1 to 25 of 33 ISO 27001 Lead Implementer Jobs in the UK excluding London

dedicated Cyber Security? We have an exciting opportunity for an Information Security Consultant looking to elevate their career. We're looking for someone with hands-on experience in ISO 27001 implementation and auditing, and expertise in NIST to drive our Compliance Team's service offerings forward. Work with a innovative, industry-leading Cyber Security … to build relationships with internal and external stakeholders Hands-on experience in ISO27001 implementation and auditing Eligibility for Security Clearance Certifications Preferred: ISO / IEC 27001 Lead Implementer ISO / IEC 27001 Internal Auditor CISM / CISSP Salary & Benefits More ❯

manage internal and external Security Working Groups. Support Serco Defence projects and design activities, ensuring compliance with MOD Secure by Design, HMG policy, NCSC guidance, NIST 800, and ISO 27001. Advise on technical requirements and compliance with formal contract security schedules (Security Aspects Letters) and recommend security technologies and controls. Provide advice and guidance to maintain existing … cyber security compliances (e.g., ISO 27001, Cyber Essentials Plus), MOD certifications, and HMG security controls. Adopt a proactive approach to security management and assurance coordination, ensuring smooth running of scheduled activities and gaining trust of key stakeholders. Engage with external audit and assurance providers, scope test plans, help stakeholders interpret test results, and support … breaches. What you’ll need: In-depth knowledge and experience with MOD policies and standards, including Secure by Design, JSP 440, and DefStan 05-138 / DCPP. ISO27001 Lead Implementer / Auditor, CISSP or CISM. Strong understanding of data protection compliance and relevant privacy certifications. Proficiency in risk management using recognised frameworks like NIST. More ❯

Job Title: Cyber Security Lead Location: West Midlands, United Kingdom Salary: £62,000 - £73,000 (depending on experience) + Bonus + Excellent Benefits Clearance: Must be a British National and SC Cleared or Eligible About the Role: We are seeking a proactive and experienced Cyber Security Lead to drive and enhance our organisation's … across the business. You will work closely with the Security Operations Centre (SOC), senior stakeholders, and cross-functional teams to maintain a secure and resilient environment. Key Responsibilities: * Lead the response to cyber security incidents, ensuring timely resolution and root cause analysis. * Oversee the development and implementation of information security compliance and assurance programmes. * Ensure alignment with … ISO 27001, NIST, and other relevant security frameworks. * Collaborate with the SOC to monitor, detect, and respond to cyber threats. * Manage governance, risk, and compliance (GRC) activities, including risk assessments and mitigation strategies. * Promote a security-first culture through internal training and mentoring. * Communicate cyber risks, strategies, and progress effectively to stakeholders. * Stay informed More ❯

approval, candidates may be permitted to start the role prior to clearance being fully completed. Role Overview: We are seeking a highly experienced Senior Information Assurance Consultant to lead the development and implementation of security management processes for a new, high-profile service. This role will be instrumental in establishing and integrating a comprehensive Information Security Management … working on a critical and impactful programme. As the role involves working with sensitive information, eligibility for SC clearance or holding active SC clearance is essential. Key Responsibilities: Lead the design and implementation of security management processes for a new service offering. Develop and maintain a unified ISMS aligned with ISO / IEC 27001, NIST, PRISMA, and CoBIT frameworks. Conduct gap analyses and risk assessments to ensure compliance with relevant security standards and regulatory requirements. Collaborate with stakeholders across technical and business teams to embed security best practices throughout the service lifecycle. Provide expert guidance on information assurance, governance, and risk management strategies. Support audit and certification activities, ensuring More ❯

approval, candidates may be permitted to start the role prior to clearance being fully completed. Role Overview: We are seeking a highly experienced Senior Information Assurance Consultant to lead the development and implementation of security management processes for a new, high-profile service. This role will be instrumental in establishing and integrating a comprehensive Information Security Management … working on a critical and impactful programme. As the role involves working with sensitive information, eligibility for SC clearance or holding active SC clearance is essential. Key Responsibilities: Lead the design and implementation of security management processes for a new service offering. Develop and maintain a unified ISMS aligned with ISO / IEC 27001, NIST, PRISMA, and CoBIT frameworks. Conduct gap analyses and risk assessments to ensure compliance with relevant security standards and regulatory requirements. Collaborate with stakeholders across technical and business teams to embed security best practices throughout the service lifecycle. Provide expert guidance on information assurance, governance, and risk management strategies. Support audit and certification activities, ensuring More ❯

