bismillah
Facebook Linkedin Instagram Youtube Pinterest
Menu

Senior Information Security (ISO 27001) Consultant

Closing on: May 31, 2026
Job Category: Remote
Job Type: Freelance
Job Location: Pakistan
Salary: Project Based
Experience: 5 Years
Department: Auditing and Compliance
Education: Masters in Cyber Security

About Us

Burraq Consulting is a leading training and consultancy firm in Pakistan, delivering professional services in HSE, ISO certifications, corporate training, and compliance solutions. We are expanding our technical team and looking for a Senior Information Security Consultant who can conduct ISO 27001 audits and meet the ISO requirements for our clients.

Job Overview

We are seeking experienced ISO 27001 Consultants to support multiple client engagements on a project-to-project basis. The consultant will be responsible for implementing, auditing, and maintaining Information Security Management Systems (ISMS) in line with ISO 27001 requirements.

This role is ideal for professionals who prefer flexible, assignment-based work and have hands-on experience delivering ISO 27001 certification projects across different industries.

Key Responsibilities

  • Lead end-to-end ISO 27001 implementation projects
  • Conduct gap assessments against ISO/IEC 27001 standards
  • Develop and review ISMS documentation (policies, procedures, risk registers, SoA, etc.)
  • Perform risk assessments and risk treatment planning
  • Provide guidance on Annex A controls implementation
  • Conduct internal audits and support clients during certification audits
  • Deliver awareness and training sessions to client teams
  • Liaise with certification bodies and external auditors
  • Ensure project timelines, deliverables, and quality standards are met

Requirements

  • Proven experience in ISO/IEC 27001 implementation or consulting
  • Strong understanding of ISMS framework and risk management methodologies
  • Experience with Statement of Applicability (SoA) and control mapping
  • Familiarity with ISO 27001:2022 standard (preferred)
  • Lead Implementer and/or Lead Auditor certification (highly preferred)
  • Ability to manage multiple clients and projects independently
  • Strong documentation and communication skills

Preferred Skills

  • Experience in related standards (e.g., ISO 22301, ISO 20000, GDPR)
  • Background in IT, cybersecurity, or information security
  • Experience working with certification bodies
  • Industry exposure (e.g., IT, healthcare, finance, telecom)

Engagement Model

  • Project-based assignments with defined scope and timelines
  • Flexible working arrangements (remote or on-site depending on client needs)
  • Compensation based on project scope, complexity, and duration

How to Apply

Interested candidates are encouraged to submit their CV along with a portfolio of recent design work to: people@burraqconsulting.com with subject line “Information Security Consultant“.

Apply for this position

Allowed Type(s): .pdf, .doc, .docx