Intelance

• Lead ISO 27001:2022 implementation engagements end-to-end: scoping, gap analysis, risk assessment and treatment, Statement of Applicability, policy architecture, control design, internal audit, management review, and support through Stage 1 and Stage 2 external audits. • Design ISMS scopes that are commercially sensible and defensible, not bloated. • Build risk registers and Statements of Applicability that hold up under scrutiny from UKAS-accredited certification bodies. • Author and tailor policies, procedures, and records aligned to Annex A 2022 controls. No generic templates dropped on clients. • Run internal audits and management reviews that generate real findings, not theatre. • Coach client ISMS owners and control owners so the system survives after handover. • Support clients through external audit, including responding to non-conformities and observations. • Where capacity and interest align, extend into IASME Cyber Assurance, NIST CSF, SOC 2 readiness, and supplier assurance work. • Contribute to Intelance delivery standards, templates, and calibration sessions.

• Act as a named Principal Advisor on client engagements, bids, and governance forums. • Shape assurance strategy for clients across ISO 27001, IASME Cyber Assurance, NIST CSF, SOC 2 readiness, supplier assurance, and cyber risk governance. • Chair or sit on client steering committees, risk committees, and board-level security reviews. • Provide senior quality assurance over major deliverables: ISMS scopes, Statements of Applicability, risk assessments, audit responses, and board reports. • Coach Intelance delivery leads and associates. • Raise the ceiling of the practice. • Contribute to proposals and pursuits where senior credibility is required. • Represent Intelance at selected industry events, roundtables, and client briefings. • Input into Intelance service design, pricing, and positioning across the Cyber Assurance practice. • Where interest aligns, advise on adjacent areas: AI governance, enterprise architecture for security, and cyber value creation inside private equity portfolios.

Role Description We are appointing a small number of Principal Cyber Assurance Advisors to our senior associate panel. This is a senior, part-time advisory relationship for operators at CISO, partner, or director level. You will shape how we position, sell, and deliver cyber assurance to demanding clients, and lend your name and judgement to a firm that takes the work seriously. This is not a delivery role. It is a seat at the top of the practice. - Act as a named Principal Advisor on client engagements, bids, and governance forums. - Shape assurance strategy for clients across ISO 27001, IASME Cyber Assurance, NIST CSF, SOC 2 readiness, supplier assurance, and cyber risk governance. - Chair or sit on client steering committees, risk committees, and board-level security reviews. - Provide senior quality assurance over major deliverables: ISMS scopes, Statements of Applicability, risk assessments, audit responses, and board reports. - Coach Intelance delivery leads and associates. Raise the ceiling of the practice. - Contribute to proposals and pursuits where senior credibility is required. - Represent Intelance at selected industry events, roundtables, and client briefings. - Input into Intelance service design, pricing, and positioning across the Cyber Assurance practice. - Where interest aligns, advise on adjacent areas: AI governance, enterprise architecture for security, and cyber value creation inside private equity portfolios. Qualifications - 15 or more years in information security, cyber risk, or assurance, with significant time at CISO, partner, director, or head of practice level. - Proven track record leading or overseeing ISO 27001 certifications, complex assurance programmes, and regulated sector engagements. - Deep working knowledge of ISO 27001:2022, IASME Cyber Assurance, NIST CSF, and SOC 2. You do not need all four at expert level, but three at fluent level is the minimum bar. - Credibility at board and executive committee level. Comfortable challenging a CEO, CFO, or private equity sponsor. - Strong existing professional network in the UK cyber and risk community. - Visible and credible LinkedIn presence. This matters for this role. - Based in the UK with the right to work in the UK. - Able to operate outside IR35 via a limited company, or on a compliant basis. - Willing to be named publicly as a Principal Advisor of Intelance Digital Enablement, on our website, proposals, and LinkedIn, while on the panel. - Clean professional record. References at executive level will be taken. Requirements - Former CISO in a regulated sector: financial services, healthcare, legal, defence, critical national infrastructure. - Prior Big Four or top-tier boutique partner or director experience. - Experience inside or advising private equity portfolio companies. - Published thought leadership, keynote or conference track record. - CISSP, CISM, ISO 27001 Lead Auditor, or equivalent senior credentials. Benefits - Senior day rate, negotiated individually, paid on 14-day terms. - Equity or revenue-share arrangements considered for the right individuals on a case-by-case basis. - Named inclusion on the Intelance website, proposal credentials, and selected marketing, with your consent on each instance. - Direct partnership with firm leadership. Real influence over practice direction. - Referral fee on originated client work, negotiated individually given the seniority of this role. - A professional home for senior operators who want to keep shaping serious work without the drag of a Big Four diary. - Quarterly Principal Advisors forum to shape practice strategy. - We are appointing a very small number of Principal Advisors. The bar is high and the selection process is discreet. - Process: confidential conversation with the founder, a structured discussion on a live client situation, references at executive level, and a signed Principal Advisor Agreement. Expect two to four weeks from first conversation to appointment. - Enquiries welcome before a formal application. Company Description Intelance is a strategic consultancy specialising in Enterprise Architecture, AI transformation, and cybersecurity. We help organisations design the systems, structures, and operating models needed to scale, secure, and lead in a volatile world. - Our team combines TOGAF-based architecture thinking with cybersecurity governance (Cyber Essentials, ISO 27001), cloud-native patterns, and AI operating model design. - From EA blueprints to Zero Trust frameworks to AI adoption roadmaps - Intelance transforms complexity into strategic clarity. - We serve public and private sector clients across the UK, Africa, and the Middle East - particularly in regulated industries such as government, healthcare, finance, energy, and pharma.

