JDA Advisory

Key Competences ISMS BCMS

Key Competences ISMS BCMS – Discover our core competencies and our path to excellence.

We present JDA Advisory’s core competencies, which define our approach to audits, implementations, and training, as well as the values that drive our work and growth – Key Competences ISMS BCMS

Discover the key competencies –

Key Competences ISMS BCMS – We present JDA Advisory’s specialized expertise in audits, implementations, and training for ISO 27001 and ISO 22301, as well as compliance with NIS-2 and DORA.

Key Competences ISMS BCMS- Audit ISO 27001, ISO 22301

Comprehensive information security assessments tailored to your organization.

Training

Practical courses designed to ensure crisis preparedness and business continuity.

Key Competences ISMS BCMS -NIS-2 and DORA Compliant

Support in meeting regulatory requirements for the digital and financial sectors.

How we work

Find out how JDA Advisory supports you at every stage of audits, implementations, and training related to ISO standards and NIS 2 and DORA regulations.

Step 1: Needs Assessment

We begin with a detailed assessment of your organization to tailor the scope of our audits and training programs precisely to your needs.

Step Two: Implementation of Solutions

We carry out customized implementation activities to ensure compliance with ISO 27001 and ISO 22301 standards, as well as NIS-2 and DORA regulations.

Step 3: Training and Support

We provide hands-on training and ongoing support to help maintain high standards of security and compliance within your company.

Lead Auditor – ISO 27001 i ISO 223012, NIS-2, DORA

Lead Auditor – Key Competencies

Subject matter expertise

  • In-depth knowledge of ISO standards (ISO 27001, ISO 22301, ISO 9001, ISO 14001), DORA, NIS-2, PCI DSS, ENISA, and RTS/ITS.
  • Ability to map regulatory requirements to operational processes and audit evidence.
  • Proficiency in risk analysis, internal controls, KRI/KPI, business continuity, and cybersecurity.
  • Understanding of ICT processes, system architecture, incident management, change management, and service management.

Audit responsibilities

  • Planning, conducting, and supervising audits in accordance with ISO 19011.
  • Collecting, verifying, and triangulating audit evidence.
  • Identifying nonconformities, observations, and areas for improvement.
  • Ability to conduct interviews with various levels of the organization (from specialists to management).
  • Objectivity, impartiality, resilience under pressure, and conflict management skills.

Analytical skills

  • Synthesizing large datasets and documentation.
  • Assessing the maturity of processes and controls.
  • Formulating precise, measurable, and business-relevant conclusions.

Communication skills

  • Clear and precise reporting.
  • The ability to translate regulatory requirements into business terms.
  • Conducting opening and closing meetings, presenting audit results.

Organizational competencies

  • Ensuring compliance with ethical standards and confidentiality.
  • Managing the audit team.
  • Planning audit schedules, scopes, and logistics.

Lead Consultant – ISO 27001 i ISO 223012, NIS-2, DORA

Consulting expertise

  • Design and implementation of management systems (ISO 27001, ISO 22301, ISO 9001).
  • Development of compliance programs for DORA, NIS-2, PCI DSS, and RTS/ITS.
  • Development of policies, procedures, guidelines, RACI matrices, process maps, risk registers, and business continuity plans.
  • Conducting gap analyses, impact assessments, risk assessments, and compliance assessments.

Design expertise

  1. Managing end-to-end implementation projects.
  2. Developing schedules, roadmaps, implementation plans, and communication plans.
  3. Managing stakeholders and board expectations.
  4. Monitoring project progress, risks, and dependencies.

Technical and operational competencies

  • Understanding of ITIL/DevOps processes, system architecture, information security, and BCM.
  • Ability to work with IT, SOC, DevOps, Compliance, Risk, HR, and Procurement teams.
  • A practical approach to implementing controls—“minimum bureaucracy, maximum effectiveness.”

Communication and business skills

  • The ability to translate regulatory requirements into concrete operational actions.
  • Conducting workshops, project meetings, and decision-making sessions.
  • Building relationships with clients and positioning oneself as a trusted advisor.

Strategic competencies

  • Designing governance models, roles, responsibilities, and oversight structures.
  • Assessing organizational maturity and recommending areas for development.
  • Aligning regulatory requirements with business objectives.

Tutor – ISO 27001 i ISO 223012, NIS-2, DORA

Teaching skills

  • Designing training programs tailored to participants’ skill levels.
  • Developing training materials: presentations, exercises, case studies, quizzes, and checklists.
  • Ability to conduct in-person and online training sessions.

Communication skills

  • Clear, engaging, and dynamic knowledge sharing.
  • The ability to simplify complex technical issues.
  • Actively engaging participants and facilitating discussions.

Subject matter expertise

  • Expert knowledge in the areas of ISO, DORA, NIS-2, BCM, cybersecurity, and risk management.
  • Up-to-date knowledge—keeping abreast of regulatory changes and industry trends.
  • Ability to present examples from real-world projects and audits.

Interpersonal skills

  • Empathy, patience, and flexibility in adapting the training style.
  • Managing group dynamics.
  • Building an atmosphere of trust and openness.

Evaluation skills

  • Measuring training effectiveness and recommending development initiatives.
  • Assessing participants’ knowledge levels.
  • Providing constructive feedback.
ISO standard

Start your journey to mastery with JDA Advisory.

Meet our experts on ISO 27001 and ISO 22301, and see how our support with audits and training can enhance your company’s security.

Morę information…