approval, candidates may be permitted to start the role prior to clearance being fully completed. Role Overview: We are seeking a highly experienced Senior Information Assurance Consultant to lead the development and implementation of security management processes for a new, high-profile service. This role will be instrumental in establishing and integrating a comprehensive Information Security Management … working on a critical and impactful programme. As the role involves working with sensitive information, eligibility for SC clearance or holding active SC clearance is essential. Key Responsibilities: Lead the design and implementation of security management processes for a new service offering. Develop and maintain a unified ISMS aligned with ISO / IEC 27001, NIST, PRISMA, and CoBIT frameworks. Conduct gap analyses and risk assessments to ensure compliance with relevant security standards and regulatory requirements. Collaborate with stakeholders across technical and business teams to embed security best practices throughout the service lifecycle. Provide expert guidance on information assurance, governance, and risk management strategies. Support audit and certification activities, ensuring More ❯

approval, candidates may be permitted to start the role prior to clearance being fully completed. Role Overview: We are seeking a highly experienced Senior Information Assurance Consultant to lead the development and implementation of security management processes for a new, high-profile service. This role will be instrumental in establishing and integrating a comprehensive Information Security Management … working on a critical and impactful programme. As the role involves working with sensitive information, eligibility for SC clearance or holding active SC clearance is essential. Key Responsibilities: Lead the design and implementation of security management processes for a new service offering. Develop and maintain a unified ISMS aligned with ISO / IEC 27001, NIST, PRISMA, and CoBIT frameworks. Conduct gap analyses and risk assessments to ensure compliance with relevant security standards and regulatory requirements. Collaborate with stakeholders across technical and business teams to embed security best practices throughout the service lifecycle. Provide expert guidance on information assurance, governance, and risk management strategies. Support audit and certification activities, ensuring More ❯

approval, candidates may be permitted to start the role prior to clearance being fully completed. Role Overview: We are seeking a highly experienced Senior Information Assurance Consultant to lead the development and implementation of security management processes for a new, high-profile service. This role will be instrumental in establishing and integrating a comprehensive Information Security Management … working on a critical and impactful programme. As the role involves working with sensitive information, eligibility for SC clearance or holding active SC clearance is essential. Key Responsibilities: Lead the design and implementation of security management processes for a new service offering. Develop and maintain a unified ISMS aligned with ISO / IEC 27001, NIST, PRISMA, and CoBIT frameworks. Conduct gap analyses and risk assessments to ensure compliance with relevant security standards and regulatory requirements. Collaborate with stakeholders across technical and business teams to embed security best practices throughout the service lifecycle. Provide expert guidance on information assurance, governance, and risk management strategies. Support audit and certification activities, ensuring More ❯

approval, candidates may be permitted to start the role prior to clearance being fully completed. Role Overview: We are seeking a highly experienced Senior Information Assurance Consultant to lead the development and implementation of security management processes for a new, high-profile service. This role will be instrumental in establishing and integrating a comprehensive Information Security Management … working on a critical and impactful programme. As the role involves working with sensitive information, eligibility for SC clearance or holding active SC clearance is essential. Key Responsibilities: Lead the design and implementation of security management processes for a new service offering. Develop and maintain a unified ISMS aligned with ISO / IEC 27001, NIST, PRISMA, and CoBIT frameworks. Conduct gap analyses and risk assessments to ensure compliance with relevant security standards and regulatory requirements. Collaborate with stakeholders across technical and business teams to embed security best practices throughout the service lifecycle. Provide expert guidance on information assurance, governance, and risk management strategies. Support audit and certification activities, ensuring More ❯

approval, candidates may be permitted to start the role prior to clearance being fully completed. Role Overview: We are seeking a highly experienced Senior Information Assurance Consultant to lead the development and implementation of security management processes for a new, high-profile service. This role will be instrumental in establishing and integrating a comprehensive Information Security Management … working on a critical and impactful programme. As the role involves working with sensitive information, eligibility for SC clearance or holding active SC clearance is essential. Key Responsibilities: Lead the design and implementation of security management processes for a new service offering. Develop and maintain a unified ISMS aligned with ISO / IEC 27001, NIST, PRISMA, and CoBIT frameworks. Conduct gap analyses and risk assessments to ensure compliance with relevant security standards and regulatory requirements. Collaborate with stakeholders across technical and business teams to embed security best practices throughout the service lifecycle. Provide expert guidance on information assurance, governance, and risk management strategies. Support audit and certification activities, ensuring More ❯

