4 of 4 ISO 27001 Lead Implementer Jobs in the South West

manage internal and external Security Working Groups. Support Serco Defence projects and design activities, ensuring compliance with MOD Secure by Design, HMG policy, NCSC guidance, NIST 800, and ISO 27001. Advise on technical requirements and compliance with formal contract security schedules (Security Aspects Letters) and recommend security technologies and controls. Provide advice and guidance to maintain existing … cyber security compliances (e.g., ISO 27001, Cyber Essentials Plus), MOD certifications, and HMG security controls. Adopt a proactive approach to security management and assurance coordination, ensuring smooth running of scheduled activities and gaining trust of key stakeholders. Engage with external audit and assurance providers, scope test plans, help stakeholders interpret test results, and support … breaches. What you’ll need: In-depth knowledge and experience with MOD policies and standards, including Secure by Design, JSP 440, and DefStan 05-138 / DCPP. ISO27001 Lead Implementer / Auditor, CISSP or CISM. Strong understanding of data protection compliance and relevant privacy certifications. Proficiency in risk management using recognised frameworks like NIST. More ❯

standards. The role offers the opportunity to influence mission-critical projects within the marine and defence domain, applying structured cybersecurity assurance approaches to complex, multidisciplinary delivery environments. Responsibilities Lead or support integrating cybersecurity assurance activities into engineering and programme delivery for marine and defence projects. Develop, review, and maintain cybersecurity assurance artefacts, including risk assessments, assurance cases … capabilities. Qualifications A degree (or equivalent experience) in Cybersecurity, Information Assurance, Systems Engineering, or a related technical or defence-focused discipline. Recognised cybersecurity certifications: CompTIA, CISSP, CISM, CRISC, ISO 27001 Lead Auditor / Implementer, or equivalent. Familiarity with MOD, maritime, or defence-specific frameworks: JSPs, DEFSTAN, NIST, IEC 62443, IMO or ISO / IEC 27001. SC clearance (or eligibility to obtain SC as a minimum) is required; DV clearance is desirable depending on the programme needs. Evidence of ongoing professional development aligned with cybersecurity assurance, defence sector standards, and engineering-led delivery models. Essential skills Strong understanding of cybersecurity assurance principles, risk management More ❯

leading to nationally recognised qualifications, such as chartered or principal status with the UK Cyber Security Council, or certifications such as CompTIA, NIST, PCiIAA, CISMP, CISSP, CREST, ISO27001 Lead Implementer / Auditor, SABSA, and TOGAF. A Mentor will be on hand to provide support and guidance throughout your journey with Actica. You will also More ❯

we do. About the Role As an Information Security Analyst , you will help shape and execute our security and compliance strategy. You will support compliance frameworks such as ISO / IEC 27001, SOC 2, HIPAA, and GDPR , help manage risk, and ensure that security practices are embedded in our daily operations. You’ll … within the team, taking ownership of operational security work while contributing to strategic initiatives over time. Things you will do: Support and manage Typeform’s compliance programs, including ISO, SOC 2, and HIPAA. Assist in third-party risk assessments, vendor security reviews, and customer security inquiries. Work closely with Vanta (our compliance automation platform) to manage security … the organization. What you already bring to the table: Experience in information security, risk management, or compliance, preferably in a SaaS environment. Understanding of security frameworks such as ISO / IEC 27001, SOC 2, HIPAA, and GDPR . Experience with security compliance automation tools (e.g., Vanta, Drata, or similar platforms). Ability to More ❯