1 to 25 of 35 ISO/IEC 27001 Jobs in Gloucestershire

Security and Governance Manager, ISO27001, c £ 50000 - 60000+ benefits, nr Cheltenham, Gloucestershire. 3 days in the office, 2 days WFH Growing company are looking for an IT Security and Governance Manager who will co-ordinate all the governance and compliance including Certifications such ISO 27001, Cyber … join a global company that is going through an exciting period of growth and expansion. If you have the required skills and experience around ISO27001 please send your CV for a full brief. This role is based in the Cheltenham / Gloucester area and requires 3 days a week ...

within an MSP, reseller, or channel partner. Framework Fluency: Proven knowledge of ISO 27001, NIST CSF, GDPR, and other regulatory / compliance standards. Cloud & Security Architecture: Deep expertise in multi vendor solutions Communication: Excellent at engaging both technical and executive audiences with clear, impactful reporting. … Certifications (preferred): CISSP, CISM, CCSP, ISO 27001 Implementer / Auditor, Microsoft SC-series. **Please note, due to the volume of applicants we cannot respond to individuals outside of the above requirements ...

with internal policy and external regulations. The ideal candidate will embed security throughout the delivery lifecycle, working closely with infrastructure engineers, architects, and project / programme managers. You'll define and enforce secure configuration baselines, conduct threat modelling and risk assessments, integrate monitoring and alerting, and produce clear security … that guide operational teams. Candidates must be eligible to obtain SC security clearance Duties and responsibilities Design, implement and optimise security controls across hybrid / on-prem Microsoft and Azure-centric environments. Define / enforce hardening standards (e.g., CIS Benchmarks, Microsoft Security Baselines). Perform threat modelling, risk ...

collaboration, and continuous learning. Role Purpose We are seeking a Product Owner to lead the development and evolution of a modern, scalable, secure SaaS / cloud platform, while acting as the Security / Cyber SPOC for the organization. This hybrid role combines cloud product leadership with security oversight … ensuring the platform delivers exceptional customer experience and meets enterprise-grade security and compliance standards. Cloud & SaaS Product Leadership Define and own the cloud / SaaS roadmap, aligning with business objectives and customer needs. Drive the delivery of cloud-native SaaS capabilities, including: Multi-tenancy Self-service onboarding Elastic ...

roadmap. Drive best practice development standards, build security credentials (SOC 2, ISO 27001), and architect for scale across their Azure / .NET stack. Phase 3: The Scaler (18+ months) Transition into the CTO role. Lead technical vision, scale engineering capability internationally, and drive market differentiation … mission-critical trading systems where reliability matters Growth-orientated—excited by the journey from specialist consultancy to global software platform Bonus Points For: ETRM / CTRM platform experience, financial services or energy sector background, experience with Endur / Findur / Allegro systems, prior CTO experience in growing ...

HIPAA). Continuously contribute to process improvement, suggesting ways to enhance efficiency and customer satisfaction. Required Skills & Experience Education to NQF Level 3 / 4 in a computing-related discipline (e.g., A Level in Computing or ICT, NCC Education Level 3 Diploma in Computing, IT Users Level 3 Certificate … / Diploma). Strong GCSE results, including Maths, English, and Science. Minimum of 3 years' commercial experience in an IT and / or application support environment. Solid understanding of hosted IP telephony. Proficiency with MS Office 365 / Admin, Microsoft Windows 11, MacOS Proficiency with Azure, Teams ...

ensuring timely closure and evidence of improvement. - Deliver the DSPT to Standards Met or higher, embedding continual improvement reviews throughout the year. - Monitor CareCERT / NHS Cyber Alerts and ensure all critical vulnerabilities are triaged within 48 hours and resolved within 14 days. - Oversee removal or mitigation … supplier-assurance controls. Policy and Governance - Lead the review and implementation of Cyber Security Policies, Standards and SOPs covering access, remote working, cloud, IoT / IoMT and third-party assurance. - Provide governance reporting to the Digital Board Committee, Audit Committee and ICS Cyber Operations Group. - Liaise with Information Governance ...

security in the SDLC and DevSecOps practices. Advise and guide on secure coding practices, threat modeling, and architectural reviews. Instrument automated tooling for CI / CD pipelines to improve visibility of security signals and enforcement. Customer & External Engagement Represent the company's security, privacy, and data protection posture … testing, application security, or infrastructure hardening. Familiarity with modern software development practices, DevSecOps, and cloud-native architectures (preferably Python eco-system, Kubernetes and Azure / AWS / GCP). Excellent communication skills with the ability to influence stakeholders and explain security to both technical and non-technical audiences. ...

ensure platforms remain secure, resilient, and compliant with both internal policies and external regulations. You'll work closely with infrastructure engineers, architects, and project / programme managers to embed security throughout the delivery lifecycle. This includes defining secure configuration baselines, carrying out threat modelling and risk assessments, improving monitoring … security artefacts for operational teams. Candidates must be eligible to obtain SC security clearance. Duties & Responsibilities Design, implement, and optimise security controls across hybrid / on-prem Microsoft and Azure environments. Define and enforce hardening standards (e.g., CIS Benchmarks, Microsoft Security Baselines). Perform threat modelling, risk assessments ...

