18 of 18 ISO/IEC 27001 Jobs in Cardiff

our Security Operations Centre, Application Security, and Security Engineering teams. The successful candidate will play a crucial role in continuing to improve organizational maturity in line with our existing ISO27001 and ISO22301 certifications and implementing SOC2 controls. This role demands an experienced, highly skilled, and motivated professional committed to advancing our security strategies to protect critical assets and ensure operational … Management. Conduct regular 1-2-1s, Performance Reviews, and Personal Development Plans of team members. Develop and implement security policies, processes, and procedures to comply with SOC2 and ISO27001 standards. Participate in Steering groups for Identity and Access Management and Data Protection Setting and aligning team objectives and tasks to help achieve the overall Information Security and Compliance function … Manager (CISM), Certified Information Systems Auditor (CISA) or other similar credentials. · Proven experience in managing security operations teams in a similar industry. · Familiarity with SOC2, PCI-DSS, ISO22301 and ISO27001 standards. Desirable Qualifications: Bachelor’s or masters degree in CyberSecurity, Computer Science, Information Technology, or a related field Cloud security qualifications such as ISC2 CCSP, CSA CCSK and AWS Security More ❯

a key role within a dynamic and evolving organisation. This newly created position is focused on safeguarding all ICT systems and managing information security across the business. Location : Cardiff / St Athan Salary : £45,000 - £50,000 Contract Type: Permanent / Full-time (Monday - Friday) Key Responsibilities: Cyber Security Oversight: Lead the implementation, maintenance, and enforcement of IT … across a range of business-critical systems. Policy & Framework Development: Create and refine cyber security risk management policies and frameworks in line with recognised standards such as NIST, ISO 27001, and others. Documentation & Training: Maintain up-to-date security documentation and deliver regular cyber security awareness training across departments. Communicate relevant security updates and best practices More ❯

Social network you want to login / join with: IT Security Analyst, Manchester, £45,000 An IT Security Analyst is needed to join a fast-growing global SaaS provider (UK & Europe). With a passion for adopting modern tools and security frameworks, our client offers an innovative, cloud-first environment where your skills will directly impact infrastructure resilience and … respond to security incidents and vulnerabilities Own and manage key elements of the security stack, including SIEM and DLP tools Lead audits, penetration testing, and remediation actions to uphold ISO27001 & SOC2 compliance Collaborate with product teams to embed security into the development lifecycle Produce detailed KPI-driven security reports and dashboards for internal stakeholders Experience needed: 1+ year in a … or similar cybersecurity role Hands-on experience with SIEM, IDS / IPS, and vulnerability scanning tools Knowledge of AWS, Linux, Windows, IAM (e.g. Okta), and firewalls Understanding of ISO27001, SOC2, GDPR, and third-party risk management Strong communication skills and the ability to influence across teams and time zones What this Security Analyst role offers: £45,000 salary + More ❯

that security is built in and customer, company and employee data is protected Attend project meetings and represent Information Security, providing direction as required Review and consult on IT / Business change documentation including Business Requirements, Design Documents, Detailed Designs, Network Diagrams, etc Provide the relevant people, process and technology requirements to ensure projects deliver secure solutions Ensure that … External Auditors Regulators About you Knowledge, Skills & Experience Recognised professional certification such as; CISSP, CISM, CISA, CRISC Good familiarity with the NIST Cybersecurity Framework, CIS Critical Security controls, and ISO27001 Experience of understanding of a Security governance frameworks and Security risk management Experience of delivering Security assurance services to significant Business projects within a large complex business Experience of engaging … and presenting to senior stakeholder groups Demonstrable Security risk management knowledge and experience Wide ranging knowledge of Information Security and IT Security frameworks (NIST CSF, CIS Critical Security Controls, ISO27001 etc.), standards and application of Security best practice Good to know This role includes hybrid working. #J-18808-Ljbffr More ❯

Social network you want to login / join with: At MVW Technology Ltd we are committed to fostering the growth and development of all our team members. We offer a range of professional development opportunities to support both permanent staff and contractors in advancing their skills and careers. Through training programs, mentorship, and access to industry resources, we ensure … technical documentation including architecture diagrams, runbooks, and operational procedures Support the development of technical project plans and participate in change advisory processes Ensure alignment with security standards (e.g. ISO 27001, GDPR) and adherence to governance frameworks QUALIFICATIONS AND SKILLS Proven experience in architecting and deploying Microsoft Intune for MDM and MAM Expert knowledge of Microsoft Autopilot … such as MD-102, MS-102, SC-300, or equivalent (preferred) On-premises and traditional infrastructure technologies including Virtualisation, VDI, storage, firewalls, AV + Threat Protection, Windows Server, DNS / DHCP, backup solutions Strong analytical and documentation skills PERSONAL ATTRIBUTES Motivated self-starter Personable and professional manner Process orientated Humble We actively encourage applications from individuals with disabilities and More ❯

