1 to 25 of 200 ISO/IEC 27001 Jobs in the South East

strategic role where you’ll take ownership of security strategy, operations, and compliance across multi-cloud environments; ensuring systems remain robust, scalable, and compliant with key standards such as ISO27001, PCI / DSS, and GDPR. Location: Milton Keynes - hybrid - at least 2 - 3 times a week in office Salary: £50,000 – £60,000 per annum + benefits Requirements for … Information Security Officer Strong experience in information security within a SaaS or cloud-based software environment Proven success managing ISO27001 certification, audit cycles, and compliance programmes Excellent knowledge of GDPR and experience embedding data protection into software systems Hands-on experience managing cloud security within Azure and / or AWS environments Knowledge of PCI / DSS standards for … platforms Embed security best practices into development lifecycles and product roadmaps Oversee cloud infrastructure security, vulnerability management, and incident response Maintain security monitoring, alerting, and access management controls Lead ISO27001 certification maintenance and audits Ensure compliance with PCI / DSS, GDPR, and other relevant frameworks Complete client security assurance documentation and tender responses Act as the main security contact More ❯

and leading high-performing technical presales or sales engineering teams Broad technical foundation across areas such as cloud infrastructure, security and compliance, APIs, integrations, and modern approaches to AI / ML Demonstrated success in supporting large enterprise opportunities, from proof-of-value through to close This company values a top academic history so are looking for a 2.1 or … on with critical opportunities Responsibilities for Technical Presales Team Leader You will start leading a team of 4 Junior Pre-Sales Engineers in a role with an 80% sales / 20% solutions engineering split supporting how the software is integrated with customers: Lead, mentor, and grow a team of Tech Sales Specialists and Solutions Engineers Define best practices, playbooks … SaaS Integrations / APIs / Security / Compliance / AWS / Azure / GCP / NLP / ML / ISO27001 / SOC2 / GDPR More ❯

on AWS; drive standards, patterns, and guardrails, including Android & applications Lead an effective blended development model with clear SOWs, SLAs, quality gates, secure access, and code ownership. Manage engineering / infrastructure budgets and provide strategic oversight for FinOps practices, unit economics tracking, and the maintenance of a transparent risk register and remediation plans. Execution and delivery Lead disciplined engineering … execution across distributed in-house and outsourced teams. Champion 24 / 7 / 365 platform operations with SLAs, capacity planning, incident response and post-mortems Implement structured software release governance, migration frameworks, and robust QA practices. Drive predictable delivery (quarterly planning, dependency / risk management, quality gates). Establish and enforce best … in-class DevOps, trunk-based, CI / CD, and monitoring standards. Sponsor the adoption of secure SDLC, threat modelling, vulnerability management, identity / authorisation, privacy by design; ISO27001 / 9001, security posture and customer due diligence. Cross-functional leadership Partner closely with Product leaders to ensure product discovery, prioritisation, and delivery processes are respected and aligned. Work More ❯

communication while driving compliance excellence, this opportunity is for you! What We're Looking For: Qualifications and Experience: Proven experience delivering and managing cybersecurity certifications (e.g., ISO / IEC 27001, SOC2 Type II, Cyber Essentials Plus, CREST). A strong understanding of SOC operations and security assurance frameworks. Experience engaging with customers during … audits and RFP / RFI processes, showcasing security-driven solutions. Familiarity with regulatory frameworks such as NIST CSF, GDPR, and UK NCSC guidance. Experience liaising with external auditors and certification bodies. Skills: Exceptional documentation and evidence collection capabilities. Strong communication skills to articulate technical assurance challenges to leadership and customers. Analytical and detail-oriented with a systematic approach to … Superb collaboration and stakeholder management abilities. Highly organised, able to manage multiple certifications and assurance projects simultaneously. Key Responsibilities Certification Leadership: Deliver and maintaincertifications such as ISO / IEC 27001, SOC 2 Type II, Cyber Essentials Plus, and CREST accreditation. Manage sector-specific frameworks, like PCI DSS for payment card data and NCSC More ❯

