1 to 25 of 28 ISO/IEC 27001 Jobs in Gloucestershire

2, GDPR, NIS2, DORA, and other relevant EU frameworks or regulations. At least one certification from each group is preferred: Group 1- CISA, ISO27001 Lead Auditor Group 2- CISSP, ISO27001 Lead Implementer, CISM Demonstrated ability to structure and lead projects successfully Responsibilities: Lead client audits / assessments … Experience: Information Security: 5 years (required) License / Certification: PCI QSA At least one certification from each group is preferred: Group 1- CISA, ISO27001 Lead Auditor Group 2- CISSP, ISO27001 Lead Implementer, CISM Work Location: UK (Remote with client onsite travel as necessary) Expected start date: ASAP ...

join its delivery function. This is a hands-on, delivery-oriented role acting as the technical deployment lead across projects and programmes, installing / decommissioning services and delivering multiple IT platforms across hybrid and on-prem environments using Microsoft technologies (Windows Server and Azure). You'll build secure … resilient, and supportable platforms that align with architectural standards and project timelines. The ideal candidate will work from high- / low-level designs to implement and integrate infrastructure, plan and schedule deployments, manage risk and change, design test scripts and environments, and produce clear build / operational documentation ...

Security and Governance Manager, ISO27001, c £ 50000 - 60000+ benefits, nr Cheltenham, Gloucestershire. 3 days in the office, 2 days WFH Growing company are looking for an IT Security and Governance Manager who will co-ordinate all the governance and compliance including Certifications such ISO 27001, Cyber … join a global company that is going through an exciting period of growth and expansion. If you have the required skills and experience around ISO27001 please send your CV for a full brief. This role is based in the Cheltenham / Gloucester area and requires 3 days a week ...

market. The company specializes in providing solutions across Application Services and Consulting, Digital Product Engineering, Digital Workplace Services, Private Cloud Services, AI / Automation, and ServiceNow. Milestone culture is built to provide a collaborative, inclusive environment that supports employees and empowers them to reach their full potential. Our seasoned … preferably in global enterprise environment Proven experience leading and managing technical teams. Strong understanding of cybersecurity frameworks and standards (e.g., NIST, ISO / IEC 27001, IAM). Proficiency with cybersecurity tools and platforms (e.g., SIEM, SOAR, SAS, Sandboxes, EDR solutions and cloud technologies ...

market. The company specializes in providing solutions across Application Services and Consulting, Digital Product Engineering, Digital Workplace Services, Private Cloud Services, AI / Automation, and ServiceNow. Milestone culture is built to provide a collaborative, inclusive environment that supports employees and empowers them to reach their full potential. Our seasoned … preferably in global enterprise environment Proven experience leading and managing technical teams. Strong understanding of cybersecurity frameworks and standards (e.g., NIST, ISO / IEC 27001, IAM). Proficiency with cybersecurity tools and platforms (e.g., SIEM, SOAR, SAS, Sandboxes, EDR solutions and cloud technologies ...

with internal policy and external regulations. The ideal candidate will embed security throughout the delivery lifecycle, working closely with infrastructure engineers, architects, and project / programme managers. You'll define and enforce secure configuration baselines, conduct threat modelling and risk assessments, integrate monitoring and alerting, and produce clear security … that guide operational teams. Candidates must be eligible to obtain SC security clearance Duties and responsibilities Design, implement and optimise security controls across hybrid / on-prem Microsoft and Azure-centric environments. Define / enforce hardening standards (e.g., CIS Benchmarks, Microsoft Security Baselines). Perform threat modelling, risk ...

HIPAA). Continuously contribute to process improvement, suggesting ways to enhance efficiency and customer satisfaction. Required Skills & Experience Education to NQF Level 3 / 4 in a computing-related discipline (e.g., A Level in Computing or ICT, NCC Education Level 3 Diploma in Computing, IT Users Level 3 Certificate … / Diploma). Strong GCSE results, including Maths, English, and Science. Minimum of 3 years' commercial experience in an IT and / or application support environment. Solid understanding of hosted IP telephony. Proficiency with MS Office 365 / Admin, Microsoft Windows 11, MacOS Proficiency with Azure, Teams ...

