1 to 25 of 114 ISO/IEC 27001 Jobs in Berkshire

27001, GDPR, HIPAA). o Work with legal and compliance teams to manage incidents within the scope of data privacy laws and regulations. Key skills / knowledge / experience: Bachelors degree in Computer Science, Information Technology, Systems Engineering, or a related field. Experience: o Minimum of [6-8] years of experience in cybersecurity, with … hunting. o Strong experience in handling complex cyber incidents (e.g.,APTs, ransomware, data breaches). o Hands-on experience with SIEM platforms (e.g., Splunk, ArcSight, LogRhythm) and endpoint detection / response (EDR) tools. Technical Skills: o Proficient in incident response tools and techniques, including network and system forensics, malware analysis, and memory analysis. o Expertise in analyzing and responding More ❯

Social network you want to login / join with: Public or Higher education experience is beneficial An established institution is seeking a Head of Cybersecurity to oversee its cybersecurity operations and establish a robust enterprise security strategy. This role will be instrumental in developing policies, implementing security solutions, and managing risks while ensuring compliance with industry standards and best … with evolving cybersecurity trends, regulations, and best practices. Degree in a relevant field or professional certification (CISSP, CISM, etc.). Strong understanding of cybersecurity challenges, industry standards (GDPR, ISO 27001, NIST CSF, Cyber Essentials), and risk management. Expertise in networking, operating systems, cloud computing, application security, and endpoint security. Experience managing cybersecurity teams and handling security More ❯

Social network you want to login / join with: Chief Information Security Officer, slough col-narrow-left Client: SR2 | Socially Responsible Recruitment | Certified B Corporation Location: slough, United Kingdom Job Category: Other - EU work permit required: Yes col-narrow-right Job Views: 3 Posted: 26.06.2025 Expiry Date: 10.08.2025 col-wide Job Description: Chief Information Security Officer (CISO) ? Location: London … approach to GRC, risk management, threat mitigation, and compliance frameworks. Key Responsibilities Design and implement a scalable GRC framework tailored to the business, addressing risk management, compliance standards (ISO 27001, NIST, SOC 2, etc.), and internal governance controls. Security Strategy: Develop and execute a long-term cybersecurity strategy aligned with business goals, balancing innovation and risk. … years in a senior leadership or CISO role . Demonstrable experience building and scaling a GRC function in a complex environment. Deep knowledge of information security standards (ISO 27001, NIST, CIS), risk frameworks (COSO, FAIR), and regulatory obligations (GDPR, PCI-DSS, SOX). Proven track record of managing enterprise-level security programs, including incident response and More ❯

findings to stakeholders or clients. Maintain thorough documentation of investigation steps, timelines, and decisions taken. ⚖️ Compliance & Risk Mitigation Ensure all incident handling aligns with frameworks such as NIST, ISO 27001, and GDPR. Work with compliance teams to manage regulatory reporting during security incidents. Your Profile 🔑 Essential Skills & Experience: Bachelor’s degree in Computer Science, Information Security … and threat hunting. Proven experience investigating APTs, ransomware, and data exfiltration attempts. Deep knowledge of SIEM platforms (e.g., Splunk, LogRhythm, ArcSight) and EDR solutions. Hands-on experience in network / system forensics and malware analysis. Familiarity with operating systems (Windows, Linux) and cloud environments (e.g., AWS, Azure). Proficiency in scripting languages like Python or PowerShell for automation and More ❯

findings to stakeholders or clients. Maintain thorough documentation of investigation steps, timelines, and decisions taken. ️ Compliance & Risk Mitigation Ensure all incident handling aligns with frameworks such as NIST, ISO 27001, and GDPR. Work with compliance teams to manage regulatory reporting during security incidents. Your Profile Essential Skills & Experience: Bachelor’s degree in Computer Science, Information Security … and threat hunting. Proven experience investigating APTs, ransomware, and data exfiltration attempts. Deep knowledge of SIEM platforms (e.g., Splunk, LogRhythm, ArcSight) and EDR solutions. Hands-on experience in network / system forensics and malware analysis. Familiarity with operating systems (Windows, Linux) and cloud environments (e.g., AWS, Azure). Proficiency in scripting languages like Python or PowerShell for automation and More ❯

