1 to 25 of 65 ISO/IEC 27001 Jobs in Hertfordshire

2, GDPR, NIS2, DORA, and other relevant EU frameworks or regulations. At least one certification from each group is preferred: Group 1- CISA, ISO27001 Lead Auditor Group 2- CISSP, ISO27001 Lead Implementer, CISM Demonstrated ability to structure and lead projects successfully Responsibilities: Lead client audits / assessments … Experience: Information Security: 5 years (required) License / Certification: PCI QSA At least one certification from each group is preferred: Group 1- CISA, ISO27001 Lead Auditor Group 2- CISSP, ISO27001 Lead Implementer, CISM Work Location: UK (Remote with client onsite travel as necessary) Expected start date: ASAP ...

2, GDPR, NIS2, DORA, and other relevant EU frameworks or regulations. At least one certification from each group is preferred: Group 1- CISA, ISO27001 Lead Auditor Group 2- CISSP, ISO27001 Lead Implementer, CISM Demonstrated ability to structure and lead projects successfully Responsibilities: Lead client audits / assessments … Experience: Information Security: 5 years (required) License / Certification: PCI QSA At least one certification from each group is preferred: Group 1- CISA, ISO27001 Lead Auditor Group 2- CISSP, ISO27001 Lead Implementer, CISM Work Location: UK (Remote with client onsite travel as necessary) Expected start date: ASAP ...

drive strategic improvements in information security and health & safety systems. This is a pivotal role for an experienced professional who can manage ISO 27001 compliance across multiple regions and spearhead the development of health and safety frameworks aligned with ISO 45001 standards. You will … functional teams across the UK, EU, APAC, and the U.S, ensuring audit readiness, risk control documentation, and consistent compliance practices worldwide. Key Responsibilities ISO 27001 Leadership: Act as global administrator and audit lead for ISO 27001 compliance. Maintain documentation libraries, track ...

workload classification and frequent travel to all sites across the UK Security Clearance : British Citizen or a Dual UK national with British citizenship / Restrictions and / or limitations relating to nationality and / or rights to work may apply. As a minimum and after offer stage … network of Asset Owners and formally document the asset registers for their areas of operation. What we're looking for from you: CISSP, InfoSec / Cyber Degree or equivalent (Essential) Experience or relevant certifications in network security or industrial control system hardening (Essential) Knowledge of security surrounding systems enabling ...

workload classification and frequent travel to all sites across the UK Security Clearance : British Citizen or a Dual UK national with British citizenship / Restrictions and / or limitations relating to nationality and / or rights to work may apply. As a minimum and after offer stage … network of Asset Owners and formally document the asset registers for their areas of operation. What we're looking for from you: CISSP, InfoSec / Cyber Degree or equivalent (Essential) Experience or relevant certifications in network security or industrial control system hardening (Essential) Knowledge of security surrounding systems enabling ...

needs and training and development opportunities. What you'll be doing: Implement ISMS strategy, policies and practices for assigned clients. Deliver services aligned with ISO27001 standards Provide regular reporting on ISMS effectiveness and operational performance. Manage security operations in line with organisational policy, standards and industry best practice. Conduct security … Maintain ISMS, Operational Security and Risk Assurance documentation. Lead monthly client Security Working Group meetings and stakeholder sessions. Ensure audit readiness and support internal / external audits. Drive continuous improvement initiatives within Sopra Sterias security function. What youll bring: GRC / Operational Security Manager experience with solid understanding ...

collaboration, and continuous learning. Role Purpose We are seeking a Product Owner to lead the development and evolution of a modern, scalable, secure SaaS / cloud platform, while acting as the Security / Cyber SPOC for the organization. This hybrid role combines cloud product leadership with security oversight … ensuring the platform delivers exceptional customer experience and meets enterprise-grade security and compliance standards. Cloud & SaaS Product Leadership Define and own the cloud / SaaS roadmap, aligning with business objectives and customer needs. Drive the delivery of cloud-native SaaS capabilities, including: Multi-tenancy Self-service onboarding Elastic ...

collaboration, and continuous learning. Role Purpose We are seeking a Product Owner to lead the development and evolution of a modern, scalable, secure SaaS / cloud platform, while acting as the Security / Cyber SPOC for the organization. This hybrid role combines cloud product leadership with security oversight … ensuring the platform delivers exceptional customer experience and meets enterprise-grade security and compliance standards. Cloud & SaaS Product Leadership Define and own the cloud / SaaS roadmap, aligning with business objectives and customer needs. Drive the delivery of cloud-native SaaS capabilities, including: Multi-tenancy Self-service onboarding Elastic ...

