24 of 24 ISO/IEC 27001 Jobs in Bristol

breaches affecting products Your skillset may include: Knowledge of HMG standards (including MOD-specific JSP, Def Stan 05-138, Def Stan 05-139) An understanding of MOD ISN 23 / 09 Secure by Design Knowledge of security frameworks, such as ISO / IEC 27001, NIST 800-30, NIST 800-53 or OWASP … Working with risk management frameworks and methodologies (e.g., ISO 27001 / 2, ISO27005 / 31000, NIST 800-30, NIST 800-53) If this all sounds like something you will be interested in then simply apply and we can discuss the opportunity further! Product Security Architect Permanent role Based in Bristol Offering circa More ❯

breaches affecting products Your skillset may include: Knowledge of HMG standards (including MOD-specific JSP, Def Stan 05-138, Def Stan 05-139) An understanding of MOD ISN 23 / 09 Secure by Design Knowledge of security frameworks, such as ISO / IEC 27001, NIST 800-30, NIST 800-53 or OWASP … Working with risk management frameworks and methodologies (e.g., ISO 27001 / 2, ISO27005 / 31000, NIST 800-30, NIST 800-53) If this all sounds like something you will be interested in then simply apply and we can discuss the opportunity further! Product Security Architect Permanent role Based in Bristol Offering circa More ❯

levels. Demonstrated ability to establish lasting customer relationships. Framework fluency: familiarity with NIST CSF, ISO 27001, CIS Controls, MITRE ATT&CK and core domains (EDR / SIEM / IAM / Zero Trust; cloud security across AWS / Azure / GCP). Solution experience: selling MDR / XDR, IR retainers, and … / or risk & compliance services into mid-market / enterprise. Methodology: comfortable with MEDDICC / MEDDPICC or Challenger. Nice to have: experience with public sector frameworks and / or SC clearance eligibility. More ❯

in the days that you work, and the opportunity to work across diverse industries. Our client works with a range of standards including the main international standards (e.g., ISO 9001, ISO 14001, ISO 27001, ISO 45001). They are seeking someone to focus on mainly information security so experience or … sessions to staff on system awareness, compliance, and continual improvement. Advise on integration of multiple standards into a unified management system. Requirements Essential Skills & Attributes Strong understanding of ISO standards and management system principles. Excellent analytical and problem-solving abilities. Exceptional written and verbal communication skills. Ability to work independently and manage multiple client projects. High level of … not essential. Training & Development Training will be provided where required to support specific standards, tools, or client needs. Opportunities for ongoing professional development and certification support. Engagement Terms Freelance / Contract basis with flexible working arrangements. Project-based or retainer agreements depending on client scope. Competitive day rates based on experience and project complexity. More ❯

principles Experience in system security engineering, ideally in defence, space, or critical infrastructure Familiarity with MOD, NCSC, and ISO standards (e.g. ISO 27001 / 2, NIST 800-series, JSP 604) Competence in requirements engineering and systems thinking Practical experience with security in software and / or system development environments Effective communication and … space system architectures or satellite communications DevSecOps awareness or experience with security automation Benefits: Annual Company Bonus 25 Days holiday not including bank holidays with the option to buy / sell up to 5 days Competitive pension contribution Continuous professional development including incentives Access to online Udemy training facility Flexible working arrangements Bike to work scheme Electric car scheme More ❯

principles Experience in system security engineering, ideally in defence, space, or critical infrastructure Familiarity with MOD, NCSC, and ISO standards (e.g. ISO 27001 / 2, NIST 800-series, JSP 604) Competence in requirements engineering and systems thinking Practical experience with security in software and / or system development environments Effective communication and … space system architectures or satellite communications DevSecOps awareness or experience with security automation Benefits: Annual Company Bonus 25 Days holiday not including bank holidays with the option to buy / sell up to 5 days Competitive pension contribution Continuous professional development including incentives Access to online Udemy training facility Flexible working arrangements Bike to work scheme Electric car scheme More ❯

Cyber Security Consultant - Risk Consultant (MOD / Defence - SC) Location: Remote / Southwest on-site presence Contract Type: Permanent & Full-time Salary: Competitive + Benefits About the Role As a Cyber Security Consultant, you will play a pivotal role in delivering Secure by Design risk and security assurance services within MOD and Public Sector environments. You'll collaborate … part of a knowledge-sharing culture, working alongside expert peers in Secure Architecture and Risk Planning. Key Responsibilities Deliver Secure by Design risk and security assurance functions within MOD / Public Sector. Lead and advise on risk management frameworks, ISMS, and Enterprise Security Risk Management. Facilitate security and risk workshops with Authority departments. Produce clear reporting on vulnerabilities, risks … of CIISEC and UK Cyber Security Council professional registration at either Chartered or Principal for Risk Management. Hold an active and transferable SC clearance Willingness to undergo DV clearance / UK Citizen / residing in UK Strong working knowledge of: Security Assurance Coordinator or Delivery Team Security Lead roles JSP440, JSP604 / 453 & JSP490 Working with system More ❯

