21 of 21 ISO/IEC 27001 Jobs in Gloucestershire

breaches affecting products Your skillset may include: Knowledge of HMG standards (including MOD-specific JSP, Def Stan 05-138, Def Stan 05-139) An understanding of MOD ISN 23 / 09 Secure by Design Knowledge of security frameworks, such as ISO / IEC 27001, NIST 800-30, NIST 800-53 or OWASP … Working with risk management frameworks and methodologies (e.g., ISO 27001 / 2, ISO27005 / 31000, NIST 800-30, NIST 800-53) If this all sounds like something you will be interested in then simply apply and we can discuss the opportunity further! Product Security Architect Permanent role Based in Bristol Offering circa More ❯

reporting. Liaise with customers and provide regular updates. Coordinate product support and resolve technical issues. Maintain documentation and configure products for delivery. Ensure compliance with ISO 9001 / 27001 standards. Requirements: Degree in STEM or equivalent experience. Strong project management and communication skills. Familiarity with Linux and collaboration tools (e.g. Jira, Confluence). Experience working … to ISO 9001 / 27001 quality and security processes. Software Development background highly beneficial, coding skills in Python, JavaScript would be of benefit Previous experience in defence / security and software / hardware development is a plus. Full UK driving licence and willingness to travel in the UK and potentially overseas This role More ❯

reporting. Liaise with customers and provide regular updates. Coordinate product support and resolve technical issues. Maintain documentation and configure products for delivery. Ensure compliance with ISO 9001 / 27001 standards. Requirements: Degree in STEM or equivalent experience. Strong project management and communication skills. Familiarity with Linux and collaboration tools (e.g. Jira, Confluence). Experience working … to ISO 9001 / 27001 quality and security processes. Software Development background highly beneficial, experience of Project Managing software projects is essential Coding skills in Python, JavaScript would be of benefit but not essential Previous experience in defence / security and software / hardware development is a plus. Full UK driving licence and More ❯

reporting. Liaise with customers and provide regular updates. Coordinate product support and resolve technical issues. Maintain documentation and configure products for delivery. Ensure compliance with ISO 9001 / 27001 standards. Requirements: Degree in STEM or equivalent experience. Strong project management and communication skills. Familiarity with Linux and collaboration tools (e.g. Jira, Confluence). Experience working … to ISO 9001 / 27001 quality and security processes. Software Development background highly beneficial, experience of Project Managing software projects is essential Coding skills in Python, JavaScript would be of benefit but not essential Previous experience in defence / security and software / hardware development is a plus. Full UK driving licence and More ❯

defence industry, seeking a skilled Project Manager to lead technical projects from proposal through delivery. Youll manage budgets, schedules, and customer relationships, ensuring work meets ISO 9001 / 27001 quality and security standards. Key Responsibilities: - Plan, track, and report project progress and budgets. - Liaise with customers in person, via email, and online meetings. - Produce written … and configure products for delivery. Requirements: - Degree in Computer Science, Engineering, Physics, or Maths (or equivalent experience). - Proven technical project management experience. - Knowledge of ISO 9001 / 27001, Linux, and collaboration tools (e.g., Confluence, Jira, Gitlab). - Advantageous: Defence sector experience, software development (Python, HTML / JS), hardware production knowledge. - Excellent communication, problem … solving, and organisational skills. - Able to obtain UK Developed Vetting security clearance. - Full UK driving licence and willingness to travel (UK / international). Benefits: - 25 days holiday + bank holidays - 10% pension contribution, bonus scheme, six-monthly salary reviews - Private medical, life, and critical illness cover - Free parking, small friendly office - £50£80k salary More ❯

principles Experience in system security engineering, ideally in defence, space, or critical infrastructure Familiarity with MOD, NCSC, and ISO standards (e.g. ISO 27001 / 2, NIST 800-series, JSP 604) Competence in requirements engineering and systems thinking Practical experience with security in software and / or system development environments Effective communication and … space system architectures or satellite communications DevSecOps awareness or experience with security automation Benefits: Annual Company Bonus 25 Days holiday not including bank holidays with the option to buy / sell up to 5 days Competitive pension contribution Continuous professional development including incentives Access to online Udemy training facility Flexible working arrangements Bike to work scheme Electric car scheme More ❯

