1 to 25 of 39 ISO/IEC 27001 Jobs in Berkshire

on AWS; drive standards, patterns, and guardrails, including Android & applications Lead an effective blended development model with clear SOWs, SLAs, quality gates, secure access, and code ownership. Manage engineering / infrastructure budgets and provide strategic oversight for FinOps practices, unit economics tracking, and the maintenance of a transparent risk register and remediation plans. Execution and delivery Lead disciplined engineering … execution across distributed in-house and outsourced teams. Champion 24 / 7 / 365 platform operations with SLAs, capacity planning, incident response and post-mortems Implement structured software release governance, migration frameworks, and robust QA practices. Drive predictable delivery (quarterly planning, dependency / risk management, quality gates). Establish and enforce best … in-class DevOps, trunk-based, CI / CD, and monitoring standards. Sponsor the adoption of secure SDLC, threat modelling, vulnerability management, identity / authorisation, privacy by design; ISO27001 / 9001, security posture and customer due diligence. Cross-functional leadership Partner closely with Product leaders to ensure product discovery, prioritisation, and delivery processes are respected and aligned. Work More ❯

is a key role within the Information Technology and Security function, responsible for coordinating and managing external and internal security audits, client assessments and maintaining the firm’s ISO 27001 Information Security Management System (ISMS). The position offers significant exposure across international offices and requires collaboration with senior stakeholders, clients, and external certification bodies. Responsibilities … Serve as the primary liaison for client and internal security and compliance audits Manage and maintain the firm’s ISO 27001 ISMS and related deliverables Coordinate internal and external security assessments and certification schedules Lead ISO 27001 audits and manage relationships with certification agencies Manage client security assessments and responses to security … improvements Represent the firm’s security posture to clients and partners Occasional international travel may be required Candidate Requirements ISO 27001 Lead Auditor certification and / or extensive experience with ISO 27001 standards 5+ years’ experience in IT or Security audits, assessments or compliance management Strong understanding of Cyber Essentials Plus More ❯

operations program, organisational structures, and capabilities Possess a deep technical knowledge in Security Incident and Event Management (SIEM) platforms, Security Orchestration and Response (SOAR) technologies, Endpoint Protection and Response / Next Gen Protection and Response (EDR / XDR) tools, Next GenFirewalls, Threat Intelligence and Hunting platforms Defensive Security Skills (desired) : Experience in security operations design, engineering and / … organisations security operations capabilities such as improvements in asset visibility, threat detection capabilities, automation techniques, case management, enablement of compliance and regulatory requirements Experience in conducting threat hunting and / or compromise assessments to identify active or dormant indicators of compromise (IoCs) or evidence of unknown threats within an organisations digital environment Relevant industry certifications including GIAC Defensible Security … Architect (GDSA), GIAC Intrusion Analyst (GCIA), GIAC Continuous Monitoring (GMON), CISSP Understanding of cyber risk frameworks or industry standards such as 800-53, ISO 27001 / 2, PCI, CIS 18, CMMC Principal Cloud Security: 4+ years of experience performing cloud security advisement and risk assessments based upon industry-accepted standards Hands-on experience with a More ❯

maintain relationships with senior stakeholders (CIO, CFO, COO, CISO, Head of Technology) Strong track record in business development and sales within cyber security Experience applying standards such as ISO 27001, IEC 62443, NIS regulations, and NIS CAF Relevant certifications preferred: CISSP, CISM, GISCP, ISA 62443 (or equivalent) Overview Cyber Security Director – Transport … Sector Location: London, Bristol, Birmingham, Manchester area Salary: Competitive, dependent on qualifications and experience Key Skills Cyber security strategy, stakeholder engagement, transport sector expertise, business development, ISO / NIS / IEC standards, leadership, mentoring, hybrid working Why Apply? This is your opportunity to help shape the future of transport by delivering innovative cyber solutions … you don't hear from us within 7 working days, please presume your application has been unsuccessful on this occasion. You are of course free to resubmit your CV / details in the future and we shall assess your suitability at that time. This role is a permanent position. More ❯

cycle (aligned to the PLP) of their digital products in order to generate maximum repeatable income, increase market share, increase profit, ensure return on investment and improve customer satisfaction / experience while responding and aligning to the Division and Group's overall portfolio strategy. The role’s workstreams / packages are validated by the Industry Director and their … beyond the industry or site where they are located, to apply globally and across all industries within the division. Duties & Responsibilities: Manage the resources necessary to deliver the Product / s that they are accountable for efficiently and effectively between the relevant site (Centre of Excellence (CoE / manufacturing facility) and the Regions, Markets, contract / client … the PRD meets the market demand and is fit for purpose aligned to the Product roadmap and business strategy. Develop, release, and manage plans necessary to deliver the Product / s project / program that they are accountable for efficiently and effectively between the site (CoE / manufacturing facility) and the Regions, Markets, contract / client More ❯

