14 of 14 ISO/IEC 27001 Jobs in Gloucestershire

breaches affecting products Your skillset may include: Knowledge of HMG standards (including MOD-specific JSP, Def Stan 05-138, Def Stan 05-139) An understanding of MOD ISN 23 / 09 Secure by Design Knowledge of security frameworks, such as ISO / IEC 27001, NIST 800-30, NIST 800-53 or OWASP … Working with risk management frameworks and methodologies (e.g., ISO 27001 / 2, ISO27005 / 31000, NIST 800-30, NIST 800-53) If this all sounds like something you will be interested in then simply apply and we can discuss the opportunity further! Product Security Architect Permanent role Based in Bristol Offering circa More ❯

Access Control (RBAC) policies to ensure users receive appropriate access based on defined roles. Enforce access control standards and ensure alignment with organisational and regulatory requirements (e.g. GDPR, ISO Monitor IDAM systems for security incidents, vulnerabilities, and compliance risks, responding promptly to mitigate threats. Manage identity provisioning, de-provisioning and entitlement reviews across cloud and on-premise environments. … excellent documentation and communication skills. Relevant certifications (e.g. CISSP, CIAM, CISM) or equivalent experience. A proactive, collaborative approach and commitment to continuous improvement. Core Skills Identity & Access Management (IAM / IDAM) Azure Active Directory / Entra ID Role-Based Access Control (RBAC) Multi-Factor Authentication (MFA) Single Sign-On (SSO) Privileged Access Management (PAM) Authentication & Authorisation Security Administration … IT Governance & Compliance Cybersecurity / ISO 27001 / GDPR Active Directory Cloud Security (Microsoft 365 / Azure) Why Join? Work within a respected global organisation investing heavily in digital transformation and cyber resilience. Opportunity to lead on IDAM improvement projects and shape access governance strategy. Flexible hybrid working environment with excellent benefits. Ongoing More ❯

products in the Defence, Automotive, Aerospace or Telecoms sectors (or a similar field) Experience of software security with knowledge of industry security standards, and best practices ( NIST 800-53 / (Apply online only), IECIEC 62443, Def Stan 00-55 / 00-56, ISO / IECIEC 27001 / 27034) A natural collaborator who … You'll have an interest in novel and emerging technologies, and the challenges that face the Security community. It would be beneficial to have experience developing embedded software and / or firmware, but not essential You'll have a degree or equivalent experience in a STEM (Science, Technology, Engineering, Mathematics) subject or similar, and be comfortable working with engineers More ❯

principles Experience in system security engineering, ideally in defence, space, or critical infrastructure Familiarity with MOD, NCSC, and ISO standards (e.g. ISO 27001 / 2, NIST 800-series, JSP 604) Competence in requirements engineering and systems thinking Practical experience with security in software and / or system development environments Effective communication and … space system architectures or satellite communications DevSecOps awareness or experience with security automation Benefits: Annual Company Bonus 25 Days holiday not including bank holidays with the option to buy / sell up to 5 days Competitive pension contribution Continuous professional development including incentives Access to online Udemy training facility Flexible working arrangements Bike to work scheme Electric car scheme More ❯

Job Title: Security Consultant Location: Hybrid (Bristol / Wiltshire office, circa 2 days pw) Salary: 45,000 - 75,000 + Benefits Are you an experienced Security Consultant looking for your next challenge? We are seeking passionate cyber security professionals with strong expertise in governance, risk and compliance (GRC), who can deliver complex projects and build trusted client relationships. As … a Security Consultant , you will work on a variety of Defence and Public Sector assignments, requiring current SC clearance. Projects will range from risk assessments and ISO 27001 implementations to developing full ISMS frameworks and supporting clients through accreditation. You'll provide expert guidance across standards such as NIST, CAF, and Secure by Design. Security Consultant … remote working, training budget, private healthcare, bonus scheme, and a culture that values collaboration, growth, and well-being. Take the next step in your career as a GRC Specialist / Security Consultant - apply today. People Source Consulting Ltd is acting as an Employment Agency in relation to this vacancy. People Source specialise in technology recruitment across niche markets including More ❯

client's risk profile and operational needs. Guide clients in developing and improving their incident response processes, including playbook creation and alignment with security frameworks like NIST and ISO 27001. Regularly review and optimise SIEM configurations to reduce false positives, improve detection accuracy, and adapt to evolving threat landscapes. Advisory & Compliance: Advise clients on aligning SIEM deployments with … of experience in SIEM consulting, SOC, or security operations roles with a focus on threat detection and response. Strong understanding of threat detection methodologies, security frameworks (e.g., NIST, ISO 27001), and compliance requirements. Experience with SIEM design and architecture, data ingestion, log management, and custom dashboard creation. Familiarity with cloud-native security solutions and knowledge of More ❯

