Get to know iso360 Senior Auditor, Frances Heap in our Q&A

Q: Tell us about yourself, your background, and your experience so far.

I studied Politics at the University of Lincoln (BA) and then completed a Master’s in Politics, Governance and Public Policy at the University of Sheffield.

I really enjoyed researching how governments operate, how legislation is created, and how government processes could be improved in the UK and Europe.

My first role was at Bradford Council as a Junior Governance Officer. I ran school appeals, managed petitions to full council, and clerked various committees including the Governance and Audit Committee and the Keighley Area Committee.

After that, I worked in provisioning — implementing supplier management processes, managing a team of four, and overseeing licensing, asset management, and joiners/movers/leavers.

I later became an Information Security Compliance Officer, where I implemented and audited all areas of ISO27001 and also project managed Cyber Essentials and Cyber Essentials Plus certifications.

Most recently, I worked as an ISO Compliance Officer focused on ISO42001 and developing international working frameworks.

____________________________________________________________________________

Q: Why did you decide to pursue a career in auditing and compliance?

I’ve always liked planning and rules. I love solving problems, and auditing is all of those things wrapped into one role. On the consulting side, being able to go into a business, understand their objectives, plan how to achieve them, and then actually deliver that plan — it’s a great feeling!

____________________________________________________________________________

Q: Are there any particular areas of auditing or the industry that you’re especially passionate about?

Yes, I’m particularly passionate about helping people feel more secure and become more aware of the risks and threats they face. Awareness is such a powerful tool when it comes to managing compliance and protecting a business.

____________________________________________________________________________

Q: Why iso360?

I’ve worked with iso360 over the past two years on the customer receiving side and have learnt a lot from Gray and the rest of the team. The variety and scale of the clients iso360 works with make every project different, and interesting.

Most importantly, it’s the people-first culture. Everyone genuinely cares about each other and their clients — and there’s a strong focus on success and growth, both individually and as a team.

____________________________________________________________________________

Q: What’s a fun fact your colleagues might not know yet?

When I was 9, I lived in Adelaide, South Australia, for a year!

____________________________________________________________________________

Q: What’s a lesson from your career that’s always stayed with you?

That every event — whether it’s positive or negative — is an opportunity to learn something about yourself. If you take the time to reflect and listen to what those moments are teaching you, they’ll help you grow.

____________________________________________________________________________

Q: What’s on your radar for the next 6 to 12 months at iso360?

I’m excited to start meeting our clients, conducting audits, and building strong relationships. I also want to bring fresh ideas to help grow and support the business as we look toward ISO42001 and the world of AI.

____________________________________________________________________________

Q: Can you give us a quick overview of your qualifications?

Absolutely. I’m a certified:

• ISO27001 Lead Implementer

• ISO27001 Lead Auditor