1 to 25 of 77 ISO/IEC 27001 Jobs in the North of England

standards, ensuring compliance with emerging global AI regulations, and building trust in our AI solutions. A primary focus will be leading the implementation and upkeep of ISO / IEC 42001 certification for AI Management Systems while embedding AI governance, risk management, and lifecycle processes into our wider assurance framework. You will act as the key … collaborate with product, customer, and technology teams to strengthen our compliance posture and enhance adoption. Required Qualifications & Experience Proven experience delivering ISO certifications (e.g., ISO / IEC 42001 , ISO 27001 , or similar standards). Strong knowledge of AI governance, risk management, and model lifecycle assurance frameworks. Familiarity with ISO … dependent upon your experience, qualifications and training. If you wish to apply, please read our Privacy Notice describing how we may process, disclose and store your personal data: roberthalf.com / gb / en / privacy-notice. JBRP1_UKTJ More ❯

Information Security Manager (3 days / week, permanent pro-rata) Location: Leeds-hybrid (on-site 1-2 day / week, typically Mon / Tue) Reports to: VP, Information Security Team: 5 in security (within a wider UK tech org of ~25, multi-region) We’re looking for a hands-on InfoSec Manager to take pressure off the … shape the control environment, and keep the security operations and compliance moving at speed. You’ll blend GRC and technical oversight , working closely with two security engineers (vuln scanning / IDS, external pen-test liaison) and two GRC specialists. What you’ll do Drive and extend ISO 27001 implementation / maintenance (UK certified; expanding … to Madrid and Manila ). Support SOC 2 Type 2 maintenance (already accredited)—expert level not required. Oversee SIEM operations with the tech team: ensure log ingestion / coverage , daily monitoring, and follow-up. Guide vulnerability management, alert triage (Alert Logic), and external pen-test cycles. Keep evidence flows tight: client questionnaires, audit responses, security awareness, and user access More ❯

security perspective. Policy, Procedure, and Guidance Oversight Review, update, and enforce security policies, standards, and guidance (e.g. Acceptable Use, Incident Response, Remote Access). Ensure compliance with NCSC, ISO 27001, NIST, Cyber Essentials, and GDPR frameworks. Clarify security roles and responsibilities across departments. Support Information Governance and Data … Protection teams on policy alignment and compliance. Technical Review and Oversight Lead or oversee reviews of system architectures, applications, cloud services (IaaS, PaaS, SaaS), and network security. Assess IAM / PAM implementations and M365 / Azure / Active Directory configurations. Conduct or oversee penetration testing, vulnerability assessments, and threat modelling. Review and approve technical designs and solution … security standpoint. Assurance, Compliance, and Audit Develop and maintain an IT Security Assurance Framework. Lead internal and external audits, accreditation, and certification activities (e.g. PSN, Cyber Essentials Plus, ISO 27001). Monitor compliance with standards and respond to audit findings. Analyse SIEM outputs, threat intelligence feeds, and monitoring tools. Performance Monitoring and Reporting Define and track More ❯

closely with cloud, cyber, and engineering teams desirable Knowledge and experience in different security standards and frameworks with track record in leading ISO 27001 accreditation / re-accreditation projects Excellent Communication Skills About the role Continue review and improve the security policies Implement and maintain ISMS … Ensure compliance with relevant security standards and regulations (ISO 27001, SOC 2, Cyber Essentials, etc.) Experience of undergoing third-party assessments / audits (e.g. ISO27001, SOC 2, etc.) Work to acquire new accreditations in line with the business aspirations Review, implement, and test business continuity plan and policy Manage technical and business stakeholders to achieve … assessments and internal process audits Work with internal teams and stakeholders to manage risks, find solutions, and resolve issues Work with external auditor for the regular auditing activities Vendor / supplier reviews Participating in the sales process - security questionnaires for prospects and / or customers Maintain and / or improve information security awareness within the business Monitoring More ❯

