york, yorkshire and the humber, United Kingdom Hybrid / WFH Options
Sentinel
in security audits, identifying vulnerabilities, and ensuring adherence to security policies. • Develop and enforce GCP security hardening measures (network segmentation, access controls, encryption, GDPR /ISO27001 compliance). • Design and implement ETL pipelines for marketing data into BigQuery for Looker. • Optimise BigQuery data models … as a Cloud Engineer, specialising in GCP. • Proven background in marketing data environments, understanding infrastructure needs for marketing analytics and CDPs. • Demonstrable experience leading / contributing to security audits, vulnerability assessments, and compliance initiatives (GDPR, ISO27001) within GCP. • Expertise in IaC with a strong … Terraform. • Profound understanding of GCP networking, security services, and IAM. • Proficiency in scripting (Python, Bash, Go). • Experience with containerisation (Docker) and orchestration (Kubernetes / GKE) is desirable. • Strong understanding of monitoring and logging tools. • Excellent problem-solving and communication skills. • Relevant GCP certifications are highly advantageous. Infrastructure Engineer More ❯
+ bank holidays, rising to 32 days over time Life assurance at 2 x basic salary Competitive contributory pension scheme Family-friendly policies 24 / 7 Employee Assistance Programme and OH service Enhanced sick pay Excellent learning & development opportunities and career progression Annual performance / salary review Join … improvement. The role may require occasional travel to other Compass sites thus access to own transport or evidence of ability to commute efficiently to / between required sites Out-of-hours support may be required for critical incidents. Disclosure and Barring Service Check This post is subject to the … convictions. Employer details Employer name Compass Address Studio One, Ground Floor Marlborough House York Business Park North Yorkshire YO26 6RW Employer's website https: // www.compass-uk.org /More ❯
york, yorkshire and the humber, United Kingdom Hybrid / WFH Options
Maxwell Bond
and influence. What You'll Be Working On: You’ll support key client projects across a diverse and exciting portfolio, including: Framework Compliance : ISO27001, NIST, PCI-DSS Security Assurance : Audit, controls assessment, reporting Third-Party Risk Assurance : Vendor risk reviews, supply chain assessments Cloud Security … to finish. You’ll Need: Proven experience in a security consulting role (client-facing or internal consulting) Strong understanding of Information Security frameworks (ISO27001, NIST, PCI-DSS) Hands-on experience delivering security assessments, audits, or assurance reviews Awareness or experience with cloud platforms (Azure, AWS … personal development, mentoring, and continuous learning Growth Journey: Join at an exciting time — with plans to double headcount and expand services Certifications (Required): ISO27001 Lead Auditor CISSP or CISM More ❯
controls, and preparing for audits while also providing consultation on PCI requirements to Engineering, SecOps, and Architecture teams. Additionally, the role will support ISO27001, SOC 2 Type 2, and other certification audits, assist with security assurance activities such as design reviews and client security questions … identify areas of improvement. Stay up to date with PCI DSS standard updates and ensure timely adaptation of new requirements. Manage and support ISO27001 and SOC 2 Type 2 certification processes, ensuring evidence gathering, control validation, and audit preparation. Assist in responding to client security … Strong understanding of PCI DSS requirements, controls, and assessment processes. Hands-on experience with security controls, cloud environments, and security architecture. Experience with ISO27001, SOC 2 Type 2, or other security frameworks. Proven ability to work effectively with senior leadership, auditors, external partners, and cross More ❯
baselines in line with industry standards (e.g., NIST, CIS, ISO27001). Configure and manage Microsoft Defender for Office 365 / Cloud / Endpoint / Servers, Purview (Information Protection, Data Loss Prevention), and Microsoft Entra (Azure AD) security features. Experience of integrating with … Entra ID. Strong understanding of identity, access management, and conditional access controls. Familiarity with regulatory and compliance frameworks such as GDPR, HIPAA, and ISO 27001. Proficient with Microsoft security and compliance portals, PowerShell scripting, and automation tools. Relevant Microsoft certifications (e.g., SC-100, SC-300, MS-500, AZ More ❯