customer-facing assurance documentation demonstrating the organisation's security posture Lead the delivery and ongoing maintenance of SOC-related certifications (SOC 2 Type II, SOC 3, ISO / IEC 27001, Cyber Essentials Plus, CREST) Embed certification requirements into SOC governance, processes, and operational practices Ensure continuous monitoring, evidence collection, and audit readiness for … external assessments Monitor developments in global cybersecurity regulations and frameworks (NIST CSF, UK NCSC guidance, EU NIS2, GDPR) Oversee sector-specific assurance requirements, including PCI DSS and NCSC CIR / CHECK, where applicable Provide expert advice to leadership on regulatory changes impacting SOC assurance strategy Drive continuous improvement in assurance processes and evidence collection efficiency Produce regular reports and … audit outcomes, and assurance performance Collaborate with SOC operations, Information Security, Risk & Compliance, and Commercial teams Essential Qualifications & Requirements: Proven experience delivering and maintaining cybersecurity certifications (ISO / IEC 27001, SOC 2 Type II, Cyber Essentials Plus, CREST) Strong understanding of SOC operations and security assurance frameworks Experience in customer-facing assurance activities More ❯

standards, ensuring compliance with emerging global AI regulations, and building trust in our AI solutions. A primary focus will be leading the implementation and upkeep of ISO / IEC 42001 certification for AI Management Systems while embedding AI governance, risk management, and lifecycle processes into our wider assurance framework. You will act as the key … collaborate with product, customer, and technology teams to strengthen our compliance posture and enhance adoption. Required Qualifications & Experience Proven experience delivering ISO certifications (e.g., ISO / IEC 42001 , ISO 27001 , or similar standards). Strong knowledge of AI governance, risk management, and model lifecycle assurance frameworks. Familiarity with ISO … dependent upon your experience, qualifications and training. If you wish to apply, please read our Privacy Notice describing how we may process, disclose and store your personal data: roberthalf.com / gb / en / privacy-notice. More ❯

standards, ensuring compliance with emerging global AI regulations, and building trust in our AI solutions. A primary focus will be leading the implementation and upkeep of ISO / IEC 42001 certification for AI Management Systems while embedding AI governance, risk management, and lifecycle processes into our wider assurance framework. You will act as the key … collaborate with product, customer, and technology teams to strengthen our compliance posture and enhance adoption. Required Qualifications & Experience Proven experience delivering ISO certifications (e.g., ISO / IEC 42001 , ISO 27001 , or similar standards). Strong knowledge of AI governance, risk management, and model lifecycle assurance frameworks. Familiarity with ISO … dependent upon your experience, qualifications and training. If you wish to apply, please read our Privacy Notice describing how we may process, disclose and store your personal data: gb / en / privacy-notice. More ❯

operations program, organisational structures, and capabilities Possess a deep technical knowledge in Security Incident and Event Management (SIEM) platforms, Security Orchestration and Response (SOAR) technologies, Endpoint Protection and Response / Next Gen Protection and Response (EDR / XDR) tools, Next GenFirewalls, Threat Intelligence and Hunting platforms Defensive Security Skills (desired) : Experience in security operations design, engineering and / … organisations security operations capabilities such as improvements in asset visibility, threat detection capabilities, automation techniques, case management, enablement of compliance and regulatory requirements Experience in conducting threat hunting and / or compromise assessments to identify active or dormant indicators of compromise (IoCs) or evidence of unknown threats within an organisations digital environment Relevant industry certifications including GIAC Defensible Security … Architect (GDSA), GIAC Intrusion Analyst (GCIA), GIAC Continuous Monitoring (GMON), CISSP Understanding of cyber risk frameworks or industry standards such as 800-53, ISO 27001 / 2, PCI, CIS 18, CMMC Principal Cloud Security: 4+ years of experience performing cloud security advisement and risk assessments based upon industry-accepted standards Hands-on experience with a More ❯