and operational guidance on cybersecurity, data protection, and regulatory compliance to ensure the bank's information assets and customer data remain secure and compliant with applicable standards (e.g., ISO 27001, GDPR, FCA requirements). Key Responsibilities: Serve as the SME for all matters related to information security and privacy. Advise on the development and … security posture. Assist with incident response planning and investigations as needed. Provide training and awareness support to staff and leadership. Support internal and external audits, including FCA and ISO 27001 audits. Stay current on emerging threats, regulatory changes, and industry best practices. Required Skills & Experience: Proven experience in Information Security, Cybersecurity, and / or … Information Privacy. Deep understanding of regulatory frameworks: GDPR, DPA 2018, ISO 27001, NIST , and FCA guidelines. Strong knowledge of security controls, data lifecycle management, and access control models. Experience within the banking or financial services sector is essential. Demonstrated ability to engage with C-level stakeholders and influence decision-making. Relevant certifications preferred: CISSP More ❯

standards. The role offers the opportunity to influence mission-critical projects within the marine and defence domain, applying structured cybersecurity assurance approaches to complex, multidisciplinary delivery environments. Responsibilities Lead or support integrating cybersecurity assurance activities into engineering and programme delivery for marine and defence projects. Develop, review, and maintain cybersecurity assurance artefacts, including risk assessments, assurance cases … capabilities. Qualifications A degree (or equivalent experience) in Cybersecurity, Information Assurance, Systems Engineering, or a related technical or defence-focused discipline. Recognised cybersecurity certifications: CompTIA, CISSP, CISM, CRISC, ISO 27001 Lead Auditor / Implementer, or equivalent. Familiarity with MOD, maritime, or defence-specific frameworks: JSPs, DEFSTAN, NIST, IEC 62443, IMO or ISO / IEC 27001. SC clearance (or eligibility to obtain SC as a minimum) is required; DV clearance is desirable depending on the programme needs. Evidence of ongoing professional development aligned with cybersecurity assurance, defence sector standards, and engineering-led delivery models. Essential skills Strong understanding of cybersecurity assurance principles, risk management More ❯

standards. The role offers the opportunity to influence mission-critical projects within the marine and defence domain, applying structured cybersecurity assurance approaches to complex, multidisciplinary delivery environments. Responsibilities Lead or support integrating cybersecurity assurance activities into engineering and programme delivery for marine and defence projects. Develop, review, and maintain cybersecurity assurance artefacts, including risk assessments, assurance cases … capabilities. Qualifications A degree (or equivalent experience) in Cybersecurity, Information Assurance, Systems Engineering, or a related technical or defence-focused discipline. Recognised cybersecurity certifications: CompTIA, CISSP, CISM, CRISC, ISO 27001 Lead Auditor / Implementer, or equivalent. Familiarity with MOD, maritime, or defence-specific frameworks: JSPs, DEFSTAN, NIST, IEC 62443, IMO or ISO / IEC 27001. SC clearance (or eligibility to obtain SC as a minimum) is required; DV clearance is desirable depending on the programme needs. Evidence of ongoing professional development aligned with cybersecurity assurance, defence sector standards, and engineering-led delivery models. Essential Skills Strong understanding of cybersecurity assurance principles, risk management More ❯

security audits to evaluate and improve the effectiveness of risk management, control and governance processes. Independently deliver a wide range of GRC consultancy projects across client environments, including ISO 27001 implementation and maintenance, SOC 2 readiness assessments, GDPR compliance, and broader information security frameworks. Conduct comprehensive internal audits, gap analysis, and maturity assessments aligned … and develop actionable risk treatment plans tailored to client needs and business context. Design, write, and maintain information security policies, procedures, and documentation for clients across multiple sectors. Lead governance and compliance initiatives, including client-facing reporting, audit readiness support, and continual service improvement. Build trusted relationships with clients through consistent, expert guidance and support across security … and compliance engagements. Mentor and develop junior consultants, supporting their delivery quality and professional growth. Requirements Minimum five years of experience in a GRC consultancy or lead security role with significant client-facing responsibilities. Proven ability to independently deliver information security engagements across ISO 27001, SOC 2, GDPR, NIST, or similar More ❯

