18 of 18 ISO/IEC 27001 Jobs in Reading

2, GDPR, NIS2, DORA, and other relevant EU frameworks or regulations. At least one certification from each group is preferred: Group 1- CISA, ISO27001 Lead Auditor Group 2- CISSP, ISO27001 Lead Implementer, CISM Demonstrated ability to structure and lead projects successfully Responsibilities: Lead client audits / assessments … Experience: Information Security: 5 years (required) License / Certification: PCI QSA At least one certification from each group is preferred: Group 1- CISA, ISO27001 Lead Auditor Group 2- CISSP, ISO27001 Lead Implementer, CISM Work Location: UK (Remote with client onsite travel as necessary) Expected start date: ASAP ...

within an MSP, reseller, or channel partner. Framework Fluency: Proven knowledge of ISO 27001, NIST CSF, GDPR, and other regulatory / compliance standards. Cloud & Security Architecture: Deep expertise in multi vendor solutions Communication: Excellent at engaging both technical and executive audiences with clear, impactful reporting. … Certifications (preferred): CISSP, CISM, CCSP, ISO 27001 Implementer / Auditor, Microsoft SC-series. **Please note, due to the volume of applicants we cannot respond to individuals outside of the above requirements ...

incident response, vulnerability management), ensuring effectiveness and consistency. Leading in the review and enhancement of IT and infosec risk and control frameworks (e.g., ISO 27001, ITIL, ISO22301, NIST), ensuring alignment with business objectives and regulatory requirements. Coordinating and representing IT risk in internal, external audits … certification processes (e.g., ISO 27001, Cyber Essentials, ISO22301, etc.), acting as the primary point of contact. We'd love you to have Minimum 5 years of experience in second-line risk management or internal audit, with a strong focus on IT or Information Security. Experience ...

industry standards. This role will ensure our organization maintains alignment with evolving regulations (e.g., NIS2, EU Data Act, EU AI Act...) and standards (ISO27001, ISO42000, ISO22301, SOC1, SOC2). The Compliance Officer will leverage ServiceNow GRC to map policy statements, define control objectives, track compliance status, and manage non-conformities. … interpret requirements from NIS2, EU Data Act, EU AI Act, and other applicable regulations. Maintain awareness of updates to ISO standards (ISO27001, ISO42000, ISO22301) and ensure organizational compliance. Governance & Policy Management Map policy statements and controls in ServiceNow GRC to the regulatory and standards authority documents. Create ...

collaboration, and continuous learning. Role Purpose We are seeking a Product Owner to lead the development and evolution of a modern, scalable, secure SaaS / cloud platform, while acting as the Security / Cyber SPOC for the organization. This hybrid role combines cloud product leadership with security oversight … ensuring the platform delivers exceptional customer experience and meets enterprise-grade security and compliance standards. Cloud & SaaS Product Leadership Define and own the cloud / SaaS roadmap, aligning with business objectives and customer needs. Drive the delivery of cloud-native SaaS capabilities, including: Multi-tenancy Self-service onboarding Elastic ...

HIPAA). Continuously contribute to process improvement, suggesting ways to enhance efficiency and customer satisfaction. Required Skills & Experience Education to NQF Level 3 / 4 in a computing-related discipline (e.g., A Level in Computing or ICT, NCC Education Level 3 Diploma in Computing, IT Users Level 3 Certificate … / Diploma). Strong GCSE results, including Maths, English, and Science. Minimum of 3 years' commercial experience in an IT and / or application support environment. Solid understanding of hosted IP telephony. Proficiency with MS Office 365 / Admin, Microsoft Windows 11, MacOS Proficiency with Azure, Teams ...

security in the SDLC and DevSecOps practices. Advise and guide on secure coding practices, threat modeling, and architectural reviews. Instrument automated tooling for CI / CD pipelines to improve visibility of security signals and enforcement. Customer & External Engagement Represent the company's security, privacy, and data protection posture … testing, application security, or infrastructure hardening. Familiarity with modern software development practices, DevSecOps, and cloud-native architectures (preferably Python eco-system, Kubernetes and Azure / AWS / GCP). Excellent communication skills with the ability to influence stakeholders and explain security to both technical and non-technical audiences. ...

national-scale address and change-of-address datasets. You'll take true ownership of production workflows and data pipelines that run every day, 24 / 7, supporting long-standing commercial partnerships. You'll become the expert on a mission-critical proprietary platform, with the freedom to help modernise … redevelop it. Data Quality, Analysis & Reporting Perform analytical comparisons across large datasets to assess quality, identify discrepancies and generate scoring outputs. Build derived / third-party datasets for benchmarking and analytical validation. Produce clear, meaningful insights for internal teams and selected clients. Summarise results and contribute to reports ...

response documentation and security reports. Support compliance efforts and basic risk assessments aligned with industry standards. Learn about network security concepts, including firewalls, IDS / IPS, VPNs, and access control. Requirements Currently pursuing or recently completed a B.Tech / BE / M.Tech / MSc in Computer … Recommendation upon successful completion. Opportunity for a Pre-Placement Offer (PPO) with SalesPilot 365 or partner client companies. Stipend Starting stipend of £17 / hour, with potential increases based on performance in assessments and interviews. ...

highly desirable (e.g. Palo Alto, Tenable, Defender, Sentinel tools). would be very beneficial A security professional qualification such as CISSP, CISM, CCSP, CISA, ISO27001 Lead Implementor / Auditor, CEH or equivalent Cloud Computing experience from multiple vendors (O365, Azure, AWS, Google, etc.) PCI-DSS GRC Cyber Security Analyst … information provided to us will be processed as detailed in our Privacy Notice, a copy of which can be found on our website http: / / proactive.it / privacy-notice / ...

