251 to 275 of 599 ISO/IEC 27001 Jobs in the UK

objectives, regulatory obligations, and risk appetite. Lead the development and maintenance of Information Security policies, standards, and controls, ensuring alignment with frameworks such as ISO27001, SOC2, and NIST CSF. Lead compliance efforts across GDPR, PCI DSS, and other applicable regulations. Embed secure‐by‐design principles and DevSecOps practices across engineering … level. Strong technical grounding across key security domains: network, cloud, endpoint, application, and data security. Experience managing or working with vulnerability management tools, SIEM / SOC environments, and incident response processes. Excellent communication and stakeholder management skills, with the ability to influence at all levels of the organisation. Sound ...

development * Strong stakeholder engagement and communication skills * Ability to work within complex, fast-moving consulting environments Desirable Experience * Hands-on experience within cloud and / or network security * Exposure to UK Government, Defence, or regulated sector environments * Certifications such as CISSP, SABSA, or equivalent * Current UK Security Clearance … / DV) or eligibility to obtain clearance What's on Offer * Opportunity to work on nationally significant programmes * Access to leading technologies, training, and global expertise * Collaborative and inclusive working environment * Excellent career progression and professional development opportunities * Hybrid working and competitive salary / package ...

Location: Remote / Redheughs Rigg, Edinburgh EH12 9DQ, UK job type: Permanent / Full-time Sector and subsector: IT | Cybersecurity Salary: Competitive salary Company Description: At Quorum Cyber, we're on a mission to help good people win.Founded in Edinburgh in 2016, we're one of the fastest … configuration improvements, escalating complex design decisions to the Lead Cloud Security Consultant when required. Produce delivery artefacts including discovery outputs, recommendations, implementation plans, HLD / LLD contributions, configuration records and transition-to-service documentation. Advise clients on cloud security good practice, governance, policies, operational improvements and Microsoft security capability ...

hands-on technical expertise across Microsoft technologies, including: Microsoft Entra ID (Azure AD) Hyper-V Microsoft Purview Intune Azure Networking Experience supporting Service Desk / IT support functions Knowledge of Change and Incident Management processes Strong communication skills and ability to work across technical and non-technical teams Ability … e.g., AZ-104, AZ-305) Familiarity with frameworks such as ISO 27001, Cyber Essentials , or ITIL Experience with Microsoft 365 / Azure environments and migrations Personal Attributes Proactive and detail-oriented Strong problem-solving skills Collaborative team player Interest in mentoring and supporting others Package ...

What we require: Experience in a Cyber Security Engineer, SOC Analyst, or similar security-focused role. Hands-on experience with Microsoft Defender (Endpoint and / or O365 security). Experience using Rapid7 SIEM or a comparable SIEM platform for alerting and investigations. Experience managing or supporting Sophos Antivirus … Good working knowledge of Windows environments and basic networking concepts. Strong documentation, reporting, and communication skills. Practical experience with security tools such as IDS / IPS, Metasploit, Nexpose, Nmap, Nessus, Wireshark, L0phtCrack, John the Ripper, or similar. Familiarity with recognised information security frameworks such as ISO 27001 ...

experienced Cloud Security Engineer, your working day will include but not be limited to: DevSecOps & SDLC Champion integration of security testing into CI / CD pipelines across all development teams and usage of automated security gates: SAST, DAST, dependency scanning, secrets detection Enable self-serve security tooling for development … coding standards, ethical hacking techniques, network security and risk analysis Understanding of managing Secure Development Lifecycle and Vulnerability Management. Understanding and practical experience of ISO27001:2022 controls and audit processes Desirable AWS Security Specialty or similar certification Experience in regulated environments (healthcare, financial services) Familiarity with NHS DSPT Technical knowledge ...

Required Strong understanding of cybersecurity principles and risk management Experience working with security architecture and enterprise solution design Knowledge of technologies such as: IAM / IDAM Privileged Access Management (PAM) Single Sign-On (SSO) Network Security Encryption technologies Understanding of infrastructure, architecture methodologies and secure design principles Experience with … stakeholder engagement and communication skills Ability to learn quickly and adapt within fast-paced environments Desirable Experience Hands-on exposure to Cloud Security and / or Network Security Security certifications such as CISSP, SABSA or equivalent Existing UK Government Security Clearance (SC / DV) Whats on Offer Competitive ...

employment legislation Delivering proactive, practical HR advice that balances risk with commercial reality Ensuring consistent application of established HR processes aligned to ISO 9001, ISO 27001 and BSI standards XMA has built a strong, structured HR framework over recent years. Your role? Champion it. ...

