176 to 200 of 600 ISO/IEC 27001 Jobs in the UK

Regional M&E Lead - Central Region Location: Central Region, UK (Requires regional travel) Reporting To: Director of DC Build and Engineering Hours: 37.5 hours / week, Mon-Fri (Plus occasional out-of-hours support) About Our Client Our client is the UK's leading edge infrastructure provider, operating … Analysis. Candidate Profile Our client values potential and transferable leadership experience; you do not need to meet every single requirement to apply. Qualifications: BA / BS degree or equivalent practical industry experience. Technical Training: Formal electrical certification (e.g., City & Guilds) and a full UK driving licence. Certifications: AP15 qualification ...

IR35 paying from £400 - £600 a day. This role is hybrid to Havant and will support our client in the ongoing management of ISO 27001 accreditation. Ensure compliance with all required standards, controls, and audit cycles Act as the key point of contact for certification bodies … Solid background in risk management, controls, and regulatory compliance Ability to engage with senior stakeholders across business and technology Desirable Experience Experience in utilities / energy or regulated industries Exposure to supplier assurance and third-party risk Familiarity with ITSM / ServiceNow environments Please apply today with your ...

including monitoring, vulnerability management, readiness and control health reporting. Act as Bronze Incident Manager for cyber incidents by coordinating response and escalating to Silver / Gold when required. Manage cyber risk within agreed appetite by assessing, treating and reporting risks with clear evidence and metrics. Set cybersecurity governance … domains, including Identity, third‐party security, AI risk and data sovereignty. Translate cyber risk into prioritised actions and report clearly to OpCo / ExCo / Audit and other forums. Manage the outsourced Managed Security service provider (MSSP) and specialist suppliers by setting expectations, reviewing SLAs / KPIs ...

more quickly and widely adopt emerging technologies while ensuring the integrity of their intellectual property; information flow during disaster response scenarios, and zero‐trust / least‐privilege environments for M&A, attorney‐client privileged communications, etc. And we’ve only scratched the surface. At our core, we're driven … build and inform secure development practices. What you’ll do Own day‐to‐day compliance across the business, ensuring our existing frameworks (CE / CE+, SOC 2) are maintained without adding unnecessary overhead Lead the implementation of ISO 27001 from the ground up, shaping ...

audit requirements. Work closely with the Compliance Manager to strengthen information security processes, policies, and controls, ensuring alignment with standards such as ISO 27001 and supporting ongoing audit and certification activities. Manage day‐to‐day relationships with third‐party security partners, ensuring findings and recommendations … days paid annual leave 5 days paid sick leave which if unused gets added to your annual leave the next year Enhanced maternity / paternity leave and assistance in returning to work Contributory pensionSupport in continuous learning and self‐development Simplyhealth scheme including Health care cash back 24 hour ...

supply chain. Execute vendor security assessments by collecting, analysing, and documenting supplier control evidence, audit reports, and risk findings against defined frameworks including ISO 27001 and NIST CSF. Identify and document third-party security risks, recommending proportionate risk treatment options aligned to JET's risk appetite. … vendor reviews end-to-end, including evidence collection, gap analysis, and documented findings. Working knowledge of security frameworks such as NIST CSF, ISO 27001, or CIS Controls applied in a product or engineering context. Ability to communicate security risk clearly to both technical and non-technical ...

position: Execute vendor security assessments by collecting, analysing, and documenting supplier control evidence, audit reports, and risk findings against defined frameworks including ISO 27001 and NIST CSF. Identify and document third-party security risks, recommending proportionate risk treatment options aligned to JET's risk appetite. Support … vendor reviews end-to-end, including evidence collection, gap analysis, and documented findings. Working knowledge of security frameworks such as NIST CSF, ISO 27001, or CIS Controls applied in a product or engineering context. Ability to communicate security risk clearly to both technical and non-technical ...

with technical teams across the domain & drive the security solution deployment.Should have experience in configuring and managing security products such as firewalls, intrusion detection / prevention systems (IDS / IPS), SIEM (Security Information and Event Management) systems, Log Collector and Identity Management solution.Should have customer facing skills … least in one of the following solutions: Logging, PKI Infrastructure, Identity, and access management, Security testing in telecom networks.Experience with 3GPP 5G Release 15 / 16 will be a plus.Security certifications (e.g., CISSP, CISA, CCIE, CISM) or knowledge of security frameworks and best practices (e.g., NIST, ISO ...