infrastructure-as-code, you'll help us build, run, and scale with confidence. Key Responsibilities: Lead a collaborative team of infrastructure and DevOps engineers Build secure, scalable infrastructure (Windows / Linux, VMs, containers) Drive CI / CD, automation, and Infrastructure as Code practices Ensure compliance with NIST, NCSC, CIS, JSP, and ISO 27001 Oversee … in systems administration & automation Solid grasp of compliance frameworks (NIST, NCSC, JSP) Excellent communication and stakeholder management Tech Stack You'll Work With: OS: Windows Server, Hardened Linux Containers / Orchestration: Docker, Kubernetes, Portainer DevOps Tools: Jenkins, Artifactory, Jira, Azure DevOps Virtualization: Nutanix, VMware Security: Defender, Wazuh, Nessus, OPSWAT Monitoring: PRTG, Zabbix Access / Apps: Citrix Netscaler, KASM More ❯

penetration testing. Ideally, a knowledge of Cloud services such as Azure or AWS. Capability to script or code in Bash, Python etc. Appreciation for Cyber Security standards such as ISO27001, PCI-DSS or CIS. This is a role with a growing, exciting organisation who can offer you a strong degree of progression and the ability to undertake testing work with More ❯

production D365 business services. What you'll do In this exciting role, you will: ensure best practice ticket management in accordance with internal service management KPI's, ITIL and ISO27001 accreditation ensure we are proactive in our support and maintenance, working with system logs help end users maximise efficiency through effective use of D365 applications become a subject matter expert More ❯

for your peace of mind and wellbeing. Discounted Gym Memberships: Prioritise your fitness with exclusive rates at leading gyms. Personalised Wellbeing Support: App-based resources and services available 24 / 7 Enhanced Annual Leave: 25 days of holiday, increasing to 27 days with service, plus bank holidays and a day off for your birthday. Continuous Learning & Development:Ongoing opportunities More ❯

Accurately delivering high quality work to agreed timelines. Taking the initiative on project work, and knowing how to jump straight in. Supporting client engagements, including pitches and presentations. Skills / Knowledge You have relevant and recent experience working within the cyber security industry. You have experience in a consulting or customer facing role. You have worked in technical client … with security controls within cloud-based infrastructure (e.g Azure, AWS, GCP). This may include design, configuration, or protective monitoring. You have experience working with security control frameworks e.g. ISO27001, NIST, CAF or others. You have demonstrable continuous personal development with relevant certifications and accreditations. You have strong interpersonal skills You have UK security clearance at SC or above or More ❯

Ping ID Specialist / IAM Consultant - SC Clearance Location: Cheltenham Road, Bishops Cleeve Work Type: 70% Remote, 30% Office Length: Initial Short Term Contract, c.2 months with scope for extensions Rate: £450 - £500 (Inside) Clearance: Must have active SC Clearance Role Description: IAMSME with experience of Web SSO / MFA and Application integration, based upon Ping Directory, Ping … and MFA for existing applications. Working with client project manager and support planning work breakdown steps Proficient in stakeholder management. Knowledge of government security standards and processes such as ISO27001 standards, NNPPI, NIST & Cyber Essentials Plus & GDPR. Reasonable Adjustments: Respect and equality are core values to us. We are proud of the diverse and inclusive community we have built, and More ❯

You’ll work closely with CISOs, providing policy advice and GRC expertise. Key Responsibilities Deliver cyber resilience consulting services to MOD and government clients Support clients in aligning with ISO27001 and other relevant standards Advise on governance, risk, and compliance frameworks Collaborate with CISOs and senior stakeholders to shape cyber policy Stay informed on emerging technologies, including AI’s impact … on GRC Essential Experience Minimum 2 years in cyber security, risk, or GRC consulting ISO27001 certification Strong understanding of GRC principles and frameworks Experience working with MOD or on MOD-aligned projects Familiarity with JSP or DEFSTAN standards (advantageous) Background in consultancy or graduate scheme Benefits 10–15% performance bonus (regularly achieved) Private healthcare Travel expenses to client sites Hybrid More ❯

You’ll work closely with CISOs, providing policy advice and GRC expertise. Key Responsibilities Deliver cyber resilience consulting services to MOD and government clients Support clients in aligning with ISO27001 and other relevant standards Advise on governance, risk, and compliance frameworks Collaborate with CISOs and senior stakeholders to shape cyber policy Stay informed on emerging technologies, including AI’s impact … on GRC Essential Experience Minimum 2 years in cyber security, risk, or GRC consulting ISO27001 certification Strong understanding of GRC principles and frameworks Experience working with MOD or on MOD-aligned projects Familiarity with JSP or DEFSTAN standards (advantageous) Background in consultancy or graduate scheme Benefits 10–15% performance bonus (regularly achieved) Private healthcare Travel expenses to client sites Hybrid More ❯