operations program, organisational structures, and capabilities Possess a deep technical knowledge in Security Incident and Event Management (SIEM) platforms, Security Orchestration and Response (SOAR) technologies, Endpoint Protection and Response / Next Gen Protection and Response (EDR / XDR) tools, Next GenFirewalls, Threat Intelligence and Hunting platforms Defensive Security Skills (desired) : Experience in security operations design, engineering and / … organisations security operations capabilities such as improvements in asset visibility, threat detection capabilities, automation techniques, case management, enablement of compliance and regulatory requirements Experience in conducting threat hunting and / or compromise assessments to identify active or dormant indicators of compromise (IoCs) or evidence of unknown threats within an organisations digital environment Relevant industry certifications including GIAC Defensible Security … Architect (GDSA), GIAC Intrusion Analyst (GCIA), GIAC Continuous Monitoring (GMON), CISSP Understanding of cyber risk frameworks or industry standards such as 800-53, ISO 27001 / 2, PCI, CIS 18, CMMC Principal Cloud Security: 4+ years of experience performing cloud security advisement and risk assessments based upon industry-accepted standards Hands-on experience with a More ❯

Incident Response (CSIRT) / SOC Level 3 Analyst Location: Crawley (Hybrid) Department: Information Systems Type: Contract Full-time Outside IR35 About the Role My client is seeking an experienced Incident Response (CSIRT) / Security Operations Centre (SOC) Level 3 Analyst to join their Information Systems directorate, based in Crawley. In this critical role, you'll respond to high … in incident response and advanced threat hunting. A degree in Computer Science, Cybersecurity, IT, or a related discipline, or equivalent professional experience. Industry-recognised certifications such as CISSP, GIAC / GCIA / GCIH, AZ-500, CEH, CASP+, or SIEM-specific training. Strong knowledge of SIEM, SOAR, EDR, IDS / IPS, NAC, DLP, and related security technologies. Familiarity … with frameworks such as MITRE ATT&CK, NIST, CIS, and ISO / IEC 27001 / 27002. Hands-on experience with tools such as FortiSIEM, Q-Radar, Microsoft Defender, Darktrace, Microsoft Sentinel, or similar platforms. Experience in forensic analysis, red-team exercises, and crisis simulation activities. Desirable Experience managing or supporting both IT More ❯

Incident Response (CSIRT) / SOC Level 3 Analyst Location: Crawley (Hybrid) Department: Information Systems Type: Contract | Full-time Outside IR35 About the Role My client is seeking an experienced Incident Response (CSIRT) / Security Operations Centre (SOC) Level 3 Analyst to join their Information Systems directorate, based in Crawley. In this critical role, you'll respond to high … in incident response and advanced threat hunting. A degree in Computer Science, Cybersecurity, IT, or a related discipline, or equivalent professional experience. Industry-recognised certifications such as CISSP, GIAC / GCIA / GCIH, AZ-500, CEH, CASP+, or SIEM-specific training. Strong knowledge of SIEM, SOAR, EDR, IDS / IPS, NAC, DLP, and related security technologies. Familiarity … with frameworks such as MITRE ATT&CK, NIST, CIS, and ISO / IEC 27001 / 27002. Hands-on experience with tools such as FortiSIEM, Q-Radar, Microsoft Defender, Darktrace, Microsoft Sentinel, or similar platforms. Experience in forensic analysis, red-team exercises, and crisis simulation activities. Desirable Experience managing or supporting both IT More ❯

Ensuring that all procedural, process, and policy documentation pertaining to GRC and audit requirements remains up-to-date and relevant. Provide assistance, as and where required, to complete GRC / Audit requirements for client derived security self-assessment (SSA) questionnaires. Managing PCI Pal's outsourced Data Privacy programme and ensuring compliance to global data privacy regulations is always adhered … our commitments and requirements to managing a security, education, training and awareness (SETA) programme. WE WANT TO HEAR FROM YOU IF YOU: Possess extensive and comprehensive knowledge of Information / Cyber Security processes and methodologies as they relate to maintaining compliant PCI DSS and ISO certified environments. Have exceptional knowledge of steering and strategically managing GRC and … listed within the You Will be Responsible For section), e.g. PCI DSS, ISO 27001:2022, SOC2 etc. Possess a good, and demonstrable, understanding of EU / UK GDPR and the Data Protection Act 2018 etc. Have led and managed audit programmes from inception to completion for PCI DSS and ISO 27001 More ❯