metrics. Provide tooling support and maintenance for Identity & Access Management, Privileged Access Management, Endpoint Security, and Network Security. Support compliance with standards and regulations, including GDPR, NIS, and ISO 27001. Monitor and optimise security engineering tool performance, implementing proactive solutions. Stay current on cybersecurity trends, emerging threats, and new technologies. Base location – Hybrid – Clearwater Court, Reading. Working pattern … . Familiarity with a range of operating systems and security considerations across SaaS, IaaS, end-user computing, and server estate. Sound knowledge of network security technologies, including firewalls, IDS / IPS, and NAC. Strong analytical, planning, and organisational skills. Ability to communicate technical issues clearly to non-technical stakeholders. Degree in Cyber Security, Computer Science, Information Technology, Engineering, or … would be great if you also had Previous experience working in a large, complex infrastructure-based or water utility organisation. Experience in systems or network administration in IT and / or OT environments. Experience leading or mentoring others in delivering cybersecurity outcomes. Security engineering vendor or product certifications such as CVA, Microsoft Certified: Azure Security Engineer Associate, Tenable, or More ❯

Social network you want to login / join with: Cyber Vulnerability Management Analyst, slough col-narrow-left Client: FirstBank UK Limited Location: slough, United Kingdom Job Category: Other - EU work permit required: Yes col-narrow-right Job Views: 5 Posted: 26.06.2025 Expiry Date: 10.08.2025 col-wide Job Description: Cyber Vulnerability Management Analyst Fixed Term Contract (Maternity Cover) 18 months … FirstBank UK is a globally recognised, top-tier bank who provide world-class services to various institutions and individuals. Offering a comprehensive range of retail and corporate financial services / products, this thriving business with over 10 million active customers in over 700 business locations is the oldest African bank in the UK. Due to business requirements, we are … vulnerability scoring systems (CVSS / CMSS) Incident / Response & Forensic Management Skills IT Technical Admin Support - Azure, Oracle Cloud Infrastructure (OCI Cloud) Microsoft Windows Support & administration, CE+, ISO27001 Email and Information Security Filtering / Monitoring Solutions, Egress Hands on experience on Linux and Mac Administration Support Good understanding of Windows and Linux patching In return we offer More ❯

role is key in building and improving Primark's Cyber Security posture. Duties & Responsibilities Actively progress and improve Primark's cyber security posture with the delivery of agreed projects / initiatives aligned with industry best practice. Ensure project deliverables are aligned with the Cyber Roadmap with outcomes directly addressing strategic objectives / maturity gaps / audit points. … Advise and lead on solutions with our internal teams / outsourced partners, having a 'hands on approach' including the construction of business cases and contractual arrangements. Have a metric based approach with a structure to enable auditing and managing vendor performance. Coordinating resources, preparing delivery teams for kick-off and ensure effective completion of milestones, controlling scope and mitigating … defining, developing and managing implementation schedules Maintaining a roadmap of future initiatives, that effectively facilitates the prioritisation of delivery plans. Ensuring an ongoing focus on delivering the required quality / value for money and compliance with published standards and guidelines. Co-ordinates cross-functional team members, identifies resources needed, assigns and prioritises tasks / responsibilities and ensures deadlines More ❯