with the future state cloud-first strategy and architecture. Define and document cloud service security baselines that align with modern security frameworks (CIS, CSA, ISO27001, etc.). Define and document repeatable cloud service patterns. Drive adoption and migration from traditional technology platforms to public cloud services. Recommend tools and methodologies … Proven experience working in DevOps teams within a mission‐critical environment. Working experience in Agile methodologies and have actively managed scrums. Experience with CI / CD, Infrastructure-as-Code management and governance. Passionate about innovation and leading technological change. Passionate in creating a collaborative, caring and safe environment ...

delivering best-in-class solutions. Ensure governance and decision-making processes are effective. Have extensive experience in standards such as PCI-DSS, OWASP, ISO 27001, ISO 9001, and others, championing adherence and implementation. People Help … teams adopt good practices and techniques to deliver quality software at pace. Advocate for delivery methods (especially agile) and their impact on technology planning / strategy. Ensure teams consider risks, impacts, and consequences of decisions. Assist recruitment teams in talent acquisition aligned to the needs of client projects ...

Lead Cyber Security Strategy & Oversight across MSI UK. Governance, Risk & Compliance: Ensure adherence to DSPT, CAF, CE+, ISO 27001, GDPR / DPA. Security by Design: Support secure architecture, systems design, and resilience planning. Incident Response: Act as primary escalation point; lead investigations and remediation. Policy … improvements to leadership. Skills & Experience 5+ years in cyber security with leadership or ownership of security functions. Strong knowledge of network, application, cloud (AWS / Azure), and endpoint security. Hands-on experience with SIEM (e.g., Arctic Wolf), Fortinet firewalls, Nessus, and vulnerability remediation. Experience working with SOC teams ...

work, including technical, financial and quality aspects. Establishes organisational objectives and assigns responsibilities. Skills & Qualifications : NIST Cybersecurity Framework ISO 27001 / 27002 CIS Critical Security Controls Zero Trust Architecture principles NIS 2 DEFSTAN 05-138 If you would like to be considered for this role ...

successful in this role: Have 5+ years of product management experience, with a proven track record of delivering high‐quality SaaS / B2B and AI products Have strong technical skills and experience working directly with LLMs, including writing and iterating on prompts, evaluating outputs, and driving systematic quality improvements … companies. Final offer amounts are determined by multiple factors and may vary based on candidate location, skills, depth of work experience, and relevant licenses / credentials. #LI-remote At Vanta, we are committed to hiring diverse talent of different backgrounds and as such, it is important ...

Security Test Engineer Location: 4 days per wk in Glasgow / 1 day from home Salary: Circa 75k-80k + Benefits Security Test Engineer required by a Global Engineering Company! You'll be responsible for ensuring the security robustness of software and firmware components for their product portfolio. … role also involves conducting threat compliance modelling, security testing, and vulnerable assessments Essential: Minimum 5 years of experience in software and / or firmware testing Engineering degree in Software, Computer Science, Cybersecurity or demonstrated knowledge. Proficiency with tools: Burp Suite, OWASP ZAP, Nessus, Nmap Fortify, Checkmarx, Metasploit, Wireshark. Knowledge ...

Security Test Engineer Location: 4 days per wk in Glasgow / 1 day from home Salary: Circa 75k-80k + Benefits Security Test Engineer required by a Global Engineering Company! You'll be responsible for ensuring the security robustness of software and firmware components for their product portfolio. … role also involves conducting threat compliance modelling, security testing, and vulnerable assessments Essential: Minimum 5 years of experience in software and / or firmware testing Engineering degree in Software, Computer Science, Cybersecurity or demonstrated knowledge. Proficiency with tools: Burp Suite, OWASP ZAP, Nessus, Nmap Fortify, Checkmarx, Metasploit, Wireshark. Knowledge ...

organisations based in Portsmouth. Knowledge: Knowledge of working and designing using security frameworks o NIST Cybersecurity Framework o ISO 27001 / 27002 o CIS Critical Security Controls o Zero Trust Architecture principles o... CRWG1_UKTJ ...

Secret Detection scanning tools.* Manual penetration testing of web applications (backend and frontend).Manual penetration testing skills in the domains of cloud infrastructure, embedded / OS or mobile are desirable.* Write custom scripts or unit test cases to check for vulnerabilities or broken / missing security controls.* Recommend … product security requirements and more general best practices to provide guidance to development teams.* Assist the program area with implementing a secure Continuous Integration / Continuous Delivery (CI / CD) pipeline utilizing DevSecOps principles and practices to increase automation.* Implement automated security controls as part of CI / ...

