1 to 25 of 31 ISO/IEC 27001 Jobs in Surrey

and evaluation of risk, as well as using GRC tools and guidance developed for Risk mitigation. Practical knowledge of information security standards and risk assessment frameworks such as ISO 27001, SOC 2, NIST 800-32 Strong knowledge of cyber controls, policies, and procedures. Experience of delivering metrics for senior level audiences. Demonstrate analytical and problem-solving … to work every day. And you'll never stop growing, whatever your level . Discover more reasons to connect with us, our people and purpose-driven culture at deloitte.co.uk / careers More ❯

highly desirable. Experience of security transformation and delivery of security projects, particularly within a federated organisation. Desirable Skills Knowledge of Information Security and compliance frameworks, including NIST CSF, ISO 27001, Cyber Essentials, PCI DSS, and DORA, and the ability to design controls that align with these standards. Good awareness of risk methodologies and ability to analyse … and fantastic career development and training. That's on top of enjoying all the benefits you'd expect from the world's number one insurance brand, including: Flexible buy / sell holiday options Hybrid working Annual performance related bonus Contributory pension scheme Development days A discount up to 50% on a range of insurance products including car, home and … risk candidate facing potential redeployment, please include this information in your CV. We reserve the right to close the ad early if we reach enough applications. Closing date 04 / 7 / 2025 Join us - Let's Care for Tomorrow. More ❯

with the latest security trends, threats, and technology solutions. Ensure compliance with relevant laws, regulations, and industry standards. Prepare and present security reports to senior management. Skills Preferred Skills / Requirements Ideally around 5 years of experience in cybersecurity or a related field. Knowledge of security frameworks and standards (e.g., ISO 27001, ITIL, NIST). … Experience with security tools and technologies (e.g., firewalls, IDS / IPS). Excellent problem-solving and analytical skills. Strong communication and interpersonal skills. Ability to work independently and as part of a team. Experience with cloud and internet security. Familiarity with regulatory requirements (e.g., GDPR, HIPAA). Qualifications / training desirable but not essential. More ❯

delivery of enhancements to operations based on industry trends; evolving customer and regulatory expectations; and experience, including the digitisation and automation of processes, documentation, and training & awareness. Key Skills / Qualifications needed for this role: Experienced in IT external assurance, IT risk and control assessment, or related fields. Proven experience in carrying out IT security control assessments with skills … ITIL. Certified in CISA or relevant certifications with one of the following: CISM, CISSP, equivalent experience. Strong knowledge of relevant laws, regulations, and industry standards e.g. UK GDPR, ISO 27001, PCI DSS, NIST. Great attention to detail and accuracy. Ability to work independently, manage time and workload effectively in a fast-paced environment. Experience in systems … s why we especially encourage applications from people with diverse backgrounds and experiences. Bupa is a Level 2 Disability Confident Employer. This means we aim to offer an interview / assessment to every disabled applicant who meets the minimum criteria for the role. We’ll make sure you are treated fairly and offer reasonable adjustments as part of our More ❯

security tools (Wiz, Puppet, Nexpose) Proficiency in Python, PowerShell, and other scripting languages Experience in a Security Operations role within a complex environment Understanding of cybersecurity standards and frameworks (ISO27001, NIST800-53, CIS, OWASP,SOC2) Equal Opportunity Employer At WTW, we believe difference makes us stronger. We want our workforce to reflect the different and varied markets we operate in More ❯

Social network you want to login / join with: Senior Information Assurance Consultant, guildford col-narrow-left Client: Location: guildford, United Kingdom Job Category: Other - EU work permit required: Yes col-narrow-right Job Views: 4 Posted: 26.06.2025 Expiry Date: 10.08.2025 col-wide Job Description: Job Title: Senior Information Assurance Consultant Location: Fully Remote (UK-based candidates) Contract Type … is essential. Key Responsibilities: Lead the design and implementation of security management processes for a new service offering. Develop and maintain a unified ISMS aligned with ISO / IEC 27001, NIST, PRISMA, and CoBIT frameworks. Conduct gap analyses and risk assessments to ensure compliance with relevant security standards and regulatory requirements. Collaborate with … and certification activities, ensuring documentation and controls are in place and effective. Proven experience in information assurance, cyber security, or risk management roles. Strong knowledge and practical experience with ISO27001, NIST, PRISMA, and CoBIT frameworks. Demonstrated ability to design and implement ISMS in complex, multi-stakeholder environments. Excellent communication and stakeholder engagement skills. Relevant certifications such as CISSP, CISM, ISO27001 More ❯

with the latest security trends, threats, and technology solutions. Ensure compliance with relevant laws, regulations, and industry standards. Prepare and present security reports to senior management. Skills Preferred Skills / Requirements Ideally around 5 years of experience in cybersecurity or a related field. Knowledge of security frameworks and standards (e.g., ISO 27001, ITIL, NIST). … Experience with security tools and technologies (e.g., firewalls, IDS / IPS). Excellent problem-solving and analytical skills. Strong communication and interpersonal skills. Ability to work independently and as part of a team. Experience with cloud and internet security. Familiarity with regulatory requirements (e.g., GDPR, HIPAA). Qualifications / training desirable but not essential. More ❯

