1 to 25 of 29 ISO/IEC 27001 Jobs in Crawley

in security audits, identifying vulnerabilities, and ensuring adherence to security policies. • Develop and enforce GCP security hardening measures (network segmentation, access controls, encryption, GDPR / ISO 27001 compliance). • Design and implement ETL pipelines for marketing data into BigQuery for Looker. • Optimise BigQuery data models … as a Cloud Engineer, specialising in GCP. • Proven background in marketing data environments, understanding infrastructure needs for marketing analytics and CDPs. • Demonstrable experience leading / contributing to security audits, vulnerability assessments, and compliance initiatives (GDPR, ISO 27001) within GCP. • Expertise in IaC with a strong … Terraform. • Profound understanding of GCP networking, security services, and IAM. • Proficiency in scripting (Python, Bash, Go). • Experience with containerisation (Docker) and orchestration (Kubernetes / GKE) is desirable. • Strong understanding of monitoring and logging tools. • Excellent problem-solving and communication skills. • Relevant GCP certifications are highly advantageous. Infrastructure Engineer More ❯

and influence. What You'll Be Working On: You’ll support key client projects across a diverse and exciting portfolio, including: Framework Compliance : ISO 27001, NIST, PCI-DSS Security Assurance : Audit, controls assessment, reporting Third-Party Risk Assurance : Vendor risk reviews, supply chain assessments Cloud Security … to finish. You’ll Need: Proven experience in a security consulting role (client-facing or internal consulting) Strong understanding of Information Security frameworks (ISO 27001, NIST, PCI-DSS) Hands-on experience delivering security assessments, audits, or assurance reviews Awareness or experience with cloud platforms (Azure, AWS … personal development, mentoring, and continuous learning Growth Journey: Join at an exciting time — with plans to double headcount and expand services Certifications (Required): ISO 27001 Lead Auditor CISSP or CISM More ❯

controls, and preparing for audits while also providing consultation on PCI requirements to Engineering, SecOps, and Architecture teams. Additionally, the role will support ISO 27001, SOC 2 Type 2, and other certification audits, assist with security assurance activities such as design reviews and client security questions … identify areas of improvement. Stay up to date with PCI DSS standard updates and ensure timely adaptation of new requirements. Manage and support ISO 27001 and SOC 2 Type 2 certification processes, ensuring evidence gathering, control validation, and audit preparation. Assist in responding to client security … Strong understanding of PCI DSS requirements, controls, and assessment processes. Hands-on experience with security controls, cloud environments, and security architecture. Experience with ISO 27001, SOC 2 Type 2, or other security frameworks. Proven ability to work effectively with senior leadership, auditors, external partners, and cross More ❯

baselines in line with industry standards (e.g., NIST, CIS, ISO 27001). Configure and manage Microsoft Defender for Office 365 / Cloud / Endpoint / Servers, Purview (Information Protection, Data Loss Prevention), and Microsoft Entra (Azure AD) security features. Experience of integrating with … Entra ID. Strong understanding of identity, access management, and conditional access controls. Familiarity with regulatory and compliance frameworks such as GDPR, HIPAA, and ISO 27001. Proficient with Microsoft security and compliance portals, PowerShell scripting, and automation tools. Relevant Microsoft certifications (e.g., SC-100, SC-300, MS-500, AZ More ❯

s been through this before and knows what it takes. Familiarity with ISO 27001, IT GRC, GxP compliance, and SaaS / cloud environments is also important, but SOC 2 is the headline act here. You’ll collaborate closely with teams across the company, from InfoSec … SOC 2 and ISO 27001 implementation efforts. Strong knowledge of the AICPA Trust Services Criteria and the kinds of IT / security controls that support them. A background in InfoSec, IT, Life Sciences, or something similar — a degree in one of these areas is a More ❯

My client a leading cybersecurity business is seeking a Pre-Sales Director (Cyberdefense) based from offices in London and / or Kent. My client is a leading cybersecurity business who are part of larger reputable group who have a portfolio of clients within the financial services, utilities, legal and … manufacturing verticals. As Pre-Sales Director (Cyberdefense) based in London and / or Kent, reporting to the UK MD you will be responsible for: Digital transition / transformation and cloud first strategy and Cyber Security … within the organisation Strategic roadmap implementation of IS / IT security restructure programmes and projects of a technical nature including frameworks such as ISO27001 / 2:2005 / 13 &DORA Ownership of Strategic, Operational and Tactical IT Security and Risk Management, technical and legislative mandates Programme / More ❯

