1 to 25 of 28 ISO/IEC 27001 Jobs in Staffordshire

in security audits, identifying vulnerabilities, and ensuring adherence to security policies. • Develop and enforce GCP security hardening measures (network segmentation, access controls, encryption, GDPR / ISO 27001 compliance). • Design and implement ETL pipelines for marketing data into BigQuery for Looker. • Optimise BigQuery data models … as a Cloud Engineer, specialising in GCP. • Proven background in marketing data environments, understanding infrastructure needs for marketing analytics and CDPs. • Demonstrable experience leading / contributing to security audits, vulnerability assessments, and compliance initiatives (GDPR, ISO 27001) within GCP. • Expertise in IaC with a strong … Terraform. • Profound understanding of GCP networking, security services, and IAM. • Proficiency in scripting (Python, Bash, Go). • Experience with containerisation (Docker) and orchestration (Kubernetes / GKE) is desirable. • Strong understanding of monitoring and logging tools. • Excellent problem-solving and communication skills. • Relevant GCP certifications are highly advantageous. Infrastructure Engineer More ❯

and influence. What You'll Be Working On: You’ll support key client projects across a diverse and exciting portfolio, including: Framework Compliance : ISO 27001, NIST, PCI-DSS Security Assurance : Audit, controls assessment, reporting Third-Party Risk Assurance : Vendor risk reviews, supply chain assessments Cloud Security … to finish. You’ll Need: Proven experience in a security consulting role (client-facing or internal consulting) Strong understanding of Information Security frameworks (ISO 27001, NIST, PCI-DSS) Hands-on experience delivering security assessments, audits, or assurance reviews Awareness or experience with cloud platforms (Azure, AWS … personal development, mentoring, and continuous learning Growth Journey: Join at an exciting time — with plans to double headcount and expand services Certifications (Required): ISO 27001 Lead Auditor CISSP or CISM More ❯

includes tasks such as BAU audits, policy and procedure creation and review, preparing for external audits and implementing controls in relation to ISO9001 and ISO27001 standards. This role is eligible for inclusion in the Company’s hybrid working from home policy. Preferred Skills, Qualifications and Experience ISO9001 Auditor qualification. Strong … Ability to manage multiple audits simultaneously. Ability to evaluate the effectiveness of policies and procedures. Knowledge of relevant security frameworks such as ISO9001, NIST, ISO27001 and PCI DSS. Strong written communication and documentation skills, with the ability to produce clear, concise and detailed reports. Ability to clearly convey information to … diverse stakeholders. Confident in presenting ideas and solutions. Excellent organisational, administrative and time management skills. Main Responsibilities Preparing for the ISO9001 / ISO27001 audits and the annual compliance audits for the UK Gambling Commission, along with any other audits that have an information security component. Assisting other teams in More ❯

includes tasks such as BAU audits, policy and procedure creation and review, preparing for external audits and implementing controls in relation to ISO9001 and ISO27001 standards. This role is eligible for inclusion in the Company’s hybrid working from home policy. Preferred Skills, Qualifications and Experience ISO9001 Auditor qualification. Strong … Ability to manage multiple audits simultaneously. Ability to evaluate the effectiveness of policies and procedures. Knowledge of relevant security frameworks such as ISO9001, NIST, ISO27001 and PCI DSS. Strong written communication and documentation skills, with the ability to produce clear, concise and detailed reports. Ability to clearly convey information to … diverse stakeholders. Confident in presenting ideas and solutions. Excellent organisational, administrative and time management skills. Main Responsibilities Preparing for the ISO9001 / ISO27001 audits and the annual compliance audits for the UK Gambling Commission, along with any other audits that have an information security component. Assisting other teams in More ❯