Cyber Consultant - Governance, Risk & Compliance (MOD / Defence - SC) Location: Remote / Southwest on-site presence Contract Type: Permanent & Full-time Salary: Competitive + Benefits About the Role As a Cyber Security Consultant, you will play a pivotal role in delivering Secure by Design risk and security assurance services within MOD and Public Sector environments. You'll collaborate … part of a knowledge-sharing culture, working alongside expert peers in Secure Architecture and Risk Planning. Key Responsibilities Deliver Secure by Design risk and security assurance functions within MOD / Public Sector. Lead and advise on risk management frameworks, ISMS, and Enterprise Security Risk Management. Facilitate security and risk workshops with Authority departments. Produce clear reporting on vulnerabilities, risks … of CIISEC and UK Cyber Security Council professional registration at either Chartered or Principal for Risk Management. Hold an active and transferable SC clearance Willingness to undergo DV clearance / UK Citizen / residing in UK Strong working knowledge of: Security Assurance Coordinator or Delivery Team Security Lead roles JSP440, JSP604 / 453 & JSP490 Working with system More ❯

Job Title: Security Consultant Location: Hybrid (Bristol / Wiltshire office, circa 2 days pw) Salary: 45,000 - 75,000 + Benefits Are you an experienced Security Consultant looking for your next challenge? We are seeking passionate cyber security professionals with strong expertise in governance, risk and compliance (GRC), who can deliver complex projects and build trusted client relationships. As … a Security Consultant , you will work on a variety of Defence and Public Sector assignments, requiring current SC clearance. Projects will range from risk assessments and ISO 27001 implementations to developing full ISMS frameworks and supporting clients through accreditation. You'll provide expert guidance across standards such as NIST, CAF, and Secure by Design. Security Consultant … remote working, training budget, private healthcare, bonus scheme, and a culture that values collaboration, growth, and well-being. Take the next step in your career as a GRC Specialist / Security Consultant - apply today. People Source Consulting Ltd is acting as an Employment Agency in relation to this vacancy. People Source specialise in technology recruitment across niche markets including More ❯

down to the successful candidate. You can expect: Design and manage scalable, secure cloud environments using Azure Bicep, ARM, or Terraform Lead the implementation of DevSecOps practices including CI / CD, secrets management, zero-trust security, and vulnerability management Develop secure cloud-native architectures including microservices, containers, and serverless patterns Ensure compliance with industry security and privacy standards ( e.g. … ISO 27001, SOC 2, GDPR) Secure containerised environments, including Kubernetes and Docker Collaborate with developers to integrate secure deployment pipelines across the SDLC Support deployments in client environments, including on-prem and multi-cloud Continuously improve infrastructure processes for performance, reliability, and security Where you'll be stretched (and thrive): We're growing fast: That means … skillsyou'll need to succeed in this role Deep experience in Azure infrastructure (with IaC using Bicep, ARM, or Terraform) Hands-on knowledge of DevSecOps tooling and techniques (CI / CD, secrets management, threat modelling) Experience implementing security standards across cloud and hybrid environments Familiarity with container security ( e.g. Docker, Kubernetes) A strong understanding of compliance frameworks such as More ❯

product innovation pipeline, providing assurance to clients, regulators, and stakeholders during a period of significant digital transformation and on an ongoing basis. The role will champion secure-by-default / design principles, drive security best practices, and lead a high-performing team in the context of ambitious cloud adoption, agile delivery, and regulatory evolution. The role balances strategic vision … business. Engage with external partners, vendors, and industry groups to benchmark best practice and represent the firm's interests. Lead the offensive security function looking after penetration testing, red / purple team exercises and bug bounty programme. About you Extensive leadership experience in application and / or product security, ideally within the wealth management, financial services or fintech … of building and leading security teams in complex, regulated, and digitally transforming environments. Expertise in secure software development lifecycle (SSDLC) and experience embedding security into agile, DevOps, and CI / CD environments. In-depth technical knowledge of application security architecture, cloud platforms (AWS, Azure, GCP), microservices, APIs, and identity / access management. Strong familiarity with modern programming languages More ❯