Head of Engineering / System Development Manager - up to £70k base with great benefits Remote working with an office Glasgow We are looking for a strategic, hands-on Head of Engineering to lead and scale our software engineering function. This senior leadership role will focus heavily on software engineering … RESTful services, rate limiting, versioning, monitoring, etc.). Ensure high data consistency, operational integrity, and well-documented interface contracts between services. Software Delivery, CI / CD & DevOps Define and implement scalable CI / CD pipelines using modern DevOps tooling, including automated build, test, deploy, and rollback strategies. Champion … with security engineers to integrate security throughout the software lifecycle (shift-left security, secure coding, threat modelling). Own the implementation of secure authentication / authorization practices, audit logging, encryption at rest / in transit, and other application security standards. Ensure software and infrastructure meet organizational security and More ❯

enforce security policies, standards, and procedures Work with IT and development teams to implement secure system designs and configurations Support compliance initiatives (e.g., ISO 27001, NIST, GDPR, PCI-DSS) by assisting with audits and documentation Conduct security awareness training and phishing simulations for employees Keep up … security or cybersecurity role Strong understanding of security principles, frameworks, and practices (e.g., CIA triad, defense in depth) Experience with SIEM tools, intrusion detection / prevention systems (IDS / IPS), firewalls, and endpoint protection Familiarity with vulnerability scanning tools (e.g., Nessus, Qualys) and remediation processes Knowledge of networking More ❯

Will be required to travel to client sites occasionally / SC CLEARED OR CLEARABLE* Our client is a Digital Transformation and Cyber Security Consultancy and are currently looking for a Cyber Security Consultant to join their dynamic team! They offer innovative digital and cyber security solutions to their clients … ISO 27001, NIST). Assist in the deployment, configuration, and management of security infrastructure and technologies, including firewalls, intrusion detection / prevention systems, and secure network architectures. Provide guidance and support on Azure security practices, leveraging expertise in Microsoft Azure security frameworks and best practices. … is a plus. Experience in writing technical proposals along with other teams to deliver robust statement of works for client sign off. CERTIFICATIONS: CCNP / CCNA is nice to have. CREST / OSCP is nice to have. Microsoft and / or other cloud providers. SKILLS: Working knowledge More ❯

streams. Report progress to initiative leaders and BU sponsors; adapt plans as needed. Ensure adherence to quality standards, validation processes (e.g., Part 11, ISO 17025, ISO 27001), and Element’s compliance framework. Align deliverables to business priorities and ensure high adoption … rates in target labs. Support onboarding, training, and change management initiatives in close partnership with the business units. Occasional travel to European labs Skills / Qualifications Essential: Several years of experience as a Project Manager in IT or equivalent, ideally with exposure to LIMS or regulated lab environments. Demonstrated More ❯

base within the cyber resilience practice. Required Skills & Qualifications Technical Expertise Deep understanding of threat intelligence, risk management, incident response, compliance (e.g., GDPR, ISO 27001), and security architecture. Experience with a … range of security technologies including: SIEM (e.g., Rapid7 InsightIDR) XDR (e.g., SentinelOne) Firewalls (e.g., Fortinet) Vulnerability Management (e.g., Rapid7 InsightVM) PAM (e.g., Delinea) SSE / ZTNA (e.g., Netskope) CNAPP / Cloud Security (e.g., Rapid7 InsightCloudSec) SOAR (e.g., Rapid7 InsightConnect) Automation tools (e.g., Ansible, Terraform) Project Leadership Proven ability More ❯