and operational delivery of all information and cyber security activities. You'll develop and implement robust security policies, oversee incident response, and ensure compliance with GDPR, PCI DSS, ISO 27001, and Cyber Essentials Plus. You will be the single point of accountability for all security matters, reporting directly to the executive team and influencing critical business … wide information, cyber, and data security governance. Define and implement security frameworks, policies, and operating models. Ensure compliance with GDPR, PCI DSS, Cyber Essentials Plus, and ISO / IEC 27001:2022 aligned practices. Lead Data Protection Impact Assessments (DPIAs), data mapping, classification, and retention programs. Oversee incident response, vulnerability management, patch compliance, and … Candidate Profile: Proven senior leadership experience in information, cyber, or data security. CISSP, CISM, or CISA certified (or equivalent). Track record of delivering security programs aligned to ISO 27001, NIST, PCI DSS, and Cyber Essentials Plus. Hands-on experience with cloud platforms (Azure, AWS), on-premise networks, and hybrid architectures. Strong experience in Zero Trust More ❯

maintain relationships with senior stakeholders (CIO, CFO, COO, CISO, Head of Technology) Strong track record in business development and sales within cyber security Experience applying standards such as ISO 27001, IEC 62443, NIS regulations, and NIS CAF Relevant certifications preferred: CISSP, CISM, GISCP, ISA 62443 (or equivalent) Overview Cyber Security Director – Transport … Sector Location: London, Bristol, Birmingham, Manchester area Salary: Competitive, dependent on qualifications and experience Key Skills Cyber security strategy, stakeholder engagement, transport sector expertise, business development, ISO / NIS / IEC standards, leadership, mentoring, hybrid working Why Apply? This is your opportunity to help shape the future of transport by delivering innovative cyber solutions … you don't hear from us within 7 working days, please presume your application has been unsuccessful on this occasion. You are of course free to resubmit your CV / details in the future and we shall assess your suitability at that time. This role is a permanent position. More ❯

maintain relationships with senior stakeholders (CIO, CFO, COO, CISO, Head of Technology) Strong track record in business development and sales within cyber security Experience applying standards such as ISO 27001, IEC 62443, NIS regulations, and NIS CAF Relevant certifications preferred: CISSP, CISM, GISCP, ISA 62443 (or equivalent) Overview Cyber Security Director – Transport … Sector Location: London, Bristol, Birmingham, Manchester area Salary: Competitive, dependent on qualifications and experience Key Skills Cyber security strategy, stakeholder engagement, transport sector expertise, business development, ISO / NIS / IEC standards, leadership, mentoring, hybrid working Why Apply? This is your opportunity to help shape the future of transport by delivering innovative cyber solutions … you don't hear from us within 7 working days, please presume your application has been unsuccessful on this occasion. You are of course free to resubmit your CV / details in the future and we shall assess your suitability at that time. This role is a permanent position. More ❯

maintain relationships with senior stakeholders (CIO, CFO, COO, CISO, Head of Technology) Strong track record in business development and sales within cyber security Experience applying standards such as ISO 27001, IEC 62443, NIS regulations, and NIS CAF Relevant certifications preferred: CISSP, CISM, GISCP, ISA 62443 (or equivalent) Overview Cyber Security Director – Transport … Sector Location: London, Bristol, Birmingham, Manchester area Salary: Competitive, dependent on qualifications and experience Key Skills Cyber security strategy, stakeholder engagement, transport sector expertise, business development, ISO / NIS / IEC standards, leadership, mentoring, hybrid working Why Apply? This is your opportunity to help shape the future of transport by delivering innovative cyber solutions … you don't hear from us within 7 working days, please presume your application has been unsuccessful on this occasion. You are of course free to resubmit your CV / details in the future and we shall assess your suitability at that time. This role is a permanent position. More ❯