collaboration, and continuous learning. Role Purpose We are seeking a Product Owner to lead the development and evolution of a modern, scalable, secure SaaS / cloud platform, while acting as the Security / Cyber SPOC for the organization. This hybrid role combines cloud product leadership with security oversight … ensuring the platform delivers exceptional customer experience and meets enterprise-grade security and compliance standards. Cloud & SaaS Product Leadership Define and own the cloud / SaaS roadmap, aligning with business objectives and customer needs. Drive the delivery of cloud-native SaaS capabilities, including: Multi-tenancy Self-service onboarding Elastic ...

roadmap. Drive best practice development standards, build security credentials (SOC 2, ISO 27001), and architect for scale across their Azure / .NET stack. Phase 3: The Scaler (18+ months) Transition into the CTO role. Lead technical vision, scale engineering capability internationally, and drive market differentiation … mission-critical trading systems where reliability matters Growth-orientated—excited by the journey from specialist consultancy to global software platform Bonus Points For: ETRM / CTRM platform experience, financial services or energy sector background, experience with Endur / Findur / Allegro systems, prior CTO experience in growing ...

roadmap. Drive best practice development standards, build security credentials (SOC 2, ISO 27001), and architect for scale across their Azure / .NET stack. Phase 3: The Scaler (18+ months) Transition into the CTO role. Lead technical vision, scale engineering capability internationally, and drive market differentiation … mission-critical trading systems where reliability matters Growth-orientated—excited by the journey from specialist consultancy to global software platform Bonus Points For: ETRM / CTRM platform experience, financial services or energy sector background, experience with Endur / Findur / Allegro systems, prior CTO experience in growing ...

HIPAA). Continuously contribute to process improvement, suggesting ways to enhance efficiency and customer satisfaction. Required Skills & Experience Education to NQF Level 3 / 4 in a computing-related discipline (e.g., A Level in Computing or ICT, NCC Education Level 3 Diploma in Computing, IT Users Level 3 Certificate … / Diploma). Strong GCSE results, including Maths, English, and Science. Minimum of 3 years' commercial experience in an IT and / or application support environment. Solid understanding of hosted IP telephony. Proficiency with MS Office 365 / Admin, Microsoft Windows 11, MacOS Proficiency with Azure, Teams ...

HIPAA). Continuously contribute to process improvement, suggesting ways to enhance efficiency and customer satisfaction. Required Skills & Experience Education to NQF Level 3 / 4 in a computing-related discipline (e.g., A Level in Computing or ICT, NCC Education Level 3 Diploma in Computing, IT Users Level 3 Certificate … / Diploma). Strong GCSE results, including Maths, English, and Science. Minimum of 3 years' commercial experience in an IT and / or application support environment. Solid understanding of hosted IP telephony. Proficiency with MS Office 365 / Admin, Microsoft Windows 11, MacOS Proficiency with Azure, Teams ...

HIPAA). Continuously contribute to process improvement, suggesting ways to enhance efficiency and customer satisfaction. Required Skills & Experience Education to NQF Level 3 / 4 in a computing-related discipline (e.g., A Level in Computing or ICT, NCC Education Level 3 Diploma in Computing, IT Users Level 3 Certificate … / Diploma). Strong GCSE results, including Maths, English, and Science. Minimum of 3 years' commercial experience in an IT and / or application support environment. Solid understanding of hosted IP telephony. Proficiency with MS Office 365 / Admin, Microsoft Windows 11, MacOS Proficiency with Azure, Teams ...

security in the SDLC and DevSecOps practices. Advise and guide on secure coding practices, threat modeling, and architectural reviews. Instrument automated tooling for CI / CD pipelines to improve visibility of security signals and enforcement. Customer & External Engagement Represent the company's security, privacy, and data protection posture … testing, application security, or infrastructure hardening. Familiarity with modern software development practices, DevSecOps, and cloud-native architectures (preferably Python eco-system, Kubernetes and Azure / AWS / GCP). Excellent communication skills with the ability to influence stakeholders and explain security to both technical and non-technical audiences. ...

security in the SDLC and DevSecOps practices. Advise and guide on secure coding practices, threat modeling, and architectural reviews. Instrument automated tooling for CI / CD pipelines to improve visibility of security signals and enforcement. Customer & External Engagement Represent the company's security, privacy, and data protection posture … testing, application security, or infrastructure hardening. Familiarity with modern software development practices, DevSecOps, and cloud-native architectures (preferably Python eco-system, Kubernetes and Azure / AWS / GCP). Excellent communication skills with the ability to influence stakeholders and explain security to both technical and non-technical audiences. ...