problem-solving and troubleshooting skills. Preferred: Experience with cloud platforms (e.g., AWS, Azure, GCP) and their integration with CyberArk. Knowledge of DevOps and CI / CD pipelines for secrets management. Familiarity with other PAM tools (e.g., BeyondTrust, Thycotic) is a plus. Strong understanding of cybersecurity frameworks (e.g., NIST, ISO 27001). Soft Skills: Strong communication and interpersonal skills. Ability to work independently and as part of a team. Detail-oriented with a focus on delivering high-quality results. Proactive and self-motivated with a passion for cybersecurity. Education and Certifications: Bachelor’s degree in Computer More ❯

feeds, integrating insights to enhance protective controls. Produce actionable reports and dashboards on threat trends, vulnerabilities, and emerging risks. Contribute to tabletop exercises, red / blue team simulations, and incident readiness planning. Provide guidance on security architecture and work closely with engineering teams to reduce our attack surface. About … and broader Microsoft security tools. Deep technical understanding of Windows and Linux systems, networking, and security architecture. Familiarity with threat hunting methodologies, and endpoint / network security tools. Experience leading complex incident response investigations and containment efforts. Solid understanding of threat actor tactics and frameworks (e.g., MITRE ATT&CK … Cyber Kill Chain). Knowledge of standards and compliance frameworks like NIST, ISO 27001, PCI-DSS, and GDPR. Relevant certifications (e.g., CISSP, GIAC, OSCP, CREST) are desirable. Why join us? You'll be joining a forward-thinking security team committed to innovation and resilience. As a More ❯

including authentication, authorization, role-based access control (RBAC), and identity governance. Experience in system security, risk management, and compliance frameworks (e.g., GDPR, NIST, ISO 27001). Excellent problem-solving skills and the ability to manage complex technical issues under pressure. Strong communication skills, with the ability More ❯

a pivotal role in shaping the future of infrastructure and reliability engineering? We're looking for an experienced Site Reliability Engineering (SRE) Team Lead / Technical Lead who is passionate about driving operational excellence and has a clear vision for building scalable, resilient systems. In this role, you'll … delivery. Architect, implement, and manage secure, scalable AWS infrastructure with a focus on automation and performance. Champion the use of Infrastructure as Code, CI / CD, containerisation, and cloud-native design patterns. Implement monitoring, alerting, and incident response practices that promote continuous improvement and service resilience. Act as a … . Strong skills in automation and configuration management-especially Ansible (Terraform experience a plus). Solid grasp of SRE and DevOps principles including CI / CD, GitOps, observability, and infrastructure as code. A strategic mindset with excellent communication and stakeholder engagement skills. Bonus Skills (Desirable but not essential): Exposure More ❯

a pivotal role in shaping the future of infrastructure and reliability engineering? We're looking for an experienced Site Reliability Engineering (SRE) Team Lead / Technical Lead who is passionate about driving operational excellence and has a clear vision for building scalable, resilient systems. In this role, you'll … delivery. Architect, implement, and manage secure, scalable AWS infrastructure with a focus on automation and performance. Champion the use of Infrastructure as Code, CI / CD, containerisation, and cloud-native design patterns. Implement monitoring, alerting, and incident response practices that promote continuous improvement and service resilience. Act as a … . Strong skills in automation and configuration management-especially Ansible (Terraform experience a plus). Solid grasp of SRE and DevOps principles including CI / CD, GitOps, observability, and infrastructure as code. A strategic mindset with excellent communication and stakeholder engagement skills. Bonus Skills (Desirable but not essential): Exposure More ❯

year). There is further assistance for work related training available. Eye Care Voucher Scheme, Employee Advisory Service Reason for Vacancy – Workload Key Tasks / Accountabilities: Be primarily responsible for the end-to-end process of fulfilling data subject requests made under the UK General Data Protection Regulation (UK … PECR) and familiarity with guidance published by the Information Commissioner’s Office One or more recognised data protection qualifications, e.g. UK GDPR Practitioner, CIPP / E, CIPM Extensive experience of fulfilling data subject requests made under the UK GDPR Experience of working in a team where providing guidance and … Confident general IT skills, ideally primarily with use of Google Workspace and Adobe Acrobat Pro (see below) but as a minimum, with Microsoft Office / O365 software suites Desirable Skills & Experience Required: Highly proficient use of Google Workspace (Gmail, Drive etc), Microsoft Office (Outlook, Word and Excel in particular More ❯