Job Description: Customer IT Assurance Manager Location: Flexible – Staines (TW18 3DZ), London (EC2R 7HJ) or Leeds (LS5 3BF) Flexible / Hybrid working. Permanent £70,000 - £80,000 (Neg depending on experience & location) Role specific benefits: 10% Bonus (Company & Performance related) Full time – 37.5 hours per week We make health happen At Bupa, we’re passionate about technology. With colleagues … and align to Bupa’s services. Oversee the delivery of TEA function including delivery of metrics and reporting; execution of quality assurance to Bupa standards; and effective work planning / allocation / prioritisation. Develop and maintain customer-based content to improve the ongoing operation and delivery of customer IT due diligence, including internal knowledge base, whitepapers and product … by the Head of External Assurance. Own the execution of other activities as directed by Head of External Assurance, including ad-hoc projects and Supplier assurance activities. Key Skills / Qualifications needed for this role: Senior professional experience with direct management responsibilities in either a Big 8 external practice, Internal Audit, or supplier / customer assurance function for More ❯

Job Description: Customer IT Assurance Manager Location: Flexible – Staines (TW18 3DZ), London (EC2R 7HJ) or Leeds (LS5 3BF) Flexible / Hybrid working. Permanent £70,000 - £80,000 (Neg depending on experience & location) Role specific benefits: 10% Bonus (Company & Performance related) Full time – 37.5 hours per week We make health happen At Bupa, we’re passionate about technology. With colleagues … and align to Bupa’s services. Oversee the delivery of TEA function including delivery of metrics and reporting; execution of quality assurance to Bupa standards; and effective work planning / allocation / prioritisation. Develop and maintain customer-based content to improve the ongoing operation and delivery of customer IT due diligence, including internal knowledge base, whitepapers and product … by the Head of External Assurance. Own the execution of other activities as directed by Head of External Assurance, including ad-hoc projects and Supplier assurance activities. Key Skills / Qualifications needed for this role: Senior professional experience with direct management responsibilities in either a Big 8 external practice, Internal Audit, or supplier / customer assurance function for More ❯

Social network you want to login / join with: Principal Security Engineer (Vulnerability Management), woking col-narrow-left Client: Oracle Location: woking, United Kingdom Job Category: Other - EU work permit required: Yes col-narrow-right Job Views: 4 Posted: 26.06.2025 Expiry Date: 10.08.2025 col-wide Job Description: Do you have a passion for high scale services and working with … assurance, at scale, a reality. We are a dedicated team, leveraging each other’s insights and abilities to produce cutting edge solutions to difficult problems through automation and CI / CD. Join us to grow your career and create the future of software assurance at scale together. What You’ll Bring A minimum of 8 years of experience in … current on emerging threats, vulnerabilities, and industry trends Nice to Have Experience automating metrics pipelines using scripting, APIs, or business intelligence platforms. Familiarity with regulatory frameworks (e.g., NIST, ISO 27001, CIS) and how they influence security metrics Prior experience working closely with IT operations, application teams, and others to support remediation and reporting efforts What We More ❯

Social network you want to login / join with: Principal Security Engineer (Vulnerability Management), guildford col-narrow-left Client: Oracle Location: guildford, United Kingdom Job Category: Other - EU work permit required: Yes col-narrow-right Job Views: 4 Posted: 26.06.2025 Expiry Date: 10.08.2025 col-wide Job Description: Do you have a passion for high scale services and working with … assurance, at scale, a reality. We are a dedicated team, leveraging each other’s insights and abilities to produce cutting edge solutions to difficult problems through automation and CI / CD. Join us to grow your career and create the future of software assurance at scale together. What You’ll Bring A minimum of 8 years of experience in … current on emerging threats, vulnerabilities, and industry trends Nice to Have Experience automating metrics pipelines using scripting, APIs, or business intelligence platforms. Familiarity with regulatory frameworks (e.g., NIST, ISO 27001, CIS) and how they influence security metrics Prior experience working closely with IT operations, application teams, and others to support remediation and reporting efforts What We More ❯

