14 of 14 ISO 27001 Lead Auditor Jobs in the UK excluding London

all about? The Information Security Analyst is primarily responsible for ensuring compliance with information security frameworks such as Cyber Essentials, Cyber Essentials Plus, ISO 27001, ISO 27701, ISO 42001, GDPR, and DORA. This role focuses on internal audits … and preparing for external audits. Gap Assessments: Facilitate and / or conduct internal gap assessments and audit readiness evaluations for frameworks such as ISO 27001, GDPR, and DORA. Framework Tracking: Monitor updates to Cyber Essentials, ISO, and regulatory frameworks and ensure … vulnerabilities in coordination with IT and Security Operations teams. Have you got what it takes? Strong expertise in audit and compliance frameworks, including ISO 27001, ISO 27701, ISO 42001, GDPR, DORA, Cyber Essentials, and Cyber Essentials Plus. Familiarity More ❯

in revenue, and supports more than 60,000 clients across a diverse range of sectors and markets. Role Purpose: An Information Security Officer (ISO) is required to support LRQA's global operations, to develop, improve and maintain the organisation's Information Security capability. Working closely with the … including Military, Defence and Critical National Infrastructure) whilst working with stakeholders across the globe to identify, manage and assess information security risks. The ISO will work proactively with Clients, IT Operations, Security Operations, Legal, Procurement, Learning and Delivery Teams to manage risk, increase awareness and champion adherence … continually improve LRQA's ISMS. Identifying areas for improvement within the ISMS and take ownership of developing and executing plans for their resolution. Lead and manage all certification activities related to ISO 27001:2022. Ensure that any business changes, acquisitions, or More ❯

in revenue, and supports more than 60,000 clients across a diverse range of sectors and markets. Role Purpose: An Information Security Officer (ISO) is required to support LRQA's global operations, to develop, improve and maintain the organisation's Information Security capability. Working closely with the … including Military, Defence and Critical National Infrastructure) whilst working with stakeholders across the globe to identify, manage and assess information security risks. The ISO will work proactively with Clients, IT Operations, Security Operations, Legal, Procurement, Learning and Delivery Teams to reduce and manage risk, increase awareness and … continually improve LRQA's ISMS. Identifying areas for improvement within the ISMS and take ownership of developing and executing plans for their resolution. Lead and manage all certification activities related to ISO 27001:2022. Ensure that any business changes, acquisitions, or More ❯

assurance, and oversight Ability to influence stakeholders and communicate effectively at all levels, including non-technical audiences Knowledge of security frameworks such as ISO 27001, NIST, or similar Experience identifying control gaps and working across functions to address them Comfortable working in a collaborative … solutions-focused environment Sector background is flexible – consulting, commercial, or industry experience welcome Relevant certifications (CISM, CISSP, CRISC, ISO 27001 Lead Auditor) are a plus, but not required This role it's a great fit for someone who More ❯

other IT services). Collaborate with client teams to develop, document, and implement security policies, standards, and guidelines aligned with industry standards (e.g., ISO 27001, NIST). Assist in the deployment, configuration, and management of security infrastructure and technologies, including firewalls, intrusion detection / … off. CERTIFICATIONS: CCNP / CCNA is nice to have. CREST / OSCP is nice to have. Microsoft and / or other cloud providers. ISO 27001 Lead auditor is a nice to have. SKILLS: Working knowledge of cloud security More ❯

control, and compliance effectiveness, you'll work across functions to support operational resilience and maintain alignment with global security and regulatory frameworks including: - ISO / IEC 27001:2022 - NIST Cybersecurity Framework - PCI-DSS 4.0.1 - UK GDPR, NIS2 Directive, CAP1753, and related sector obligations … to relevant stakeholders Colloborate with procurement and key suppliers to ensure their ongoing security posture meets Virgin Atlantic requirements Conduct internal reviews against ISO, NIST, PCI, UK GDPR, and emerging requirements Support internal / external audits, evidence readiness, and corrective action tracking Maintain the policy and control … networks and systems is incorporated in project design. About you CRISC / CISA / CISM certification through ISACA or an equivalent professional body. ISO 27001 Lead Implementer / Auditor certification Sound knowledge of information security governance practices, working More ❯