york, yorkshire and the humber, United Kingdom Hybrid / WFH Options
Investigo
s been through this before and knows what it takes. Familiarity with ISO27001, IT GRC, GxP compliance, and SaaS / cloud environments is also important, but SOC 2 is the headline act here. You’ll collaborate closely with teams across the company, from InfoSec … SOC 2 and ISO27001 implementation efforts. Strong knowledge of the AICPA Trust Services Criteria and the kinds of IT / security controls that support them. A background in InfoSec, IT, Life Sciences, or something similar — a degree in one of these areas is a More ❯
york, yorkshire and the humber, United Kingdom Hybrid / WFH Options
Vallum Associates
regulatory requirements (e.g., ISO27001, NIS2, GDPR). Oversee risk management frameworks, including enterprise risk, cyber risk, and third-party / vendor risk. Collaborate cross-functionally with Security, Legal, Operations, and senior stakeholders to embed a culture of risk-aware decision making. Lead internal audits … leadership role within a tech, managed services, or regulated environment. Strong understanding of risk management, compliance frameworks, and international regulatory landscapes. Familiarity with ISO27001, NIST, GDPR, DORA, NIS2, and other relevant standards. Excellent communication skills and the ability to … influence senior stakeholders. Fluent English is required; Spanish or German is a plus. Based in Spain or open to relocating, with flexibility for hybrid / remote work. Why Join? Be part of a fast-scaling European digital leader with ambitious growth plans. Influence strategy at the highest level while More ❯
My client a leading cybersecurity business is seeking a Pre-Sales Director (Cyberdefense) based from offices in London and / or Kent. My client is a leading cybersecurity business who are part of larger reputable group who have a portfolio of clients within the financial services, utilities, legal and … manufacturing verticals. As Pre-Sales Director (Cyberdefense) based in London and / or Kent, reporting to the UK MD you will be responsible for: Digital transition / transformation and cloud first strategy and Cyber Security … within the organisation Strategic roadmap implementation of IS / IT security restructure programmes and projects of a technical nature including frameworks such as ISO27001/ 2:2005 / 13 &DORA Ownership of Strategic, Operational and Tactical IT Security and Risk Management, technical and legislative mandates Programme /More ❯
york, yorkshire and the humber, United Kingdom Hybrid / WFH Options
TRIA
Head of Engineering / System Development Manager - up to £70k base with great benefits Remote working with an office Glasgow We are looking for a strategic, hands-on Head of Engineering to lead and scale our software engineering function. This senior leadership role will focus heavily on software engineering … RESTful services, rate limiting, versioning, monitoring, etc.). Ensure high data consistency, operational integrity, and well-documented interface contracts between services. Software Delivery, CI / CD & DevOps Define and implement scalable CI / CD pipelines using modern DevOps tooling, including automated build, test, deploy, and rollback strategies. Champion … with security engineers to integrate security throughout the software lifecycle (shift-left security, secure coding, threat modelling). Own the implementation of secure authentication / authorization practices, audit logging, encryption at rest / in transit, and other application security standards. Ensure software and infrastructure meet organizational security and More ❯
york, yorkshire and the humber, United Kingdom Hybrid / WFH Options
Intec Select
enforce security policies, standards, and procedures Work with IT and development teams to implement secure system designs and configurations Support compliance initiatives (e.g., ISO27001, NIST, GDPR, PCI-DSS) by assisting with audits and documentation Conduct security awareness training and phishing simulations for employees Keep up … security or cybersecurity role Strong understanding of security principles, frameworks, and practices (e.g., CIA triad, defense in depth) Experience with SIEM tools, intrusion detection / prevention systems (IDS / IPS), firewalls, and endpoint protection Familiarity with vulnerability scanning tools (e.g., Nessus, Qualys) and remediation processes Knowledge of networking More ❯