fostering a culture of security awareness throughout the organisation. Security Strategy Development: Design and implement a comprehensive information security strategy that aligns with business objectives and complies with ISO 27001 standards. Microsoft 365 Expertise: Leverage Microsoft 365 tools to enhance security measures, ensuring optimal configuration and deployment to protect data and information assets. Data and Information … s security posture. Requirements Bachelor's degree in Information Security, Computer Science, or a related field. 5+ years of experience in information security management, with a focus on ISO 27001 and compliance. Strong expertise in Microsoft 365 security features and configurations. Proven background in cybersecurity, risk management, and data governance. Excellent analytical and problem-solving skills … with the ability to think strategically. Strong communication and interpersonal skills, with a focus on collaboration and teamwork. Relevant certifications (e.g., CISSP, CISM, ISO 27001 Lead Implementer) are highly desirable. Other information Your package and perks At M247, we go beyond the pay check to bring you a package of perks that truly enrich your journey More ❯

the organisation's security posture. You'll collaborate closely with infrastructure, development, and compliance teams to maintain high standards of cyber resilience and uphold key frameworks such as ISO 27001 and Cyber Essentials Plus . Key Responsibilities: * Lead threat detection, incident response, and vulnerability management activities * Strengthen cyber security posture across cloud, infrastructure, and applications * Provide … expert guidance to development teams on secure SDLC practices * Maintain compliance with ISO 27001 and Cyber Essentials Plus standards * Mentor junior … analysts and support SOC process development Key Skills & Experience: * Strong technical background in cyber security * Experience with application, cloud (AWS) , and infrastructure security * Proven hands-on experience with EDR / NDR tools , particularly CrowdStrike * Proficient with Linux and databases such as MySQL , PostgreSQL , Apache , and PHP * Knowledge of ISO 27001 , Cyber Essentials , and general security More ❯

IT Process Improvement and Maturity Lead IT Process Improvement and Maturity Lead - IT Maturity Assessments, Maturity Models, IT Security Function, CMMI, COBIT, NIST, ITIL, ISO 27001, Resource Management - Hybrid (Preston) - to £57k + excellent pension and bonus My client has an urgent need for an IT Process Improvement and Maturity Lead to play a key role … NIST, ITIL, ISO 27001) would be ideal The role will also involve managing and reporting on KPIs for the IT and Security function, recommending improvements / changes to these KPIs and striving for operational excellence by identifying threats and opportunities to optimise resource usage, reduce waste and improve cost-efficiency. IT Process Improvement and Maturity … Lead - IT Maturity Assessments, Maturity Models, IT Security Function, CMMI, ITIL, ISO 27001, Resource Management - Hybrid (Preston) - to £57k + excellent pension and bonus Essential Recruitment is an IT recruitment business with an in-depth understanding of the rapidly-changing nature of the Technology market. We build long-term relationships with our clients and candidates based More ❯

IT Process Improvement and Maturity Lead IT Process Improvement and Maturity Lead - IT Maturity Assessments, Maturity Models, IT Security Function, CMMI, COBIT, NIST, ITIL, ISO 27001, Resource Management - Hybrid (Preston) - to £57k + excellent pension and bonus My client has an urgent need for an IT Process Improvement and Maturity Lead to play a key role … NIST, ITIL, ISO 27001) would be ideal The role will also involve managing and reporting on KPIs for the IT and Security function, recommending improvements / changes to these KPIs and striving for operational excellence by identifying threats and opportunities to optimise resource usage, reduce waste and improve cost-efficiency. IT Process Improvement and Maturity … Lead - IT Maturity Assessments, Maturity Models, IT Security Function, CMMI, ITIL, ISO 27001, Resource Management - Hybrid (Preston) - to £57k + excellent pension and bonus Essential Recruitment is an IT recruitment business with an in-depth understanding of the rapidly-changing nature of the Technology market. We build long-term relationships with our clients and candidates based More ❯