facing technical role Experience with private cloud infrastructure (Nutanix, VMware, Proxmox, OpenStack) Knowledge of public cloud platforms (AWS, Azure, GCP) Solid networking expertise LAN / WAN, firewalls, VPNs, load balancing Understanding of security and compliance frameworks (ISO 27001, GDPR, NIST) Strong communication and stakeholder management … skills with commercial awareness Cloud / architecture certifications are a bonus Salary: £75,000 depending on experience ...

facing technical role Experience with private cloud infrastructure (Nutanix, VMware, Proxmox, OpenStack) Knowledge of public cloud platforms (AWS, Azure, GCP) Solid networking expertise – LAN / WAN, firewalls, VPNs, load balancing Understanding of security and compliance frameworks (ISO 27001, GDPR, NIST) Strong communication and stakeholder management … skills with commercial awareness Cloud / architecture certifications are a bonus Salary: £75,000 depending on experience ...

degree or above in Information Security, Computer Science, Information Technology or a related discipline. Professional certifications such as CCIE, HCIE, CISSP, CISM, CISA or ISO27001 Lead Implementer are highly desirable. Relevant experience in network, information security, cyber security or IT risk management, preferably within the financial services industry. Experience … developing and implementing information security governance frameworks. Strong understanding of information security standards and frameworks such as ISO 27001, NIST Cybersecurity Framework or CIS Controls. Good knowledge of UK regulatory expectations related to cyber security, operational resilience and outsourcing risk. Understanding of banking IT environments including ...

implementing modern authentication standards (FIDO2, WebAuthn, SAML, OAuth 2.0, OpenID Connect). Practical experience securing macOS, Windows and Linux endpoints using MDM and EDR / XDR tooling. Experience operating SIEM and / or SOAR platforms and tuning detection logic. Experience with vulnerability management and patch governance. Ability … applications into K8 and Docker environments Data Loss Prevention (DLP) and SaaS security governance. Advanced detection engineering or SOAR playbook development. Experience supporting ISO 27001 or SOC 2 audits. Relevant certifications (e.g. CISSP, CISM, GIAC). Workplace & Benefits At Deliveroo we know that people ...

Description We are looking for an experienced SOC Operations Technical Lead to manage and mentor a team of SOC analysts in a 24 / 7 security operations environment. The role combines technical leadership, incident response, threat hunting, client engagement, and operational oversight within an MSSP environment. The ideal candidate … will have strong hands-on experience with SIEM, EDR / XDR, SOAR, threat intelligence platforms, and advanced security operations. Responsibilities include leading investigations, improving SOC processes, tuning detections, mentoring analysts, supporting incident escalations, and ensuring high-quality security monitoring services. Key Requirements 7+ years of Security Operations experience with ...

supplier performance against SLAs and KPIs Overseeing the IT helpdesk, escalations, and 2nd line support Managing Microsoft environments including Office 365, Azure / Entra, SharePoint, and security platforms Supporting server, infrastructure, and user access management Coordinating IT equipment, site setups, and digital improvement initiatives Administering ERP systems and maintaining … governance / documentation Supporting cybersecurity compliance including Cyber Essentials and ISO 27001 principles The ideal candidate will have strong experience in IT service delivery, supplier management, Microsoft cloud technologies, infrastructure support, and security governance. Experience with automation, PowerShell scripting, disaster recovery, and business continuity ...

knowledge of Windows Server, Microsoft 365, Active Directory and Entra ID Experience with endpoint management tools (e.g. Intune, Autopilot) Understanding of networking fundamentals (TCP / IP) Experience with patching, system hardening, and vulnerability remediation Strong communication skills with both technical and non-technical users Desirable Experience with Cyber Essentials … / CE+ Exposure to Azure cloud environments VMware, backup technologies (e.g. Veeam), or firewall technologies Knowledge of ISO 27001 or ITIL practices ...

Cyber Security Manager / Senior Engineer is responsible for security operations, risk management, incident response, policy development and user awareness. The role will manage external 3rd party and internal virtual resources. Client Details The client is a well-established, multi-site professional services organisation operating at national scale. With … language Experience working with SIEM platforms and security operations functions, including third-party SOCs Knowledge of relevant regulatory and compliance frameworks (e.g. GDPR, ISO 27001 or similar) Ability to engage confidently with senior stakeholders and influence outcomes across technical and non-technical audiences Relevant security certifications ...

week. We are happy to discuss flexible working! Top 3 skills needed for this role: Information Security Governance & Risk Leadership Regulatory & Framework Expertise (ISO27001, GDPR, NIST) Stakeholder Communication & Security Culture Influence What this role is all about: As our Senior Information Security Officer, youll drive a business-wide security agenda … Governance team, and ensure our security posture not only protects but enables the business to thrive. Key Actions Lead the continuous improvement of Vitalitys ISO27001 framework and Information Security Management System (ISMS), ensuring ongoing compliance Deliver key security initiatives that bring the Information Security Strategy to life and drive measurable ...