in Identity Verification, Managed Endpoints, Threat Detection, Secure Remote Access, and Adaptive Security Policies, balancing exceptional user experience with enterprise grade security. We operate under an ISO / IEC 27001 certified ISMS and an ITIL aligned service management framework, ensuring integrity, resilience, and operational excellence. Joining Zero Plus means being part of a … Log Analytics, and Network Watcher. Automate provisioning and configuration using Terraform, Azure CLI, and PowerShell. Contribute to CI / CD integration for infrastructure as code. Ensure compliance with ISO27001 standards and Zero Trust principles. Manage firewalls, access controls, and threat detection. Maintain accurate documentation and mentor junior engineers. This role gives you the opportunity to deliver secure, modern cloud … national impact. What We’re Looking For We would love to hear from you if you have: Proven experience in Azure networking and cloud infrastructure. Strong understanding of TCP / IP, DNS, DHCP, routing, and firewall principles. Hands-on experience with Azure networking services (VNets, App Gateway, Firewall & WAF, Network Watcher, Load Balancer). Scripting and automation expertise with More ❯

Key Responsibilities Advise staff on data protection obligations under UK GDPR, the Data Protection Act 2018, and ISO standards. Lead privacy-by-design initiatives across projects and ensure data protection is embedded from the outset. Oversee compliance with data protection laws, internal policies, and certification frameworks. Conduct audits, maintain records of processing activities, and ensure corrective actions are … Proven experience as a Data Protection Officer or equivalent privacy leadership role. Deep knowledge of UK GDPR, the Data Protection Act 2018, and related data protection principles. Experience leading ISO27001 and ISO9001 certification activities. Familiarity with applying data protection in scientific research, healthcare, or not-for-profit settings. Understanding of information security standards (e.g., ISO / IEC … management practices, including cloud services, databases, and analytics. 🎓 Education & Certifications Bachelor’s degree or higher in Law, Information Governance, Data Security, or a related field. Certifications such as CIPP / E, CIPM, CISSP, or CISM are highly desirable. 🌟 Skills & Attributes High integrity and independence; able to work autonomously with sound judgment. Exceptional attention to detail and accuracy in documentation. More ❯

and develop partner sales channel Skills: • Expertise in creation of solutions for risk and compliance advisory services (preferable candidates from Big4 organizations) • Capabilities of executing atleast 3-4 advisory / consulting engagements. • Technical Knowledge around information security, business continuity and technology risk assessments. ISO 27K, NIST, AI Governance, CIS etc. • Good compliance understanding of industry domains such … Cyber Recovery, ZTA • GRC Project & Program Management • Excellent written and verbal communications skills • Should be able to travel 70%-80% on short as well as long term engagements. PLATFORM / TOOL EXPERTISE • Experience on the below mentioned tools is not mandated but candidates having exposure to these will be preferred: • MetricStream, Archer, ServiceNow GRC & SecOps, OneTrust QUALIFICATIONS B.E / B.Tech with MBA preferred. Candidates with following Certifications will be preferred: • CISA / CGEIT / CISM / CISSP / CIPP E • ISO 27001 Implementer, Lead Auditor • ITIL V3.0 More ❯

The role is hands-on, client-facing, and service-focused, ideal for someone who wants to develop into consultancy or technical specialisation. Essential Expertise: Previous IT support experience (1st / 2nd line, MSP or client facing environment). Hands-on experience with Dynamics 365 ERP or CRM applications. Exposure to Power Apps or Power Automate. Good knowledge of Microsoft … support for Dynamics 365 ERP (Finance, Supply Chain) and CRM (Customer Service, Sales). Troubleshoot functional, technical, and configuration issues. Support Power Platform (Power Apps, Power Automate) at user / admin level. Manage user administration, security roles, and access across environments. Escalate to consultants and developers for complex fixes, enhancements, or customisations. Assist with Microsoft 365 and Entra ID … / Intune support as required. Monitoring & Improvement Carry out monitoring, patching, and upgrade assurance in line with Microsoft wave releases. Document solutions and contribute to the Managed Services knowledge base. Support continual improvement of processes in line with ITIL v4 practices. Collaboration & Compliance Collaborate with consultants, developers, and other teams to deliver client success. Work within ISO More ❯