Job Title: SOC Analyst Location: Reading, United Kingdom (Hybrid- 1-2 days / week) Job Type: Contract Inside IR35 Client: Wipro Job Overview: As an OT Senior Cyber Security Analyst, you will be responsible for maintaining SecOps (Security Operations) solutions, controls and processes across the organisation. You will be mentoring and assisting with leading the SOC team to ensure … security alerts from our SIEM tool and 3rd party MSSPs, and to provide appropriate incident response actions. Liaise with technology and business stakeholders in relation to cyber security issues / incidents providing clear descriptions and actions. Support the Cyber Security Operations Lead for security and privacy incidents, triaging events and performing root cause analysis to understand how incidents arise. … an effective continuous improvement process surrounding the services provided. Familiarity desired with Microsoft security operations tools (e.g. Sentinel), and extensive knowledge of other security tools such as SOAR, EDR / XDR and IDAM. Reductions over time in repetitive tickets / alerts demonstrating successful tuning of security tooling and processes. Reduction over time in average time it takes to More ❯

metrics. Provide tooling support and maintenance for Identity & Access Management, Privileged Access Management, Endpoint Security, and Network Security. Support compliance with standards and regulations, including GDPR, NIS, and ISO 27001. Monitor and optimise security engineering tool performance, implementing proactive solutions. Stay current on cybersecurity trends, emerging threats, and new technologies. What you should bring to the role Experience … . Familiarity with a range of operating systems and security considerations across SaaS, IaaS, end-user computing, and server estate. Sound knowledge of network security technologies, including firewalls, IDS / IPS, and NAC. Strong analytical, planning, and organisational skills. Ability to communicate technical issues clearly to non-technical stakeholders. Degree in Cyber Security, Computer Science, Information Technology, Engineering, or … It would be great if you also had Previous experience working in a large, complex infrastructure-based or utility organisation. Experience in systems or network administration in IT and / or OT environments. Experience leading or mentoring others in delivering cybersecurity outcomes. Security engineering vendor or product certifications such as CVA, Microsoft Certified: Azure Security Engineer Associate, Tenable, or More ❯

metrics. Provide tooling support and maintenance for Identity & Access Management, Privileged Access Management, Endpoint Security, and Network Security. Support compliance with standards and regulations, including GDPR, NIS, and ISO 27001. Monitor and optimise security engineering tool performance, implementing proactive solutions. Stay current on cybersecurity trends, emerging threats, and new technologies. What you should bring to the role Experience … . Familiarity with a range of operating systems and security considerations across SaaS, IaaS, end-user computing, and server estate. Sound knowledge of network security technologies, including firewalls, IDS / IPS, and NAC. Strong analytical, planning, and organisational skills. Ability to communicate technical issues clearly to non-technical stakeholders. Degree in Cyber Security, Computer Science, Information Technology, Engineering, or … It would be great if you also had Previous experience working in a large, complex infrastructure-based or utility organisation. Experience in systems or network administration in IT and / or OT environments. Experience leading or mentoring others in delivering cybersecurity outcomes. Security engineering vendor or product certifications such as CVA, Microsoft Certified: Azure Security Engineer Associate, Tenable, or More ❯

from penetration testing reports, working with vendors to remediate vulnerabilities, patch management experience, and working on Windows, Linux, and Azure cloud systems. Also, ability to analyze and remediate SOC / NOC alerts. Our client is a globally recognized bank providing retail and corporate financial services, with over 10 million active customers and more than 700 locations. We are seeking … Security Manager in planning and executing business strategy. Manage remediation of vulnerabilities, including patch testing and implementation within SLA. Collaborate with third-party vendors involved in remediation. Prepare MI / Dashboard reports for stakeholders and support the IT Service desk when needed. Perform daily vulnerability assessments, evaluate, risk assess, and prioritize vulnerabilities, remediating within SLA. Work closely with SMEs … and vendors, especially on cloud technologies like Azure, AWS, and Oracle Cloud Infrastructure. Key Skills / Experience: Essential: Bachelor’s degree in Computer Science, Cyber Security, or related certifications. Desirable: Knowledge of IT security standards (ISO 27001, NIST, CIS, PCI DSS, GDPR). Certifications: CISM, CISSP. Experience with Patch Management, EDR / XDR, Antivirus More ❯