modern digital environment ** Experience with Microsoft 365, Azure Active Directory, and ideally Microsoft Purview ** Scripting capability in PowerShell ** Familiarity with frameworks including NIST CSF, ISO27001, and GDPR ** Security certifications such as CISSP or CISM (advantageous) ** Azure certifications such as AZ-500 or SC-300 (advantageous) Don't worry ...

security architecture artifacts. Oversee the development and implementation of security engineering best practices and standards. Identify and implement automation opportunities across cloud provisioning, CI / CD pipelines, and policy enforcement. Coordinate and manage cyber engineering projects, ensuring timely delivery and quality. Manage and prioritise an engineering backlog using Agile … years of experience in cyber security, with at least 3 years focused on cloud security. Experience integrating security-as-code controls into CI / CD pipelines using platforms such as Azure DevOps, GitHub, Azure Policy, or equivalent technologies. Proven experience designing and implementing security solutions with Azure and M365 ...

governance, and implementation Contributing to wider business initiatives including client growth and solution development What We’re Looking For Strong background in Operational Technology / Industrial Cyber Security Experience operating at a senior or principal consultant level, leading complex engagements In-depth understanding of industrial control systems, SCADA … networks Practical experience performing risk assessments across IT / OT environments Familiarity with industry standards and frameworks such as: IEC 62443 NCSC CAF NIST CSF ISO 27001 Knowledge of industrial communication protocols and OT networking concepts Ability to balance security with safety ...

Cyber Risk & Compliance Analyst | £60,000 | London Hybrid | 12 Month FTC Location: London / Hybrid Salary: £60,000 Overview: An excellent opportunity has arisen with a global FinTech organisation for a Cyber Risk & Compliance Analyst. This role will support the development and delivery of the organisation’s cyber security … methodologies, and security controls. Experience supporting risk assessments, audits, compliance reviews, or control testing activities. Knowledge of security and compliance frameworks such as ISO 27001, NIST, SOC2, or GDPR. Ability to analyse technical risks and communicate findings clearly to technical and non-technical stakeholders. Desirable: Experience ...

designs, network diagrams, and sizing specifications Align infrastructure designs with customer IT policies, security standards, and operational constraints DevOps & Deployment Own and optimise CI / CD pipelines to support consistent, automated software delivery Manage build, release, and deployment processes across development, staging, and production environments Implement Infrastructure as Code … root cause analysis for security and infrastructure-related events Monitoring, Reliability & Support Implement monitoring, alerting, and observability across infrastructure and applications Define SLAs / SLOs and ensure systems meet availability and performance requirements Provide 3rd line support and escalation for complex infrastructure issues Conduct capacity planning, performance tuning ...

Experience Required Experience in a Cyber Security Engineer, SOC Analyst, or similar security-focused role. Hands-on experience with Microsoft Defender for Endpoint and / or Microsoft 365 Defender. Experience using Rapid7 SIEM or a comparable SIEM platform for monitoring and investigations. Experience managing or supporting Sophos Antivirus … cause. Good understanding of Windows environments and core networking concepts. Strong documentation, reporting, and communication skills. Practical experience with security tools such as IDS / IPS, Metasploit, Nexpose, Nmap, Nessus, Wireshark, L0phtCrack, John the Ripper, or similar technologies. Familiarity with security frameworks and standards including ISO 27001 ...

Support incident troubleshooting related to security gaps and vulnerabilities. Required Skills & Qualifications: Technical Skills: Strong hands-on experience with Windows Operating Systems (Windows 10 / 11, Windows Server). Experience in managing third-party application vulnerabilities (e.g., Java, Adobe, browsers, etc.). Proficiency in vulnerability management tools (Qualys, Nessus … Qualifications: Certifications such as Microsoft Certified, CompTIA Security+, CEH (good to have) Experience working in enterprise IT or security operations environment Exposure to audit / compliance frameworks (ISO 27001, SOC2, etc. ...

Cyber Security ConsultantMainly remote with occasional UK office / site visits£55,000-£65,000 depending on experience, + Benefits An established and expanding information security consultancy is looking to appoint a Cyber Security Consultant to support a growing portfolio of client engagements across the UK. This … governance documentation Experience required: 2+ years experience in information or cyber security Previous consultancy experience with the ability to engage effectively with clients / customers and understand their requirements Ability to simplify complex topics and offer practical, grounded advice An understanding of ISO 27001, GDPR ...