and cybersecurity stakeholders to ensure that security requirements are appropriately defined, evidenced, and governed in alignment with relevant defence and maritime standards. Responsibilities Lead or support integrating cybersecurity assurance activities into engineering and programme delivery for marine and defence projects. Develop, review, and maintain cybersecurity assurance artefacts … equivalent experience) in Cybersecurity, Information Assurance, Systems Engineering, or a related technical or defence-focused discipline. Recognised cybersecurity certifications: CompTIA, CISSP, CISM, CRISC, ISO 27001 Lead Auditor / Implementer, or equivalent. Familiarity with MOD, maritime, or defence-specific … frameworks: JSPs, DEFSTAN, NIST, IEC 62443, IMO or ISO / IEC 27001. SC clearance (or eligibility to obtain SC as a minimum) is required; DV clearance is desirable depending on the programme needs. Essential skills Strong understanding of cybersecurity assurance principles, risk management, and regulatory More ❯

and cybersecurity stakeholders to ensure that security requirements are appropriately defined, evidenced, and governed in alignment with relevant defence and maritime standards. Responsibilities Lead or support integrating cybersecurity assurance activities into engineering and programme delivery for marine and defence projects. Develop, review, and maintain cybersecurity assurance artefacts … equivalent experience) in Cybersecurity, Information Assurance, Systems Engineering, or a related technical or defence-focused discipline. Recognised cybersecurity certifications: CompTIA, CISSP, CISM, CRISC, ISO 27001 Lead Auditor / Implementer, or equivalent. Familiarity with MOD, maritime, or defence-specific … frameworks: JSPs, DEFSTAN, NIST, IEC 62443, IMO or ISO / IEC 27001. SC clearance (or eligibility to obtain SC as a minimum) is required; DV clearance is desirable depending on the programme needs. Essential skills Strong understanding of cybersecurity assurance principles, risk management, and regulatory More ❯

or IA Architect (or similar). Eligibility to obtain and maintain high-level UK security clearance . Desirable: Senior CESG certification (SCCP). ISO 27001 Lead Auditor or Implementer. Membership with a relevant professional body such as MInstISP. More ❯

experienced and proactive QSA Consultant with: Essential: PCI QSA certification, supported by one or more of the following: CISSP, CISA, CISM, or ISO27001 Lead Auditor + Lead Implementer certifications. Experience: Minimum 2 years in cybersecurity, with strong technical knowledge to conduct … training on PCI DSS and / or ISO27001. Knowledge of multiple information security frameworks with the expertise to conduct gap analysis and assessments (ISO 27001, SOC2, SWIFT CSCF). Why Join Us? Competitive Salary: £60,000 to £70,000 per annum, depending on experience. More ❯

risk frameworks Excellent problem-solving and analytical skills Able to work independently and cross-functionally Strong written and verbal communication Desirable Qualifications: ISO27001 Lead Auditor / Implementer Certification Certified Information Systems Auditor (CISA) or equivalent Degree in IT , Computer Science , or More ❯

environments. Desirable Certifications CompTIA Security+, CISSP, CISM, CCSP, TOGAF, SABSA SCF. CESG Certified Cyber Professional (CCP) in Security Architecture or Risk Management. ISO27001 Lead Auditor. Why Join DXC Technology? At DXC, you will work on high-profile security projects, collaborating with some of the industry's top More ❯

role in multiple certification projects. You have worked independently, are friendly, and possess charisma. Desired You hold relevant certifications such as CISA, ISO27001 Lead Auditor, CISSP, etc. You have experience working with ISO9001, DORA, NIST, and other relevant regulations. You have experience in Data More ❯

improvements Strong working knowledge of MS Office programmes , including Excel Understanding of information and cyber security principles Desirable: Previous use of SAP ISO27001 Lead Auditor Experience of working with commercial or legal documents Experience of producing reports / formal documents Benefits: You'll receive More ❯