Job Title: Security Consultant Location: Hybrid (Bristol / Wiltshire office, circa 2 days pw) Salary: 45,000 - 75,000 + Benefits Are you an experienced Security Consultant looking for your next challenge? We are seeking passionate cyber security professionals with strong expertise in governance, risk and compliance (GRC), who can deliver complex projects and build trusted client relationships. As … a Security Consultant , you will work on a variety of Defence and Public Sector assignments, requiring current SC clearance. Projects will range from risk assessments and ISO 27001 implementations to developing full ISMS frameworks and supporting clients through accreditation. You'll provide expert guidance across standards such as NIST, CAF, and Secure by Design. Security Consultant … remote working, training budget, private healthcare, bonus scheme, and a culture that values collaboration, growth, and well-being. Take the next step in your career as a GRC Specialist / Security Consultant - apply today. People Source Consulting Ltd is acting as an Employment Agency in relation to this vacancy. People Source specialise in technology recruitment across niche markets including More ❯

down to the successful candidate. You can expect: Design and manage scalable, secure cloud environments using Azure Bicep, ARM, or Terraform Lead the implementation of DevSecOps practices including CI / CD, secrets management, zero-trust security, and vulnerability management Develop secure cloud-native architectures including microservices, containers, and serverless patterns Ensure compliance with industry security and privacy standards ( e.g. … ISO 27001, SOC 2, GDPR) Secure containerised environments, including Kubernetes and Docker Collaborate with developers to integrate secure deployment pipelines across the SDLC Support deployments in client environments, including on-prem and multi-cloud Continuously improve infrastructure processes for performance, reliability, and security Where you'll be stretched (and thrive): We're growing fast: That means … skillsyou'll need to succeed in this role Deep experience in Azure infrastructure (with IaC using Bicep, ARM, or Terraform) Hands-on knowledge of DevSecOps tooling and techniques (CI / CD, secrets management, threat modelling) Experience implementing security standards across cloud and hybrid environments Familiarity with container security ( e.g. Docker, Kubernetes) A strong understanding of compliance frameworks such as More ❯

stakeholder engagement skills with the ability to partner effectively with Marketing, InfoSec and senior business leaders. Practical understanding of modern web stacks. WordPress (hosted on WP Engine) Sitecore. Headless / Traditional CMS, React / Vue, APIs, CDNs, DNS, SSL / TLS. Hands-on knowledge of analytics and optimization tools: Google Tag Manager, GTM, GA4, and accessibility standards … WCAG 2.2). Experience integrating acquired websites and aligning them with group standards on security, UX and compliance. About You Were looking for someone who brings: Experience within insurance / financial services or other regulated industries. Exposure to large scale integration or consolidation of digital platforms in acquisitive organisations. Experience with DevSecOps and CI / CD pipelines for … web platforms. Experience with Jira / Confluence for work management and documentation Exposure to AWS cloud services, containerisation, and Infrastructure as Code. Familiarity with GDPR, ISO 27001 controls and PCI considerations for web journeys. SCRUM practitioner / familiarity to agile ways of working Working with international / multilingual Teams Working as part of More ❯

product innovation pipeline, providing assurance to clients, regulators, and stakeholders during a period of significant digital transformation and on an ongoing basis. The role will champion secure-by-default / design principles, drive security best practices, and lead a high-performing team in the context of ambitious cloud adoption, agile delivery, and regulatory evolution. The role balances strategic vision … business. Engage with external partners, vendors, and industry groups to benchmark best practice and represent the firm's interests. Lead the offensive security function looking after penetration testing, red / purple team exercises and bug bounty programme. About you Extensive leadership experience in application and / or product security, ideally within the wealth management, financial services or fintech … of building and leading security teams in complex, regulated, and digitally transforming environments. Expertise in secure software development lifecycle (SSDLC) and experience embedding security into agile, DevOps, and CI / CD environments. In-depth technical knowledge of application security architecture, cloud platforms (AWS, Azure, GCP), microservices, APIs, and identity / access management. Strong familiarity with modern programming languages More ❯

