The ISO Consultant will assist clients in ISO compliance, perform audits, document findings, and support multiple engagements while communicating technical requirements.
ISO Consultant
at Tevora
Irvine, CA
If you haven't heard of Tevora, it's because we've done our job!
Tevora is a tight-knit community of professionals with a shared passion for our craft. Every day, we combine in-depth knowledge of cybersecurity, technology, and compliance to help create more secure digital environments. To Tevorans, every problem is a puzzle in need of solving. We strongly believe that if we put smart, driven people in a room together, they will accomplish great things. We maintain a supportive culture that celebrates continuous learning, diverse perspectives, and sharing the wins. That's why we have our eyes on you.
What's the role?
Tevora is seeking an ISO Consultant to join the ISO Compliance team. The ISO team advises clients on ISO 27001 requirements (as well as other ISO Information Security Standards) and conducts Assessments for clients for their compliance and audit needs.
A successful candidate for this role would possess general business acumen as well as technical expertise; they would be a self-starter with strong communication skills who has a passion for cybersecurity, continued learning, and working with a team.
ISO Consultant
at Tevora
Irvine, CA
If you haven't heard of Tevora, it's because we've done our job!
Tevora is a tight-knit community of professionals with a shared passion for our craft. Every day, we combine in-depth knowledge of cybersecurity, technology, and compliance to help create more secure digital environments. To Tevorans, every problem is a puzzle in need of solving. We strongly believe that if we put smart, driven people in a room together, they will accomplish great things. We maintain a supportive culture that celebrates continuous learning, diverse perspectives, and sharing the wins. That's why we have our eyes on you.
What's the role?
Tevora is seeking an ISO Consultant to join the ISO Compliance team. The ISO team advises clients on ISO 27001 requirements (as well as other ISO Information Security Standards) and conducts Assessments for clients for their compliance and audit needs.
A successful candidate for this role would possess general business acumen as well as technical expertise; they would be a self-starter with strong communication skills who has a passion for cybersecurity, continued learning, and working with a team.
A day in the life could include:
- Directly support clients in a variety of roles, such as identifying ISO gaps in compliance, advising on needed remediations or improvements as well as cybersecurity best practices, and providing audit reports
- Documenting findings and drafting reports for clients
- Coordinating and managing Clients regarding internal or external audits, including:
- Control compliance review
- Evidence collection
- Coordination of audit work
- Leading or supporting compliance and risk assessments, including providing guidance to junior resources
- Conducting interviews with clients to analyze their information security controls or risk and identify recommendations
- Execute on multiple client engagements simultaneously
- Communicating with project stakeholders to effectively convey requirements of technical and process improvements.
- Assisting in the development of customized policies, procedures, controls, disaster recovery plans and other documentation for applications, systems, and infrastructure.
- Working with cross-functional teams to provide support on other compliance assessments such as PCI, SOC 2, etc., and maintaining communication across groups
- Additional duties as assigned
Necessary skills and qualifications:
- Bachelor's degree in information security or related discipline from a 4-year University
- Knowledge or exposure to IT audits or IT security
- Plan and execute ISO (27001, 27701, 22301, 42001) engagements under the direction of the management team
- Lead assessments during remote or onsite testing
- Lead scoping calls about client environments
- Communicate clearly and proactively with both clients and the management team regarding project status
- Significant knowledge of ISO 27001/2 and its derivatives (e.g., 27701, 22301 Shared Assessment)
- Significant experience leading information security audits with a preference for IS0 27001 audits or assessments
- Ability to adapt to changing standards and expectations
- Ability to work in a fast-paced environment
- Ability to work individually as well as part of a team
- A high degree of motivation and work ethic, to meet defined timelines
- Excellent communication skills including a mastery of written English
Bonus Points:
- Preferred to have 1-2 years of experience conducting IT assessments with at least one more industry standard framework such as SOC, ISO, PCI DSS, etc.
- At least 2 years experience in client-facing role (e.g., consulting or external auditor)
We've got you covered!
- Comprehensive benefits including: Medical, Dental, Vision & Basic Life Insurance
- Paid Vacations, Sick Time, & Holidays
- 401 (k) with discretionary company match
- Vibrant work culture
Additional requirements:
- Eligibility to work in the United States.
A day in the life could include:
- Directly support clients in a variety of roles, such as identifying ISO gaps in compliance, advising on needed remediations or improvements as well as cybersecurity best practices, and providing audit reports
- Documenting findings and drafting reports for clients
- Coordinating and managing Clients regarding internal or external audits, including:
- Control compliance review
- Evidence collection
- Coordination of audit work
- Leading or supporting compliance and risk assessments, including providing guidance to junior resources
- Conducting interviews with clients to analyze their information security controls or risk and identify recommendations
- Execute on multiple client engagements simultaneously
- Communicating with project stakeholders to effectively convey requirements of technical and process improvements.