Security Management: Oversee the development and implementation of security policies and procedures. Conduct regular security audits and risk assessments. Ensure compliance with relevant regulations and standards (e.g., GDPR, ISO 27001). Leadership and Team Management: Lead and mentor a team of IT professionals. Foster a culture of continuous improvement and innovation. Collaborate with other departments to … executive team. Qualifications: Bachelor's degree in Information Technology, or a related industry experience. Proven experience in IT infrastructure management, service management, and security. Strong knowledge of ITIL, ISO 27001, GDPR, NIS2 and other relevant frameworks. Excellent leadership, communication, and interpersonal skills. Ability to manage multiple projects and priorities in a fast-paced environment. Skills: Technical More ❯

Social network you want to login / join with: At MVW Technology Ltd we are committed to fostering the growth and development of all our team members. We offer a range of professional development opportunities to support both permanent staff and contractors in advancing their skills and careers. Through training programs, mentorship, and access to industry resources, we ensure … technical documentation including architecture diagrams, runbooks, and operational procedures Support the development of technical project plans and participate in change advisory processes Ensure alignment with security standards (e.g. ISO 27001, GDPR) and adherence to governance frameworks QUALIFICATIONS AND SKILLS Proven experience in architecting and deploying Microsoft Intune for MDM and MAM Expert knowledge of Microsoft Autopilot … such as MD-102, MS-102, SC-300, or equivalent (preferred) On-premises and traditional infrastructure technologies including Virtualisation, VDI, storage, firewalls, AV + Threat Protection, Windows Server, DNS / DHCP, backup solutions Strong analytical and documentation skills PERSONAL ATTRIBUTES Motivated self-starter Personable and professional manner Process orientated Humble We actively encourage applications from individuals with disabilities and More ❯

and proposing new technologies Training employees and preparing security reports Requirements: Degree in Computer Science or a related field Extensive experience in cybersecurity, including knowledge of frameworks and standards (ISO27001, NIST), security tools and technologies (firewalls, IDS / IPS), regulatory requirements (GDPR, HIPAA), and cloud / internet security Good communication and interpersonal skills are essential, especially for working More ❯

member firms and stakeholders in the global firm to participate in the Technology Standards and Maturity Assessment with the objective to assess the member firm's overall IT capability / maturity and to help them establish their own priorities. Keep abreast of new and emerging technologies being deployed and ensure risk assessment processes are appropriately applied and advise on … decisions with technology risk impacts as new activities and other change management / transformational initiatives. Leverage available technical resources / tools to research; expand technology risk knowledge to enhance work product, to remain up to date on member firms and line of businesses hot topics while sharing the technology risk knowledge amongst the team where applicable. Advise member … programme process including the use of ServiceNow Integrated Risk Management module to support integrated IT risk Management processes. An understanding of the principals around CMMI, COBIT, ITIL, PMI, Prince2, ISO27001, SOC2. Cybersecurity or IT Risk Management experience which should include either control testing or compliance assessment experience. A strong understanding of system development life cycles approaches and concepts (CMMI knowledge More ❯

Social network you want to login / join with: IT Risk & Control Assurance Manager, Staines-upon-Thames col-narrow-left Client: Bupa Location: Staines-upon-Thames, United Kingdom Job Category: Other - EU work permit required: Yes col-narrow-right Job Reference: 3e794b305c32 Job Views: 4 Posted: 27.06.2025 Expiry Date: 11.08.2025 col-wide Job Description: Job Description: IT Risk … status of all mitigating controls to both Business and Technology risk committees as appropriate. The scope of this role covers all Technology Risks; IT Strategy and Architecture, Service Management / Stability, Capacity / Capability Management, Disaster Recovery and Crisis Management. This role will also integrate the output from the Information Security Risk and Transformation Risk teams into the … overall risk reporting for each Business Unit. You’ll help us make health happen through: Interpreting and communicating to the Business Unit changes to Risk Polices, Business / IT Strategy, legislation that impact the existing Risk and Control Framework. Identifying and assessing Technology Management and Information Security issues so that control environments are properly defined and residual risk regularly More ❯