QA / RA Assistant – £28,000 depending on experience + Benefits – Liverpool The Role Are you looking to kickstart your career in quality management and regulatory affairs within the medical device industry? MyCardium is offering an exciting opportunity for a QA / RA Assistant to join our team and play a key role in ensuring compliance with international … to the success of a leading medical device company, we want to hear from you! Key Responsibilities: Assist in maintaining compliance with certifications and regulatory approvals such as ISO 27001, ISO 9001, ISO 13485, UKCA, CE, and FDA 510(k). … Support the update and maintenance of QMS and ISMS documentation. Help coordinate and conduct internal audits, document findings, and ensure corrective actions are followed up on. Deliver basic QMS / ISMS training to staff, including during induction sessions. Assist in vendor approval processes and monitor adherence to MyCardium's quality standards. Support post-market surveillance activities in collaboration with More ❯

New and existing systems, applications, and infrastructure. Cloud service configurations (IaaS, SaaS, PaaS). Network architecture, including firewalls, VPNs, and segmentation. Identity and Access Management (IAM) implementations, including PIM / PAM. Security configurations in Microsoft 365, Azure, Active Directory, etc. Conduct or oversee vulnerability assessments, penetration tests, and threat modelling. Review and approve technical designs and solution architectures from … a security standpoint. Assurance, Compliance, and Audit Develop and maintain the IT Security Assurance Framework. Lead or coordinate internal / external audits and security assessments. Track and report on compliance with standards and regulatory requirements. Work with internal and external partners to deliver accreditation or certification activities (e.g., PSN, Cyber Essentials Plus, ISO 27001). … You will always however hear from us by phone if we are able to take your CV forward to the next stage. You can also follow us at Twitter / Facebook / LinkedIn or via our website www.essentialemploy.co.uk. More ❯

Governance, Risk & Compliance Specialist Location: Manchester, UK (on-site, full-time) Eligibility: Open only to UK citizens / residents with full work rights About the Role We’re seeking a Governance, Risk & Compliance (GRC) Specialist to strengthen our security, risk management, and compliance practices. This role ensures our organisation meets regulatory requirements, manages information security risks, and upholds governance … . Support audits, compliance reporting, and incident response activities. Assist in drafting and updating security policies and governance frameworks. Contribute to staff awareness and training initiatives. Assess vendor / third-party security risks and compliance. What You’ll Bring Knowledge of UK regulatory frameworks (GDPR, NIS, Data Protection Act). Understanding of risk management and IT security best practices. … Strong attention to detail and problem-solving ability. Familiarity with ISO 27001 and compliance processes. Desirable Skills AWS knowledge / certifications. Degree in Computer Science / IT. Experience with audits, penetration testing, or security frameworks (PCI, ISO). Networking knowledge (VPNs, VLANs, routing). More ❯

Governance, Risk & Compliance Specialist Location: Manchester, UK (on-site, full-time) Eligibility: Open only to UK citizens / residents with full work rights About the Role We’re seeking a Governance, Risk & Compliance (GRC) Specialist to strengthen our security, risk management, and compliance practices. This role ensures our organisation meets regulatory requirements, manages information security risks, and upholds governance … . Support audits, compliance reporting, and incident response activities. Assist in drafting and updating security policies and governance frameworks. Contribute to staff awareness and training initiatives. Assess vendor / third-party security risks and compliance. What You’ll Bring Knowledge of UK regulatory frameworks (GDPR, NIS, Data Protection Act). Understanding of risk management and IT security best practices. … Strong attention to detail and problem-solving ability. Familiarity with ISO 27001 and compliance processes. Desirable Skills AWS knowledge / certifications. Degree in Computer Science / IT. Experience with audits, penetration testing, or security frameworks (PCI, ISO). Networking knowledge (VPNs, VLANs, routing). More ❯