HIPAA). Continuously contribute to process improvement, suggesting ways to enhance efficiency and customer satisfaction. Required Skills & Experience Education to NQF Level 3 / 4 in a computing-related discipline (e.g., A Level in Computing or ICT, NCC Education Level 3 Diploma in Computing, IT Users Level 3 Certificate … / Diploma). Strong GCSE results, including Maths, English, and Science. Minimum of 3 years' commercial experience in an IT and / or application support environment. Solid understanding of hosted IP telephony. Proficiency with MS Office 365 / Admin, Microsoft Windows 11, MacOS Proficiency with Azure, Teams ...

ensuring timely closure and evidence of improvement. - Deliver the DSPT to Standards Met or higher, embedding continual improvement reviews throughout the year. - Monitor CareCERT / NHS Cyber Alerts and ensure all critical vulnerabilities are triaged within 48 hours and resolved within 14 days. - Oversee removal or mitigation … supplier-assurance controls. Policy and Governance - Lead the review and implementation of Cyber Security Policies, Standards and SOPs covering access, remote working, cloud, IoT / IoMT and third-party assurance. - Provide governance reporting to the Digital Board Committee, Audit Committee and ICS Cyber Operations Group. - Liaise with Information Governance ...

security in the SDLC and DevSecOps practices. Advise and guide on secure coding practices, threat modeling, and architectural reviews. Instrument automated tooling for CI / CD pipelines to improve visibility of security signals and enforcement. Customer & External Engagement Represent the company's security, privacy, and data protection posture … testing, application security, or infrastructure hardening. Familiarity with modern software development practices, DevSecOps, and cloud-native architectures (preferably Python eco-system, Kubernetes and Azure / AWS / GCP). Excellent communication skills with the ability to influence stakeholders and explain security to both technical and non-technical audiences. ...

security in the SDLC and DevSecOps practices. Advise and guide on secure coding practices, threat modeling, and architectural reviews. Instrument automated tooling for CI / CD pipelines to improve visibility of security signals and enforcement. Customer & External Engagement Represent the company's security, privacy, and data protection posture … testing, application security, or infrastructure hardening. Familiarity with modern software development practices, DevSecOps, and cloud-native architectures (preferably Python eco-system, Kubernetes and Azure / AWS / GCP). Excellent communication skills with the ability to influence stakeholders and explain security to both technical and non-technical audiences. ...

national-scale address and change-of-address datasets. You'll take true ownership of production workflows and data pipelines that run every day, 24 / 7, supporting long-standing commercial partnerships. You'll become the expert on a mission-critical proprietary platform, with the freedom to help modernise … redevelop it. Data Quality, Analysis & Reporting Perform analytical comparisons across large datasets to assess quality, identify discrepancies and generate scoring outputs. Build derived / third-party datasets for benchmarking and analytical validation. Produce clear, meaningful insights for internal teams and selected clients. Summarise results and contribute to reports ...

national-scale address and change-of-address datasets. You'll take true ownership of production workflows and data pipelines that run every day, 24 / 7, supporting long-standing commercial partnerships. You'll become the expert on a mission-critical proprietary platform, with the freedom to help modernise … redevelop it. Data Quality, Analysis & Reporting Perform analytical comparisons across large datasets to assess quality, identify discrepancies and generate scoring outputs. Build derived / third-party datasets for benchmarking and analytical validation. Produce clear, meaningful insights for internal teams and selected clients. Summarise results and contribute to reports ...

cloud and Azure-based solutions. Translate customer requirements into secure, scalable technical architecture. Embed MDR and cyber resilience into solutions, working closely with SOC / security teams. Provide architectural guidance across pre-sales, delivery, and technical teams. Act as a technical authority in client meetings, proposals and reviews. Maintain … technologies to drive ongoing improvements. Solution Architect – Key Skills Required Essential Proven Solution Architect experience within an MSP environment. Strong Microsoft Azure expertise (IaaS / PaaS, governance, identity, networking, landing zones). Security experience across MDR, threat detection, SIEM / SOAR or security monitoring. Solid understanding of hybrid ...

Title: Cyber Security Consultant (GRC / Assurance) Location: Fully Remote (UK wide travel required) Employment Type: Permanent Salary: Competitive Start Date: Immediate Industry: IT Services & Consulting One our Cyber & IA consultancies are growing their GRC & Assurance consulting capability and want motivated security professionals who enjoy working closely with clients … hear from you. This is a remote role with flexibility for travel across the UK, Europe, and occasionally globally required. Cyber Security Consultant (GRC / Assurance) – Key Responsibilities Deliver governance, risk & compliance programmes Assess organisations to standards: NIST, CAF, ISO 27001, CE, SbD Develop policies ...