Job Title: Head of Networks Location: London Department: Infrastructure & Technology Reports To: Director of Infrastructure / CIO Role Overview The Head of Networks will own the strategy, design, and delivery of the organisation’s network infrastructure across all European data centres, offices, and customer environments. This pivotal leadership role ensures that all network solutions are secure, scalable, resilient, and … to-end design, implementation, and optimisation of LAN, WAN, SD-WAN, VPN, and wireless solutions across all environments. Manage enterprise routing, switching, VLAN segmentation, firewall policies, telephony systems (ISDN / SIP) , and internal / external internet access. Ensure network resilience through robust backup, redundancy, and disaster recovery mechanisms. Lead network capacity planning, performance optimisation, and technology refresh cycles … through to procurement, budgeting, vendor management , and security assessments . Security, Compliance & Governance Partner with Information Security teams to enhance network security posture , addressing vulnerabilities and implementing intrusion detection / prevention systems. Ensure ongoing compliance with ISO 27001, PCI-DSS , and other relevant regulatory standards. Drive a proactive approach to incident response, monitoring, and continuous More ❯

Job Title: SC Cleared PAM Engineer Location: Wokingham (3x days on-site per week) Salary / Rate: £492 inside IR35 Start Date: 03 / 11 / 2025 Job Type: Initial contract until 13 / 02 / 2026 CANDIDATES MUST HOLD AN ACTIVE SC CLEARANCE Company Introduction: We have an exciting opportunity now available with one … of our sector-leading consultancy clients! They are currently looking for a skilled SC Cleared PAM Engineer to join their team in Wokingham on a hybrid basis. Job Responsibilities / Objectives: You will be responsible for designing, implementing, and managing Privileged Access Management (PAM) solutions-such as CyberArk, BeyondTrust, or Delinea-to secure privileged accounts, enforce least-privilege access … teams to ensure seamless PAM integration Provide technical support and troubleshooting for PAM-related issues Stay current with industry trends, threats, and best practices in access management Required Skills / Experience: The ideal candidate will have the following: Experience in PAM engineering or cybersecurity roles Proficiency with PAM tools such as CyberArk, BeyondTrust, or Delinea Strong understanding of Active More ❯

requirements and translate them into secure technical designs. Evaluate and recommend security products, tools, and technologies. Ensure solutions meet compliance, data privacy, and regulatory requirements (e.g., GDPR, HIPAA, ISO 27001). Support solution implementation teams with architecture guidance and technical documentation. Maintain up-to-date knowledge of emerging security threats and best practices to continuously enhance … NIST, ISO 27001, TOGAF. Strong documentation skills with experience writing SDDs, architecture diagrams, and technical specifications. Certifications such as CISSP, SABSA, TOGAF, CCSP, or AWS / Azure Security are a plus. Our company fosters a values-driven and people-centric work environment that enables our employees to: · Accelerate growth, both professionally and personally · Impact the … diversity and work-life wellbeing at the core · Unlock global opportunities to work and learn with the industry’s best Let’s unleash your full potential at Persistent - persistent.com / careers “Persistent is an Equal Opportunity Employer and prohibits discrimination and harassment of any kind. More ❯

someone capable of shaping the future of secure, ethical, and compliant AI adoption across critical environments. What you’ll do This is a senior, strategic consulting role — driving AI / ML security architecture, influencing C-suite direction, and ensuring security-by-design across complex AI systems and data pipelines. You’ll define and deliver AI security strategies, develop reference … end of the band (£90–115K), you’ll need strong consulting experience and commercial awareness alongside deep technical expertise. Key areas of focus Define and implement enterprise-level AI / ML security strategies, policies, and architectures. Lead on AI risk assessment, threat modelling, and mitigation planning. Ensure compliance with GDPR, the EU AI Act, and international security frameworks (ISO … best practice. Communicate complex risks clearly to senior stakeholders and boards. What you’ll bring 7+ years’ strategic cybersecurity experience, ideally in consulting or advisory. Deep understanding of AI / ML security architecture, adversarial ML mitigation, and model governance. Current security certifications such as CISSP or CISM. Proven experience across cloud security, data privacy, and DevSecOps. Familiarity with frameworks More ❯

management framework, ensuring effective identification, assessment, and remediation of risks. Conduct detailed risk and control assessments across business units, projects, vendors, and IT systems, aligning with standards like ISO 27001, NIST CSF, and CIS Controls. Manage and enhance Third-Party Risk Management, including cybersecurity assessments of external partners and suppliers. Collaborate with stakeholders to develop and … practices, while fostering strong relationships to embed a risk-aware culture across the organisation. Experience you will have: Expertise in cybersecurity risk frameworks and compliance, including CIS Controls, ISO 27001, NIST CSF, GDPR, SOX, and PCI. Strong technical and analytical skills, with the ability to assess risks, identify gaps, and propose mitigation strategies across IT systems More ❯

