Job Title: GRC Security Consultant (ISO 27001 Specialist) Contract Duration: 3 Months Location: Remote IR35: Outside IR35 Role Overview We are seeking an experienced GRC Security Consultant to support a project updating the client's ISO 27001 framework from the 2013 version to the 2022 version. You will conduct a comprehensive gap analysis, implement the required controls, and ensure all documentation aligns with the updated standard. This role requires deep knowledge of ISO 27001 and a hands-on approach to governance, risk, and compliance. Key Responsibilities Perform a detailed gap analysis between ISO 27001:2013 and ISO 27001:2022. Design and implement required controls to achieve compliance with the updated standard. Update and create all necessary policies, procedures, and documentation to reflect ISO 27001:2022 requirements. Ensure the Information Security Management System (ISMS) is fully aligned with the latest standard. Collaborate with stakeholders to drive compliance and best practices. Key Skills and Requirements Proven experience in ISO 27001 implementation and audits. Strong understanding of the differences between ISO 27001:2013 and ISO 27001:2022. Hands-on experience conducting gap analyses and implementing controls. Exceptional documentation and policy-writing skills. Strong communication and stakeholder engagement capabilities. ISO 27001 Lead Implementer or Auditor certification (highly desirable). CISSP, CISM, or CRISC certifications (a plus).