1 to 25 of 46 ISO/IEC 27001 Jobs in the South West

Conduct risk assessments and security audits to identify vulnerabilities and develop risk mitigation plans. - Ensure compliance with relevant security standards, including ISO / IEC 27001, UK government security policies, and MOD regulations. - Provide expertise in secure system design, data encryption, access controls, and … passport and current UK government security clearance (minimum SC; DV preferred). - Strong knowledge of security standards and frameworks such as ISO / IEC27001, NIST, and the UK government's Security Policy Framework. - Proven experience in risk assessment, security auditing, and incident response. - Excellent communication and interpersonal more »

is addressed early in the development lifecycle. Review security best practice, remediating and implementing controls to ensure compliance. Implementing security gates within the CI / CD workflows to ensure secure deployments. Write Infrastructure-as-code to build secure infrastructure repeatedly. Proactively patch infrastructure and code. Engage in debates around … Dev SecOps engineering position. Strong experience securing cloud platforms, primarily AWS and Mongo Atlas. Exposure to Audits / Compliance / Security frameworks (ISO27001, SOC2, OWASP, SAMM, DSOMM). Knowledge of embedded security (IDE plugins, SAST, DAST, SCA). Experience performing vulnerability scanning / penetration testing. Threat detection … and prevention (IDS, IPS, SOC, Threat list blocking, WAF / SIEM). Cloud account management (e.g. AWS Control Tower / GuardDuty / Config / Security Hub / CloudTrail). Identity management (e.g. SAML / OAuth / OIDC / AWS IAM). Secret more »

practices within information security. Update and maintain Information Security Policies, procedures and supporting operational collateral. Manage internal and external audit events (e.g., SOC1, ISO 27001) and information security requests from customers to demonstrate compliance with industry best practice and customer contractual obligations. Remain up to date … an information security role, or information security related qualification. Previous use of or familiarity with common security tools and platforms. Familiarity with GDPR, ISO 27001, and other relevant information security laws and standards. Excellent written and verbal communication skills, with the ability to convey complex information … free employee share scheme Private medical insurance - provided by Bupa Eyecare Vouchers -free eye test biannually Health Cash Plan - provided by Westfield Health Gym / Health Club Discounts Flu Vaccinations Cycle to work scheme We take pride in rewarding our colleagues through Summer parties, treat days in the offices more »

role and requires both a broad technical knowledge of Cyber Security, as well as specific focused knowledge of CTI tools and processes. Knowledge and / or experience of modern IT Systems, particularly Microsoft solutions and network infrastructure is advantageous. Responsibilities: Proactively research and analyse emerging cyber threats, malware variants … risk level. Professional Experience: Demonstrable understanding of the Cybersecurity Ecosystem and Infrastructure Technologies (e.g. firewall logs, network security tools, malware detonation devices, proxies, IPS / IDS). Experience in secured cloud architectures (Azure, AWS, or similar) and engineering solutions. An understanding of operating systems and their programming interfaces such … Management. Experience designing a service, reviewing effectiveness of services, procurement, or business project work. Qualifications: One or more of the following industry certifications: SANS301 / SANS401 / FOR578, Crest CRTIA / CCTIM, Security+, or similar. Ideally a BSc or MSc in Cyber Security, preferably including modules on more »

Requirements gathering from stakeholders to ensure that the capabilities and solutions deliver the necessary improvements, meeting stakeholders expectations. Presenting to management, proactively raising concerns / issues / risks professionally with project members and escalating to management as required. Engaging with business and technical architects, designers, and analysts to … of seniorities. External resources: Management of external consultants, suppliers and specialists, as required. Budget: Some aspects of project finances will be managed. Key skills / competencies required: Essential Qualifications and Experience: Formal training and experience in at least one modern software development lifecycle / methodology (e.g., PRINCE2, Agile … changing environment. Desirable Experience working within either the ISO 27001 ISMS or NIST CSF Experience delivering any information security tools / capabilities such as, but not limited to, Data Loss Prevention, SIEM, Identity and Access Management, EDR / XDR The deadline for applications is more »