Professional Services Infrastructure Engineer / 3rd Line Engineer Location: Hybrid; with occasional travel expected to client site or Logiq's offices in Bristol or Chippenham. Salary: Negotiable Dependent on Experience, plus car allowance, plus up to 10% performance bonus*, plus excellent benefits package. What the team say "At Logiq … sites around the UK and remote working. Key Responsibilities Infrastructure & Network Design, implement, and maintain secure on-premises network architectures, including firewalls, VPNs, IDS / IPS, and segmentation controls. Microsoft Platform Security Design and harden Microsoft Operating Systems (Server and Desktop), configure Active Directory and Group Policies to enforce ...

cloud and Azure-based solutions. Translate customer requirements into secure, scalable technical architecture. Embed MDR and cyber resilience into solutions, working closely with SOC / security teams. Provide architectural guidance across pre-sales, delivery, and technical teams. Act as a technical authority in client meetings, proposals and reviews. Maintain … technologies to drive ongoing improvements. Solution Architect – Key Skills Required Essential Proven Solution Architect experience within an MSP environment. Strong Microsoft Azure expertise (IaaS / PaaS, governance, identity, networking, landing zones). Security experience across MDR, threat detection, SIEM / SOAR or security monitoring. Solid understanding of hybrid ...

Title: Security Architect Job Type: Contract Location: Remote / London (twice a month visits in London) Day Rate: £550 / day (INSIDE IR35) Contract Length: 3 Months Security Architect - Role & Responsibilities Oversee and manage the change control portfolio from a compliance and cyber risk perspective. Ensure … Security Architect - Required Experience 5+ years' experience as a Cyber Security Architect Strong understanding of information security governance, risk management, and compliance frameworks (ISO 27001, NIST, CIS, etc.). Hands-on experience defining, implementing, and enforcing security policies and controls Experience guiding cross-functional teams ...

Title: Security Architect Job Type: Contract Location: Remote / London (twice a month visits in London) Day Rate: £550 / day (INSIDE IR35) Contract Length: 3 Months Security Architect - Role & Responsibilities Oversee and manage the change control portfolio from a compliance and cyber risk perspective. Ensure … Security Architect - Required Experience 5+ years' experience as a Cyber Security Architect Strong understanding of information security governance, risk management, and compliance frameworks (ISO 27001, NIST, CIS, etc.). Hands-on experience defining, implementing, and enforcing security policies and controls Experience guiding cross-functional teams ...

Title: Cyber Security Consultant (GRC / Assurance) Location: Fully Remote (UK wide travel required) Employment Type: Permanent Salary: Competitive Start Date: Immediate Industry: IT Services & Consulting One our Cyber & IA consultancies are growing their GRC & Assurance consulting capability and want motivated security professionals who enjoy working closely with clients … hear from you. This is a remote role with flexibility for travel across the UK, Europe, and occasionally globally required. Cyber Security Consultant (GRC / Assurance) – Key Responsibilities Deliver governance, risk & compliance programmes Assess organisations to standards: NIST, CAF, ISO 27001, CE, SbD Develop policies ...

with significant influence: you will design systems, implement tooling, measure productivity gaps, and drive adoption of better practices across the engineering organisation. Requirements CI / CD Infrastructure & Tooling Own and operate CI / CD systems (GitHub Actions, runners, caching, artifact storage). Maintain stability, scalability, and cost-effectiveness … pipelines. Build and maintain systems for our monorepo. Ensure CI / CD observability, with metrics flowing into Datadog / Slack. Pipeline Instrumentation & Optimisation Analyse pipelines for inefficiencies (e.g., flaky tests, redundant steps, lack of caching). Recommend and implement optimisations (parallelisation, test selection, caching strategies). Define benchmarks ...

with significant influence: you will design systems, implement tooling, measure productivity gaps, and drive adoption of better practices across the engineering organisation. Requirements CI / CD Infrastructure & Tooling Own and operate CI / CD systems (GitHub Actions, runners, caching, artifact storage). Maintain stability, scalability, and cost-effectiveness … pipelines. Build and maintain systems for our monorepo. Ensure CI / CD observability, with metrics flowing into Datadog / Slack. Pipeline Instrumentation & Optimisation Analyse pipelines for inefficiencies (e.g., flaky tests, redundant steps, lack of caching). Recommend and implement optimisations (parallelisation, test selection, caching strategies). Define benchmarks ...