Social network you want to login / join with: Vulnerability Assessment Analyst, Slough Client: The Curve Group Location: Slough, United Kingdom Job Category: Other EU work permit required: Yes Job Views: 4 Posted: 26.06.2025 Expiry Date: 10.08.2025 Job Description: Cyber Vulnerability Management Analyst Fixed Term Contract (Maternity Cover) 18 months Our client is a globally recognised, successful bank providing … world-class services to various institutions and individuals. Offering a comprehensive range of retail and corporate financial services / products, this thriving business has over 10 million active customers in more than 700 locations. We are seeking an experienced Senior Compliance Officer, Monitoring & Assurance. Please note that this is a hybrid role with 3 days in the office and … remediation work related to identified vulnerabilities, including patch testing and implementation within SLA. You will work closely with third-party vendors involved in the remediation process and prepare MI / Dashboard reports for stakeholders. You will also help alleviate the workload of the IT Service desk when needed. Your primary responsibilities include daily assessment of vulnerabilities from scans, evaluating More ❯

SSO, SAML, Entra Connect). Develop and manage automation solutions to streamline infrastructure deployment, management, and monitoring. Implement and optimize automation tools such as Azure DevOps (or other CI / CD pipelines), Terraform, Node-Red, and Packer. Deploy and manage monitoring tools (Zabbix, SolarWinds SentryOne, and other network / database monitoring solutions). Ensure secure cloud infrastructure management … compliance in regulated environments. Proven ability to secure high-value data (PCI cardholder data, PII) and implement security best practices. Strong networking knowledge (LAN, WAN, DNS, DHCP, VPN, TCP / IP). Proficiency in firewall and load balancer technologies for secure environments. Hands-on experience with virtualization platforms (VMware, Citrix Xen) and backup solutions (Veeam or similar). Experience … tools (SolarWinds SentryOne, Zabbix etc.). Excellent problem-solving, communication, and documentation skills. Some familiarity with financial services regulations and compliance (PCI DSS, GDPR, DORA) would be useful. Desirable / bonus skills and experience: Some interest in learning and using automation tools such as Azure DevOps, Terraform, Node-Red, Packer. Scripting and automation skills (PowerShell, Python, Bash, or similar More ❯

and evaluation of risk, as well as using GRC tools and guidance developed for Risk mitigation. Practical knowledge of information security standards and risk assessment frameworks such as ISO 27001, SOC 2, NIST 800-32 Strong knowledge of cyber controls, policies, and procedures. Experience of delivering metrics for senior level audiences. Demonstrate analytical and problem-solving … to work every day. And you'll never stop growing, whatever your level . Discover more reasons to connect with us, our people and purpose-driven culture at deloitte.co.uk / careers More ❯

Social network you want to login / join with: Mandarin Speaking - IT Security Engineer, slough col-narrow-left Client: Location: slough, United Kingdom Job Category: Other - EU work permit required: Yes col-narrow-right Job Views: 5 Posted: 31.05.2025 Expiry Date: 15.07.2025 col-wide Job Description: Role Overview: Additional Information: Please note, this role requires working full-time onsite … through robust cybersecurity measures, ensuring adherence to best practices, international standards, and local regulations. Ideally suited to candidates who possess expert knowledge of security frameworks including NIST 800, ISO 27001, and cybersecurity guidelines from PRA, FCA, and ICO. Candidates with at least 3 years' relevant experience in finance or banking, particularly as an information security officer … knowledge of security frameworks (NIST 800, ISO 27001) and GDPR regulations. Experience with network security infrastructure and SIEM tools (Splunk, SolarWinds). Proficiency in Windows / Linux system administration and virtualization technologies (VMware, Hyper-V). Previous experience within the finance or banking sector is highly advantageous. Certifications (Desirable): CISA, CISSP, CCSP Microsoft Certifications (MCSA More ❯