Title: Cyber Security Consultant (GRC / Assurance) Location: Fully Remote (UK wide travel required) Employment Type: Permanent Salary: Competitive Start Date: Immediate Industry: IT Services & Consulting One our Cyber & IA consultancies are growing their GRC & Assurance consulting capability and want motivated security professionals who enjoy working closely with clients … hear from you. This is a remote role with flexibility for travel across the UK, Europe, and occasionally globally required. Cyber Security Consultant (GRC / Assurance) – Key Responsibilities Deliver governance, risk & compliance programmes Assess organisations to standards: NIST, CAF, ISO 27001, CE, SbD Develop policies ...

assessments whilst collaborating with senior consultants and team leaders Maintain compliance with legal frameworks governing penetration testing and disclosure Specializations You May Develop: SCADA / OT environment security testing Cloud infrastructure penetration testing (AWS, Azure) Web services and API security Mobile application testing (iOS / Android … CHECK Team Leaders, CREST Certified Testers, and forensic specialists delivers: Penetration Testing & Security Audits: Infrastructure, application, and mobile assessments Compliance Advisory: PCI DSS, GDPR, ISO27001 implementations and certifications Incident Response & Forensics: 24 / 7 emergency response and digital evidence analysis Specialist Services: SCADA testing, social engineering, business continuity planning ...

project milestones, as well as liaising with stakeholders and supporting the software development lifecycle. Key Responsibilities: Support the delivery of projects using hybrid Agile / Waterfall methodologies Assist in the development and execution of project plans Track project milestones, deliverable, and sprint progress in Azure DevOps Coordinate activities with … resolving software defects Perform regression and functional testing aligned with project milestones Create test documentation and reports Conduct compliance auditing aligned with ISO 27001 Skills & Experience: 1-3 years of experience in project management or similar roles Good understanding of Agile and Waterfall methodologies Experience with ...

project milestones, as well as liaising with stakeholders and supporting the software development lifecycle. Key Responsibilities: Support the delivery of projects using hybrid Agile / Waterfall methodologies Assist in the development and execution of project plans Track project milestones, deliverables, and sprint progress in Azure DevOps Coordinate activities with … resolving software defects Perform regression and functional testing aligned with project milestones Create test documentation and reports Conduct compliance auditing aligned with ISO 27001 Skills & Experience: 1-3 years of experience in project management or similar roles Good understanding of Agile and Waterfall methodologies Experience with ...

Manage and optimise IT infrastructure (on-premises and cloud), ensuring performance and security. Collaborate on IT security and compliance, maintaining standards such as ISO 27001. Plan and deliver IT projects, ensuring timely and cost-effective execution. Manage the IT budget and vendor relationships, ensuring value for money. Develop ...

Skills Required Active and valid SC clearance (mandatory) Strong understanding of supplier risk, governance & compliance Experience with frameworks such as CAF, NIST, CE & ISO 27001 Excellent stakeholder engagement and influencing skills Technical security background beneficial Public sector experience + security clearance advantageous Please apply ...

involvement in Model-Based Systems Engineering and open architecture development. Ideal Candidate: Strong defence sector background with experience in security frameworks such as ISO27001, IS1&2, NIST SP 800-53, and others. Proven track record of delivering security designs through accreditation into operational support. Familiarity with large-scale, complex systems ...

operational cybersecurity, policies, and risk management. You will define and maintain security standards, oversee incident response, and ensure compliance with frameworks such as ISO27001, Cyber Essentials, CIS, NIST, and GDPR. A key part of this role involves leading and mentoring apprentices, designing structured training pathways, and helping shape the organisation … Essential Skills: Strong experience across IT operations and cybersecurity, including incident response, risk management, and policy creation Working knowledge of security frameworks such as ISO27001, CIS, NIST, GDPR, and Cyber Essentials Cybersecurity certifications such as CISSP, Security+, CEH or equivalent Proven leadership and team development experience, ideally including apprenticeship support ...

change control processes for, servers, and applications Contribute to strategic planning for future IT requirements aligned with company growth and compliance needs (e.g. ISO27001, GDPR, DCC) Actively promote team values and adhere to all relevant company policies Essential Skills: Strong knowledge of IT infrastructure, networking, security and compliance frameworks Experience … Additional tools as required Benefits: Annual Company Bonus – Based on company performance 25 Days holiday not including bank holidays with the option to buy / sell up to 5 days Flexible hybrid working arrangements Continuous professional development including incentives Access to online Udemy training facility to support grade specific ...

will be a key member of the change advisory board and business risk steering committee. Main responsibilities include - Assist with the continued certification of ISO27001, CMMC (NIST), Cyber Essentials, etc. Responsible for the delivery of the company cyber security strategy . Work with external partners to ensure their work meets … company response plan in the event of a security breach. Skills and Experience Required - Working knowledge of some of the following - ITAR, CMMC, ISO27001, CCPA, Cyber Essentials Plus 5 years plus experience in a similar Cyber Security role. Good understanding of networking ports, protocols, traffic flow, system administration, etc Experience ...