Will the role be 100% remote, hybrid or 100% office? Hybrid If role is hybrid, how many days in office ? 3 Days in Office If the role is hybrid / office based specify location / work address in UK&I: TCS-Reading Duration of assignment ( Max 6 months ): 6 months Seeking a highly experienced SOC L2 Analyst to … 27001, GDPR, HIPAA). Work with legal and compliance teams to manage incidents within the scope of data privacy laws and regulations. Your Profile Essential skills / knowledge / experience: (Up to 10, Avoid repetition) Bachelor's degree in Computer Science, Information Technology, Systems Engineering, or a related field. Experience: Minimum of [6-8] years … or threat hunting. Strong experience in handling complex cyber incidents (e.g., APTs, ransomware, data breaches). Hands-on experience with SIEM platforms (e.g., Splunk, ArcSight, LogRhythm) and endpoint detection / response (EDR) tools. Technical Skills: Proficient in incident response tools and techniques, including network and system forensics, malware analysis, and memory analysis. Expertise in analyzing and responding to threats More ❯

Engineer to support the growth of UK public sector accounts. This is a remote, client-facing role for a highly technical and experienced presales professional with a strong Government / Public Sector background and current DV clearance. Key Requirements Essential skills and experience: 15+ years’ experience in IT, with at least 10 years in presales, network engineering, or technical … support with demonstrable success supporting UK Government or public sector clients Strong expertise in: Cisco routing, switching, gateways, and applications TCP / IP, SNMP, Netflow, VoIP LAN / WAN topologies (MPLS, Frame Relay, ATM) Security concepts and network infrastructure design Network performance and fault / alert management Solid understanding of: Operating systems – Linux, Windows Cloud and virtualisation … technologies – SDN / NFV, Public / Private Cloud Performance tools – HP / OV, Tivoli, EMC SMARTS, ArcSight Relevant certifications – CCNP or CCIE or Juniper equivalent Formal presales training (e.g. Sandler, Siebel, Afterburner, Udemy) Excellent communication and presentation skills – verbal, written, and visual Desirable qualifications: Degree in Computer Science, Software Engineering, or equivalent technical military training Knowledge of More ❯

and process optimisation. About You Degree in Computer Science, Engineering, or related field (or equivalent experience). Proven experience in QA management or senior QA roles, ideally in Agile / Scrum environments. Strong understanding of software QA methodologies, automation frameworks, and best practices. Experience with automated testing tools and scripting languages. Skilled in performance, usability, or security testing (desirable … Server or similar database technologies (desirable). Excellent analytical, problem-solving, and organisational skills. Strong communicator with the ability to influence technical and non-technical stakeholders. Experience with ISO 9001 and ISO 27001 standards advantageous. Previous leadership experience essential. More ❯

CyberArk, OpenText, ServiceNow and Microsoft to enhance the relationship with Turnkey and deliver value to our clients When needed, work alongside our Sales, Marketing & Innovation team to provide materials / Pre-Sales support for sales activities Writing and reviewing reports and other client-facing deliverables, to a high standard The expectation will be that you have basic skill in … IAM vendors capabilities (e.g. Life Cycle Management, Application Onboarding, Workflows, Provisioning, Access Review, Reports, Roles, SoDs, etc.) Identity Governance and Administration (IGA) Identity Management (IDM) Ideally with good conceptual / practical knowledge of: Access Management (inc. Single Sign-On (SSO) / Multi-Factor Authentication (MFA) / Password-less Authentication) Privileged Access Management (PAM) Consumer Identity (CIAM) Required … an IAM solution across all aspects of the SDLC (Analyse, Design, Develop / Configure, Test, Deploy, Document) Understanding of regulatory frameworks, and their application to IAM, e.g. SOx, ISO27001, NIST, HIPAA, GDPR, PSD2, etc. Ideally, an education in Business, IT, IT security or related field Advantageous: Professional certifications such as CISSP, CISA, ITIL, etc. Product certifications from SailPoint, or More ❯

role, and you’ll have a knowledge of security standards and processes such as ISO 27001 standards, (NCSC) CAF, Cyber Essentials, NIST and Cyber Essentials / Plus. We’ll also look for your experience in: Developing cyber policy and procedures Data protection and privacy Security change management Understanding business continuity resilience and incidence response Networks More ❯