Social network you want to login / join with: Nothreat is seeking a seasoned and technically proficient Director of Cybersecurity to lead the design, implementation, and continuous evolution of our cybersecurity capabilities. This is a senior leadership role for an individual with deep technical expertise, strategic vision, and hands-on experience in building secure, AI-driven systems. As Director … Nothreat in key client conversations, audits, and industry forums. Requirements 10+ years of experience in cybersecurity, including leadership roles in fast-paced technology environments. 3+ years working with AI / ML systems, securing data pipelines, models, and associated infrastructure. Strong technical background in areas such as application security, cloud security (AWS / Azure), identity and access management, and … SOAR, EDR, vulnerability management, and DevSecOps practices. Deep understanding of modern attack vectors, threat intelligence, and incident response processes. Experience with security frameworks and compliance standards (e.g., NIST, ISO 27001, SOC 2, GDPR). Proven ability to align security priorities with business and product strategy. Demonstrated experience delivering large-scale, cross-functional security projects. Excellent leadership More ❯

SOC Tier 3 Analyst 6 Month contract initially Based: Remote / Reading - Hybrid. Max 3 days p / w onsite. Rate: Market rates p / d (via Umbrella company) We have a great opportunity with a world leading organisation where you will be provided with all of the support and development to succeed. A progressive organisation where … actions are taken to block further attacks. 5. Compliance and Risk Management: o Ensure all incident response activities align with industry standards, regulations, and best practices (e.g., NIST, ISO 27001, GDPR, HIPAA). o Work with legal and compliance teams to manage incidents within the scope of data privacy laws and regulations. Key Skills & Experience: o … methods. o Strong experience in handling complex cyber incidents (e.g., APTs, ransomware, data breaches). o Hands-on experience with SIEM platforms (e.g., Splunk, ArcSight, LogRhythm) and endpoint detection / response (EDR) tools. • Certifications (Preferred ): o Certified Information Systems Security Professional (CISSP) o Certified Incident Handler (GCIH, EC-Council) o Certified Forensic Computer Examiner (CFCE) o GIAC Certified Forensic More ❯

SOC Tier 3 Analyst 6 Month contract initially Based: Remote / Reading - Hybrid. Max 3 days p / w onsite. Rate: Market rates p / d (via Umbrella company) We have a great opportunity with a world leading organisation where you will be provided with all of the support and development to succeed. A progressive organisation where … actions are taken to block further attacks. 5. Compliance and Risk Management: o Ensure all incident response activities align with industry standards, regulations, and best practices (e.g., NIST, ISO 27001, GDPR, HIPAA). o Work with legal and compliance teams to manage incidents within the scope of data privacy laws and regulations. Key Skills & Experience: o … methods. o Strong experience in handling complex cyber incidents (e.g., APTs, ransomware, data breaches). o Hands-on experience with SIEM platforms (e.g., Splunk, ArcSight, LogRhythm) and endpoint detection / response (EDR) tools. *Certifications (Preferred ): o Certified Information Systems Security Professional (CISSP) o Certified Incident Handler (GCIH, EC-Council) o Certified Forensic Computer Examiner (CFCE) o GIAC Certified Forensic More ❯

valued. Because they are. The Team XPS Cyber Security is an expanding team made up of internal cyber security engineers and cyber security operations analysts with an external 24 / 7 Security Operations Centre. The Senior Cyber Security Engineer role will be challenged with researching and implementing the latest technologies in the industry. This environment is highly technical and … security direction and leadership as required with ability to mentor other security team members. Carry out cyber security engineering tasks using best-practice service management (ITIL), to agreed SLAs / KPIs, whilst promoting and adhering to XPS workplace values. Develop an understanding of the threats, risks, vulnerabilities and evolving attack vectors facing the business. Represent Security as Subject Matter … or CCNA / CCNP or equivalent qualifications. Detailed understanding of Security Infrastructure design, IT Security best practice and hardening standards. Computer Science degree, or relevant experience. Knowledge of ISO27001, Cyber Essentials and AAF control frameworks. Excellent written and spoken communication skills with ability to create, update and maintain network diagrams . What We Offer Find out more about Life More ❯

