25 of 25 ISO/IEC 27001 Jobs in Gloucestershire

2, GDPR, NIS2, DORA, and other relevant EU frameworks or regulations. At least one certification from each group is preferred: Group 1- CISA, ISO27001 Lead Auditor Group 2- CISSP, ISO27001 Lead Implementer, CISM Demonstrated ability to structure and lead projects successfully Responsibilities: Lead client audits / assessments … Experience: Information Security: 5 years (required) License / Certification: PCI QSA At least one certification from each group is preferred: Group 1- CISA, ISO27001 Lead Auditor Group 2- CISSP, ISO27001 Lead Implementer, CISM Work Location: UK (Remote with client onsite travel as necessary) Expected start date: ASAP ...

Security and Governance Manager, ISO27001, c £ 50000 - 60000+ benefits, nr Cheltenham, Gloucestershire. 3 days in the office, 2 days WFH Growing company are looking for an IT Security and Governance Manager who will co-ordinate all the governance and compliance including Certifications such ISO 27001, Cyber … join a global company that is going through an exciting period of growth and expansion. If you have the required skills and experience around ISO27001 please send your CV for a full brief. This role is based in the Cheltenham / Gloucester area and requires 3 days a week ...

market. The company specializes in providing solutions across Application Services and Consulting, Digital Product Engineering, Digital Workplace Services, Private Cloud Services, AI / Automation, and ServiceNow. Milestone culture is built to provide a collaborative, inclusive environment that supports employees and empowers them to reach their full potential. Our seasoned … preferably in global enterprise environment Proven experience leading and managing technical teams. Strong understanding of cybersecurity frameworks and standards (e.g., NIST, ISO / IEC 27001, IAM). Proficiency with cybersecurity tools and platforms (e.g., SIEM, SOAR, SAS, Sandboxes, EDR solutions and cloud technologies ...

with internal policy and external regulations. The ideal candidate will embed security throughout the delivery lifecycle, working closely with infrastructure engineers, architects, and project / programme managers. You'll define and enforce secure configuration baselines, conduct threat modelling and risk assessments, integrate monitoring and alerting, and produce clear security … that guide operational teams. Candidates must be eligible to obtain SC security clearance Duties and responsibilities Design, implement and optimise security controls across hybrid / on-prem Microsoft and Azure-centric environments. Define / enforce hardening standards (e.g., CIS Benchmarks, Microsoft Security Baselines). Perform threat modelling, risk ...

HIPAA). Continuously contribute to process improvement, suggesting ways to enhance efficiency and customer satisfaction. Required Skills & Experience Education to NQF Level 3 / 4 in a computing-related discipline (e.g., A Level in Computing or ICT, NCC Education Level 3 Diploma in Computing, IT Users Level 3 Certificate … / Diploma). Strong GCSE results, including Maths, English, and Science. Minimum of 3 years' commercial experience in an IT and / or application support environment. Solid understanding of hosted IP telephony. Proficiency with MS Office 365 / Admin, Microsoft Windows 11, MacOS Proficiency with Azure, Teams ...

ensuring timely closure and evidence of improvement. - Deliver the DSPT to Standards Met or higher, embedding continual improvement reviews throughout the year. - Monitor CareCERT / NHS Cyber Alerts and ensure all critical vulnerabilities are triaged within 48 hours and resolved within 14 days. - Oversee removal or mitigation … supplier-assurance controls. Policy and Governance - Lead the review and implementation of Cyber Security Policies, Standards and SOPs covering access, remote working, cloud, IoT / IoMT and third-party assurance. - Provide governance reporting to the Digital Board Committee, Audit Committee and ICS Cyber Operations Group. - Liaise with Information Governance ...

security in the SDLC and DevSecOps practices. Advise and guide on secure coding practices, threat modeling, and architectural reviews. Instrument automated tooling for CI / CD pipelines to improve visibility of security signals and enforcement. Customer & External Engagement Represent the company's security, privacy, and data protection posture … testing, application security, or infrastructure hardening. Familiarity with modern software development practices, DevSecOps, and cloud-native architectures (preferably Python eco-system, Kubernetes and Azure / AWS / GCP). Excellent communication skills with the ability to influence stakeholders and explain security to both technical and non-technical audiences. ...

cloud and Azure-based solutions. Translate customer requirements into secure, scalable technical architecture. Embed MDR and cyber resilience into solutions, working closely with SOC / security teams. Provide architectural guidance across pre-sales, delivery, and technical teams. Act as a technical authority in client meetings, proposals and reviews. Maintain … technologies to drive ongoing improvements. Solution Architect – Key Skills Required Essential Proven Solution Architect experience within an MSP environment. Strong Microsoft Azure expertise (IaaS / PaaS, governance, identity, networking, landing zones). Security experience across MDR, threat detection, SIEM / SOAR or security monitoring. Solid understanding of hybrid ...

cloud and Azure-based solutions. Translate customer requirements into secure, scalable technical architecture. Embed MDR and cyber resilience into solutions, working closely with SOC / security teams. Provide architectural guidance across pre-sales, delivery, and technical teams. Act as a technical authority in client meetings, proposals and reviews. Maintain … technologies to drive ongoing improvements. Solution Architect – Key Skills Required Essential Proven Solution Architect experience within an MSP environment. Strong Microsoft Azure expertise (IaaS / PaaS, governance, identity, networking, landing zones). Security experience across MDR, threat detection, SIEM / SOAR or security monitoring. Solid understanding of hybrid ...

