1 to 25 of 56 ISO/IEC 27001 Jobs in the Thames Valley

role is key in building and improving Primark's Cyber Security posture. Duties & Responsibilities Actively progress and improve Primark's cyber security posture with the delivery of agreed projects / initiatives aligned with industry best practice. Ensure project deliverables are aligned with the Cyber Roadmap with outcomes directly addressing strategic objectives / maturity gaps / audit points. … Advise and lead on solutions with our internal teams / outsourced partners, having a 'hands on approach' including the construction of business cases and contractual arrangements. Have a metric based approach with a structure to enable auditing and managing vendor performance. Coordinating resources, preparing delivery teams for kick-off and ensure effective completion of milestones, controlling scope and mitigating … defining, developing and managing implementation schedules Maintaining a roadmap of future initiatives, that effectively facilitates the prioritisation of delivery plans. Ensuring an ongoing focus on delivering the required quality / value for money and compliance with published standards and guidelines. Co-ordinates cross-functional team members, identifies resources needed, assigns and prioritises tasks / responsibilities and ensures deadlines More ❯

and evaluation of risk, as well as using GRC tools and guidance developed for Risk mitigation. Practical knowledge of information security standards and risk assessment frameworks such as ISO 27001, SOC 2, NIST 800-32 Strong knowledge of cyber controls, policies, and procedures. Experience of delivering metrics for senior level audiences. Demonstrate analytical and problem-solving … to work every day. And you'll never stop growing, whatever your level . Discover more reasons to connect with us, our people and purpose-driven culture at deloitte.co.uk / careers More ❯

Role: Senior Cyber Security Engineer (Cyber SME) Salary : Up to 70,000 Location: Reading / Birmingham - Hybrid (1 day / week in office) Be the Cyber Security Subject Matter Expert protecting the backbone of our business. Are you a highly skilled cyber security professional ready to take ownership of security engineering and infrastructure hardening? We're looking for … re Looking For Essential: Right to work in the UK. Proven experience in cyber security engineering, including vulnerability management, SIEM, WAFs, and secure infrastructure design. Strong knowledge of TCP / IP, firewalls, routing, access controls, and threat-based security approaches. Excellent communication skills with the ability to create and maintain technical documentation. Background in infrastructure / networks and … CCNA / CCNP, or similar certifications. Familiar with ITIL-based service delivery, security hardening, and working cross-functionally. Desirable: Degree in Computer Science or equivalent experience. Understanding of ISO27001, Cyber Essentials, and AAF frameworks. What We Offer Competitive salary up to 70,000 Hybrid working - only 1 day a week in the office 25 days holiday (plus option to More ❯

Role: Senior Cyber Security Engineer (Cyber SME) Salary : Up to £70,000 Location: Reading / Birmingham - Hybrid (1 day / week in office) Be the Cyber Security Subject Matter Expert protecting the backbone of our business. Are you a highly skilled cyber security professional ready to take ownership of security engineering and infrastructure hardening? We're looking for … re Looking For Essential: Right to work in the UK. Proven experience in cyber security engineering, including vulnerability management, SIEM, WAFs, and secure infrastructure design. Strong knowledge of TCP / IP, firewalls, routing, access controls, and threat-based security approaches. Excellent communication skills with the ability to create and maintain technical documentation. Background in infrastructure / networks and … CCNA / CCNP, or similar certifications. Familiar with ITIL-based service delivery, security hardening, and working cross-functionally. Desirable: Degree in Computer Science or equivalent experience. Understanding of ISO27001, Cyber Essentials, and AAF frameworks. What We Offer Competitive salary up to £70,000 Hybrid working - only 1 day a week in the office 25 days holiday (plus option to More ❯

support smarter, faster decision-making at every level of the firm. With a small but growing team, we're looking for someone ready to wear multiple hats-from business / data analysis to solution design, implementation, and testing. The core foundation is in place-now we need someone to help operationalise and scale it, turning potential into business value. … SQL queries and stored procedures, and formal database design methodologies. Experience in setting up monitoring and data quality exception handling. Strong data modelling experience. Experience managing and developing CI / CD pipelines. Experience with Microsoft Azure products and services, and proficiency in ETL processes. Experience of working with APIs to integrate data flows between disparate cloud systems. Strong analytical … Experience in semi / fully unstructured datasets and NoSQL environments Awareness of working in a regulated environment, with experience of data legislation and cyber security accreditations e.g., GDPR, ISO27001, Cyber Essentials. Expertise in Business Intelligence, ideally via Power BI for data visualization and reporting Use of DevOps (CI / CD) concepts to test, schedule, and deploy to a More ❯