Governance, Risk & Compliance Specialist Location: Manchester, UK (on-site, full-time) Eligibility: Open only to UK citizens / residents with full work rights About the Role We’re seeking a Governance, Risk & Compliance (GRC) Specialist to strengthen our security, risk management, and compliance practices. This role ensures our organisation meets regulatory requirements, manages information security risks, and upholds governance … . Support audits, compliance reporting, and incident response activities. Assist in drafting and updating security policies and governance frameworks. Contribute to staff awareness and training initiatives. Assess vendor / third-party security risks and compliance. What You’ll Bring Knowledge of UK regulatory frameworks (GDPR, NIS, Data Protection Act). Understanding of risk management and IT security best practices. … Strong attention to detail and problem-solving ability. Familiarity with ISO 27001 and compliance processes. Desirable Skills AWS knowledge / certifications. Degree in Computer Science / IT. Experience with audits, penetration testing, or security frameworks (PCI, ISO). Networking knowledge (VPNs, VLANs, routing). More ❯

ensuring all customers benefit from foundational security controls. Develop optional upgrade paths for customers seeking formal certification or enhanced assurance—such as Cyber Essentials, Cyber Essentials Plus, or ISO 27001—using the same framework as a foundation. Conduct a gap analysis of Curveball’s current product and service portfolio to identify areas requiring enhancement to meet … IT security strategies that align with evolving business objectives. Draft, maintain, and implement information security policies and Standard Operating Procedures (SOPs). Configure and oversee mobile security—MDM (MAM / BYOD)—to protect business continuity. Lead vulnerability assessments, penetration tests, firewall policy enforcement, and remediation efforts. Author compelling tender responses, clearly demonstrating technical capability and strategic value. Enhance Microsoft … naturally aligned with MSP-style work, deeply familiar with security frameworks, and thrive at the intersection of strategy and execution. In addition to this, you must have experience in / exposure to: Background in MSP / MSSP environments. Proven history of facilitating workshops and supporting sales from warm leads through closure. Strong understanding of ITIL, CAB, and structured More ❯

protect company and customer data. You'll be a first point of contact for responding to security incidents. We regret that this position is only available for UK citizens / Residents with indefinite leave to remain in the UK, with current full time work rights for the United Kingdom, currently residing in the UK. The position is located in … be doing: Assess and evaluate the effectiveness of existing security controls. Design and implement security solutions to mitigate identified risks. Implement, and manage security systems, including firewalls, intrusion detection / prevention systems, DLP, endpoint protection, MDM, SIEM, IAM, vulnerability management etc. Respond to security events and incidents. Perform regular security audits and risk assessments. Maintain security controls, identify risks … in Information Security. Strong understanding of security principles, technologies, and best practices. Experience in networking, infrastructure (on-prem and in the cloud), vulnerability and incident management. Familiarity with application / device security monitoring (e.g. Firewalls, IDS / IPS, XDR etc.). Experience with SIEM / CNAPP / Log collection platforms (e.g. CrowdStrike, Lacework etc.) and capability More ❯

Data / Information Manager - Manchester (Hybrid) Robert Half has been retained by a leading infrastructure consulting business to recruit a Data Manager. This is an exciting opportunity for to work for an organisation that is supporting with the design and construction of a high profile, £3bn infrastructure project in Manchester. About the Role The Data Manager will be responsible … working with sensitive data have valid DBS certifications. Maintain an up-to-date log of certifications and renewal dates. Qualifications and Experience Circa 5 years of experience in data / information management. Proficiency in managing Common Data Environments (CDEs) and implementing robust data security protocols. Degree in Information Management, IT, Engineering, or a related field. Relevant certification, such as … dependent upon your experience, qualifications and training. If you wish to apply, please read our Privacy Notice describing how we may process, disclose and store your personal data: roberthalf.com / gb / en / privacy-notice. More ❯