Specialist - £592 PD (Inside IR35) – 6 Month Contract – Hybrid 2 / 3 Days in Oxford – BPSS Required Overview: We are seeking an experienced Privileged Access Management (PAM) Specialist to join a major UK government research organisation on a long-term programme of work. This is a hands-on technical … Responsibilities: Implement, configure, and manage enterprise PAM toolkits. Configure and support Privileged Remote Access solutions. Manage credential vaulting, automated password rotation, and check-in / check-out workflows. Configure and maintain session monitoring and recording. Support discovery, onboarding, and lifecycle management for service accounts. Onboard Windows, Linux / ...

high-quality assessment reports and attestations. This position is a remote position that must be located in the United Kingdom (England, Scotland, Wales, and / or Northern Ireland). Coalfire has an office in Manchester, UK so there is opportunity to work in the office in a hybrid capacity … matter expertise through continuous professional development. Travel up to 30% as required What You'll Bring 5+ years in IT security, payments security and / or application development Bachelor's degree or equivalent combination of education and work experience Knowledge of industry cryptography standards such as ISO ...

Management to deliver client requirements on time. Maintain a current risk register and ensure all site documentation is accurate and up to date. What / who we're looking for: Full UK driving licence and access to own vehicle. Data Centre industry experience, with strong technical understanding of data … with strong commercial awareness (and ideally experience hosting site tours.) People management experience. Knowledge of relevant UK regulations, such as H&S legislation, ISO 27001, ISO 14000, PCI. We encourage applications even if you don’t meet every single requirement - our Client values potential ...

Management to deliver client requirements on time. Maintain a current risk register and ensure all site documentation is accurate and up to date. What / who we're looking for: Full UK driving licence and access to own vehicle. Data Centre industry experience, with strong technical understanding of data … with strong commercial awareness (and ideally experience hosting site tours.) People management experience. Knowledge of relevant UK regulations, such as H&S legislation, ISO 27001, ISO 14000, PC Pulsant offers: A supportive work environment with a focus on career growth, development, work life balance ...

Main Responsibilities Duties will include: Setting and personally delivering target architecture for the ECP data estate the data warehouse, data hub, data lake, raw / ODS layers, dimensional model, audit and schema-change tracking, and the load schedules that tie them together. Hands-on T-SQL, stored procedure … framework and PowerShell development at expert level partition design and partition-aligned indexing, clustered / nonclustered index strategy, deduplication, parallel-run cutovers, schema migration, performance tuning of high-impact production queries. Driving the in-flight ETL replatform replacing legacy SSIS jobs with a table-driven, parallel ...

Defender for Cloud, and Wiz to enhance cloud posture, workload protection, and risk visibility. Strengthen identity protection through Entra ID, Conditional Access, MFA, PIM / JIT, and Defender for Identity. Lead the automation of security operations using Sentinel Playbooks, Logic Apps, Power Automate, and advanced SOAR workflows. Drive proactive … Based Requirements) 1. Microsoft Sentinel & Advanced Analytics (You will use and lead with these skills daily) Deep expertise in Microsoft Sentinel architecture, tuning, SIEM / UEBA, KQL, custom detections and threat hunting. Strong hands‐on experience with: Agentic AI for Security Sentinel Data Lake (pipelines, analytics, cost optimisation ...

solutions. Vice President Expectations Contribute or set strategy, drive requirements and make recommendations for change. Plan resources, budgets, and policies; manage and maintain policies / processes; deliver continuous improvements and escalate breaches of policies / procedures. If managing a team, define jobs and responsibilities, plan for the department … future needs and operations, counsel employees on performance and contribute to employee pay decisions / changes. Lead a number of specialists to influence the operations of a department, in alignment with strategic and tactical priorities, while balancing short and long term goals and ensuring budgets and schedules meet corporate ...

design criteria). Framework Familiarity: Familiarity with the roles of the Prime Contractor, System Designer Authority (SDA), and Co-ordinating Installation Design Authority (CIDA / SCIDA). Systems & Standards: Solid knowledge of Health & Safety and Quality Management Systems (such as ISO 9001, ISO … ISO 27001). Logistics & Flexibility: Ability to split time effectively between the head office, remote working, and customer sites. Willingness to undertake occasional out-of-hours work, overnight stays, and European travel. What can they offer in return? In addition to acompetitive salary the business also ...