- Assisting in the development of customized policies, procedures, controls, disaster recovery plans and other documentation for applications, systems, and infrastructure.
- Working with cross-functional teams to provide support on other compliance assessments such as PCI, SOC 2, etc., and maintaining communication across groups
- Additional duties as assigned
Necessary skills and qualifications:
- Bachelor's degree in information security or related discipline from a 4-year University or a related discipline or seven years of equivalent industry experience.
- Preferred to have 2-5 years of experience conducting IT assessments with at least one more industry standard framework such as SOC, ISO, PCI DSS, etc.
- Knowledge or exposure to IT audits or IT security
- Plan and execute ISO (27001, 27701, 22301, 42001) engagements under the direction of the management team
- Lead assessments during remote or onsite testing
- Lead scoping calls about client environments
- Communicate clearly and proactively with both clients and the management team regarding project status
- Significant knowledge of ISO 27001/2 and its derivatives (e.g., 27701, 22301 Shared Assessment)
- Significant experience leading information security audits with a preference for IS0 27001 audits or assessments
- Ability to adapt to changing standards and expectations
- Ability to work in a fast-paced environment
- Ability to work individually as well as part of a team
- A high degree of motivation and work ethic, to meet defined timelines
- Excellent communication skills including a mastery of written English
Bonus Points:
- ISO Lead Auditor
- Other Certificates such as CISO, CISP, CISM
- At least 2 years of experience in a client-facing role (e.g., consulting or external auditor)
We've got you covered!
- Comprehensive benefits offering
- Paid time off and holidays
- 401 (k) with Company match
- Vibrant work culture
Additional requirements:
- A valid driver's license is required.
- Eligibility to work in the United States.
EEOC Statement
Tevora is proud to be an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, gender identity or expression, pregnancy, sexual orientation, gender identity, national origin, age, protected veteran status, disability status, or other applicable legally protected characteristics.
EEOC Statement
Tevora is proud to be an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, gender identity or expression, pregnancy, sexual orientation, gender identity, national origin, age, protected veteran status, disability status, or other applicable legally protected characteristics.
Top Skills
Information Security
Iso 27001
Pci Dss
Soc
Tevora Irvine, California, USA Office
Irvine, CA, United States
Similar Jobs
Artificial Intelligence • Fintech • Payments • Financial Services • Generative AI
As a Senior Software Engineer, you will develop stablecoin infrastructure, including transaction systems and blockchain integration while collaborating with multiple teams.
Top Skills:
BlockchainC#C++Financial InfrastructureFxJavaKotlinPythonRust
Artificial Intelligence • Fintech • Payments • Financial Services • Generative AI
Lead a high-impact team developing stablecoin infrastructure, oversee secure systems, manage transactions, and integrate solutions into existing systems.
Top Skills:
BlockchainC#C++Digital Asset CustodyFxJavaKotlinPaymentsPythonRust
Cloud • Fintech • Information Technology • Machine Learning • Software • App development • Generative AI
As a Software Engineer, you will test web-based applications and RESTful APIs, drive high-quality releases, and collaborate with teams to ensure quality standards are followed.
Top Skills:
C#CSSCucumberHTMLJavaJavaScriptJSONSeleniumSQLXML
What you need to know about the Los Angeles Tech Scene
Los Angeles is a global leader in entertainment, so it’s no surprise that many of the biggest players in streaming, digital media and game development call the city home. But the city boasts plenty of non-entertainment innovation as well, with tech companies spanning verticals like AI, fintech, e-commerce and biotech. With major universities like Caltech, UCLA, USC and the nearby UC Irvine, the city has a steady supply of top-flight tech and engineering talent — not counting the graduates flocking to Los Angeles from across the world to enjoy its beaches, culture and year-round temperate climate.
Key Facts About Los Angeles Tech
- Number of Tech Workers: 375,800; 5.5% of overall workforce (2024 CompTIA survey)
- Major Tech Employers: Snap, Netflix, SpaceX, Disney, Google
- Key Industries: Artificial intelligence, adtech, media, software, game development
- Funding Landscape: $11.6 billion in venture capital funding in 2024 (Pitchbook)
- Notable Investors: Strong Ventures, Fifth Wall, Upfront Ventures, Mucker Capital, Kittyhawk Ventures
- Research Centers and Universities: California Institute of Technology, UCLA, University of Southern California, UC Irvine, Pepperdine, California Institute for Immunology and Immunotherapy, Center for Quantum Science and Engineering