SOC Tier 3 Analyst 6 Month contract initially Based: Remote / Reading - Hybrid. Max 3 days p / w onsite. Rate: Market rates p / d (via Umbrella company) We have a great opportunity with a world leading organisation where you will be provided with all of the support and development to succeed. A progressive organisation where … actions are taken to block further attacks. 5. Compliance and Risk Management: o Ensure all incident response activities align with industry standards, regulations, and best practices (e.g., NIST, ISO 27001, GDPR, HIPAA). o Work with legal and compliance teams to manage incidents within the scope of data privacy laws and regulations. Key Skills & Experience: o … methods. o Strong experience in handling complex cyber incidents (e.g., APTs, ransomware, data breaches). o Hands-on experience with SIEM platforms (e.g., Splunk, ArcSight, LogRhythm) and endpoint detection / response (EDR) tools. *Certifications (Preferred ): o Certified Information Systems Security Professional (CISSP) o Certified Incident Handler (GCIH, EC-Council) o Certified Forensic Computer Examiner (CFCE) o GIAC Certified Forensic More ❯

inclusion. The ideal candidate will have: Proven senior leadership experience in information security within large, complex organizations. Deep knowledge of information security standards and frameworks (e.g., CIS, NIST, ISO-27001). Experience managing PCI-DSS compliance across multiple payment channels. Strong understanding of GDPR and experience leading a privacy team. Experience leading and developing teams of specialists. Exceptional More ❯

Job Title: IT Security Manager Location: Hybrid in Buckinghamshire (2 days on-site) Job Type: Full-time, Permanent Salary: £60,000 - £67,000 + benefits Industry: Media / Broadcasting A leading Media / Broadcasting company based in Buckinghamshire are seeking an experienced IT Security Manager to join the Cyber Security team where you’ll mature the development of … Microsoft Security solutions, including Defender, Sentinel, Entra ID, and Microsoft Purview. Deep knowledge and practical application of security frameworks and standards including CIS, ISO 27001 / 27002, GDPR, DPA, and Cyber Essentials. Proven experience managing or working closely with Security Operations Centres (SOC), including incident response and threat detection. Demonstrable background in implementing and running … and risk-based security metrics. Ability to bridge security and IT operations teams, with effective stakeholder communication and collaboration. Security certifications such as CISSP, CISM, Microsoft Security (SC-100 / SC-200 / SC-300), or equivalent are highly desirable. Apply directly to learn more about this exciting opportunity or connect with me on LinkedIn to stay updated More ❯

support internal audits with robust systems and policies. • Incident & Change Leadership: Manage incidents and changes efficiently, providing strategic oversight on high-priority issues. • Financial Stewardship: Plan and manage Opex / Capex budgets, track spend, and identify cost-saving opportunities. You ll also lead on: • Cybersecurity Operations: Partner with our vCISO to manage 24 7 monitoring, vulnerability management, and secure … or higher) in Computer Science, Information Systems, Engineering, or related field. • MBA or postgraduate qualification (desirable). • ITIL v4 Managing Professional or ITIL Expert (mandatory). • Certifications in ISO 27001, COBIT, Microsoft Azure, Lean Six Sigma, Prince2, or SAFe Agilist. Leadership & Communication • Gravitas to influence regulators and auditors. • Exceptional stakeholder management and communication skills. • Commercial acumen … proud to be the only carbon negative pet insurer in the UK. What we offer: • 25 days annual leave which increases with service, plus bank holidays • Opportunity to buy / sell up to 5 days annual leave per calendar year • Pension and Life Assurance scheme • Access to 25% off insuring your pet with Agria. Friends and family are also More ❯

support internal audits with robust systems and policies. • Incident & Change Leadership: Manage incidents and changes efficiently, providing strategic oversight on high-priority issues. • Financial Stewardship: Plan and manage Opex / Capex budgets, track spend, and identify cost-saving opportunities. You’ll also lead on: • Cybersecurity Operations: Partner with our vCISO to manage 24×7 monitoring, vulnerability management, and secure … or higher) in Computer Science, Information Systems, Engineering, or related field. • MBA or postgraduate qualification (desirable). • ITIL v4 Managing Professional or ITIL Expert (mandatory). • Certifications in ISO 27001, COBIT, Microsoft Azure, Lean Six Sigma, Prince2, or SAFe Agilist. Leadership & Communication • Gravitas to influence regulators and auditors. • Exceptional stakeholder management and communication skills. • Commercial acumen … proud to be the only carbon negative pet insurer in the UK. What we offer: • 25 days annual leave which increases with service, plus bank holidays • Opportunity to buy / sell up to 5 days annual leave per calendar year • Pension and Life Assurance scheme • Access to 25% off insuring your pet with Agria. Friends and family are also More ❯