security breaches. Provide security guidance and training to teams across the organization. Key Skills & Experience: Strong knowledge of security frameworks (ISO 27001, NIST 800-30 / 53, OWASP) . Experience with risk management methodologies and compliance with MOD and HMG security standards (JSP, Def Stan 05-138 / 139). Proficiency in security threat More ❯

security breaches. Provide security guidance and training to teams across the organization. Key Skills & Experience: Strong knowledge of security frameworks (ISO 27001, NIST 800-30 / 53, OWASP) . Experience with risk management methodologies and compliance with MOD and HMG security standards (JSP, Def Stan 05-138 / 139). Proficiency in security threat More ❯

Architect (Security), you'll work directly with major enterprise customers, playing a strategic role in advisory, design, and technical delivery. What you'll do Provide expert guidance across SASE / SSE, PAM, detection, and data centre security technologies Lead customer engagements, providing advisory services, architecture guidance, roadmap planning, and solution governance Define and document high-level solution designs, technical … architecture engagements at the enterprise level Expertise in Secure Access Service Edge (SASE) and Secure Service Edge (SSE), especially with Zscaler Experience in at least three enterprise Zscaler SSE / SASE projects Ability to provide presales advisory, requirements gathering, and high-level solution design Strong understanding of Zscaler architecture and troubleshooting Broad knowledge across IAM, SSO, MFA, PAM, and … IDaaS Strong background in core security technologies such as firewalls, IDS / IPS, endpoint protection, and encryption Comfortable working with cloud platforms and designing secure architectures across Azure, AWS, or Google Cloud Ability to lead technical conversations, influence customer decisions, and deliver trusted advisory services Existing SC clearance or eligibility to apply Desirable Skills & Certifications Familiarity with industry security More ❯

Architect (Security), you'll work directly with major enterprise customers, playing a strategic role in advisory, design, and technical delivery. What you'll do Provide expert guidance across SASE / SSE, PAM, detection, and data centre security technologies Lead customer engagements, providing advisory services, architecture guidance, roadmap planning, and solution governance Define and document high-level solution designs, technical … architecture engagements at the enterprise level Expertise in Secure Access Service Edge (SASE) and Secure Service Edge (SSE), especially with Zscaler Experience in at least three enterprise Zscaler SSE / SASE projects Ability to provide presales advisory, requirements gathering, and high-level solution design Strong understanding of Zscaler architecture and troubleshooting Broad knowledge across IAM, SSO, MFA, PAM, and … IDaaS Strong background in core security technologies such as firewalls, IDS / IPS, endpoint protection, and encryption Comfortable working with cloud platforms and designing secure architectures across Azure, AWS, or Google Cloud Ability to lead technical conversations, influence customer decisions, and deliver trusted advisory services Existing SC clearance or eligibility to apply Desirable Skills & Certifications Familiarity with industry security More ❯

not limited to requirements such as GDPR & ISO 27001. Collaborating with other areas within the company such as the Infrastructure & DevOps teams to integrate virtualisation with CI / CD pipelines and other automation frameworks. Skills: VMWare - vSphere Hyper-V Strong knowledge with automation and scripting technologies such as Python, PowerShell or Ansible. Cloud-based virtualisation (e.g., Azure … GCP, AWS) Knowledge around relevant industry standards such as ISO 27001 & GDPR. Benefits Healthcare package Life Works Gym Allowance Cycle to Work Long-Term Sickness Insurance Employee Assistance Programme Discretionary Bonus Infrastructure Engineer (eDV Cleared) £70,000-£100,000 VMware Hyper-V Oscar Associates (UK) Limited is acting as an Employment Agency in relation to this More ❯

not limited to requirements such as GDPR & ISO 27001. Collaborating with other areas within the company such as the Infrastructure & DevOps teams to integrate virtualisation with CI / CD pipelines and other automation frameworks. Skills: VMWare - vSphere Hyper-V Strong knowledge with automation and scripting technologies such as Python, PowerShell or Ansible. Cloud-based virtualisation (e.g., Azure … GCP, AWS) Knowledge around relevant industry standards such as ISO 27001 & GDPR. Benefits Healthcare package Life Works Gym Allowance Cycle to Work Long-Term Sickness Insurance Employee Assistance Programme Discretionary Bonus Infrastructure Engineer (eDV Cleared) | £70,000-£100,000 | VMware | Hyper-V Oscar Associates (UK) Limited is acting as an Employment Agency in relation to this More ❯