governance Proficiency in applying security concepts to a technical level across multiple projects, including working with security tools, network security infrastructure technologies, and information security management frameworks (e.g., ISO 27001, NIST) Experience overseeing penetration testing and the ability to effectively translate cyber risk analysis into standards, patterns, and approaches to enable the safe exploitation of current More ❯

of the role is to monitor, support, report and instruct against the regulatory frameworks such as the NCSC Cyber Assurance Framework to ensure operational systems and networks owned and / or managed, by Operators of Essential Services, in the electricity and downstream gas sectors in Great Britain, remain resilient against cyber and related security threats. You’ll operate as … Deliverables Provide advice and guidance to the DGE sector on the compliance with the NIS regulations and ensuring through inspections, audits and testing that OES maintain compliance. Deliver and / or manage a set of inspections and assurance activities in line with the NIS regulations. Write and maintain high quality inspections and audit reports, providing analysis and outcomes. Provide … and use regulatory tools to drive improvements. Ensure alignment with government and industry objectives and standards, and liaise with senior stakeholders on how these can be met Key Skills / Capabilities Required Experience of security assurance in the Oil, Gas, Electricity industry. Experience in utilising operational technology / ICS related standards, NIS Regulations and NCSC Cyber Assurance Framework. More ❯

information rights, including data subject access requests (DSARs), and other privacy inquiries and ensure these are addressed in a timely manner. Develop and improve processes in alignment with the ISO27001 standard to ensure the confidentiality, integrity, and availability of data. Assess how the Privacy function is performing against key performance indicators, and proactively improve performance and enhance knowledge where applicable. … current and emerging UK privacy laws and regulations, including GDPR, PECR, and others, and the ability to apply this in a practical manner. Proven track record of managing and / or investigating privacy incidents and data breaches. Strong analytical and problem-solving skills and the ability to work with a high degree of accuracy. High ethical standards and integrity … in handling sensitive and confidential information. Familiarity with Information Security principles and an understanding of data security principles and practices. Knowledge and experience with ISO 27001, the international standard for information security management systems. Admiral, Where You Can Be You At Admiral you’re accepted, supported and empowered to be you. Because you’re brilliant. We More ❯

Social network you want to login / join with: We are looking for an experienced Salesforce Solution Architect to take on a key role with UK Public Sector client. This role requires a strong foundation in Salesforce CRM architecture and related solution ecosystem, coupled with extensive consultancy experience in shaping and defining solutions for clients. The ideal candidate will … problem-solving skills, with a keen attention to detail. Experience of working in UK Public Sector – candidates should have recent SC-level clearance. Ability for occasional travel for workshops / meetings involving an overnight stay in London area or Liverpool. What we look for in our people Strong alignment with our values and ethos Commitment to teamwork, quality and … multi award-winning workplace, most notably recognised by Best Companies as #1 Best Company To Work For in the UK, Tech and the South East in 2023. We are ISO27001 and ISO9001 Certified by UKAS. We are also a CREST approved penetration testing and SOC company, IASME Cyber Essentials Certification body and Cyber Essentials Plus certified. Why work for us More ❯

as a Business Analyst in cyber security, IT risk, or compliance-focused projects Strong understanding of cybersecurity principles, risk management, and regulatory compliance Experience working with or aligning to ISO27001, NIS Regulations, or similar standards would be beneficial Excellent analytical, problem-solving, and documentation skills Ability to work independently and manage multiple priorities in a fast-paced environment What you More ❯

Social network you want to login / join with: Head of Information Security – UK remote - £90,000 - £120,000 Our client, a leading technology innovator, is looking for an experienced Information Security leader to shape and drive their security strategy. As the Head of Information Security, you will be responsible for overseeing the development and implementation of an improved … to maintain compliance. To be considered for this role, you should have Proven experience in a senior Information Security leadership role. Strong knowledge of security frameworks such as ISO 27001, NIST, GDPR, and other compliance standards. Expertise in risk management, governance, and security architecture. Hands-on experience in designing and implementing security policies and strategies. Strong More ❯

manager, ensuring flexibility and alignment with the role's scope and responsibilities. What you'll need to be successful Strong technical knowledge in .NET Framework, .NET Core, ASP.NET MVC / Web Forms, HTML / CSS / SASS, TypeScript / JavaScript, RESTful APIs, SQL Server, and Entity Framework, with a solid understanding of web-based applications and … deadlines and delivering results with strong attention to detail. Familiarity with Windows services, DevOps, Azure environments, continuous integration, and security best practices (OWASP, ISO 27001 / 27032). Knowledge of scalable applications, design patterns, and asynchronous programming techniques like queuing, caching, and logging. Excellent interpersonal and motivational skills with the ability to inspire others, and … here. We emphasize providing many ways to support our team to do their best work and below are some of the perks and benefits we offer: Personal Health & Wellbeing / Benefits >Generous annual leave Future Planning > Pension scheme with employer contributions Interested but don't feel you meet all the requirements? Our recruitment team assesses and reviews all applications More ❯

