20 of 20 ISO/IEC 27001 Jobs in Watford

the EMEA EIT department to all relevant legislation and regulations, including but not limited to Health and Safety, Financial and Privacy laws. Main duties / responsibilities: Conduct information security, information system, and compliance-based risk assessments, evaluate responses and recommend risk treatment actions Develop and execute risk mitigation plans … in conjunction with relevant internal and external stakeholders / groups and to agreed timescales, following through to completion Support the creation, implementation and maintenance of information security policies and standards, in accordance with ISO 27001 other relevant frameworks and standards (NIST CSF, IEC … relevant Support information security and compliance audits conducted in the department Qualifications and Experience required: Degree level qualified or equivalent - highly desirable. CISM and / or CRISC or other relevant certification is highly desirable ISO 27001:2022 Lead Implementer / Auditor certification is essential. More ❯

About the Role We are seeking an experienced SOC 2 / IT GRC Specialist Contractor to support and guide our SOC 2 Type II accreditation program. This is a critical role in a fast-moving, regulated environment, requiring hands-on experience with SOC 2 frameworks, ISO 27001 … guidance to internal teams to embed a culture of compliance and readiness. Support the development, implementation, and continuous improvement of the ISO / IEC 27001-aligned ISMS Required Skills & Experience Demonstrable experience leading or supporting a successful SOC 2 and ISO 27001 implementations. Solid understanding of the AICPA Trust Services Criteria and related IT / security controls. Experience working within GxP environments, particularly in relation to SaaS applications or hosted infrastructure. Proven ability to design and document policies and procedures that satisfy both SOC 2 and More ❯

regulatory requirements (e.g., ISO 27001, NIS2, GDPR). Oversee risk management frameworks, including enterprise risk, cyber risk, and third-party / vendor risk. Collaborate cross-functionally with Security, Legal, Operations, and senior stakeholders to embed a culture of risk-aware decision making. Lead internal audits … leadership role within a tech, managed services, or regulated environment. Strong understanding of risk management, compliance frameworks, and international regulatory landscapes. Familiarity with ISO 27001, NIST, GDPR, DORA, NIS2, and other relevant standards. Excellent communication skills and the ability to … influence senior stakeholders. Fluent English is required; Spanish or German is a plus. Based in Spain or open to relocating, with flexibility for hybrid / remote work. Why Join? Be part of a fast-scaling European digital leader with ambitious growth plans. Influence strategy at the highest level while More ❯

enforce security policies, standards, and procedures Work with IT and development teams to implement secure system designs and configurations Support compliance initiatives (e.g., ISO 27001, NIST, GDPR, PCI-DSS) by assisting with audits and documentation Conduct security awareness training and phishing simulations for employees Keep up … security or cybersecurity role Strong understanding of security principles, frameworks, and practices (e.g., CIA triad, defense in depth) Experience with SIEM tools, intrusion detection / prevention systems (IDS / IPS), firewalls, and endpoint protection Familiarity with vulnerability scanning tools (e.g., Nessus, Qualys) and remediation processes Knowledge of networking More ❯

A degree or equivalent career experience in a relevant discipline. Understanding of Cyber Security Frameworks and standards (e.g., NCSC security principles, NIST Framework, ISO 27001, ISO27005, IEC62443). Cloud Platforms: Proficiency in AWS and Azure, covering core services like computing, storage, networking, and databases. Familiarity with … PowerShell, Bash). Ability to analyse and utilize threat intelligence to enhance security measures. Experience with security tools such as firewalls, WAFs, intrusion detection / prevention systems, and vulnerability scanners. Conducting security audits and vulnerability assessments. Implementation and management of IAM policies. Risk assessment and mitigation in cloud environments. More ❯

long-term security roadmap that supports the organisation's strategic goals. Ensure ongoing compliance with frameworks and certifications such as Cyber Essentials Plus, ISO 27001, and PCI DSS. What you'll need to succeed Willingness to work 7-hour days, 3 days a week Professional security … Experience managing security platforms and maintaining robust security policies. Familiarity with SOC operations and vulnerability management practices. Knowledge of industry frameworks such as ISO 2700x, ITIL, and COBIT. A solid grasp of cloud and network infrastructure, along with current standards like OWASP, NIST, GDPR, NIS, and PCI-DSS. … and experience working with government security standards such as Cyber Essentials Plus. What you'll get in return Guaranteed 3-Month contract £28.49 p / h PAYE or £35.45 p / h UMB Fully remote working - if travel is needed it will be expensed Part-time work whereby More ❯

problem-solving and troubleshooting skills. Preferred: Experience with cloud platforms (e.g., AWS, Azure, GCP) and their integration with CyberArk. Knowledge of DevOps and CI / CD pipelines for secrets management. Familiarity with other PAM tools (e.g., BeyondTrust, Thycotic) is a plus. Strong understanding of cybersecurity frameworks (e.g., NIST, ISO 27001). Soft Skills: Strong communication and interpersonal skills. Ability to work independently and as part of a team. Detail-oriented with a focus on delivering high-quality results. Proactive and self-motivated with a passion for cybersecurity. Education and Certifications: Bachelor’s degree in Computer More ❯

