Senior ISO Compliance Auditor
Xylem · Morrisville, NC · 2 wk ago
SalesFull-time
Core Responsibilities
- Lead and manage ISO compliance and certification programs, with strong ownership of ISO audit readiness, certification maintenance, surveillance activities, and continuous control effectiveness.
- Drive the full audit lifecycle, including planning, readiness assessments, internal audit coordination, external audit support, evidence validation, nonconformity management, and remediation tracking.
- Coverage of the full audit lifecycle, including planning, readiness assessments, internal audit coordination, external audit support, evidence validation, nonconformity management, and remediation tracking.
- Coordinate and facilitate internal and external audits, serving as a primary point of contact for ISO auditors, certification bodies, and external assessors, while managing timelines, deliverables, and audit expectations.
- Partner with control owners to ensure controls are appropriately designed, documented, implemented, and operating effectively across in-scope systems, services, and business processes.
- Oversee the collection, review, validation, and organization of audit evidence to satisfy ISO certification requirements, attestation standards, and customer assurance commitments.
- Identify control gaps, risks, audit findings, and nonconformities, and drive corrective and preventive actions through to closure with accountable stakeholders.
- Track and report on compliance performance metrics, including audit status, remediation progress, control effectiveness, certification health, and readiness for upcoming ISO assessments.
- Maintain governance over corrective actions, exceptions, findings, and deficiencies, ensuring timely resolution and alignment with certification and compliance obligations.
- Collaborate cross-functionally to proactively mitigate compliance risks and resolve issues that could affect certification standing, audit outcomes, or customer trust.
- Serve as a key liaison for customer compliance inquiries, external audits, and assurance requests.
Required Qualifications
- Bachelor’s degree in a relevant field.
- 5+ years of experience in compliance, audit, or GRC-focused project or program management roles.
- Direct experience supporting ISO certification audits, including standards such as ISO 27001, ISO 27017, ISO 27701, and ISO 20000.
- Strong understanding of control frameworks, audit methodologies, certification requirements, and evidence management expectations.
- Experience managing audit readiness, certification cycles, surveillance audits, recertification activities, and remediation programs.
- Demonstrated ability to identify control gaps, assess risk, and drive corrective actions in response to audit findings or nonconformities.
- Experience collaborating directly with ISO auditors, certification bodies, external assessors, and cross-functional stakeholders.
- Proven ability to maintain ongoing audit readiness within dynamic and regulated environments.
- Strong organizational, documentation, and stakeholder communication skills.
- Proficiency with Microsoft Office tools; experience with compliance or project management tools such as Atlassian or Smartsheet preferred.
Preferred Qualifications
- Experience in regulated industries such as utilities, technology, or cybersecurity.
- Hands-on experience with ISO certification programs, audit coordination, and compliance operations.
- Familiarity with GRC tools, policy governance processes, and audit evidence management platforms.
- A familiarity with SOC audits and certifications is also considered a nice to have.