is essential. Key Responsibilities: Lead the design and implementation of security management processes for a new service offering. Develop and maintain a unified ISMS aligned with ISO / IEC 27001, NIST, PRISMA, and CoBIT frameworks. Conduct gap analyses and risk assessments to ensure compliance with relevant security standards and regulatory requirements. Collaborate with … and certification activities, ensuring documentation and controls are in place and effective. Proven experience in information assurance, cyber security, or risk management roles. Strong knowledge and practical experience with ISO27001, NIST, PRISMA, and CoBIT frameworks. Demonstrated ability to design and implement ISMS in complex, multi-stakeholder environments. Excellent communication and stakeholder engagement skills. Relevant certifications such as CISSP, CISM, ISO27001 … Lead Implementer / Auditor, or equivalent. Eligibility for SC clearance or active SC clearance is required. Please note that if you are NOT a passport holder of the country for the vacancy you might need a work permit. Check our Blog for more information. Bank or payment details should not be provided when applying for a job. Eurojobs.com is More ❯

years' experience in at least three of the following fields: Network penetration testing Web and mobile application assessments Cloud penetration testing (Azure, AWS,...) Mastery of Unix / Linux / Windows operating systems, including bash and PowerShell, shell scripting or automation of simple tasks using Python, Ruby or Perl Developing security test automation as part of a DevOps … CI / CD pipeline Knowledge & Skills Excellent ability to think laterally and solve problems in unique ways Ability to relate work to the business, understanding the impact to business processes, not just technical impact Strong knowledge of attacker tools, techniques and procedures Strong understanding of network technologies such as TCP / IP, routing, switching, NAT, Wireless / … ability to research and maintain currency with the latest approaches to penetration testing, including learning new tools and technologies Good understanding of security compliance frameworks (e.g. ISO / IEC 27001, PCI DSS, etc.) Good understanding of common business applications (e.g. content management systems, application servers, databases, etc.) and how to leverage them in More ❯

newly created role to lead and own the organisation’s security capability. You’ll be the go-to person for all things security – managing policy and risk, aligning to ISO27001, CE+ and DORA. There’s strong executive buy-in, a healthy security budget, and a clear commitment to maturing the function. The culture is collaborative, flat-structured, and outcome-focused … with start-up energy when it comes to technology. Responsibilities: Own and lead the security function, frameworks, and controls across multiple entities Deliver CE+ certification and support alignment to ISO27001, DORA, and other regulatory requirements Provide oversight of security tools including Sentinel, Defender, and Azure infrastructure Represent security in governance forums, and provide regular reporting to internal committees and stakeholders … and MSPs to ensure effective security operations and incident response Qualifications: Experience leading or significantly contributing to an organisation’s security posture Strong understanding of GRC and regulatory frameworks (ISO27001, NIST, CE+, DORA, etc.) Technical foundation, ideally in Microsoft Azure security stack Confident engaging with a wide range of stakeholders including engineers, MSPs, regulators, and senior management Someone who thrives More ❯

e.g., sprint planning , retrospectives , and daily stand-ups) to align cross-functional teams. Compliance and Security Ensure identity and access management processes align with regulations like GDPR and ISO 27001 . Implement frameworks like Zero Trust and industry standards. Work closely with the security team to proactively address vulnerabilities in identity systems. Base location – Clearwater Court More ❯

Social network you want to login / join with: Permanent – Competitive salary + benefits North London – 3 days in office (hybrid) Are you a dynamic, people-focused cyber security professional with a passion for improving security in a fast-paced environment? We're working with one of the UK’s leading Retailers on a new opportunity for a Cyber … and support incident response activities, including simulations and live scenarios. Oversee and maintain the outsourced SOC team and other cyber partners. Review and implement policy improvements aligned to GDPR, ISO27001, NIST and other key standards. Deliver impactful security awareness and training programmes across the business. Support audits, penetration tests, and vulnerability management – driving remediation and improvements. Work closely with teams … a cyber security or analyst role within a complex organisation. Broad expertise across identity & access management, security operations, network and data security. Strong working knowledge of ISO / IEC 27001, Cyber Essentials, or NIST frameworks. Experience influencing cross-functional stakeholders – both technical and non-technical. Excellent communicator – able to translate technical risks into More ❯