delivery standards. Under supervision, the apprentice will help resolve incidents, assist with service requests, and escalate issues when required, while gaining experience in IT service management, information security (ISO 27001), and quality management (ISO 9001). Duties and key responsibilities: Incident and Request Management: Act as the first point of contact for staff requiring … helpful, and professional support to all users Keep staff informed of the progress of their requests Learn to explain technical issues in simple, clear terms for nontechnical users ISO 27001 Responsibilities: Follow company information security policies and procedures Handle data and information responsibly, maintaining confidentiality and security Report any suspected security risks or incidents to the … skills Troubleshooting skills Can do attitude Willingness to learn Punctual Approachable Keen to learn Want to ask questions Qualifications GCSE's including English and Maths GCSE, grade (A*-C / 9-4 or equivalent) (Essential) About the Employer POSITIVE SOLUTIONS LIMITED Putting the patient at the heart of everything, we build software that solves your everyday problems, integrates into More ❯

Oversight Review and update security policies, procedures, standards, and guidance regularly (e.g., acceptable use, remote access, incident response, etc.). Ensure alignment with frameworks such as NCSC guidance, ISO 27001, NIST, Cyber Essentials, and GDPR. Develop and communicate clear roles and responsibilities for information security across departments. Support Information Governance and Data Protection with policy harmonisation … New and existing systems, applications, and infrastructure. Cloud service configurations (IaaS, SaaS, PaaS). Network architecture, including firewalls, VPNs, and segmentation. Identity and Access Management (IAM) implementations, including PIM / PAM. Security configurations in Microsoft 365, Azure, Active Directory, etc. Conduct or oversee vulnerability assessments, penetration tests, and threat modelling. Review and approve technical designs and solution architectures from … a security standpoint. Assurance, Compliance, and Audit Develop and maintain the IT Security Assurance Framework. Lead or coordinate internal / external audits and security assessments. Track and report on compliance with standards and regulatory requirements. Work with internal and external partners to deliver accreditation or certification activities (e.g., PSN, Cyber Essentials Plus, ISO 27001). More ❯

investigation of incidents, root cause analysis, and coordination of response actions. Implement and administrate security operational controls across AWS, Azure, and on-prem environments, ensuring consistent alignment with ISO 27001, PCI-DSS, CIS and internal governance requirements. Deliver clear, actionable security reporting and dashboards for both technical and executive audiences, covering vulnerabilities, threats, control coverage, and … schemes. Contributory workplace pension scheme. Additionally, you'll get an extra day to celebrate your birthday. Opportunities to grow : You'll receive training and coaching for your personal development / progression, and employee recognition programmes to help you grow in your career. Health : You'll have access to private medical insurance, life assurance, and more. Wellbeing : You'll enjoy … discounts on gym memberships, cycle to work schemes, and a 24 / 7 employee assistance programme. You'll also have sociable working hours and breakfast / snacks provided in the office. Supportive, open, and value-driven culture : Ethics. Dedication. Solutions. Empathy. Our values aren't just words hanging in the reception. They guide us all daily. It's More ❯

the first point of contact for security incidents, your expertise will be essential in keeping our systems secure. We regret that this position is only available for UK citizens / Residents with indefinite leave to remain in the UK, with current full time work rights for the United Kingdom, currently residing in the UK. The position is located in … premises environments. Strong understanding of security principles, technologies, and industry best practices , including vulnerability and incident management. Practical experience with security monitoring and protection tools such as Firewalls, IDS / IPS, XDR, SIEM, CNAPP, and log collection platforms (e.g., CrowdStrike, Lacework). Experience in designing and implementing Identity and Access Management (IAM) solutions and maintaining secure authentication practices. Proficiency … Add your resume and anything else to showcase why you would be a great addition to our team. We regret that this position is only available for UK citizens / Residents with indefinite leave to remain in the UK. No recruitment agencies, please! We won't accept any introductions. Vix Technology is an Equal Opportunity Employer and prohibits discrimination More ❯