Support Technician to provide outstanding support for their client of 900 users based in Woodstock, Oxfordshire and offices around the UK. This role is a mixture of 3rd Line / infrastructure support, system maintenance tasks & project work and requires the technician to be flexible, agile and resourceful. Good communication skills are essential as are an attention to detail, the … through to completion Technical Skills and Qualifications Essential Security Infrastructure (Firewalls etc) Windows Desktop environments, including the latest Windows Version Windows Server (Apply online only) Microsoft Exchange Server 2013 / 2016 / Office 365 Networking – LAN, VLAN’s, Wi-Fi, WAN, Firewalls Virtualisation – VMware / Hyper-V Understanding of Information Security best practices Understanding of ITIL best … deployment Cloud Hosting (AWS, Azure) Experience with DR and Backups Technologies, in particular ArcServe Cloud Antivirud & Managed Networks Cloud managed telephony Cloud migration experience Microsoft Intune Cyber Essentials Plus & ISO27001 More ❯

across projects and meetings. Drive awareness through training, supplier reviews, and client security assessments. ?? What You Bring Strong knowledge of security tools and infrastructure: WAFs, SIEM, AV, firewalls, TCP / IP, and more. Familiarity with OWASP … zero-trust, SASE, and risk-based vulnerability management. A background in infrastructure or networks. Working towards or holding certifications like CISSP, GCIA, Security+, CCNA / CCNP. Understanding of ISO27001, Cyber Essentials, and AAF frameworks. Excellent communication skills and the ability to create clear technical documentation. ?? Why Join? Impactful Work: Your expertise will directly influence the organisation's security posture. More ❯

including NIST, PCI-DSS, GDPR, COBIT, ISO 27001 and Cyber Essential compliance to any new or existing programme of work. Prepare and support internal and / or external compliance audit activities. Manage remediation of any audit (internal & External) non-conformities. Ensure security policies (on a risk-based approach) are produced, signed off by relevant stakeholders … up-to-date knowledge of legal & regulatory requirements impacting Technology and Operations and its Partners. Apply comprehensive knowledge of legal, regulatory obligations, and industry best practices (e.g., NIST, COBIT, ISO27001, PAS 555) to ensure compliance with technology standards. Schedule and review risk and compliance audits; direct issues to appropriate resources for investigation and resolution. Our people make us who we … our customers. LI-KS1 Possess one of the Risk or security certifications (CISSP, CRISC, CISM). Have good knowledge and practical experience of NIST, PCI-DSS, GDPR, COBIT, ISO 27001, or Cyber Essentials. Previous experience in a similar role, with the ability to work in a dynamic and changing environment. Excellent team player who can influence More ❯

and management response is well defined. Engage risk review and assurance activities across existing suppliers. Provide IT and business advice on aspects of security standards and regulations such as ISO27001, NIST CSF, PCI DSS, NISD and NIS2. Engage with I&T system owners to provide training in relation to information security, cyber resilience, phishing, and facilitation of cyber scenario desktop … standards, controls and consequences across both IT and manufacturing environments in manufacturing or similar industries. Experience working with information security standards and frameworks such as and regulations such as ISO27001, NIST CSF, PCI DSS, NISD and NIS2. Proven analytical, problem-solving, planning, project delivery and supplier work packages management skills. Demonstrable experience of engaging across all levels of a company … in relation to information and cyber security risks. Working towards or achieved professional certifications (ISO27001 lead, ISC2, CISM or CRISC) advantageous. Benefits Competitive salary Company bonus Pension scheme Life assurance Income protection 25 days holiday plus bank holidays Electric Car / Bike to Work schemes More ❯

27001 ITIL certification is considered an asset Role and Responsibilities Role and Responsibilities Create reports and analyse performance trends to identify potential improvement areas and / or performance deficiencies Provide analytical value creation initiatives to enable prioritization effort Understand the scope and relevant attributes of all current Service Levels and KPIs, and have demonstrated knowledge … SSAE16 and ISAE3402. Work with the rest of the hosting team to deploy effective security policies, processes and procedures in line with industry benchmarks and regulatory requirements including ISO 27001. Deploy appropriate supporting tools and processes are implemented to enable effective monitoring of the hosted platforms in line with contractual obligations, SLAs and KPIs. Ensure quality, up-to More ❯