Division, the Enterprise Infrastructure Solutions unit is responsible for the design, delivery, and management of centrally supported IT infrastructure and applications. This includes enterprise compute platforms, data networks, UNIX / Linux / Windows environments, cloud services, data centres, commercial software solutions, and end-user support across all UKAEA sites. Role Overview : The Cyber Security Specialist plays a pivotal … o Experience conducting or supporting security audits and implementing remediation plans. o Proficiency in assessing and securing platforms such as Entra ID (Azure AD), Microsoft 365 E5, Azure IaaS / PaaS, Windows / Linux / Unix. o Strong knowledge of security tooling such as SIEM, endpoint detection (EDR / XDR), and vulnerability management platforms. o Hands … Experience working in a regulated or government environment, particularly within research, energy, or national infrastructure. o Knowledge of Incident Management, Vulnerability Assessments, SIEM & SOC Systems. o Knowledge of OT / ICS / SCADA security principles and industrial control environments. o Experience designing or reviewing secure software supply chain and CI / CD security. o Practical experience in More ❯

a fast-paced environment, and want to make real impact at Europe’s leading frozen food company. Responsibilities: Overseeing cyber security governance efforts, ensuring alignment with frameworks like ISO 27001, NIST, NIS2 and GDPR, and regulatory standards. Identify, assess, and mitigate security risks across the organisation. Implement and maintain risk management processes, ensuring effective controls are … experienced in operating a risk management framework across multiple entities and territories, including risk appetite and impact / likelihood calibration. Has familiarity with regulations and standards such as ISO27001, NIST CSF, NIS2, COBIT, ITIL, GDPR, and SOC2, including developing and maintaining frameworks, policies and guidance, and implementation and monitoring strategies. Some of the key skillset required for this position … are: Graduate level in Cyber Security, Computer Science or similar. CRISC, CISM, CRM, CISA, CCP Practitioner SIRA, ISO / IEC 27001 Lead Auditor, or similar. 3-5 years’ experience in cyber governance, risk and compliance roles, preferably in the FMCG sector. What we can offer you: We’re on an exceptional adventure and More ❯

problems through to completion in line with service levels. Strong experience working with public cloud platforms with a particular focus on Microsoft Azure including but not limited to PaaS / Key Vault / Bastion / NSGs / PrivateLinks. Experience with Azure AD Premium 2 including Single Sign on configuration. Experience working with Microsoft Server environments) including … server 2016 / 2019 and common desktop environments using Windows desktop operating systems such as Windows 10. Working knowledge of Microsoft Active Directory and its associated tools. (Domains & Trusts, Sites and Services, Users & Computers, Distributed File System, DHCP & DNS etc). Knowledge of virtualisation technologies such as Microsoft Hyper V. Strong experience with Scripting languages such as Python / … advanced penetration test and audit tools notably Kali Linux. Knowledge and experience working with at least one of the IT security frameworks such as NIST 800 series / ISO27001 / CIS control suites. Offensive Security mindset. Proven excellent customer service skills. Sound relationship management and communication skills. Excellent working knowledge of core Microsoft products; Word, Excel, PowerPoint, Outlook More ❯

Trust. Person Specification Qualifications Essential ITIL v3 Service Management Qualification Educated to degree level or equivalent Formal certification (ISACA: Certified Information Security Manager (CISM). CISSP, or CRISC) and / or formal training in information security standards and best practice (e.g.: ISO 27001 / 2, COBIT), or equivalent work experience demonstrating understanding of the … same. Experience Essential Extensive experience of developing and delivering an Information Security service to a large complex organisation using confidential and / or sensitive information Desirable IT experience gained in both and Acute and Community setting Disclosure and Barring Service Check This post is subject to the Rehabilitation of Offenders Act (Exceptions Order) 1975 and as such it will … for any previous criminal convictions. Employer details Employer name Royal Berkshire NHS Foundation Trust Address Royal Berkshire Hospital Princes House, London Road Reading RG1 5UZ Employer's website https: / / www.royalberkshire.nhs.uk / More ❯