highly desirable. Experience of security transformation and delivery of security projects, particularly within a federated organisation. Desirable Skills Knowledge of Information Security and compliance frameworks, including NIST CSF, ISO 27001, Cyber Essentials, PCI DSS, and DORA, and the ability to design controls that align with these standards. Good awareness of risk methodologies and ability … operating procedures. Strong communication and interpersonal skills, with the ability to convey complex security concepts to non-technical stakeholders. Relevant certifications such as CISSP, CCSP, CRISC, CISM, or ISO 27001 Lead Implementer are highly desirable What We Will Offer You Recognised and rewarded for a job well done More ❯

leading to nationally recognised qualifications, such as chartered or principal status with the UK Cyber Security Council, or certifications such as CompTIA, NIST, PCiIAA, CISMP, CISSP, CREST, ISO27001 Lead Implementer / Auditor, SABSA, and TOGAF. A Mentor will be on hand to provide support and guidance throughout your journey with Actica. You will also More ❯

Social network you want to login / join with: Security Manager – Digital Transformation (Inside IR35) We’re looking for a proactive and highly experienced Security Manager to lead the security strategy for a major UK Public Sector digital programme. If you’re passionate about embedding security by design, managing risks at scale, and ensuring alignment with governance … privacy frameworks, this role will put you at the heart of a high-impact transformation. ? Location: UK, Remote ? Contract Type: Inside IR35 Responsibilities ?️ Acting as the primary security lead for the Digitalisation programme and associated digital solutions ? Producing and presenting monthly security governance reports, risk registers, and security cases ️ Leading risk assessments, managing mitigation controls, and contributing … / NHSE and government design principles ️ Hands-on experience in Agile / DevOps settings using tools like Jira and Confluence Bonus Points ? ? Certifications such as CISSP, CISM, or ISO 27001 Lead Implementer / Auditor ? Familiarity with NHS-specific or healthcare-related data protection requirements Deadline for applications is More ❯

Social network you want to login / join with: Security Manager – Digital Transformation (Inside IR35) We’re looking for a proactive and highly experienced Security Manager to lead the security strategy for a major UK Public Sector digital programme. If you’re passionate about embedding security by design, managing risks at scale, and ensuring alignment with governance … privacy frameworks, this role will put you at the heart of a high-impact transformation. ? Location: UK, Remote ? Contract Type: Inside IR35 Responsibilities ?️ Acting as the primary security lead for the Digitalisation programme and associated digital solutions ? Producing and presenting monthly security governance reports, risk registers, and security cases ️ Leading risk assessments, managing mitigation controls, and contributing … / NHSE and government design principles ️ Hands-on experience in Agile / DevOps settings using tools like Jira and Confluence Bonus Points ? ? Certifications such as CISSP, CISM, or ISO 27001 Lead Implementer / Auditor ? Familiarity with NHS-specific or healthcare-related data protection requirements Deadline for applications is More ❯

Social network you want to login / join with: Security Manager – Digital Transformation (Inside IR35) We’re looking for a proactive and highly experienced Security Manager to lead the security strategy for a major UK Public Sector digital programme. If you’re passionate about embedding security by design, managing risks at scale, and ensuring alignment with governance … privacy frameworks, this role will put you at the heart of a high-impact transformation. ? Location: UK, Remote ? Contract Type: Inside IR35 Responsibilities ?️ Acting as the primary security lead for the Digitalisation programme and associated digital solutions ? Producing and presenting monthly security governance reports, risk registers, and security cases ️ Leading risk assessments, managing mitigation controls, and contributing … / NHSE and government design principles ️ Hands-on experience in Agile / DevOps settings using tools like Jira and Confluence Bonus Points ? ? Certifications such as CISSP, CISM, or ISO 27001 Lead Implementer / Auditor ? Familiarity with NHS-specific or healthcare-related data protection requirements Deadline for applications is More ❯