Azure Solutions Architect (Contract) IaC / Terraform | DevOps | Azure Certifications | Mission-Critical Location: United Kingdom (Hybrid / Remote options depending on project requirements) Contract Type: Day Rate Contract Duration: Initial 6-12 months (extension likely) Role Overview We are seeking an experienced Azure Solutions Architect to join a complex, mission-critical programme within the defence, aerospace, and security … compliant, and cost-effective Azure solutions. Collaborate with cybersecurity teams to ensure solutions meet UK government security classifications, accreditation processes, and relevant compliance frameworks (eg NCSC, MOD JSP, ISO 27001). Support deployment automation and Infrastructure-as-Code (IaC) approaches leveraging Azure Resource Manager (ARM), Bicep, or Terraform. Conduct Azure cost optimisation, performance tuning, and cloud More ❯

business on best practice in information and data security. In this complex company with diverse technologies, you’ll lead CMMC compliance, maintain regulatory compliance with various international security frameworks (ISO27001, NIST), develop the small security team, and provide infosec expertise for technology projects such as improved data / business intelligence. By horizon scanning in Information Security & cyber security, you More ❯

way Work closely with digital, cybersecurity, platform, and business teams to translate strategic goals into practical technical designs Champion security-by-design and compliance with frameworks like NIS2 and ISO27001 Guide architectural decisions across Azure, Power Platform, M365, and related tools Steer innovation, solution modernisation, and cloud governance Manage a team of solution architects, developing capability and fostering a culture More ❯

way Work closely with digital, cybersecurity, platform, and business teams to translate strategic goals into practical technical designs Champion security-by-design and compliance with frameworks like NIS2 and ISO27001 Guide architectural decisions across Azure, Power Platform, M365, and related tools Steer innovation, solution modernisation, and cloud governance Manage a team of solution architects, developing capability and fostering a culture More ❯

identify and log work items against the health and service status of all networking components relating to the environments, including any performance degradation within the service Supporting the 24 / 7 / 365 escalation team by providing cover for network related issues managed by a on-call rota (every other week) Proactive security focus and remediation of tasks … Private medical insurance Access to Mental Health Support Homeworking budget One paid charity day (matched) per year Quarterly company paid team lunches Employee of the Quarter awards (time off / £) Due to the volume of applications received for positions, it will not be possible to respond to all applications and only applicants who are considered suitable for interview will … personal data very seriously. Any information provided to us will be processed as detailed in our Privacy Notice, a copy of which can be found on our website http: / / proactive.it / privacy-notice / More ❯

identify and log work items against the health and service status of all networking components relating to the environments, including any performance degradation within the service Supporting the 24 / 7 / 365 escalation team by providing cover for network related issues managed by a on-call rota (every other week) Proactive security focus and remediation of tasks … Private medical insurance Access to Mental Health Support Homeworking budget One paid charity day (matched) per year Quarterly company paid team lunches Employee of the Quarter awards (time off / £) Due to the volume of applications received for positions, it will not be possible to respond to all applications and only applicants who are considered suitable for interview will … personal data very seriously. Any information provided to us will be processed as detailed in our Privacy Notice, a copy of which can be found on our website http: / / proactive.it / privacy-notice / #J-18808-Ljbffr More ❯

optimized, secure, and monitored, in compliance with ISO 27001 Monitor, identify, and log work items related to network health and performance issues Support the 24 / 7 / 365 escalation team by providing on-call coverage for network issues (every other week) Focus on proactive security measures and remediation based on penetration testing results … Private medical insurance Access to mental health support Homeworking budget One paid charity day (matched) per year Quarterly company-paid team lunches Employee of the Quarter awards (time off / GBP) Due to high application volume, only suitable candidates will be contacted for interviews. Proactive Appointments Limited operates as an employment agency and is committed to equal opportunities. We More ❯

Social network you want to login / join with: We’re looking for a Software Architect to lead the design and development of our flagship product, mCare — a critical platform in our mission to deliver scalable, secure, and user-friendly healthcare solutions. This is your opportunity to influence architecture at a foundational level, collaborate across teams, and deliver meaningful … in Microsoft .NET (C#), including modern versions such as .NET 9. Proven ability to write clean, scalable, and testable code with a strong focus on unit testing and TDD / BDD practices. Demonstrated success in producing robust design documentation and guiding teams through complex system designs. Strong collaboration, delegation, and communication skills — you can articulate technical decisions to technical … app frameworks such as MAUI or Xamarin would be an advantage. Commercial experience in the healthcare domain and familiarity with compliance standards like ISO-27001, NHS DSPT / DTAC is a bonus. What We Offer: A base salary of £75,000 - £85,000 depending on experience Modern town centre offices in Guildford, with opportunity for ad hoc More ❯

similar administrative or operational support role. The successful Business Administrator will be responsible for: Providing administrative support across all departments, maintaining consistent standards and alignment with ISO9001 (Quality) and ISO27001 (Information Security). Maintain and manage internal documentation, including templates, policies, procedures, and controls. Coordinate and control all document filing systems, both electronic and hard copy, with particular responsibility for More ❯