controls, and preparing for audits while also providing consultation on PCI requirements to Engineering, SecOps, and Architecture teams. Additionally, the role will support ISO 27001, SOC 2 Type 2, and other certification audits, assist with security assurance activities such as design reviews and client security questions … identify areas of improvement. Stay up to date with PCI DSS standard updates and ensure timely adaptation of new requirements. Manage and support ISO 27001 and SOC 2 Type 2 certification processes, ensuring evidence gathering, control validation, and audit preparation. Assist in responding to client security … Strong understanding of PCI DSS requirements, controls, and assessment processes. Hands-on experience with security controls, cloud environments, and security architecture. Experience with ISO 27001, SOC 2 Type 2, or other security frameworks. Proven ability to work effectively with senior leadership, auditors, external partners, and cross More ❯

in revenue, and supports more than 60,000 clients across a diverse range of sectors and markets. Role Purpose: An Information Security Officer (ISO) is required to support LRQA's global operations, to develop, improve and maintain the organisation's Information Security capability. Working closely with the Global … opportunities for improvement and facilitate development of pragmatic solutions. Work with the DPO to ensure appropriate security is applied to data and provide reports / subject access requests. Design and deliver continual education and training to our colleagues to support them in identifying risks in their day-to-day … environment is a plus. Technical / Professional Qualification requirements: Proven experience in Information Security Management and IT risk management. In-depth knowledge of ISO27001 to Lead Auditor standard. Knowledge of relevant regulations (Data Protection, DORA, NIS2). Knowledge of Three Lines of Defence Model and its application. Knowledge of More ❯

baselines in line with industry standards (e.g., NIST, CIS, ISO 27001). Configure and manage Microsoft Defender for Office 365 / Cloud / Endpoint / Servers, Purview (Information Protection, Data Loss Prevention), and Microsoft Entra (Azure AD) security features. Experience of integrating with … Entra ID. Strong understanding of identity, access management, and conditional access controls. Familiarity with regulatory and compliance frameworks such as GDPR, HIPAA, and ISO 27001. Proficient with Microsoft security and compliance portals, PowerShell scripting, and automation tools. Relevant Microsoft certifications (e.g., SC-100, SC-300, MS-500, AZ More ❯

s been through this before and knows what it takes. Familiarity with ISO 27001, IT GRC, GxP compliance, and SaaS / cloud environments is also important, but SOC 2 is the headline act here. You’ll collaborate closely with teams across the company, from InfoSec … SOC 2 and ISO 27001 implementation efforts. Strong knowledge of the AICPA Trust Services Criteria and the kinds of IT / security controls that support them. A background in InfoSec, IT, Life Sciences, or something similar — a degree in one of these areas is a More ❯

regulatory requirements (e.g., ISO 27001, NIS2, GDPR). Oversee risk management frameworks, including enterprise risk, cyber risk, and third-party / vendor risk. Collaborate cross-functionally with Security, Legal, Operations, and senior stakeholders to embed a culture of risk-aware decision making. Lead internal audits … leadership role within a tech, managed services, or regulated environment. Strong understanding of risk management, compliance frameworks, and international regulatory landscapes. Familiarity with ISO 27001, NIST, GDPR, DORA, NIS2, and other relevant standards. Excellent communication skills and the ability to … influence senior stakeholders. Fluent English is required; Spanish or German is a plus. Based in Spain or open to relocating, with flexibility for hybrid / remote work. Why Join? Be part of a fast-scaling European digital leader with ambitious growth plans. Influence strategy at the highest level while More ❯

My client a leading cybersecurity business is seeking a Pre-Sales Director (Cyberdefense) based from offices in London and / or Kent. My client is a leading cybersecurity business who are part of larger reputable group who have a portfolio of clients within the financial services, utilities, legal and … manufacturing verticals. As Pre-Sales Director (Cyberdefense) based in London and / or Kent, reporting to the UK MD you will be responsible for: Digital transition / transformation and cloud first strategy and Cyber Security … within the organisation Strategic roadmap implementation of IS / IT security restructure programmes and projects of a technical nature including frameworks such as ISO27001 / 2:2005 / 13 &DORA Ownership of Strategic, Operational and Tactical IT Security and Risk Management, technical and legislative mandates Programme / More ❯

