The Effect of ISO/IEC 27001 Training on Students’ Careers

New opportunities for IT students: Cardiff Metropolitan University partners with industry leaders to bridge skills gap.

In a recent collaboration between SGS, an ISO consultancy, and Cardiff University, an exciting employment opportunity emerged for students with backgrounds in computer science. The discussion highlighted a pressing need in the market for ISO/IEC 27001 information security auditors, presenting a promising career path characterized by variety, security, longevity, and financial reward.

What is ISO/IEC 27001?

ISO/IEC 27001 is an internationally recognized standard specifying requirements for establishing, implementing, maintaining, and improving an information security management system (ISMS). Its revision in 2022 underscores its relevance in addressing evolving cybersecurity challenges, emphasizing the importance of organizations demonstrating conformity to recognized information and cybersecurity standards.

Why the need for ISO/IEC 27001 auditors?

The growing demand for ISO/IEC 27001 certification has resulted in a global skills gap, with many auditors nearing retirement age and insufficient younger professionals stepping up to fill their roles. Recognizing this gap, industry leaders and academia convened to explore collaborative ventures aimed at addressing this challenge.

Putting ideas into action

During a South Wales Cyber Security Cluster meeting, attendees proposed collaborative ventures between industry and academia. Anthony Matthews, Managing Director at Charmwood Risk Management, a specialized consulting firm in Cardiff, highlighted the opportunity to bridge the skills gap in the market for ISO/IEC 27001 auditors.

Anthony, with over 22 years of experience in the certification industry, collaborated with Dr. Chaminda Hewage, Programme Director for Computer Security at Cardiff Metropolitan University, to empower IT students through upskilling. Leveraging Anthony's involvement in SGS's Consultants Connect program, they incorporated ISO/IEC 27001 auditor training into the university's Masters course in IT Security.

Success stories

Funding from Cardiff Metropolitan University enabled Geoff Green, an SGS ISO/IEC 27001 trainer, to conduct internal auditor training for 27 IT Security Masters’ students. Graduates of the program like Rahmi Hussain and Macey Jane George credit the certification for landing roles at Admiral (EUI), emphasizing its role in enhancing their employability.

Future collaborations

Reflecting on the success of the initiative, Anthony, Chami, and Vanda Bell, Head of Sales and Key Accounts at SGS UK, are exploring additional collaborations with Cardiff Metropolitan University. They aim to identify courses where an internal auditor certification could provide added value, further enhancing students' career prospects.

Next Steps

To learn more information about this opportunity please download the full case study.

For further information, please contact:

Gareth Hurley
Academy Sales Coordinator
Business Assurance
t: +44 (0)1276 697704