24 of 24 ISO/IEC 27001 Jobs in Reading

Head of Information Security required for online retail business. The role will initially be focused on ISO27001 & ISO9001 recertifications. Responsibilities Lead on information security strategy and implementation of security roadmap Develop security KPIs and track their progress Advise senior management on risk levels and any changes impacting security posture, including … Conduct risk assessments, maintain risk registers, and design risk treatment plans. Support oversight of vulnerability tooling & processes, assess risk and prioritise remediation. Lead internal / external audits (ISO 27001 and ISO 9001) and ensure compliance with regulations (GDPR). Support wider IT project … defined gates, provision of guidance and assessment of controls. As an ideal candidate, you will have a proven track record of bringing organisations through ISO27001 & ISO 9001 accreditations. ISO27001 lead implementer or auditor qualifications are essential. More ❯

Hybrid working- Aldermaston Essential Skills: The ideal candidates will hold Active SC clearance and have a proven Information Security background, with the following skills / experience: Experience of security assurance and the measurement of controls. Experience of IT Security documentation (policies, standards, processes, procedures and patterns). Experience of … IT Health Check and Vulnerability Assessments Experience of risk and threat modelling. Qualifications: accreditation / assurances CISM / XCCP / ISO 27001 More ❯

Hybrid working- Aldermaston Essential Skills: The ideal candidates will hold Active SC clearance and have a proven Information Security background, with the following skills / experience: Experience of security assurance and the measurement of controls. Experience of IT Security documentation (policies, standards, processes, procedures and patterns). Experience of … IT Health Check and Vulnerability Assessments Experience of risk and threat modelling. Qualifications: accreditation / assurances CISM / XCCP / ISO 27001 More ❯

We are searching for a Senior Software Security Architect / Senior Application Security Architect for a marketing leading and award-winning technology and data driven business. The position is offered on a remote basis. The role is hands-on and very software engineering focused - you will be responsible for … establishing a secure SDLC and 'Secure by Design' approach / practice to be used by all of the Architecture and Software development teams. The role will involve: Developing, implementing, and maintaining application security architecture across the organisation. Ensuring our systems are designed with objectives like speed, scalability, robustness, zero … Interfacing with customers to ensure that security obligations are managed and met appropriately. About You To be considered for this Senior Software Security Architect / Senior Application Security Architect role you will be able to demonstrate a successful track record and in-depth practical experience of the Software Development More ❯

improving our ability to prevent, detect, respond to, and recover from cyber incidents which could disrupt critical water and waste services, or compromise information / data. What you'll be doing as a Cyber Resilience Analyst: Support the development, testing, and refinement of cyber incident response planning. Ensuring the … Resilience, Compliance, and Operations with aligning incident management plans and training with industry standards, including the NIS Directive, Cyber Essentials, and ISO / IEC 27001. Advise on best practices for compliance with national and international resilience frameworks. Working pattern: Monday to Friday 36 hours Necessary … role: Deep understanding of incident response methodologies (cyber preferred- including detection, containment, remediation, and recovery). Experience in coordinating the delivery of incident exercising / testing and embedding improvements. Proficiency in incident management tools and cybersecurity technologies. Ability to engage and educate stakeholders at all levels. Proven experience in More ❯

27001, Cyber Essentials , and internal policies. ✔ User Support : Resolve 2nd-line issues for workstations, networks, and peripherals. ✔ Disaster Recovery : Execute backup / recovery plans and respond to outages. ✔ Security Patching : Manage updates for endpoints, firewalls, and EDR tools (e.g., CrowdStrike, Microsoft Defender ). ✔ Account Management : Administer … user access rights in line with security policies. Skills & Experience ✅ 5+ years in desktop / server support, networking, or security operations. ✅ Technical Proficiency : Microsoft / VMware / Cloud technologies. Firewalls, SIEM (e.g., Microsoft Sentinel ), and EDR tools. WAN / LAN and endpoint security (patch management, AV More ❯

