engagement.
• Professional Growth: Gain exposure to cutting-edge tools, advanced methodologies, and enterprise-grade frameworks (ISO 27001, SOC 2, Essential 8, CPS 234, NIST, and more).
• Independent & Trusted: Provide objective advice, free from vendor influence or offshore conflicts. Cybertify's independence ensures client trust is never compromised.
• Australian Sovereign Cyber: Support a firm that is 100% Australian owned and operated, designed to protect Australian businesses with Australian expertise.

• A high-trust workplace with genuine autonomy, influence, and zero micromanagement.
• Direct client impact—your work is seen at board and executive levels, not buried in handovers.
• Premium salary packages aligned with market-leading consulting firms, reflecting the calibre of talent we hire.
• Professional development pathways, including funded certifications, training, and industry memberships.
• Exposure to elite projects spanning offensive security, GRC, Zero Trust, regulatory alignment, and incident response.
• State-of-the-art Sydney CBD office with premium client and collaboration spaces.
• Cutting-edge tools and platforms across project delivery, client engagement, and cybersecurity operations.
• A supportive, collaborative team culture that balances intensity with respect, and professionalism with ambition.
• The opportunity to be part of a nationally recognised, fast-growing, sovereign cybersecurity force that is redefining the cyber consulting market.

Click Apply and submit your CV with a short cover letter.

Apply now and discover why Australia's top cyber talent chooses Cybertify as their career destination.

Cybertify - Defending Australia's Digital Future, One Elite Professional at a Time