Role Description We are building a selective associate panel of senior ISO 27001 practitioners. This is a long-term associate relationship, not an employment role. We want a small group of serious operators who can take a client from kick-off to certification without hand-holding, and who treat an Information Security Management System as a business instrument, not a paperwork exercise. - Lead ISO 27001:2022 implementation engagements end-to-end: scoping, gap analysis, risk assessment and treatment, Statement of Applicability, policy architecture, control design, internal audit, management review, and support through Stage 1 and Stage 2 external audits. - Design ISMS scopes that are commercially sensible and defensible, not bloated. - Build risk registers and Statements of Applicability that hold up under scrutiny from UKAS-accredited certification bodies. - Author and tailor policies, procedures, and records aligned to Annex A 2022 controls. No generic templates dropped on clients. - Run internal audits and management reviews that generate real findings, not theatre. - Coach client ISMS owners and control owners so the system survives after handover. - Support clients through external audit, including responding to non-conformities and observations. - Where capacity and interest align, extend into IASME Cyber Assurance, NIST CSF, SOC 2 readiness, and supplier assurance work. - Contribute to Intelance delivery standards, templates, and calibration sessions. Qualifications - ISO 27001 Lead Implementer and Lead Auditor certifications, both preferred. One is the minimum bar. - Minimum five years hands-on ISO 27001 delivery in the UK or European market. - Personally led at least five ISO 27001 implementations to first certification, or conducted at least twenty ISO 27001 audits. - Fluent in the 2022 transition, Annex A control set, and the practical differences from the 2013 version. - Confident authoring a defensible Statement of Applicability in under a week for a typical mid-market client. - Strong commercial judgement on scope, control proportionality, and residual risk. - Excellent written English. Documents must be board-ready and auditor-ready without heavy editing. - Confident operating with CISOs, CTOs, COOs, and private equity sponsors. - Based in the UK with the right to work in the UK. - Able to operate outside IR35 via a limited company, or on a compliant basis. - Willing to be listed publicly as an Associate of Intelance, including on LinkedIn, while on the panel. Requirements - IASME Cyber Assurance, Cyber Essentials Plus, NIST CSF, or SOC 2 experience. - CISSP, CISM, or ISO 22301 credentials. - Sector depth in regulated industries: financial services, healthcare, legal, defence supply chain, SaaS. - Experience inside private equity portfolio environments and 100-day security plans. Benefits - Competitive day rate, paid on 14-day terms. - Right of first refusal on engagements matched to your sector and availability. - Named inclusion on the Intelance Cyber Assurance panel page and on proposal credentials. - Referral fee of up to 10 percent of net first-year fees for associate-originated client work. - Direct access to delivery leadership. No layers, no sub-sub-contracting. - Mature templates, tooling, and a quality framework so your time goes into judgement, not formatting. - Quarterly calibration workshops and co-branded continuing professional development. - A professional home for senior practitioners who want steady, well-run work without the politics of a consultancy payroll.