Intelligence Gap Analysis: Identify and address intelligence coverage gaps and contribute to strategic security capability development. Compliance & Documentation: Support compliance with GDPR, NIS, ISO 27001, and document threat intelligence processes and outputs. Strategic Capability Growth: Contribute to long-term improvement of threat and vulnerability management (TVM … capabilities and the broader cyber security roadmap. Base Location: Hybrid - Flexible working with travel to Thames Water offices as required Working Pattern: Full Time / 36 Hours per week What you should bring to the role: Essential Experience: Minimum of 3 years in a cyber threat intelligence environment Strong … vulnerabilities and OT risk management Experience managing technical intelligence feeds and platform integration Additional certifications such as OSCP, OSWP, CVA, or CHECK Team Member / Leader (CTM / CTL) Previous experience contributing to cyber risk discussions with business stakeholders What's in it for you? Competitive salary of More ❯

We are searching for a Senior Software Security Architect / Senior Application Security Architect for a marketing leading and award-winning technology and data driven business. The position is offered on a remote basis. The role is hands-on and very software engineering focused - you will be responsible for … establishing a secure SDLC and 'Secure by Design' approach / practice to be used by all of the Architecture and Software development teams. Responsibilities: Developing, implementing, and maintaining application security architecture across the organisation. Ensuring our systems are designed with objectives like speed, scalability, robustness, zero-trust, automation and … of authority inside the organisation. Interfacing with customers to ensure that security obligations are managed and met appropriately. About You: You will also have / be: Experience in creating application security strategies, standards, best practices, and providing direct input to project teams and business stakeholders is essential. Experience working More ❯

daily stand-ups) to align cross-functional teams. Compliance and Security Ensure identity and access management processes align with regulations like GDPR and ISO 27001. Implement frameworks like Zero Trust and industry standards. Work closely with the security team to proactively address vulnerabilities in identity systems. Base location More ❯

SOWs) in collaboration with Cyber Security and Network Security delivery teams. Clearly articulate and position Bytes' cybersecurity services, including Network Security, Compliance & Assurance (ISO 27001, PCI DSS), penetration testing, and vulnerability assessments. Provide thought leadership, offering expert guidance to customers, ensuring Bytes remains aligned with customer … threats, technologies, and compliance standards. Collaborate across internal teams to enhance service offerings and customer engagement effectiveness. To participate and be a creative lead / presenter in Bytes Cyber Brand extension activities. Key Requirements Required Skills Minimum of 5 years' experience in Cyber Security, preferably within a pre-sales More ❯

most notably recognised by Best Companies as Best Company To Work For in the UK, Tech and the South East in 2023. We are ISO27001 and ISO9001 Certified by UKAS. We are also a CREST approved penetration testing and SOC company, IASME Cyber Essentials Certification body and Cyber Essentials Plus More ❯

charges for non-standard items, complaints, changes to service System changes (software upgrades, introduction of new systems Non-standard requests (new software requests, different / more powerful laptops, etc) Acquisitions of businesses - guidance on how to absorb people and systems Security system monitoring - interpreting and managing output from the … Change management (internal authorisation for significant system changes) Assistance to senior management in relation to IT issues (for example, integration with a new time / billing system) Response to technological change (e.g. major updates to Microsoft software, introduction of AI-based systems) Accreditation for security certificates (Cyber Essentials Plus … possibly ISO 27001) Assistance with AAF and other audits Management of joiner / leaver process Business continuity plan & disaster recovery This is a hybrid position with 2 to 3 days in the office at the offices in Reading. The salary for this position is circa More ❯

Accreditor, or IA Architect (or similar). Eligibility to obtain and maintain high-level UK security clearance. Desirable: Senior CESG certification (SCCP). ISO 27001 Lead Auditor or Implementer. Membership with a relevant professional body such as MInstISP. Strong experience with HMG, MoD, or other regulated More ❯

maintenance for Identity & Access Management, Privileged Access Management, Endpoint Security, and Network Security. Support compliance with standards and regulations, including GDPR, NIS, and ISO 27001. Monitor and optimise security engineering tool performance, implementing proactive solutions. Stay current on cybersecurity trends, emerging threats, and new technologies. Base location - Hybrid … of operating systems and security considerations across SaaS, IaaS, end-user computing, and server estate. Sound knowledge of network security technologies, including firewalls, IDS / IPS, and NAC. Strong analytical, planning, and organisational skills. Ability to communicate technical issues clearly to non-technical stakeholders. Degree in Cyber Security, Computer … also had Previous experience working in a large, complex infrastructure-based or water utility organisation. Experience in systems or network administration in IT and / or OT environments. Experience leading or mentoring others in delivering cybersecurity outcomes. Security engineering vendor or product certifications such as CVA, Microsoft Certified: Azure More ❯