Role Title: Cyber Security Architect Duration: contract to run until 31 / 07 / 2026 Location: Remote Clearance required: Active SC and NPPV Clearance is Necessary Role purpose / summary We are looking for an experienced Cyber Security Architect to lead security reviews of tenant designs … platforms meet stringent security requirements. This role is critical in preparing environments for secure onboarding and aligning with enterprise and regulatory standards. Key Skills / requirements Tenant Design Review Assess and validate cloud tenant architectures for compliance with security policies and frameworks. Identify gaps in proposed designs and recommend ...

cloud and Azure-based solutions. Translate customer requirements into secure, scalable technical architecture. Embed MDR and cyber resilience into solutions, working closely with SOC / security teams. Provide architectural guidance across pre-sales, delivery, and technical teams. Act as a technical authority in client meetings, proposals and reviews. Maintain … technologies to drive ongoing improvements. Solution Architect – Key Skills Required Essential Proven Solution Architect experience within an MSP environment. Strong Microsoft Azure expertise (IaaS / PaaS, governance, identity, networking, landing zones). Security experience across MDR, threat detection, SIEM / SOAR or security monitoring. Solid understanding of hybrid ...

Title: Cyber Security Consultant (GRC / Assurance) Location: Fully Remote (UK wide travel required) Employment Type: Permanent Salary: Competitive Start Date: Immediate Industry: IT Services & Consulting One our Cyber & IA consultancies are growing their GRC & Assurance consulting capability and want motivated security professionals who enjoy working closely with clients … hear from you. This is a remote role with flexibility for travel across the UK, Europe, and occasionally globally required. Cyber Security Consultant (GRC / Assurance) – Key Responsibilities Deliver governance, risk & compliance programmes Assess organisations to standards: NIST, CAF, ISO 27001, CE, SbD Develop policies ...

with significant influence: you will design systems, implement tooling, measure productivity gaps, and drive adoption of better practices across the engineering organisation. Requirements CI / CD Infrastructure & Tooling Own and operate CI / CD systems (GitHub Actions, runners, caching, artifact storage). Maintain stability, scalability, and cost-effectiveness … pipelines. Build and maintain systems for our monorepo. Ensure CI / CD observability, with metrics flowing into Datadog / Slack. Pipeline Instrumentation & Optimisation Analyse pipelines for inefficiencies (e.g., flaky tests, redundant steps, lack of caching). Recommend and implement optimisations (parallelisation, test selection, caching strategies). Define benchmarks ...

assessments whilst collaborating with senior consultants and team leaders Maintain compliance with legal frameworks governing penetration testing and disclosure Specializations You May Develop: SCADA / OT environment security testing Cloud infrastructure penetration testing (AWS, Azure) Web services and API security Mobile application testing (iOS / Android … CHECK Team Leaders, CREST Certified Testers, and forensic specialists delivers: Penetration Testing & Security Audits: Infrastructure, application, and mobile assessments Compliance Advisory: PCI DSS, GDPR, ISO27001 implementations and certifications Incident Response & Forensics: 24 / 7 emergency response and digital evidence analysis Specialist Services: SCADA testing, social engineering, business continuity planning ...

enterprise customers. Translating requirements, leading impact assessments, generating actionable mitigations and advising on implementation. What You'll Bring Strong background in Azure security engineering / architecture, ideally in a consulting or professional services capacity. Practical knowledge of cloud security frameworks such as CAF, Well-Architected, CIS, NIST etc. Hands … beneficial. Key Responsibilities Domain Knowledge. Expertise in designing, implementing, and maintaining secure architectures, with a deep understanding of industry-standard frameworks such as ISO 27001, NIST, and CIS Controls. Knowledge of threat modelling, risk assessments, and mitigation strategies tailored to various technical and business environments. Stay ...

bonus) Proficiency in penetration testing tools, OS (Windows / *NIX), network configuration, Firewalls / IDS / IPS, and security standards (GDPR, ISO27001, PCI DSS) Excellent communication skills for reporting to non technical stakeholders This is a great chance to work on meaningful security projects in a supportive ...

approaches and maintain CI / CD pipelines for reliable deployment and testing Security & Compliance - Operate to the highest security standards as expected by ISO27001 Qualifications and Skills Required Skills and Experience Ø 5+ years of Python backend development experience (fewer years' experience is acceptable for exceptional candidates) Ø Strong … better cross-team collaboration Ø Experience implementing LLM integration frameworks Ø Background in pharmaceutical or healthcare domain Ø Familiarity of working to ISMS ISO27001 standards Ø Growth mindset combined with tenacity Ø Entrepreneurial approach driven by curiosity and innovation Ø Deep customer centricity What We Offer Ø Competitive salary ...