collaborate with stakeholders across the firm, including General Counsel, Information Security, and Emerging Tech Risk teams, helping to shape best practices and ensure compliance with regulations such as UK / EU GDPR, DORA, HIPAA, and EU AI Act. The role offers a dynamic mix of hands-on risk management, internal auditing, and strategic input into global processes. It’s … a keen interest in evolving tech risks. Key highlights: Support global data risk initiatives and cyber incident response Conduct DPIAs and manage Records of Processing Activities Collaborate on ISO 27001 audits and phishing exercises Engage with AI and emerging tech compliance Liaise with Risk Operations and General Counsel on … data sourcing and best practice Ideal Profile: 2–5 years’ experience in data protection, risk, or compliance Strong working knowledge of UK / EU GDPR, DORA, HIPAA, and ISO27001 Experience in professional services (law firm experience is a plus) Confident stakeholder engagement and communication skills *Visa sponsorship is not available for this position More ❯

Intelligence, Vulnerability Management, Security Testing, Security Architecture, Infrastructure Protection, Application Security, Identity and Access Management, Incident Investigation & Response and Cryptography Additional skills and experiences would be great to have / bring: Experience working in a regulated environment Experience within the water utility industry or large, complex critical national infrastructure Experience in internal audit, external audit, or assurance functions related … to IT or cybersecurity Professional certifications such as CISA, CISSP, CRISC, or ISO 27001 Lead Auditor are advantageous Whats in it for you? Competitive salary of up to £78,000 per annum depending on experience Annual Leave - 26 days holiday per year increasing to 30 with the length of service (plus bank holidays) Performance-related pay More ❯

Azure Cloud Architect | Azure Landing Zones, Terraform, Kubernetes | Greenfield Banking Platform £600–700 per day (Outside IR35) Initial 5-month contract (extensions likely) Hybrid: London (2 days / week on-site) The Role You’ll join a small, high-impact engineering team building a greenfield, enterprise-scale Azure platform for a new US banking venture. As the Azure Cloud … What You’ll Work With Azure Cloud (CAF, Enterprise Scale, Microsoft accelerators) Terraform for provisioning, automation, and reusable module design Kubernetes and container services for orchestration GitHub for CI / CD pipelines and workflow automation Azure security and governance tooling: Key Vault, Policy, Defender, Sentinel Microsoft ecosystem integration : M365, D365, Power Platform, SaaS services Event-driven architecture and API … 27001 , or NIST security frameworks Exposure to multi-cloud environments (AWS, GCP) Familiarity with Kanban delivery , architecture decision records (ADRs) , and collaborative design facilitation Why Join / Projects This isn’t just about cloud enablement - it’s about defining how a bank runs in the cloud. You’ll help build a bank-grade Azure platform from More ❯

define the data vision and enable meaningful business transformation. Key Responsibilities Lead the design and implementation of a modern cloud data platform (Azure, AWS, or GCP). Develop ETL / ELT pipelines to manage structured and unstructured data at scale. Enable self-service BI and deliver insights through Power BI dashboards and advanced analytics. Integrate AI and automation into … in complex organisations. Expertise in cloud data platforms and data processing services. Strong skills in Python, SQL, and Power BI (DAX, Power Query, data modelling). Knowledge of ETL / ELT pipelines, data warehousing, and data mesh architectures. Familiarity with AI / ML applications, metadata management, and data lineage tracking. Excellent communication and stakeholder management skills. Degree in … to 10% employer pension contribution Private medical insurance via Bupa Generous family, fertility, and wellbeing policies Hybrid and flexible working arrangements Paid volunteering day each year Access to 24 / 7 wellbeing and mental health support To find out more click apply or email jon@burnssheehan.co.uk More ❯

problem-solving mindset, with a desire to understand how systems and processes work – and how they can fail. Interest in cloud computing (e.g. AWS, Azure), data pipelines, and AI / ML technologies. Confident communicator, able to work collaboratively and adapt in a fast-paced environment. Comfortable working with data – familiarity with Python, SQL, or data tools is a plus. … Bonus: Knowledge of AI ethics, data privacy, cybersecurity, or relevant industry frameworks (e.g. ISO 27001, NIST, etc.). Location: London Should you not be contacted within five working days of submitting your application, then unfortunately you have not been shortlisted for the opportunity. We will, however, be in touch should there be any other opportunities of More ❯

and reduction of technical debt Enhance and secure the global IT estate, including patching , IAM , endpoint protection , and monitoring Own and optimise disaster recovery , business continuity , and compliance ( ISO 27001 , GDPR , FCA ) Oversee third-party vendors to ensure performance, SLAs, and service delivery are met Embed DevOps principles and automation to increase efficiency and reliability What More ❯