with client stakeholders to effectively scope, plan, and carry out assessments. Examine the provided proof and offer unambiguous, practical comments. Conduct on-site and / or remote technical evaluations consistent with CE+ criteria. Keep current knowledge of IASME scheme changes and cyber risk best practices. Maintain objectivity and rigour … checks, config reviews, endpoint assessments). Capacity to handle several evaluations simultaneously and work alone. Knowledge of penetration testing, cyber risk frameworks, or ISO 27001. Extra credentials, for instance, ISO 27001 Lead Auditor, CompTIA Security+, and CISMP. Why Join? Join a developing cyber Security More ❯

and deployment pipelines in a cloud-first environment. Key Responsibilities: Manage and automate AWS cloud services and VMware vSphere infrastructure Build and maintain CI / CD pipelines (GitHub Actions, TeamCity) Implement monitoring, backup, and recovery strategies Contribute to secure, high-availability architecture in line with ISO 27001 More ❯

Role Title: AWS IAM / PingID Specialist Duration: contract to run until 30 / 10 / 2025 Location: Remote Rate: up to £690 p / d Umbrella inside IR35 Clearance required: Active Security Clearance is essential Key Skills / requirements Has designed, architecture and deployed … the Ping One and AWS Identity and integrated the 2. Familiar to SAML and OAUTH / OIDC Competent in the logical configuration of Ping One and AWS Identity cloud services. Technical Proficiency in IAM Tools: Expertise in using and configuring IAM tools such Ping Identity, and AWS Identity to … and manages multi-factor authentication (MFA), single sign-on (SSO), and other authentication methods to secure user access. Ensures compliance with regulatory requirements (e.g., ISO27001, Cyber Essentials) by helping to complete compliance trackers Defines and manages roles and permissions to streamline access control and ensure users have the minimum necessary More ❯

ll Bring Bachelor’s degree in computer science, Engineering, or a related field (or equivalent work experience). 5+ years of experience in software / platform development / engineering from front end (web), mobile, back end, ad tech, or analytics dataflows backgrounds. Extensive experience in dataflows, or similar … practices for compliance, data privacy, and protection, while integrating tools and frameworks to assess APIs against OWASP and other relevant security standards (NIST, ISO-27001, PCI-DSS, HIPAA, FedRAMP) Automate security and compliance controls into the platform for continuous monitoring and reporting. Execute MySQL queries to ensure data More ❯

and protects the digital employee experience. Trusted by thousands of enterprises managing millions of endpoints globally, Action1 is certified for SOC 2 and ISO 27001. The company is founder-led by industry veterans Alex Vovk and Mike Walters, American entrepreneurs who founded Netwrix, which has grown into a More ❯

ll Bring Bachelor’s degree in computer science, Engineering, or a related field (or equivalent work experience). 5+ years of experience in software / platform development / engineering from front end (web), mobile, back end, ad tech, or analytics dataflows backgrounds. Extensive experience in dataflows, or similar … practices for compliance, data privacy, and protection, while integrating tools and frameworks to assess APIs against OWASP and other relevant security standards (NIST, ISO-27001, PCI-DSS, HIPAA, FedRAMP) Automate security and compliance controls into the platform for continuous monitoring and reporting. Execute MySQL queries to ensure data More ❯

a leader in document automation within the Salesforce ecosystem. Our solutions help enterprises manage document workflows, enabling seamless collaboration, automation, and compliance. With ISO 27001 and TISAX certifications, we ensure the highest standards in data security and operational integrity. As part of Ascendx, we are positioned More ❯

offering a fully remote opportunity with the occasional team meet-ups in London. Key Skills: Lead and maintain compliance frameworks (UK GDPR, DPA 2018, ISO27001, FCA AISP), ensuring up-to-date policies, procedures, and controls across data protection, information security, and regulatory risk. Act as Data Protection Officer (DPO), managing … automation-friendly compliance and security practices, and communicate risks clearly to leadership. Proven experience in compliance and infosec, with strong regulatory knowledge (UK GDPR, ISO27001), excellent communication skills, and ideally relevant certifications (e.g. CIPP / E, CISSP). If you are interested in the open role please come back More ❯