I’m a certified ISO/IEC 27001 Lead Auditor, helping businesses streamline their processes, manage documentation, and prepare for certification.
ISO/IEC 27001:2022 Lead Auditor (CQI & IRCA, BSI)
CISM – Certified Information Security Manager (ISACA)
Fluent in English (C1+), with experience working with international clients
2 years of experience conducting internal audits and reviewing policies and procedures in an IT company (2000+ employees)
Hands-on experience in ISO/IEC 27001 compliance audits, identifying gaps, and evaluating process alignment with the standard
Broad knowledge of information security management (incident management, access control, risk analysis)
ResumeAssessing compliance with ISO/IEC 27001 requirements Identifying gaps in the Information Security Management System (ISMS) Recommending corrective actions and areas for improvement
Reviewing existing policies, procedures, and records Assessing their compliance with ISO/IEC 27001 Assisting with preparing or completing missing documentation
Conducting interviews with process owners Assessing the actual implementation of security controls described in documentation Checking employees’ awareness of information security topics
Verifying organizational readiness for certification Supporting internal and pre-certification audits Providing guidance on nonconformities and corrective actions
Preparing audit and analysis reports Highlighting areas for improvement Providing recommendations based on best practices
Evaluating the organization’s current cybersecurity maturity Helping define development goals and security priorities
Assessing compliance with the Polish Act on the National Cybersecurity System (UoKSC) and NIS2 guidelines Reviewing documentation and processes in light of legal requirements Identifying potential gaps and risk areas Supporting preparation for regulatory inspections or supervisory audits
for collaborations, inquiries or ideas - send an email to: [email protected]