ISO27001, IT Risk, IT Compliance, IT Controls, IT Audit, Policy. Governance, Security, Surrey area Your new company A specialist organisation in the Health / Medical sector offers hybrid working in this role based in North Surrey area. Your new role You will be working in the Risk team and will design, implement & maintain the Information Security Management System (ISMS … in accordance with ISO27001 in a company that manages highly sensitive data. You will support the firm's governance, addressing areas of risk and supporting plans to address these risks, including the compilation of business continuity plans (BCP). You will work closely with colleagues in IT to enhance the technology & control frameworks regarding information security compliance & cyber threat security. … System Assurance. What you'll need to succeed You will ideally have the following experience and qualifications:Professional certifications such as ISO 27001 Lead Implementer / Auditor as well as hands-on experience with auditing and maintaining accreditation for ISO 27001:2022 You will have a strong background in enterprise risk More ❯

cycle (aligned to the PLP) of their digital products in order to generate maximum repeatable income, increase market share, increase profit, ensure return on investment and improve customer satisfaction / experience while responding and aligning to the Division and Group's overall portfolio strategy. The role’s workstreams / packages are validated by the Industry Director and their … beyond the industry or site where they are located, to apply globally and across all industries within the division. Duties & Responsibilities: Manage the resources necessary to deliver the Product / s that they are accountable for efficiently and effectively between the relevant site (Centre of Excellence (CoE / manufacturing facility) and the Regions, Markets, contract / client … the PRD meets the market demand and is fit for purpose aligned to the Product roadmap and business strategy. Develop, release, and manage plans necessary to deliver the Product / s project / program that they are accountable for efficiently and effectively between the site (CoE / manufacturing facility) and the Regions, Markets, contract / client More ❯

cycle (aligned to the PLP) of their digital products in order to generate maximum repeatable income, increase market share, increase profit, ensure return on investment and improve customer satisfaction / experience while responding and aligning to the Division and Group's overall portfolio strategy. The role’s workstreams / packages are validated by the Industry Director and their … beyond the industry or site where they are located, to apply globally and across all industries within the division. Duties & Responsibilities: Manage the resources necessary to deliver the Product / s that they are accountable for efficiently and effectively between the relevant site (Centre of Excellence (CoE / manufacturing facility) and the Regions, Markets, contract / client … the PRD meets the market demand and is fit for purpose aligned to the Product roadmap and business strategy. Develop, release, and manage plans necessary to deliver the Product / s project / program that they are accountable for efficiently and effectively between the site (CoE / manufacturing facility) and the Regions, Markets, contract / client More ❯

cycle (aligned to the PLP) of their digital products in order to generate maximum repeatable income, increase market share, increase profit, ensure return on investment and improve customer satisfaction / experience while responding and aligning to the Division and Group's overall portfolio strategy. The role’s workstreams / packages are validated by the Industry Director and their … beyond the industry or site where they are located, to apply globally and across all industries within the division. Duties & Responsibilities: Manage the resources necessary to deliver the Product / s that they are accountable for efficiently and effectively between the relevant site (Centre of Excellence (CoE / manufacturing facility) and the Regions, Markets, contract / client … the PRD meets the market demand and is fit for purpose aligned to the Product roadmap and business strategy. Develop, release, and manage plans necessary to deliver the Product / s project / program that they are accountable for efficiently and effectively between the site (CoE / manufacturing facility) and the Regions, Markets, contract / client More ❯

certification and compliance. Hands-on experience implementing GDPR in software products. Working knowledge of PCI DSS and securing payment systems. Deep understanding of cloud security across Azure and / or AWS. Skilled in application security and the secure development lifecycle (SDLC). Experienced in incident response and cross-functional coordination. Confident supporting tenders and delivering client security assurance. Preferrable … as CISSP, CISM, CISA, or equivalent. Experience in or supporting the higher education sector. Strong understanding of multi-tenant SaaS security. Knowledge of DevSecOps and integrating security in CI / CD pipelines. Familiarity with NIST, CIS Controls, OWASP, and other security frameworks. Awareness of global data protection and multi-jurisdictional privacy requirements. Experience supporting enterprise sales cycles with security … pension contributions to help support your future. Two paid volunteering days annually for charity, community, or sustainability initiatives. Salary sacrifice schemes for electric vehicles and cycle-to-work. 24 / 7 Employee Assistance Programme offering confidential advice and wellbeing support. Annual health check to help you stay at your best. Flexible benefits platform with options including life assurance, learning More ❯