product innovation pipeline, providing assurance to clients, regulators, and stakeholders during a period of significant digital transformation and on an ongoing basis. The role will champion secure-by-default / design principles, drive security best practices, and lead a high-performing team in the context of ambitious cloud adoption, agile delivery, and regulatory evolution. The role balances strategic vision … business. Engage with external partners, vendors, and industry groups to benchmark best practice and represent the firm's interests. Lead the offensive security function looking after penetration testing, red / purple team exercises and bug bounty programme. About you Extensive leadership experience in application and / or product security, ideally within the wealth management, financial services or fintech … of building and leading security teams in complex, regulated, and digitally transforming environments. Expertise in secure software development lifecycle (SSDLC) and experience embedding security into agile, DevOps, and CI / CD environments. In-depth technical knowledge of application security architecture, cloud platforms (AWS, Azure, GCP), microservices, APIs, and identity / access management. Strong familiarity with modern programming languages More ❯

security breaches. Provide security guidance and training to teams across the organization. Key Skills & Experience: Strong knowledge of security frameworks (ISO 27001, NIST 800-30 / 53, OWASP) . Experience with risk management methodologies and compliance with MOD and HMG security standards (JSP, Def Stan 05-138 / 139). Proficiency in security threat More ❯

consultancies by being smarter, faster, and obsessed with building solutions that actually work in the real world.This isn’t your typical Android job.We’re looking for an experienced Android / Kotlin Engineer with a passion for building hardware-connected Android systems – not just your standard banking or retail apps.If you have worked on / with any of the … re Looking For Strong Kotlin skills. Experience with embedded Linux development. Android development beyond phones and consumer apps, ideally integrated with physical hardware. Knowledge of ISO 9001 / 27001 standards (or similar regulated environments). Collaborative mindset and empathy for end users – the kind of person who thinks about usability and accessibility. Agile, iterative approach More ❯

Architect (Security), you'll work directly with major enterprise customers, playing a strategic role in advisory, design, and technical delivery. What you'll do Provide expert guidance across SASE / SSE, PAM, detection, and data centre security technologies Lead customer engagements, providing advisory services, architecture guidance, roadmap planning, and solution governance Define and document high-level solution designs, technical … architecture engagements at the enterprise level Expertise in Secure Access Service Edge (SASE) and Secure Service Edge (SSE), especially with Zscaler Experience in at least three enterprise Zscaler SSE / SASE projects Ability to provide presales advisory, requirements gathering, and high-level solution design Strong understanding of Zscaler architecture and troubleshooting Broad knowledge across IAM, SSO, MFA, PAM, and … IDaaS Strong background in core security technologies such as firewalls, IDS / IPS, endpoint protection, and encryption Comfortable working with cloud platforms and designing secure architectures across Azure, AWS, or Google Cloud Ability to lead technical conversations, influence customer decisions, and deliver trusted advisory services Existing SC clearance or eligibility to apply Desirable Skills & Certifications Familiarity with industry security More ❯

ITSM system, resolving tickets in line with SLAs. Troubleshoot desktop, telephony, network, and printing issues, and investigate software problems. Ensure devices remain compliant with Cyber Essentials Plus and ISO 27001 standards. Support and install hardware, software, and mobile devices. Gain exposure to server administration and infrastructure … technologies. What we're looking for Previous experience in a similar IT support role. Excellent customer service and communication skills. Strong technical knowledge of: Windows 10, MS Server 2019 / 2022, MS Office 365 Active Directory / Entra ID & Group Policy IP Networking & telephony, DNS, DHCP Server, desktop, and network hardware If interested, please share your CV and More ❯

We’re looking for a Senior Cloud / Infrastructure Engineer with strong Oracle Cloud (OCI) expertise. You’ll design, build, and support mission-critical cloud environments, driving automation, migrations, and innovation on high-impact projects. Location - Bristol (Hybrid) Key Skills: Strong knowledge of OCI services (compute, storage, networking, load balancers) Automation with Terraform, Ansible, Python, Bash, PowerShell Experience with … CI / CD pipelines (Jenkins, GitHub Actions) Knowledge of IAM, VPNs, WAF, GDPR, ISO 27001 Exposure to Autonomous DB, Exadata, Data Guard, Kubernetes, Docker Security clearance (or willingness to obtain More ❯