Leadership: Mentor and guide architecture and development teams through complex challenges. Security & Compliance: Ensure cloud architectures comply with industry regulations and security policies. CI / CD & Automation: Champion CI / CD pipelines and infrastructure as code for reliable cloud service delivery. Performance & Cost Optimisation: Drive performance tuning and … systems. Client facing experience: Experience working with clients, strong stakeholder engagement experience. Ideally some Government or Defence experience is beneficial (Not essential). CI / CD & Automation: In-depth understanding of CI / CD pipelines and infrastructure as code. Leadership Skills: Excellent communication and leadership abilities, with experience … Cloud Experience: Familiarity with Azure and GCP. Serverless Architectures: Experience with AWS Lambda and serverless design. Compliance Standards: Expertise in GDPR, HIPAA, SOC2, ISO 27001. Advanced Security Practices: Knowledge of zero-trust architecture and security incident response. Why Apply? Influence: Leadership role with the power to shape key More ❯

Leadership: Mentor and guide architecture and development teams through complex challenges. Security & Compliance: Ensure cloud architectures comply with industry regulations and security policies. CI / CD & Automation: Champion CI / CD pipelines and infrastructure as code for reliable cloud service delivery. Performance & Cost Optimisation: Drive performance tuning and … systems. Client facing experience: Experience working with clients, strong stakeholder engagement experience. Ideally some Government or Defence experience is beneficial (Not essential). CI / CD & Automation: In-depth understanding of CI / CD pipelines and infrastructure as code. Leadership Skills: Excellent communication and leadership abilities, with experience … Cloud Experience: Familiarity with Azure and GCP. Serverless Architectures: Experience with AWS Lambda and serverless design. Compliance Standards: Expertise in GDPR, HIPAA, SOC2, ISO 27001. Advanced Security Practices: Knowledge of zero-trust architecture and security incident response. Why Apply? Influence: Leadership role with the power to shape key More ❯

DPA, CSR, and ISO27001. Responsibilities of the Security Regulatory Compliance Manager include: Lead and manage regulatory compliance across frameworks including TSA, CSR, CAF, and ISO27001 Liaise with shareholders, regulators, and internal stakeholders to ensure seamless compliance Oversee Managed Service Providers, ensuring security controls are met and evidenced Maintain and enhance … MBNL’s wider security strategy and continuous improvement initiatives The successful Security Regulatory Compliance Manager will have: Deep knowledge of key security frameworks (e.g., ISO27001, CSF, CAF, TSA) Proven experience leading regulatory compliance programs Excellent communication skills and a talent for building strong stakeholder relationships Experience in security assurance across … services like SOC, SIEM, IAM, and more Professional certifications (CISM, CISSP, ISO27001 Audit) highly desirable You’ll be part of a dynamic, purpose-driven team in a pivotal role protecting our business from regulatory risk. With one direct report and leadership responsibilities across the supply chain, this is your chance More ❯

security teams, and managed service providers. This role is also fundamental in ensuring The Company meets its regulatory obligations under TSA by maintaining its ISO27001 certification. What you can expect to be doing: Deliver security regulatory compliance and manage associated governance and risk activities. Manage the overall compliance programme for … and risk teams. What we are looking for: Strong understanding of key Information Security frameworks and industry standards / regulations (CSF 2, CAF, ISO27001, TSA). Experience of initiating, overseeing, and managing compliance programmes and interacting with regulators and compliance teams. Proven relationship management of diverse teams of retained … industry best practice into an organisation and using this to drive continuous improvement. Demonstrable experience of managing and developing compliance programmes Nice to have: ISO27001 audit experience, cloud security and budget management experience Experience working in telco or related environment such as, SCADA and ICS or similar background also applicable. More ❯

delivery, security teams, and managed service providers. This role is also fundamental in ensuring MBNL meets its regulatory obligations under TSA by maintaining its ISO27001 certification. What you can expect to be doing: • Deliver security regulatory compliance and manage associated governance and risk activities. • Manage the overall compliance programme for … and risk teams. What we are looking for: • Strong understanding of key Information Security frameworks and industry standards / regulations (CSF 2, CAF, ISO27001, TSA). • Experience of initiating, overseeing, and managing compliance programmes and interacting with regulators and compliance teams. • Proven relationship management of diverse teams of retained … industry best practice into an organisation and using this to drive continuous improvement. • Demonstrable experience of managing and developing compliance programmes Nice to have: • ISO27001 audit experience, cloud security and budget management experience • Experience working in telco or related environment such as, SCADA and ICS or similar background also applicable. More ❯