them effectively Solid knowledge of network architecture and protocols, including the OSI model, and how to apply layered security Experience with vulnerability management, security assessments, and working within ITSM / ITIL frameworks A proactive mindset - you're always looking for ways to improve, automate, and enhance how security is delivered Strong communication skills - you're confident translating technical risks … schemes. Contributory workplace pension scheme. Additionally, you'll get an extra day to celebrate your birthday. Opportunities to grow : You'll receive training and coaching for your personal development / progression, and employee recognition programmes to help you grow in your career. Health : You'll have access to private medical insurance, life assurance, and more. Wellbeing : You'll enjoy … discounts on gym memberships, cycle to work schemes, and a 24 / 7 employee assistance programme. You'll also have sociable working hours and breakfast snacks provided in the office. Supportive, open, and value-driven culture : Ethics. Dedication. Solutions. Empathy. Our values aren't just words hanging in the reception. They guide us all daily. It's what makes More ❯

failure. Essential Skills & Experience: At least 2 years of hands-on experience in information security or IT infrastructure within an enterprise environment. Familiarity with security standards such as ISO 27001, Cyber Essentials, GDPR, and Data Protection Act. Experience with Microsoft O365 Security solutions and network security operations. Understanding of security testing principles, including vulnerability scanning, risk … apply now. Keywords: Information Security Consultant, IT Security Consultant, Cybersecurity Specialist, Microsoft O365 Security, Enterprise Security Jobs, Information Security Leeds, IT Risk Management, Security Incident Response, Vulnerability Management, ISO 27001, GDPR Compliance, Security Awareness, Disaster Recovery and Business Continuity. More ❯

What you'll do: Lead threat detection, incident response & vulnerability management Strengthen cyber security posture across cloud, infrastructure & applications Advise development teams on security best practice (SDLC) Maintain ISO 27001 & Cyber Essentials Plus standards Mentor junior analysts & develop SOC processes What we're looking for: Strong technical cyber security background Application, cloud (AWS) & infrastructure security knowledge … Experience with EDR & NDR tools specifically CrowdStrike. Linux & database skills (MySQL, PostgreSQL, Apache, PHP) Knowledge of ISO 27001, Cyber Essentials & security frameworks. Apply now or get in touch with the DCS Technology to discuss further DCS Recruitment and all associated companies are committed to creating a working environment where diversity is celebrated and everyone is treated More ❯

maintained across the business. Duties & Responsibilities Develop, implement, and maintain compliance policies and frameworks in line with industry standards. Conduct regular internal audits and support external audits for ISO 27001 and SOC 2 compliance. Monitor and report on organisational risk posture, providing regular updates to senior management. Oversee data protection, physical security, and vendor compliance activities. … departments through training and guidance. What Experience is Required Proven experience in a compliance, risk, or audit-focused role within a technology or regulated environment. Strong understanding of ISO 27001, SOC 2, and data protection regulations (e.g., GDPR). Excellent communication and stakeholder engagement skills, with the ability to influence across teams. Salary & Benefits Salary More ❯

Data / Information Manager - Manchester (Hybrid) Robert Half has been retained by a leading infrastructure consulting business to recruit a Data Manager. This is an exciting opportunity for to work for an organisation that is supporting with the design and construction of a high profile, £3bn infrastructure project in Manchester. About the Role The Data Manager will be responsible … working with sensitive data have valid DBS certifications. Maintain an up-to-date log of certifications and renewal dates. Qualifications and Experience Circa 5 years of experience in data / information management. Proficiency in managing Common Data Environments (CDEs) and implementing robust data security protocols. Degree in Information Management, IT, Engineering, or a related field. Relevant certification, such as … dependent upon your experience, qualifications and training. If you wish to apply, please read our Privacy Notice describing how we may process, disclose and store your personal data: gb / en / privacy-notice. More ❯