pure' managerial role with no hands-on technical work Technical knowledge of Windows Server, Azure, Active Directory and cloud-based O365 environments Strong knowledge of IT Security and ISO 27001 standards A mix of polictical and technical skills A personable nature, able to manage up and down where requried The successful IT Infrastructure Manager will work … fall under the Equality Act 2010. For the purposes of the Conduct Regulations 2003, when advertising permanent vacancies we are acting as an Employment Agency, and when advertising temporary / contract vacancies we are acting as an Employment Business. More ❯

pure' managerial role with no hands-on technical work Technical knowledge of Windows Server, Azure, Active Directory and cloud-based O365 environments Strong knowledge of IT Security and ISO 27001 standards A mix of polictical and technical skills A personable nature, able to manage up and down where requried The successful IT Infrastructure Manager will work … fall under the Equality Act 2010. For the purposes of the Conduct Regulations 2003, when advertising permanent vacancies we are acting as an Employment Agency, and when advertising temporary / contract vacancies we are acting as an Employment Business. More ❯

and retention policies Manage documentation and change control processes for, servers, and applications Contribute to strategic planning for future IT requirements aligned with company growth and compliance needs (e.g. ISO27001, GDPR, DCC) Actively promote team values and adhere to all relevant company policies DevOps Responsibilities: Implement and manage DevOps pipelines for AI and computer vision products Integrate MLOps practices for … VMware (Hypervisor) Service-oriented with effective communication skills Ability to prioritize workload under minimal supervision Undergraduate degree or equivalent working experience Desirable Skills: Experience with DevOps practices including: CI / CD pipeline design and automation Containerisation and orchestration Monitoring and observability tools Experience in the defence or advanced technology sector Familiarity with GPU based computer environments Familiarity with MLOps … Jenkins Docker, Kubernetes Terraform, Ansible Additional tools as required Benefits: Annual Company Bonus Based on company performance 25 Days holiday not including bank holidays with the option to buy / sell up to 5 days Flexible hybrid working arrangements Continuous professional development including incentives Access to online Udemy training facility to support grade specific learning pathways Electric car scheme More ❯

and retention policies Manage documentation and change control processes for, servers, and applications Contribute to strategic planning for future IT requirements aligned with company growth and compliance needs (e.g. ISO27001, GDPR, DCC) Actively promote team values and adhere to all relevant company policies DevOps Responsibilities: Implement and manage DevOps pipelines for AI and computer vision products Integrate MLOps practices for … VMware (Hypervisor) Service-oriented with effective communication skills Ability to prioritize workload under minimal supervision Undergraduate degree or equivalent working experience Desirable Skills: Experience with DevOps practices including: CI / CD pipeline design and automation Containerisation and orchestration Monitoring and observability tools Experience in the defence or advanced technology sector Familiarity with GPU based computer environments Familiarity with MLOps … Jenkins Docker, Kubernetes Terraform, Ansible Additional tools as required Benefits: Annual Company Bonus – Based on company performance 25 Days holiday not including bank holidays with the option to buy / sell up to 5 days Flexible hybrid working arrangements Continuous professional development including incentives Access to online Udemy training facility to support grade specific learning pathways Electric car scheme More ❯

e.g. NIST, UK Government) Undertake cyber security audit processes in support of operational and business planning activity across a range of different domains or sectors against recognised standards (e.g. ISO27001, UK Government) Undertake cyber security vulnerability analysis to provide a rich picture of organisational maturity and risk exposure to cyber security, in support of operational and business planning activity across … Security Risk Consultant: Digitally literate (including fluency in Microsoft Office tools) Minimum of 2-3 years of experience in security vulnerability, risk, audit & compliance Understand relevant NIST frameworks and ISO27001 standards and how to apply in practice Knowledge of MITRE ATT&CK Essential qualifications for the Cyber Security Risk Consultant: We value difference and we don't have a fixed More ❯