Developers can deliver against. Key Responsibilities Collaborate with client users and conduct research to gather and analyse requirements, including prioritisation. Create detailed requirement specifications / User stories and supporting documentation. Liaise with Business Development and software developers to assess options, clarify concerns and agree solution designs. Manage change requests … application) Adhere to best working practices as defined in ISO & Policies. Any other task as directed by the Line Manager. Key results / objectives 1) Generate defined and agreed User Stories / requirements with clear understanding of how they meet client needs and the underpinning solution … quality, reliability and performance of the product solutions to: Meet client and company expectations. Develop robust, reliable solutions in new sectors. Create an outstanding / intuitive user experience. Produce an outstanding quality product in the competitive market. Qualifications Proven eligibility to work in the UK. Minimum HND or NVQ more »

secure way. Will need to have good knowledge of AWS architecture best practices and best-in-class security standards Review relevant Cyber Risk alerts / notifications and MODCERT notices, assess impact on and vulnerability of our solution, define actions to take and work with the technical teams to design … with the latest security threats and trends and proactively identify potential security risks Assist in compliance audits and certifications such as SOC 2, ISO 27001 Self-driven … with ability to work in fast paced, changing environment and deliver results for key milestones targets Align with existing Leidos delivery standards and identify / craft / suggest improvements thereon Required Skills: Strong experience designing and implementing security controls and best practices Bachelor degree in Computer Science, Information more »

policy, culture, audit, and risk management. Good exposure to and experience of carrying out security reviews against recognised security control frameworks such as ISO27017 / 27001, NIST CSF, or PCI-DSS. Ability to evaluate the adequacy of cloud security controls, and how they are applied in a … context. Familiarity and use of some of the following tools is a must: AWS Audit Manager, AWS Security Hub, Macie, Wiz, Microsoft Compliance Portal / Purview, Azure Information Protection (AIP), Azure Security Centre. Experience of carrying out security reviews against recognised security control frameworks such as NIST CSF. Effective more »

graduate level qualification in IT or technical subject Relevant professional certification to CISSP, CISM, CISA, CRISC, ISO 27001 Lead Implementer / Auditor etc Proven track record of leadership, preferably with a history of involvement in cyber related transformation projects and the effective development and implementation more »

security provisions within a global, fast-paced organisation Strong understanding of best practice in relation to Cyber Security Experience of working in environments using ISO27001 or Cyber Essentials Plus would be beneficial Strong knowledge of security tooling and technologies including SIEM, vulnerability management, DLP etc Good knowledge and understanding of more »

deliver against. Key Responsibilities o Collaborate with client users and conduct research to gather and analyse requirements, including prioritisation. o Create detailed requirement specifications / User stories and supporting documentation. o Liaise with Business Development and software developers to assess options, clarify concerns and agree solution designs. o Manage … as directed by the Line Manager. Role Criteria Essential o Proven eligibility to work in the UK. o Minimum HND or NVQ Level 3 / 4 in a science based subject. o A Level Maths, or similar o A Level English, or similar, with good grammar and attention to … detail. o A degree in Computer Science or equivalent. Skills and Expertise o Ability to confidently communicate technical / non-technical issues with clients. o Experience in capturing client requirements and generating quality User stories. o Logical and Analytical mindset to understand business needs and translate to technical solution. more »

your mastery in cyber security. Strong background in security architecture and risk management. Familiarity with cyber security standards such as NIST CSF and ISO 27001 Interviews are scheduled to take place next week so if you are interested in hearing more about this and other roles more »

within a global organisation A proven track record of working to best practice in relation to Cyber Security Experience of working in environments using ISO27001 or Cyber Essentials Plus Strong knowledge of security tooling and technologies including SIEM, vulnerability management or similar Experience of Cloud platforms, either AWS or Azure more »

for those standards to be adopted. Ensuring capability meets the required information security standards that Sopra Banking Software need to conform to (e.g., ISO 27001), conformity to those standards can be clearly demonstrated and evidenced. Taking on all tasks and responsibilities that is required of the … parties, treat days in the offices, and a social budget for each department. Salary range for this role is £40,000 - £50,000 p / a depending on skills and experience. This role also forms part of the out of hours rota once settled in, which pays overtime and more »

for those standards to be adopted. Ensuring capability meets the required information security standards that Sopra Banking Software need to conform to (e.g., ISO 27001), conformity to those standards can be clearly demonstrated and evidenced. Taking on all tasks and responsibilities that is required of the more »

for those standards to be adopted. Ensuring capability meets the required information security standards that Sopra Banking Software need to conform to (e.g., ISO 27001), conformity to those standards can be clearly demonstrated and evidenced. Taking on all tasks and responsibilities that is required of the more »