Job title Policy Support Lead Ref 41381 Division Digital Location Hybrid - Clearwater Court - RG1 8DB Contract type Permanent Full / Part-time Full-time Salary Competitive salary up to £60,000 per annum Job grade B Closing date 15 / 07 / 2025 The Policy Support Analyst will be responsible for developing, implementing, and maintaining security policies … Policy Support Analyst Security Standards Management: Develop and maintain comprehensive security policies, standards and procedures across the organisation. Align all standards with applicable regulatory requirements and frameworks (e.g., ISO 27001, GDPR, NIS-R). Review and update standards regularly in response to emerging threats and regulatory changes. Governance & Compliance: Oversee the exception management framework, including reporting More ❯

now looking for an experienced and dynamic Senior Cyber Security Engineer to join our vibrant office with hybrid working. Senior Cyber Security Engineer - Responsibility: Carry out daily security engineering / operation tasks under an ITIL framework Develop an understanding of the threats, risks, vulnerabilities and evolving attack vectors facing the business. Using strong technical knowledge, continuously analyse and make … recommendations to implement effective security controls, system hardening and security improvement projects with a particular focus in application / web hosting security. Assist in the management of patching, vulnerability analysis and penetration testing to ensure recommendations are risk assessed and implemented in a timely manner Senior Cyber Security Engineer - Skills: Experience in Security Engineering, Network Security, and / … protocols such as networks, domain management, and virtualized environments. Holds or is working towards certifications like CISSP, SANS GCIA, CompTIA Security+, CCNA / CCNP, or similar. Knowledge of ISO27001, Cyber Essentials, and AAF frameworks is a plus. Due to the volume of applications received for positions, it will not be possible to respond to all applications and only applicants More ❯

to be a multi award-winning workplace, recognized by Best Companies as Best Company To Work For in the UK, Tech, and the South East in 2023. We are ISO27001 and ISO9001 certified by UKAS, a CREST approved penetration testing and SOC company, and hold IASME Cyber Essentials Certification and Cyber Essentials Plus certification. Learn more about our awards here More ❯

AI Security Architect 6 Month contract initially Based: Remote / Reading - Max 2 days p / w onsite Rate: £500 - £550 p / d (via Umbrella company) We have a great opportunity with a world leading organisation where you will be provided with all of the support and development to succeed. A progressive organisation where you can … really make a difference. We a great opportunity for an AI Security Architect Key Responsibilities: • Develop and implement comprehensive AI / ML security strategies, policies, standards and guidelines to protect organizational assets and ensure the secure operation of AI and ML systems. • Develop and own robust enterprise security architecture for AI / ML systems, CI / CD … and data pipelines. • Participate in enterprise-wide architecture initiatives for AI / ML. Understand the workflow and pipeline architectures of ML and deep learning workloads. • Conduct security risk assessments and threat modelling for AI / ML and other business projects performed thorough design reviews and security assessments of architectures and designs, identifying vulnerabilities, threats, and risks, and providing More ❯

We are searching for a Senior Software Security Architect / Senior Application Security Architect for a marketing leading and award-winning technology and data driven business. The position is offered on a remote basis. The role is hands-on and very software engineering focused - you will be responsible for establishing a secure SDLC and 'Secure by Design' approach / … of authority inside the organisation. Interfacing with customers to ensure that security obligations are managed and met appropriately. About You To be considered for this Senior Software Security Architect / Senior Application Security Architect role you will be able to demonstrate a successful track record and in-depth practical experience of the Software Development Life Cycle (SDLC) - you will … and you will have a strong understanding of multiple programming languages, such as, C++, C, C#, .NET Core, Java, JavaScript, Node.js, Angular, React or similar. You will also have / be: Experience in creating application security strategies, standards, best practices, and providing direct input to project teams and business stakeholders is essential. Experience working with security issues in software More ❯