multiple projects simultaneously, ensuring timely completion within budget. *Strong Technical Report writing and presenting. *Work within and take ownership of the OHSAS18001, ISO9001, ISO14001, ISO27001 and PAS99 processes within the operational side of the business. Qualifications and Education Requirements *HNC / HND / BEng / MEng or … High level of proficiency in test and measurement. *Strong practical capabilities. (Rework to 0402, comfortable with QFN is desirable) *Demonstrable track record of CE / UKCA marking and product commercialisation. Personal Attributes *Strong attention to detail. *Positive and self-motivated with a high degree of initiative. *Focused on solutions … Strong IT, literacy, and numerical skills. *Good time management skills, balancing multiple interesting projects. Beneficial *Have or be working towards professional recognition - Eng Tech / IEng / CEng. *CCTV, Test, analogue electronics experience or interest. *NDT and sensing with experience of common practices / methodologies. *Good knowledge More ❯
streams. Report progress to initiative leaders and BU sponsors; adapt plans as needed. Ensure adherence to quality standards, validation processes (e.g., Part 11, ISO 17025, ISO27001), and Element’s compliance framework. Align deliverables to business priorities and ensure high adoption … rates in target labs. Support onboarding, training, and change management initiatives in close partnership with the business units. Occasional travel to European labs Skills / Qualifications Essential: Several years of experience as a Project Manager in IT or equivalent, ideally with exposure to LIMS or regulated lab environments. Demonstrated More ❯
with ISO27001, NIST, CIS Benchmarks, GDPR , and other security standards. Collaborate with DevOps teams to integrate security into CI / CD pipelines. Security Automation & Infrastructure as Code (IaC) Automate security policies and compliance enforcement using Python, Terraform, Ansible, or CloudFormation . Develop security automation More ❯
problem-solving and troubleshooting skills. Preferred: Experience with cloud platforms (e.g., AWS, Azure, GCP) and their integration with CyberArk. Knowledge of DevOps and CI / CD pipelines for secrets management. Familiarity with other PAM tools (e.g., BeyondTrust, Thycotic) is a plus. Strong understanding of cybersecurity frameworks (e.g., NIST, ISO27001). Soft Skills: Strong communication and interpersonal skills. Ability to work independently and as part of a team. Detail-oriented with a focus on delivering high-quality results. Proactive and self-motivated with a passion for cybersecurity. Education and Certifications: Bachelor’s degree in Computer More ❯
landscapes, risk posture, and security innovation Security Architecture & Operations: Oversee the design and operation of our global cloud security infrastructure across AWS, GCP, and / or Azure. Drive robust incident response, threat detection, and remediation processes. Risk Management & Compliance: Lead risk assessments and ensure adherence to international compliance standards … SOC 2, ISO27001, GDPR, HIPAA, etc.). Establish a robust control environment to support secure development and delivery of our SaaS offerings. Governance & Policy Development: Implement security governance frameworks to support DevSecOps and data protection at scale. Develop and maintain policies, standards, and secure coding More ❯
with knowledge of vulnerability management tools and frameworks. Experience collaborating with governance and compliance teams to align technical controls with security standards (e.g., ISO27001). Excellent troubleshooting, communication, and documentation skills, with the ability to collaborate effectively across teams. Technical Skills Strong understanding of Microsoft More ❯
and deployment pipelines in a cloud-first environment. Key Responsibilities: Manage and automate AWS cloud services and VMware vSphere infrastructure Build and maintain CI / CD pipelines (GitHub Actions, TeamCity) Implement monitoring, backup, and recovery strategies Contribute to secure, high-availability architecture in line with ISO27001More ❯
Role Title: AWS IAM / PingID Specialist Duration: contract to run until 30 / 10 / 2025 Location: Remote Rate: up to £690 p / d Umbrella inside IR35 Clearance required: Active Security Clearance is essential Key Skills / requirements Has designed, architecture and deployed … the Ping One and AWS Identity and integrated the 2. Familiar to SAML and OAUTH / OIDC Competent in the logical configuration of Ping One and AWS Identity cloud services. Technical Proficiency in IAM Tools: Expertise in using and configuring IAM tools such Ping Identity, and AWS Identity to … and manages multi-factor authentication (MFA), single sign-on (SSO), and other authentication methods to secure user access. Ensures compliance with regulatory requirements (e.g., ISO27001, Cyber Essentials) by helping to complete compliance trackers Defines and manages roles and permissions to streamline access control and ensure users have the minimum necessary More ❯