for information systems and applications, primarily within the public sector.Essential Skills & Experience:- 5+ years in HMG with expertise in HMG Security Policy Framework, NIST, ISO27001, and NCSC guidance- Extensive background in HMG and MoD Information Assurance (IA) requirements- ISO 27001 qualification and strong knowledge of Governance more »

obligations. 4. Deputise for or assist Operations and Data Centre Managers where required and available. 5. Create, maintain, and adhere to documented procedures, ISO 27001, best practices, checklists and be held responsible for your work. 6. Make sure all works are recorded correctly in line with … approval from managers. 18. Take responsibility for Serverfarm assets, resources and consumables, ensuring security, tidiness, cleanliness and correct stock levels. 19. Understand the customer / supplier relationships within our contracts and be conscious of them when representing Serverfarm in customer and supplier forums where required. 20. Operate in a … a critical technology environment. 2. Can work from a complex High-Level Design (HLD) or Patching Schedule unsupervised. 3. Experience in using StruxureWare DCE / DCO & TrackIT toolsets, would be beneficial. 4. Working additional hours or on call may be required in this role. 5. Evidence of self-management more »

their Engineering Delivery Team with a candidate who will be proficient in running hands-on risk assessments in line with industry good practice (ISO 27001, NIST, JSP 440). You'll also lead the development of risk-based cybersecurity requirements and provide essential technical guidance. Your more »

a progressive team and organisation. Qualifications Experience Requirements Practical knowledge of security standards and frameworks, such as those provided through IASME, Cyber Essentials, ISO 27001, NIST or equivalent, and designing solutions to achieve these. Relevant technical certifications such as those provided by Microsoft, Cisco, or security more »

to maintain efficient and secure operations. ? Develop, implement, and monitor a strategic, comprehensive enterprise information security and IT risk management program. ? Manage compliance of ISO27001, Cyber Essentials Plus, NHS DSCR, and other regulatory standards. ? Regular security audits, risk assessments, and uphold our annual compliance certifications. ? Oversee a network of … processes, following DevOps best practices. Qualifications: ? Proven expertise as an IT Manager focusing on infrastructure and compliance. ? Solid grasp of compliance frameworks such as ISO27001 and Cyber Essentials Plus. ? A minimum of 3 years in IT systems management with a robust compliance and security background. ? Strong knowledge of technical infrastructure … science, IT, Cybersecurity or a related field, or equivalent experience. Other considerations The business operates a first responder roster in Infrastructure to provide 24 / 7 / 365 support to respond to operational & environmental service requirements. This post maybe part of an on-call rolling roster & the post more »

role you will be identifying risks to products and providing guidance on how to enhance and align them with industry frameworks such as ISO 27001, NIST, and JSP 440 and making sure the risks have been mitigated effectively. My client has a huge … training budget for this team and utilizes this to up-skill and train their staff offering a clear ladder up the hierarchy into senior / lead positions. Due to the sensitive nature of the work, Security Clearance (SC) is essential, making this position exclusively available to UK nationals . more »

You will have experience with these: Creating and managing networks and virtual infrastructure Assessing network performance and functionality Implementing security practices Understanding of ISO 27001 Managing Azure infrastructure Performing backups Conducting migrations from On-premises to SharePoint within M365 Job Type: Permanent Location: Cheltenham (3 days more »

You will have experience with these: Creating and managing networks and virtual infrastructure Assessing network performance and functionality Implementing security practices Understanding of ISO 27001 Managing Azure infrastructure Performing backups Conducting migrations from On-premises to SharePoint within M365 Job Type: Permanent Location: Cheltenham (3 days more »

and operational processes.Staying updated with industry trends and integrating best practices.Collaborating with teams to align processes with strategic goals.Ensuring adherence to standards like ISO 27001 and providing evidence of compliance.Understanding the broader architectural context and advocating for suitable solutions.QualificationsWe are interested in hearing from you, if … buy one get one free employee share schemePrivate medical insurance - provided by BupaEyecare Vouchers - free eye test buannuallyHealth Cash Plan - provided by Westfield HealthGym / Health Club DiscountsFlu VaccinationsCycle to work schemeWe take pride in rewarding our colleagues through Summer parties, treat days in the offices, and a social more »