Storage SME ASAP Start until EOY Wokingham (3 Days per Week Onsite) £515p / d max via Umbrella The successful candidate will hold or be eligible for SC Clearance Role Description: - Storage Architecture & Strategy: Design, develop, and implement advanced storage solutions that align with business objectives. - Performance Optimisation: Monitor and enhance storage performance and availability while ensuring data integrity … GCP). - Disaster Recovery & Backup: Develop and implement robust backup, recovery, and disaster recovery strategies. - Security & Compliance: Ensure storage security aligns with industry standards and regulatory requirements (GDPR, ISO 27001, etc.). - Collaboration: Work closely with infrastructure, cloud, and application teams to integrate storage solutions effectively. - Troubleshooting & Support: Provide expert-level support and resolve complex storage … Technical Skills: Proficiency in storage technologies (NetApp, Dell EMC, Pure Storage, HPE, etc.), cloud storage solutions, and virtualization. - Certifications (Desirable): Vendor certifications (e.g., NetApp Certified, Dell EMC Proven, AWS / Azure Storage Certifications). - Analytical Skills: Strong ability to diagnose and resolve complex technical issues. - Communication Skills: Ability to explain technical concepts clearly to non-technical stakeholders. More ❯

Reading Duration: 6 months (with potential for extension) Rate: Inside IR35- Flexible The Role As an AI Security Architect, youll design and implement enterprise-wide security strategies for AI / ML systems, ensuring alignment with best practices, emerging threats, and regulatory requirements. Youll work hands-on and collaboratively with cross-functional teams to embed security into the entire AI … / ML lifecycle from data pipelines to model deployment. Key Responsibilities Architect and implement security controls for AI / ML systems, data pipelines, and CI / CD processes. Conduct security risk assessments and threat modelling on AI / ML workflows. Drive secure coding practices and integrate security into MLOps / DevOps pipelines. Address challenges such … evolving AI regulations (EU AI Act, NIST AI RMF, GDPR, etc.). Support adversarial testing, model bias assessments, and trustworthiness evaluations. Contribute to training and awareness initiatives on AI / ML security best practices. Act as a key stakeholder in AI-related incident response and mitigation. Your Profile Essential Experience & Skills Proven experience as a Security Architect with direct More ❯

Architect (Security), you'll work directly with major enterprise customers, playing a strategic role in advisory, design, and technical delivery. What you'll do Provide expert guidance across SASE / SSE, PAM, detection, and data centre security technologies Lead customer engagements, providing advisory services, architecture guidance, roadmap planning, and solution governance Define and document high-level solution designs, technical … architecture engagements at the enterprise level Expertise in Secure Access Service Edge (SASE) and Secure Service Edge (SSE), especially with Zscaler Experience in at least three enterprise Zscaler SSE / SASE projects Ability to provide presales advisory, requirements gathering, and high-level solution design Strong understanding of Zscaler architecture and troubleshooting Broad knowledge across IAM, SSO, MFA, PAM, and … IDaaS Strong background in core security technologies such as firewalls, IDS / IPS, endpoint protection, and encryption Comfortable working with cloud platforms and designing secure architectures across Azure, AWS, or Google Cloud Ability to lead technical conversations, influence customer decisions, and deliver trusted advisory services Existing SC clearance or eligibility to apply Desirable Skills & Certifications Familiarity with industry security More ❯

AI Security Architect 6 Month contract initially Based: Remote / Reading - Max 2 days p / w onsite Rate: £500 - £550 p / d (via Umbrella company) We have a great opportunity with a world leading organisation where you will be provided with all of the support and development to succeed. A progressive organisation where you can … really make a difference. We a great opportunity for an AI Security Architect Key Responsibilities: * Develop and implement comprehensive AI / ML security strategies, policies, standards and guidelines to protect organizational assets and ensure the secure operation of AI and ML systems. * Develop and own robust enterprise security architecture for AI / ML systems, CI / CD … and data pipelines. * Participate in enterprise-wide architecture initiatives for AI / ML. Understand the workflow and pipeline architectures of ML and deep learning workloads. * Conduct security risk assessments and threat modelling for AI / ML and other business projects performed thorough design reviews and security assessments of architectures and designs, identifying vulnerabilities, threats, and risks, and providing More ❯

Own cloud operations across Azure and drive platform performance and cost optimisation Oversee security engineering, audits, pen testing, and compliance Lead change and incident management and support services (24 / 7) Manage end-user tech, corporate apps (e.g. ServiceNow, Salesforce), and software licensing Collaborate with exec leadership weekly to drive strategy and improvement We're looking for someone who … Proven experience in IT operational leadership roles Strong knowledge of Azure, DevOps / cloud engineering, and platform reliability Experience driving observability and monitoring strategies across large-scale services Good working knowledge of cybersecurity practices, frameworks (NIST, ISO 27001, Cyber Essentials), and audit processes Vendor, contract, and license management experience across software and infrastructure suppliers Skilled More ❯