Head of Engineering / System Development Manager - up to £70k base with great benefits Remote working with an office Glasgow We are looking for a strategic, hands-on Head of Engineering to lead and scale our software engineering function. This senior leadership role will focus heavily on software engineering … RESTful services, rate limiting, versioning, monitoring, etc.). Ensure high data consistency, operational integrity, and well-documented interface contracts between services. Software Delivery, CI / CD & DevOps Define and implement scalable CI / CD pipelines using modern DevOps tooling, including automated build, test, deploy, and rollback strategies. Champion … with security engineers to integrate security throughout the software lifecycle (shift-left security, secure coding, threat modelling). Own the implementation of secure authentication / authorization practices, audit logging, encryption at rest / in transit, and other application security standards. Ensure software and infrastructure meet organizational security and More ❯

enforce security policies, standards, and procedures Work with IT and development teams to implement secure system designs and configurations Support compliance initiatives (e.g., ISO 27001, NIST, GDPR, PCI-DSS) by assisting with audits and documentation Conduct security awareness training and phishing simulations for employees Keep up … security or cybersecurity role Strong understanding of security principles, frameworks, and practices (e.g., CIA triad, defense in depth) Experience with SIEM tools, intrusion detection / prevention systems (IDS / IPS), firewalls, and endpoint protection Familiarity with vulnerability scanning tools (e.g., Nessus, Qualys) and remediation processes Knowledge of networking More ❯

SAC). An understanding of MOD Secure by Design policy and process. Deep technical expertise in security technologies and solutions, including firewalls, intrusion detection / prevention systems (IDS / IPS), endpoint protection, encryption, identity and access management (IAM), and security information and event management (SIEM) systems. Strong understanding … of security frameworks, standards, and regulations, including ISO 27001, NIST Cybersecurity Framework, GDPR , NCSC Cyber Essentials Plus, with experience in implementing and maintaining compliance with these requirements. Excellent leadership and communication skills, with the ability to effectively communicate security-related concepts and risks to executive leadership More ❯

streams. Report progress to initiative leaders and BU sponsors; adapt plans as needed. Ensure adherence to quality standards, validation processes (e.g., Part 11, ISO 17025, ISO 27001), and Element’s compliance framework. Align deliverables to business priorities and ensure high adoption … rates in target labs. Support onboarding, training, and change management initiatives in close partnership with the business units. Occasional travel to European labs Skills / Qualifications Essential: Several years of experience as a Project Manager in IT or equivalent, ideally with exposure to LIMS or regulated lab environments. Demonstrated More ❯

problem-solving and troubleshooting skills. Preferred: Experience with cloud platforms (e.g., AWS, Azure, GCP) and their integration with CyberArk. Knowledge of DevOps and CI / CD pipelines for secrets management. Familiarity with other PAM tools (e.g., BeyondTrust, Thycotic) is a plus. Strong understanding of cybersecurity frameworks (e.g., NIST, ISO 27001). Soft Skills: Strong communication and interpersonal skills. Ability to work independently and as part of a team. Detail-oriented with a focus on delivering high-quality results. Proactive and self-motivated with a passion for cybersecurity. Education and Certifications: Bachelor’s degree in Computer More ❯

landscapes, risk posture, and security innovation Security Architecture & Operations: Oversee the design and operation of our global cloud security infrastructure across AWS, GCP, and / or Azure. Drive robust incident response, threat detection, and remediation processes. Risk Management & Compliance: Lead risk assessments and ensure adherence to international compliance standards … SOC 2, ISO 27001, GDPR, HIPAA, etc.). Establish a robust control environment to support secure development and delivery of our SaaS offerings. Governance & Policy Development: Implement security governance frameworks to support DevSecOps and data protection at scale. Develop and maintain policies, standards, and secure coding More ❯