Title: Cyber Security Consultant (GRC / Assurance) Location: Fully Remote (UK wide travel required) Employment Type: Permanent Salary: Competitive Start Date: Immediate Industry: IT Services & Consulting One our Cyber & IA consultancies are growing their GRC & Assurance consulting capability and want motivated security professionals who enjoy working closely with clients … hear from you. This is a remote role with flexibility for travel across the UK, Europe, and occasionally globally required. Cyber Security Consultant (GRC / Assurance) – Key Responsibilities Deliver governance, risk & compliance programmes Assess organisations to standards: NIST, CAF, ISO 27001, CE, SbD Develop policies ...

with significant influence: you will design systems, implement tooling, measure productivity gaps, and drive adoption of better practices across the engineering organisation. Requirements CI / CD Infrastructure & Tooling Own and operate CI / CD systems (GitHub Actions, runners, caching, artifact storage). Maintain stability, scalability, and cost-effectiveness … pipelines. Build and maintain systems for our monorepo. Ensure CI / CD observability, with metrics flowing into Datadog / Slack. Pipeline Instrumentation & Optimisation Analyse pipelines for inefficiencies (e.g., flaky tests, redundant steps, lack of caching). Recommend and implement optimisations (parallelisation, test selection, caching strategies). Define benchmarks ...

with significant influence: you will design systems, implement tooling, measure productivity gaps, and drive adoption of better practices across the engineering organisation. Requirements CI / CD Infrastructure & Tooling Own and operate CI / CD systems (GitHub Actions, runners, caching, artifact storage). Maintain stability, scalability, and cost-effectiveness … pipelines. Build and maintain systems for our monorepo. Ensure CI / CD observability, with metrics flowing into Datadog / Slack. Pipeline Instrumentation & Optimisation Analyse pipelines for inefficiencies (e.g., flaky tests, redundant steps, lack of caching). Recommend and implement optimisations (parallelisation, test selection, caching strategies). Define benchmarks ...

assessments whilst collaborating with senior consultants and team leaders Maintain compliance with legal frameworks governing penetration testing and disclosure Specializations You May Develop: SCADA / OT environment security testing Cloud infrastructure penetration testing (AWS, Azure) Web services and API security Mobile application testing (iOS / Android … CHECK Team Leaders, CREST Certified Testers, and forensic specialists delivers: Penetration Testing & Security Audits: Infrastructure, application, and mobile assessments Compliance Advisory: PCI DSS, GDPR, ISO27001 implementations and certifications Incident Response & Forensics: 24 / 7 emergency response and digital evidence analysis Specialist Services: SCADA testing, social engineering, business continuity planning ...

assessments whilst collaborating with senior consultants and team leaders Maintain compliance with legal frameworks governing penetration testing and disclosure Specializations You May Develop: SCADA / OT environment security testing Cloud infrastructure penetration testing (AWS, Azure) Web services and API security Mobile application testing (iOS / Android … CHECK Team Leaders, CREST Certified Testers, and forensic specialists delivers: Penetration Testing & Security Audits: Infrastructure, application, and mobile assessments Compliance Advisory: PCI DSS, GDPR, ISO27001 implementations and certifications Incident Response & Forensics: 24 / 7 emergency response and digital evidence analysis Specialist Services: SCADA testing, social engineering, business continuity planning ...

project milestones, as well as liaising with stakeholders and supporting the software development lifecycle. Key Responsibilities: Support the delivery of projects using hybrid Agile / Waterfall methodologies Assist in the development and execution of project plans Track project milestones, deliverable, and sprint progress in Azure DevOps Coordinate activities with … resolving software defects Perform regression and functional testing aligned with project milestones Create test documentation and reports Conduct compliance auditing aligned with ISO 27001 Skills & Experience: 1-3 years of experience in project management or similar roles Good understanding of Agile and Waterfall methodologies Experience with ...

project milestones, as well as liaising with stakeholders and supporting the software development lifecycle. Key Responsibilities: Support the delivery of projects using hybrid Agile / Waterfall methodologies Assist in the development and execution of project plans Track project milestones, deliverables, and sprint progress in Azure DevOps Coordinate activities with … resolving software defects Perform regression and functional testing aligned with project milestones Create test documentation and reports Conduct compliance auditing aligned with ISO 27001 Skills & Experience: 1-3 years of experience in project management or similar roles Good understanding of Agile and Waterfall methodologies Experience with ...