delivery, security teams, and managed service providers. This role is also fundamental in ensuring MBNL meets its regulatory obligations under TSA by maintaining its ISO27001 certification. What you can expect to be doing: Deliver security regulatory compliance and manage associated governance and risk activities. Manage the overall compliance programme for … and risk teams. What we are looking for: Strong understanding of key Information Security frameworks and industry standards / regulations (CSF 2, CAF, ISO27001, TSA). Experience of initiating, overseeing, and managing compliance programmes and interacting with regulators and compliance teams. Proven relationship management of diverse teams of retained … industry best practice into an organisation and using this to drive continuous improvement. Demonstrable experience of managing and developing compliance programmes Nice to have: ISO27001 audit experience, cloud security and budget management experience Experience working in telco or related environment such as, SCADA and ICS or similar background also applicable. More ❯

delivery, security teams, and managed service providers. This role is also fundamental in ensuring MBNL meets its regulatory obligations under TSA by maintaining its ISO27001 certification. This is a hybrid role with a minimum of 2 days per week in our Central Reading office. What you can expect to be … and risk teams. What we are looking for: Strong understanding of key Information Security frameworks and industry standards / regulations (CSF 2, CAF, ISO27001, TSA). Experience of initiating, overseeing, and managing compliance programmes and interacting with regulators and compliance teams. Proven relationship management of diverse teams of retained … industry best practice into an organisation and using this to drive continuous improvement. Demonstrable experience of managing and developing compliance programmes Nice to have: ISO27001 audit experience, cloud security and budget management experience Experience working in telco or related environment such as, SCADA and ICS or similar background also applicable. More ❯

delivery, security teams, and managed service providers. This role is also fundamental in ensuring MBNL meets its regulatory obligations under TSA by maintaining its ISO27001 certification. This is a hybrid role with a minimum of 2 days per week in our Central Reading office. What you can expect to be … and risk teams. What we are looking for: Strong understanding of key Information Security frameworks and industry standards / regulations (CSF 2, CAF, ISO27001, TSA). Experience of initiating, overseeing, and managing compliance programmes and interacting with regulators and compliance teams. Proven relationship management of diverse teams of retained … industry best practice into an organisation and using this to drive continuous improvement. Demonstrable experience of managing and developing compliance programmes Nice to have: ISO27001 audit experience, cloud security and budget management experience Experience working in telco or related environment such as, SCADA and ICS or similar background also applicable. More ❯

appropriate milestones and deadlines. Providing supervision and guidance to development teams. Ensuring IT Security standards are incorporated by design, ensuring compliance with required standards (ISO27001) and supporting improvement initiatives. Supporting health and safety, environmental, business continuity, and information security arrangements that meet obligations to customers. Minimum Requirements Proven experience in … engineering and software solution design. In-depth understanding of integration techniques & modern coding languages. Telco Site Management software design / development. Integration knowledge (SOAP, Rest APIs, Middleware Biztalk). Data Warehouse design & optimization. ITIL / Remedy experience. Experience using Enterprise Architecture tools. Hons Degree or equivalent in Computer … you will be living within 60 minutes commuting distance. You will be working from home remotely for 2 to 3 days a week and / or working from the office 2 days a week. The salary for this role will be in the range £75K - £90K plus benefits. Please More ❯

milestones and deadlines. Providing supervision and guidance to development teams. Ensuring IT Security standards are incorporated by design, ensuring compliance to the required standards (ISO27001) and supporting improvement initiatives and protecting the business from risks arising from data loss. To support and contribute actively to health and safety, environmental, business … our customers Proven experience in engineering and software solution design. In-depth understanding of integration techniques & modern coding languages Telco Site Management software design / development Integration knowledge(SOAP, Rest API's). Middleware Biztalk Data Warehouse design & optimization. ITIL / Remedy experience Experience of using Enterprise Architecture … you will be living within 60 minutes commuting distance. You will be working from home remotely for 2 to 3 days a week - and / or working from the office 2 days a week. The salary for this role will be in the range £75K - £90K plus benefits. Do More ❯