Social network you want to login / join with: Security Manager – Digital Transformation (Inside IR35) We’re looking for a proactive and highly experienced Security Manager to lead the security strategy for a major UK Public Sector digital programme. If you’re passionate about embedding security by design, managing risks at scale, and ensuring alignment with governance … privacy frameworks, this role will put you at the heart of a high-impact transformation. ? Location: UK, Remote ? Contract Type: Inside IR35 Responsibilities ?️ Acting as the primary security lead for the Digitalisation programme and associated digital solutions ? Producing and presenting monthly security governance reports, risk registers, and security cases ️ Leading risk assessments, managing mitigation controls, and contributing … / NHSE and government design principles ️ Hands-on experience in Agile / DevOps settings using tools like Jira and Confluence Bonus Points ? ? Certifications such as CISSP, CISM, or ISO 27001 Lead Implementer / Auditor ? Familiarity with NHS-specific or healthcare-related data protection requirements Deadline for applications is More ❯

Posted: 04.06.2025 Expiry Date: 19.07.2025 col-wide Job Description: Security Manager – Digital Transformation (Inside IR35) We’re looking for a proactive and highly experienced Security Manager to lead the security strategy for a major UK Public Sector digital programme. If you’re passionate about embedding security by design, managing risks at scale, and ensuring alignment with governance … privacy frameworks, this role will put you at the heart of a high-impact transformation. ? Location: UK, Remote ? Contract Type: Inside IR35 Responsibilities ?️ Acting as the primary security lead for the Digitalisation programme and associated digital solutions ? Producing and presenting monthly security governance reports, risk registers, and security cases ️ Leading risk assessments, managing mitigation controls, and contributing … / NHSE and government design principles ️ Hands-on experience in Agile / DevOps settings using tools like Jira and Confluence Bonus Points ? ? Certifications such as CISSP, CISM, or ISO 27001 Lead Implementer / Auditor ? Familiarity with NHS-specific or healthcare-related data protection requirements Deadline for applications is More ❯

join the CCoE’s Cyber Security Operations Centre (CSOC), responding to incidents, working on projects and providing excellent services to NHSScotland’s Health Boards. The post holders will lead and contribute to projects that extend and improve the capabilities of the CCoE, and that improve the cybersecurity stature and awareness of our customer base. They will engage … candidate will have achieved Chartered Professional status of the British Computer Society (MBCS CITP) and should have obtained a post-graduate qualification in the specialist area e.g. ISO27001 Lead Implementer, CISM, CISA, CISSP, GIAC certifications, CCP accreditor or have equivalent additional experience / expertise. The candidate should have excellent interpersonal, communication and organisational skills. More ❯

join the CCoE’s Cyber Security Operations Centre (CSOC), responding to incidents, working on projects and providing excellent services to NHSScotland’s Health Boards. The post holders will lead and contribute to projects that extend and improve the capabilities of the CCoE, and that improve the cybersecurity stature and awareness of our customer base. They will engage … candidate will have achieved Chartered Professional status of the British Computer Society (MBCS CITP) and should have obtained a post-graduate qualification in the specialist area e.g. ISO27001 Lead Implementer, CISM, CISA, CISSP, GIAC certifications, CCP accreditor or have equivalent additional experience / expertise. The candidate should have excellent interpersonal, communication and organisational skills. More ❯

we do. About the Role As an Information Security Analyst , you will help shape and execute our security and compliance strategy. You will support compliance frameworks such as ISO / IEC 27001, SOC 2, HIPAA, and GDPR , help manage risk, and ensure that security practices are embedded in our daily operations. You’ll … within the team, taking ownership of operational security work while contributing to strategic initiatives over time. Things you will do: Support and manage Typeform’s compliance programs, including ISO, SOC 2, and HIPAA. Assist in third-party risk assessments, vendor security reviews, and customer security inquiries. Work closely with Vanta (our compliance automation platform) to manage security … the organization. What you already bring to the table: Experience in information security, risk management, or compliance, preferably in a SaaS environment. Understanding of security frameworks such as ISO / IEC 27001, SOC 2, HIPAA, and GDPR . Experience with security compliance automation tools (e.g., Vanta, Drata, or similar platforms). Ability to More ❯

ability to implement solutions yourself Knowledge & experience working with ISO27001 and other relevant frameworks Organising and communicating, hit the ground running independent Desired Relevant certifications e.g. CISM, ISO27001 Lead Auditor / Implementer Benefits Join a company thriving in the media industry Have the freedom to shape your position as you see fit Work with More ❯