and protects the digital employee experience. Trusted by thousands of enterprises managing millions of endpoints globally, Action1 is certified for SOC 2 and ISO 27001. The company is founder-led by industry veterans Alex Vovk and Mike Walters, American entrepreneurs who founded Netwrix, which has grown into a More ❯
a leader in document automation within the Salesforce ecosystem. Our solutions help enterprises manage document workflows, enabling seamless collaboration, automation, and compliance. With ISO27001 and TISAX certifications, we ensure the highest standards in data security and operational integrity. As part of Ascendx, we are positioned More ❯
contracts, and monitor performance against SLAs Identify and mitigate infrastructure risks while maintaining a secure-by-design approach Proven experience with infrastructure security standards (ISO27001:2022, Cyber Essentials Plus) Hands-on experience with backup, antivirus, and monitoring tools (e.g., Arcserve, Sophos, PRTG) Strong understanding of ITIL frameworks and service delivery More ❯
with Aureos Communication team. Support and inform the digital transformation strategy as it develops, supporting ACC related integrations and the rollout of other technologies / digital tools as required. Explore use case(s) and advocate for GIS use across the business as part of an enhanced digital strategy. Ensure … IT at all times and any development work is fully documented and approved. Data & Reporting - Ensure alignment between project data and the Data Warehouse / Aureos Reporting standards, supporting the development of appropriate reports / metrics. Identify and engage digital delivery support partners pending internal capability. Team Management … lessons. Support the execution of the Digital Transformation plan as it develops. Plan for and deliver ISO19650 certification. Work with Aureos IT to support ISO27001 certification efforts. Key Qualifications & Experience Essential Proven experience in Information Management in a senior role. Expertise in managing Common Data Environments (CDE) and implementing BIM More ❯
Society’s digital transformation goals. Promoting security best practices, ensuring robust operational resilience, regulatory compliance, and adherence to security frameworks such as Zero Trust, ISO27001, and GDPR. Mentoring engineering teams, sharing your technical knowledge and helping other team members develop their knowledge. As Principal Cloud Engineer, you will have: Strong … and regulatory frameworks. Excellent stakeholder engagement and communication skills, with the ability to translate technical concepts into business value. Proven expertise in DevOps & CI / CD, implementing best practices for continuous integration and delivery. Proven leadership and communication skills, with the ability to translate complex technical concepts into business More ❯
Society’s digital transformation goals. Promoting security best practices, ensuring robust operational resilience, regulatory compliance, and adherence to security frameworks such as Zero Trust, ISO27001, and GDPR. Mentoring engineering teams, sharing your technical knowledge and helping other team members develop their knowledge. As Principal Cloud Engineer, you will have: Strong … and regulatory frameworks. Excellent stakeholder engagement and communication skills, with the ability to translate technical concepts into business value. Proven expertise in DevOps & CI / CD, implementing best practices for continuous integration and delivery. Proven leadership and communication skills, with the ability to translate complex technical concepts into business More ❯
york, yorkshire and the humber, United Kingdom Hybrid / WFH Options
Action1
all while eliminating costly routine labor. Trusted by thousands of enterprises managing millions of endpoints globally, Action1 is certified for SOC 2 and ISO 27001. The company is founder-led by industry veterans Alex Vovk and Mike Walters, who founded Netwrix, which has grown into a multi-billion … Ability to identify and troubleshoot failed patch installations. Be familiar with PowerShell scripting and able to understand basic scripts. Proficiency in Mac OS and / or Linux platforms. Demonstrate knowledge of software deployment and configuration using install switches. Be skilled in reading, writing, modifying, and backing up the Windows More ❯