Senior Systems Administrator – Hybrid but mainly onsite - 4 days p / week onsite Location: Cardiff, South Wales Salary: Up to £55,000 (DOE) Type: Permanent We're hiring a hands-on Senior Systems Admin / Engineer to join an established internal IT team. If you’ve got solid experience managing IT systems, supporting projects, and helping junior team … Doing: Leading IT projects from planning to completion Supporting and mentoring junior IT staff Installing, maintaining, and supporting servers, networks, and business systems Troubleshooting complex issues and supporting 1st / 2nd line when needed Working with the Security team to make sure systems stay compliant and secure Keeping documentation up to date Staying on top of new tech and … 5+ years in IT infrastructure or systems admin Some experience in a senior or lead role Confident with Microsoft stack: Office 365, Azure, SharePoint, Teams Familiar with backups (Veeam / Acronis / Barracuda), Cisco Meraki, Mimecast Good problem-solver, able to communicate well across the business Comfortable leading projects and taking ownership Nice to Have (Not Essential): Microsoft More ❯

Social network you want to login / join with: Our Managed Service team operates services on behalf of clients, adopting and managing their existing IT landscape and supporting the adoption of modern platforms and ways of working. We're dedicated to empowering brilliant people to do amazing things. Our client-centric approach calls for innovative people, with a passion … such as platform engineers and developers, providing 2nd and 3rd line support to clients, for their platforms and applications. Continually assess the suitability of processes and procedures and recommend / implement change as appropriate, to ensure efficiency and appropriateness. Operate in Agile working environments with varying Agile practices Support cloud environments in AWS and Azure About You Alongside a … the ITIL processes (e.g. Incident, Problem, Change and Capacity reporting) Experience of several distinct implementations A solid experience and understanding of the management of commercial contracts ISO9001 / ISO27001 experience & knowledge Experience of mapping, documenting and implementing business processes and ensuring continuous improvement thereof A solid understanding of software development methodologies, Project Management techniques and Agile practices A pragmatic More ❯

Social network you want to login / join with: Technical Support Engineer Tier I, cardiff col-narrow-left Client: Action1 Location: cardiff, United Kingdom Job Category: Other - EU work permit required: Yes col-narrow-right Job Views: 5 Posted: 31.05.2025 Expiry Date: 15.07.2025 col-wide Job Description: Who we are: Action1 reinvents patching with an infinitely scalable, highly secure … preempts ransomware and security risks, all while eliminating costly routine labor. Trusted by thousands of enterprises managing millions of endpoints globally, Action1 is certified for SOC 2 and ISO 27001. The company is founder-led by industry veterans Alex Vovk and Mike Walters, who founded Netwrix, which has grown into a multi-billion-dollar industry-leading cybersecurity company. … in Microsoft Windows operating systems. Ability to identify and troubleshoot failed patch installations. Be familiar with PowerShell scripting and able to understand basic scripts. Proficiency in Mac OS and / or Linux platforms. Demonstrate knowledge of software deployment and configuration using install switches. Be skilled in reading, writing, modifying, and backing up the Windows registry. Have previous experience in More ❯

our people and compliance operations. This role focuses on HR administration, recruitment, compliance, and business support , helping us expand globally while maintaining high standards such as B Corp and ISO27001 / 9001. This is a varied role for someone passionate about improving systems, developing culture, and driving business growth. What You'll Do: You'll lead on HR operations … and the administration around development and compliance projects, including: HR & Recruitment: Managing recruitment, employee records, absence, policy development and engagement. Compliance & Quality: Supporting company accreditations (ISO, Cyber Essentials, B Corp), and supporting management with the administration around internal audit activity. General Support: Collaborating with teams to support finance, office management, order processing and general administration. What You Bring More ❯

Social network you want to login / join with: Action1 is an autonomous endpoint management platform that is cloud-native, infinitely scalable, highly secure, and configurable in 5 minutes—it just works and is always free for the first 200 endpoints, with no functional limits. By pioneering autonomous OS and third-party patching - AEM’s foundational use case - through … preempts ransomware and security risks, and protects the digital employee experience. Trusted by thousands of enterprises managing millions of endpoints globally, Action1 is certified for SOC 2 and ISO 27001. The company is founder-led by industry veterans Alex Vovk and Mike Walters, American entrepreneurs who founded Netwrix, which has grown into a multi-billion-dollar industry-leading More ❯

Social network you want to login / join with: Documill, an Ascendx company, is a leader in document automation within the Salesforce ecosystem. Our solutions help enterprises manage document workflows, enabling seamless collaboration, automation, and compliance. With ISO 27001 and TISAX certifications, we ensure the highest standards in data security and operational integrity. As part More ❯