assessments whilst collaborating with senior consultants and team leaders Maintain compliance with legal frameworks governing penetration testing and disclosure Specializations You May Develop: SCADA / OT environment security testing Cloud infrastructure penetration testing (AWS, Azure) Web services and API security Mobile application testing (iOS / Android … CHECK Team Leaders, CREST Certified Testers, and forensic specialists delivers: Penetration Testing & Security Audits: Infrastructure, application, and mobile assessments Compliance Advisory: PCI DSS, GDPR, ISO27001 implementations and certifications Incident Response & Forensics: 24 / 7 emergency response and digital evidence analysis Specialist Services: SCADA testing, social engineering, business continuity planning ...

assessments whilst collaborating with senior consultants and team leaders Maintain compliance with legal frameworks governing penetration testing and disclosure Specializations You May Develop: SCADA / OT environment security testing Cloud infrastructure penetration testing (AWS, Azure) Web services and API security Mobile application testing (iOS / Android … CHECK Team Leaders, CREST Certified Testers, and forensic specialists delivers: Penetration Testing & Security Audits: Infrastructure, application, and mobile assessments Compliance Advisory: PCI DSS, GDPR, ISO27001 implementations and certifications Incident Response & Forensics: 24 / 7 emergency response and digital evidence analysis Specialist Services: SCADA testing, social engineering, business continuity planning ...

project milestones, as well as liaising with stakeholders and supporting the software development lifecycle. Key Responsibilities: Support the delivery of projects using hybrid Agile / Waterfall methodologies Assist in the development and execution of project plans Track project milestones, deliverable, and sprint progress in Azure DevOps Coordinate activities with … resolving software defects Perform regression and functional testing aligned with project milestones Create test documentation and reports Conduct compliance auditing aligned with ISO 27001 Skills & Experience: 1-3 years of experience in project management or similar roles Good understanding of Agile and Waterfall methodologies Experience with ...

project milestones, as well as liaising with stakeholders and supporting the software development lifecycle. Key Responsibilities: Support the delivery of projects using hybrid Agile / Waterfall methodologies Assist in the development and execution of project plans Track project milestones, deliverables, and sprint progress in Azure DevOps Coordinate activities with … resolving software defects Perform regression and functional testing aligned with project milestones Create test documentation and reports Conduct compliance auditing aligned with ISO 27001 Skills & Experience: 1-3 years of experience in project management or similar roles Good understanding of Agile and Waterfall methodologies Experience with ...

Skills Experience with Azure data services (Fabric, Databricks, Synapse, ADF) Understanding of governance frameworks and ownership models (e.g., DAMA) Exposure to compliance environments (ISO 27001, GDPR, retention) Familiarity with unstructured data scanning and basic M365 integrations (nice to have, not essential ...

Skills Experience with Azure data services (Fabric, Databricks, Synapse, ADF) Understanding of governance frameworks and ownership models (e.g., DAMA) Exposure to compliance environments (ISO 27001, GDPR, retention) Familiarity with unstructured data scanning and basic M365 integrations (nice to have, not essential ...

enterprise customers. Translating requirements, leading impact assessments, generating actionable mitigations and advising on implementation. What You'll Bring Strong background in Azure security engineering / architecture, ideally in a consulting or professional services capacity. Practical knowledge of cloud security frameworks such as CAF, Well-Architected, CIS, NIST etc. Hands … beneficial. Key Responsibilities Domain Knowledge. Expertise in designing, implementing, and maintaining secure architectures, with a deep understanding of industry-standard frameworks such as ISO 27001, NIST, and CIS Controls. Knowledge of threat modelling, risk assessments, and mitigation strategies tailored to various technical and business environments. Stay ...

enterprise customers. Translating requirements, leading impact assessments, generating actionable mitigations and advising on implementation. What You'll Bring Strong background in Azure security engineering / architecture, ideally in a consulting or professional services capacity. Practical knowledge of cloud security frameworks such as CAF, Well-Architected, CIS, NIST etc. Hands … beneficial. Key Responsibilities Domain Knowledge. Expertise in designing, implementing, and maintaining secure architectures, with a deep understanding of industry-standard frameworks such as ISO 27001, NIST, and CIS Controls. Knowledge of threat modelling, risk assessments, and mitigation strategies tailored to various technical and business environments. Stay ...

installation planning and execution. Key Skills: Infrastructure Engineering, Microsoft Environments, Network Security, Firewalls, Segmentation, Identity and Access Management (IAM), MFA, RBAC, NCSC Guidance, ISO 27001, Cyber Essentials Plus, Enterprise Server Platforms, Virtualisation, Public Cloud, Scripting, Automation, Infrastructure-as-Code, Telephony Systems, NSD. Please either apply through ...