Manage and optimise IT infrastructure (on-premises and cloud), ensuring performance and security. Collaborate on IT security and compliance, maintaining standards such as ISO 27001. Plan and deliver IT projects, ensuring timely and cost-effective execution. Manage the IT budget and vendor relationships, ensuring value for money. Develop ...

Skills Required Active and valid SC clearance (mandatory) Strong understanding of supplier risk, governance & compliance Experience with frameworks such as CAF, NIST, CE & ISO 27001 Excellent stakeholder engagement and influencing skills Technical security background beneficial Public sector experience + security clearance advantageous Please apply ...

operational cybersecurity, policies, and risk management. You will define and maintain security standards, oversee incident response, and ensure compliance with frameworks such as ISO27001, Cyber Essentials, CIS, NIST, and GDPR. A key part of this role involves leading and mentoring apprentices, designing structured training pathways, and helping shape the organisation … Essential Skills: Strong experience across IT operations and cybersecurity, including incident response, risk management, and policy creation Working knowledge of security frameworks such as ISO27001, CIS, NIST, GDPR, and Cyber Essentials Cybersecurity certifications such as CISSP, Security+, CEH or equivalent Proven leadership and team development experience, ideally including apprenticeship support ...

will be a key member of the change advisory board and business risk steering committee. Main responsibilities include - Assist with the continued certification of ISO27001, CMMC (NIST), Cyber Essentials, etc. Responsible for the delivery of the company cyber security strategy . Work with external partners to ensure their work meets … company response plan in the event of a security breach. Skills and Experience Required - Working knowledge of some of the following - ITAR, CMMC, ISO27001, CCPA, Cyber Essentials Plus 5 years plus experience in a similar Cyber Security role. Good understanding of networking ports, protocols, traffic flow, system administration, etc Experience ...

correctly configured Diagnose and resolve issues with PC and server hardware, network and internet connectivity, and telephone systems Support and troubleshoot Windows 10 / 11, Windows Server 2019 / 2022, Active Directory, SQL Server, SharePoint, Office 365 and key line-of-business applications (including ERP and time & attendance … manner and clear written English High attention to detail, accuracy and a methodical approach to problem solving Full UK driving licence Desirable: Awareness of ISO27001 Experience with NetSuite or similar ERP platforms Confidence working with data in tools such as Excel or other statistical / analysis packages The ideal ...

Location: Cheltenham / Remote Job Type: Permanent Clearance: SC / DV Are you an offensive security specialist who is excited about delivering the best service possible? Keen to work in a business where you stand to work alongside some very talented testers? CND are working with a boutique … Cloud services such as Azure or AWS. Capability to script or code in Bash, Python etc. Appreciation for Cyber Security standards such as ISO27001, PCI-DSS or CIS. This is a role with a growing, exciting organisation who can offer you a strong degree of progression and the ability ...

Location: Cheltenham / Remote Job Type: Permanent Clearance: SC / DV Are you an offensive security specialist who is excited about delivering the best service possible? Keen to work in a business where you stand to work alongside some very talented testers? CND are working with a boutique … Cloud services such as Azure or AWS. Capability to script or code in Bash, Python etc. Appreciation for Cyber Security standards such as ISO27001, PCI-DSS or CIS. This is a role with a growing, exciting organisation who can offer you a strong degree of progression and the ability ...

approaches and maintain CI / CD pipelines for reliable deployment and testing Security & Compliance - Operate to the highest security standards as expected by ISO27001 Qualifications and Skills Required Skills and Experience Ø 5+ years of Python backend development experience (fewer years' experience is acceptable for exceptional candidates) Ø Strong … better cross-team collaboration Ø Experience implementing LLM integration frameworks Ø Background in pharmaceutical or healthcare domain Ø Familiarity of working to ISMS ISO27001 standards Ø Growth mindset combined with tenacity Ø Entrepreneurial approach driven by curiosity and innovation Ø Deep customer centricity What We Offer Ø Competitive salary ...

approaches and maintain CI / CD pipelines for reliable deployment and testing Security & Compliance - Operate to the highest security standards as expected by ISO27001 Qualifications and Skills Required Skills and Experience Ø 5+ years of Python backend development experience (fewer years' experience is acceptable for exceptional candidates) Ø Strong … better cross-team collaboration Ø Experience implementing LLM integration frameworks Ø Background in pharmaceutical or healthcare domain Ø Familiarity of working to ISMS ISO27001 standards Ø Growth mindset combined with tenacity Ø Entrepreneurial approach driven by curiosity and innovation Ø Deep customer centricity What We Offer Ø Competitive salary ...