Role Description We are building a selective associate panel to support a growing book of Cyber Essentials and Cyber Essentials Plus engagements. This is not an employment role. It is a long-term associate relationship for experienced assessors who want steady, well-run work, named inclusion on our panel, and a professional home that treats assurance delivery as a craft. - Conduct Cyber Essentials self-assessment reviews against the current IASME question set and issue certification decisions within agreed service levels. - Deliver Cyber Essentials Plus technical audits, including: - vulnerability scanning - authenticated scans - sample device testing - multi-factor authentication validation - malware protection checks - Write clear, defensible assessment reports and certification recommendations. - Guide client technical contacts through remediation where gaps are identified, without drifting into paid consultancy during the certification window. - Maintain evidence and audit trails to IASME Certification Body standards. - Participate in internal calibration sessions to keep assessment quality consistent across the panel. - Where capacity and interest align, support adjacent work across IASME Cyber Assurance Level 1 and Level 2 and ISO 27001 readiness. Qualifications - Current or recently held IASME assessor licence for Cyber Essentials and Cyber Essentials Plus, or equivalent hands-on delivery experience with a willingness to be licensed under Intelance. - Minimum three years delivering Cyber Essentials Plus technical audits in the UK market. - Strong working knowledge of the five Cyber Essentials controls, the current question set, and common interpretation edge cases. - Practical experience with vulnerability scanning tooling used for Cyber Essentials Plus. - Confident engaging directly with client IT and security leads, including SME owners and enterprise CISO teams. - Based in the UK, with the right to work in the UK. - Able to operate outside IR35 through a limited company, or willing to engage on a compliant basis. - Willing to be listed publicly as an Associate Assessor of Intelance, including on LinkedIn, while on the panel. - Excellent written English. Reports must be client-ready without heavy editing. Requirements - Desirable: ISO 27001 Lead Implementer or Lead Auditor certification. - Experience with IASME Cyber Assurance, NIST CSF, or SOC 2 readiness. - Sector depth in financial services, healthcare, SaaS, or private equity-backed mid-market. Benefits - Competitive day rate and per-certification fee structure, paid on 14-day terms. - Right of first refusal on engagements matched to your sector and availability. - Named inclusion on the Intelance Cyber Assurance panel page and proposal credentials. - Co-branded continuing professional development sessions and quarterly calibration workshops. - Referral fee of up to 10 percent of net first-year fees for associate originated client work. - Direct access to the Intelance delivery leadership. No sub-sub-contracting. No layers. - Clean tooling, templates, and quality frameworks so you spend time assessing, not formatting. Company Description Intelance is a strategic consultancy specialising in Enterprise Architecture, AI transformation, and cybersecurity. We help organisations design the systems, structures, and operating models needed to scale, secure, and lead in a volatile world. Our team combines TOGAF-based architecture thinking with cybersecurity governance (Cyber Essentials, ISO 27001), cloud-native patterns, and AI operating model design. From EA blueprints to Zero Trust frameworks to AI adoption roadmaps - Intelance transforms complexity into strategic clarity. We serve public and private sector clients across the UK, Africa, and the Middle East - particularly in regulated industries such as government, healthcare, finance, energy, and pharma.