with knowledge of vulnerability management tools and frameworks. Experience collaborating with governance and compliance teams to align technical controls with security standards (e.g., ISO 27001). Excellent troubleshooting, communication, and documentation skills, with the ability to collaborate effectively across teams. Technical Skills Strong understanding of Microsoft More ❯

in JavaScript. Solid understanding of SDLC, testing methodologies, and automated testing for web and APIs. Beneficial Skills for an IT Tester: Knowledge of Microsoft / Azure fundamentals (MS-900, AZ-900). Experience with firewall configuration (e.g., SonicWALL). Familiarity with governance frameworks (ISO 27001 More ❯

As a specialist in secure technology solutions, all successful candidates will be subject to pre-employment checks, so we can ensure compliance with our ISO27001 (Information Security) and Cyber Essentials Plus certifications. We are committed to using any personal information you may give us in a secure and proper manner More ❯

and deployment pipelines in a cloud-first environment. Key Responsibilities: Manage and automate AWS cloud services and VMware vSphere infrastructure Build and maintain CI / CD pipelines (GitHub Actions, TeamCity) Implement monitoring, backup, and recovery strategies Contribute to secure, high-availability architecture in line with ISO 27001 More ❯

Role Title: AWS IAM / PingID Specialist Duration: contract to run until 30 / 10 / 2025 Location: Remote Rate: up to £690 p / d Umbrella inside IR35 Clearance required: Active Security Clearance is essential Key Skills / requirements Has designed, architecture and deployed … the Ping One and AWS Identity and integrated the 2. Familiar to SAML and OAUTH / OIDC Competent in the logical configuration of Ping One and AWS Identity cloud services. Technical Proficiency in IAM Tools: Expertise in using and configuring IAM tools such Ping Identity, and AWS Identity to … and manages multi-factor authentication (MFA), single sign-on (SSO), and other authentication methods to secure user access. Ensures compliance with regulatory requirements (e.g., ISO27001, Cyber Essentials) by helping to complete compliance trackers Defines and manages roles and permissions to streamline access control and ensure users have the minimum necessary More ❯

includes tasks such as BAU audits, policy and procedure creation and review, preparing for external audits and implementing controls in relation to ISO9001 and ISO27001 standards. This role is eligible for inclusion in the Company’s hybrid working from home policy. Preferred Skills, Qualifications and Experience ISO9001 Auditor qualification. Strong More ❯

and protects the digital employee experience. Trusted by thousands of enterprises managing millions of endpoints globally, Action1 is certified for SOC 2 and ISO 27001. The company is founder-led by industry veterans Alex Vovk and Mike Walters, American entrepreneurs who founded Netwrix, which has grown into a More ❯

a leader in document automation within the Salesforce ecosystem. Our solutions help enterprises manage document workflows, enabling seamless collaboration, automation, and compliance. With ISO 27001 and TISAX certifications, we ensure the highest standards in data security and operational integrity. As part of Ascendx, we are positioned More ❯

with Aureos Communication team. Support and inform the digital transformation strategy as it develops, supporting ACC related integrations and the rollout of other technologies / digital tools as required. Explore use case(s) and advocate for GIS use across the business as part of an enhanced digital strategy. Ensure … IT at all times and any development work is fully documented and approved. Data & Reporting - Ensure alignment between project data and the Data Warehouse / Aureos Reporting standards, supporting the development of appropriate reports / metrics. Identify and engage digital delivery support partners pending internal capability. Team Management … lessons. Support the execution of the Digital Transformation plan as it develops. Plan for and deliver ISO19650 certification. Work with Aureos IT to support ISO27001 certification efforts. Key Qualifications & Experience Essential Proven experience in Information Management in a senior role. Expertise in managing Common Data Environments (CDE) and implementing BIM More ❯