Were looking for a Senior Cloud / Infrastructure Engineer with strong Oracle Cloud (OCI) expertise. Youll design, build, and support mission-critical cloud environments, driving automation, migrations, and innovation on high-impact projects. Location - Bristol (Hybrid) Key Skills: Strong knowledge of OCI services (compute, storage, networking, load balancers) Automation with Terraform, Ansible, Python, Bash, PowerShell Experience with CI / CD pipelines (Jenkins, GitHub Actions) Knowledge of IAM, VPNs, WAF, GDPR, ISO 27001 Exposure to Autonomous DB, Exadata, Data Guard, Kubernetes, Docker Security clearance (or willingness to obtain More ❯

approach ⭐ Desirable (Not Essential) Experience working with large data sets (tens of millions of records) Knowledge of analytics, modelling, or marketing data Degree in a numerate discipline Experience in ISO27001 environments Our client has a 2 stage interview process and for the right candidate they will interview this week If you're interested in this role, or know someone who More ❯

approach ? Desirable (Not Essential) Experience working with large data sets (tens of millions of records) Knowledge of analytics, modelling, or marketing data Degree in a numerate discipline Experience in ISO27001 environments Our client has a 2 stage interview process and for the right candidate they will interview this week If you're interested in this role, or know someone who More ❯

pure' managerial role with no hands-on technical work Technical knowledge of Windows Server, Azure, Active Directory and cloud-based O365 environments Strong knowledge of IT Security and ISO 27001 standards A mix of polictical and technical skills A personable nature, able to manage up and down where requried The successful IT Infrastructure Manager will work … fall under the Equality Act 2010. For the purposes of the Conduct Regulations 2003, when advertising permanent vacancies we are acting as an Employment Agency, and when advertising temporary / contract vacancies we are acting as an Employment Business. More ❯

and retention policies Manage documentation and change control processes for, servers, and applications Contribute to strategic planning for future IT requirements aligned with company growth and compliance needs (e.g. ISO27001, GDPR, DCC) Actively promote team values and adhere to all relevant company policies DevOps Responsibilities: Implement and manage DevOps pipelines for AI and computer vision products Integrate MLOps practices for … VMware (Hypervisor) Service-oriented with effective communication skills Ability to prioritize workload under minimal supervision Undergraduate degree or equivalent working experience Desirable Skills: Experience with DevOps practices including: CI / CD pipeline design and automation Containerisation and orchestration Monitoring and observability tools Experience in the defence or advanced technology sector Familiarity with GPU based computer environments Familiarity with MLOps … Jenkins Docker, Kubernetes Terraform, Ansible Additional tools as required Benefits: Annual Company Bonus – Based on company performance 25 Days holiday not including bank holidays with the option to buy / sell up to 5 days Flexible hybrid working arrangements Continuous professional development including incentives Access to online Udemy training facility to support grade specific learning pathways Electric car scheme More ❯

and retention policies Manage documentation and change control processes for, servers, and applications Contribute to strategic planning for future IT requirements aligned with company growth and compliance needs (e.g. ISO27001, GDPR, DCC) Actively promote team values and adhere to all relevant company policies DevOps Responsibilities: Implement and manage DevOps pipelines for AI and computer vision products Integrate MLOps practices for … VMware (Hypervisor) Service-oriented with effective communication skills Ability to prioritize workload under minimal supervision Undergraduate degree or equivalent working experience Desirable Skills: Experience with DevOps practices including: CI / CD pipeline design and automation Containerisation and orchestration Monitoring and observability tools Experience in the defence or advanced technology sector Familiarity with GPU based computer environments Familiarity with MLOps … Jenkins Docker, Kubernetes Terraform, Ansible Additional tools as required Benefits: Annual Company Bonus – Based on company performance 25 Days holiday not including bank holidays with the option to buy / sell up to 5 days Flexible hybrid working arrangements Continuous professional development including incentives Access to online Udemy training facility to support grade specific learning pathways Electric car scheme More ❯

e.g. NIST, UK Government) Undertake cyber security audit processes in support of operational and business planning activity across a range of different domains or sectors against recognised standards (e.g. ISO27001, UK Government) Undertake cyber security vulnerability analysis to provide a rich picture of organisational maturity and risk exposure to cyber security, in support of operational and business planning activity across … Security Risk Consultant: Digitally literate (including fluency in Microsoft Office tools) Minimum of 2-3 years of experience in security vulnerability, risk, audit & compliance Understand relevant NIST frameworks and ISO27001 standards and how to apply in practice Knowledge of MITRE ATT&CK Essential qualifications for the Cyber Security Risk Consultant: We value difference and we don't have a fixed More ❯