security in the SDLC and DevSecOps practices. Advise and guide on secure coding practices, threat modeling, and architectural reviews. Instrument automated tooling for CI / CD pipelines to improve visibility of security signals and enforcement. Customer & External Engagement Represent the company's security, privacy, and data protection posture … testing, application security, or infrastructure hardening. Familiarity with modern software development practices, DevSecOps, and cloud-native architectures (preferably Python eco-system, Kubernetes and Azure / AWS / GCP). Excellent communication skills with the ability to influence stakeholders and explain security to both technical and non-technical audiences. ...

national-scale address and change-of-address datasets. You'll take true ownership of production workflows and data pipelines that run every day, 24 / 7, supporting long-standing commercial partnerships. You'll become the expert on a mission-critical proprietary platform, with the freedom to help modernise … redevelop it. Data Quality, Analysis & Reporting Perform analytical comparisons across large datasets to assess quality, identify discrepancies and generate scoring outputs. Build derived / third-party datasets for benchmarking and analytical validation. Produce clear, meaningful insights for internal teams and selected clients. Summarise results and contribute to reports ...

national-scale address and change-of-address datasets. You'll take true ownership of production workflows and data pipelines that run every day, 24 / 7, supporting long-standing commercial partnerships. You'll become the expert on a mission-critical proprietary platform, with the freedom to help modernise … redevelop it. Data Quality, Analysis & Reporting Perform analytical comparisons across large datasets to assess quality, identify discrepancies and generate scoring outputs. Build derived / third-party datasets for benchmarking and analytical validation. Produce clear, meaningful insights for internal teams and selected clients. Summarise results and contribute to reports ...

national-scale address and change-of-address datasets. You'll take true ownership of production workflows and data pipelines that run every day, 24 / 7, supporting long-standing commercial partnerships. You'll become the expert on a mission-critical proprietary platform, with the freedom to help modernise … redevelop it. Data Quality, Analysis & Reporting Perform analytical comparisons across large datasets to assess quality, identify discrepancies and generate scoring outputs. Build derived / third-party datasets for benchmarking and analytical validation. Produce clear, meaningful insights for internal teams and selected clients. Summarise results and contribute to reports ...

Willhire is a staffing and talent acquisition platform dedicated to helping leading organisations connect with exceptional talent. As we expand into the cybersecurity, AI / ML, and cloud technology domains, we are inviting passionate and detail-oriented individuals to join our Cyber Security Internship Cohort. Role Overview … response documentation and security reports. Support compliance efforts and basic risk assessments aligned with industry standards. Learn about network security concepts, including firewalls, IDS / IPS, VPNs, and access control. Requirements Currently pursuing or recently completed a B.Tech / BE / M.Tech / MSc in Computer ...

Risk & Compliance Specialist (ISO / Safety Support) Location: UK - Hybrid (predominantly remote with occasional travel to Hertfordshire HQ and limited global travel) Employment Type: Permanent, Full-time Salary: Negotiable depending on experience Start: Hiring immediately Overview My client is seeking a proactive Risk & Compliance Specialist to support … maintain ISO-aligned compliance and safety frameworks across a global organisation. This role is not responsible for leading ISO certifications end-to-end, but plays a critical operational role in keeping systems, documentation, and processes organised, audit-ready, and on track . This position suits someone ...

SIEM technologies such as Splunk, Sentinel, and QRadar. Thorough grasp of security standard methodologies and protocols, for instance ISO 27001 / 27002, PCI DSS. Familiarity with security frameworks such as NIST, ISO, and CIS. Experience with programming languages such as Python, PowerShell ...

Role Title: Cyber Security Architect Duration: contract to run until 31 / 07 / 2026 Location: Remote Clearance required: Active SC and NPPV Clearance is Necessary Role purpose / summary We are looking for an experienced Cyber Security Architect to lead security reviews of tenant designs … platforms meet stringent security requirements. This role is critical in preparing environments for secure onboarding and aligning with enterprise and regulatory standards. Key Skills / requirements Tenant Design Review Assess and validate cloud tenant architectures for compliance with security policies and frameworks. Identify gaps in proposed designs and recommend ...

Role Title: Cyber Security Architect Duration: contract to run until 31 / 07 / 2026 Location: Remote Clearance required: Active SC and NPPV Clearance is Necessary Role purpose / summary We are looking for an experienced Cyber Security Architect to lead security reviews of tenant designs … platforms meet stringent security requirements. This role is critical in preparing environments for secure onboarding and aligning with enterprise and regulatory standards. Key Skills / requirements Tenant Design Review Assess and validate cloud tenant architectures for compliance with security policies and frameworks. Identify gaps in proposed designs and recommend ...