landscapes, risk posture, and security innovation Security Architecture & Operations: Oversee the design and operation of our global cloud security infrastructure across AWS, GCP, and / or Azure. Drive robust incident response, threat detection, and remediation processes. Risk Management & Compliance: Lead risk assessments and ensure adherence to international compliance standards … SOC 2, ISO 27001, GDPR, HIPAA, etc.). Establish a robust control environment to support secure development and delivery of our SaaS offerings. Governance & Policy Development: Implement security governance frameworks to support DevSecOps and data protection at scale. Develop and maintain policies, standards, and secure coding More ❯

with knowledge of vulnerability management tools and frameworks. Experience collaborating with governance and compliance teams to align technical controls with security standards (e.g., ISO 27001). Excellent troubleshooting, communication, and documentation skills, with the ability to collaborate effectively across teams. Technical Skills Strong understanding of Microsoft More ❯

transformation. Prior experience with Data warehousing and Data modelling (Star Schema or Snowflake Schema). Skilled in security frameworks such as GDPR, HIPAA, ISO 27001, NIST, SOX, and PII, with expertise in IAM, KMS, and RBAC implementation. Cloud automation and orchestration tools like Terraform and Airflow. More ❯

OCI. Experience designing and delivering solutions within the UK Government domain. Familiarity with compliance & security standards across the enterprise IT landscape such as ISO 27001 and NCSC Cyber Essentials. Familiarity with ITIL service management principles & tools, and their use in an enterprise environment. Additional Information We … by NEC for Employees (with the option to add family members at an additional cost) 25 days paid holiday with the option to buy / sell (FTE) 4 x basic salary life assurance cover funded by NEC (with the option to increase cover at an additional cost) A Group More ❯

and deployment pipelines in a cloud-first environment. Key Responsibilities: Manage and automate AWS cloud services and VMware vSphere infrastructure Build and maintain CI / CD pipelines (GitHub Actions, TeamCity) Implement monitoring, backup, and recovery strategies Contribute to secure, high-availability architecture in line with ISO 27001 More ❯

Role Title: AWS IAM / PingID Specialist Duration: contract to run until 30 / 10 / 2025 Location: Remote Rate: up to £690 p / d Umbrella inside IR35 Clearance required: Active Security Clearance is essential Key Skills / requirements Has designed, architecture and deployed … the Ping One and AWS Identity and integrated the 2. Familiar to SAML and OAUTH / OIDC Competent in the logical configuration of Ping One and AWS Identity cloud services. Technical Proficiency in IAM Tools: Expertise in using and configuring IAM tools such Ping Identity, and AWS Identity to … and manages multi-factor authentication (MFA), single sign-on (SSO), and other authentication methods to secure user access. Ensures compliance with regulatory requirements (e.g., ISO27001, Cyber Essentials) by helping to complete compliance trackers Defines and manages roles and permissions to streamline access control and ensure users have the minimum necessary More ❯

and protects the digital employee experience. Trusted by thousands of enterprises managing millions of endpoints globally, Action1 is certified for SOC 2 and ISO 27001. The company is founder-led by industry veterans Alex Vovk and Mike Walters, American entrepreneurs who founded Netwrix, which has grown into a More ❯

a leader in document automation within the Salesforce ecosystem. Our solutions help enterprises manage document workflows, enabling seamless collaboration, automation, and compliance. With ISO 27001 and TISAX certifications, we ensure the highest standards in data security and operational integrity. As part of Ascendx, we are positioned More ❯

offering a fully remote opportunity with the occasional team meet-ups in London. Key Skills: Lead and maintain compliance frameworks (UK GDPR, DPA 2018, ISO27001, FCA AISP), ensuring up-to-date policies, procedures, and controls across data protection, information security, and regulatory risk. Act as Data Protection Officer (DPO), managing … automation-friendly compliance and security practices, and communicate risks clearly to leadership. Proven experience in compliance and infosec, with strong regulatory knowledge (UK GDPR, ISO27001), excellent communication skills, and ideally relevant certifications (e.g. CIPP / E, CISSP). If you are interested in the open role please come back More ❯

with Aureos Communication team. Support and inform the digital transformation strategy as it develops, supporting ACC related integrations and the rollout of other technologies / digital tools as required. Explore use case(s) and advocate for GIS use across the business as part of an enhanced digital strategy. Ensure … IT at all times and any development work is fully documented and approved. Data & Reporting - Ensure alignment between project data and the Data Warehouse / Aureos Reporting standards, supporting the development of appropriate reports / metrics. Identify and engage digital delivery support partners pending internal capability. Team Management … lessons. Support the execution of the Digital Transformation plan as it develops. Plan for and deliver ISO19650 certification. Work with Aureos IT to support ISO27001 certification efforts. Key Qualifications & Experience Essential Proven experience in Information Management in a senior role. Expertise in managing Common Data Environments (CDE) and implementing BIM More ❯

all while eliminating costly routine labor. Trusted by thousands of enterprises managing millions of endpoints globally, Action1 is certified for SOC 2 and ISO 27001. The company is founder-led by industry veterans Alex Vovk and Mike Walters, who founded Netwrix, which has grown into a multi-billion … Ability to identify and troubleshoot failed patch installations. Be familiar with PowerShell scripting and able to understand basic scripts. Proficiency in Mac OS and / or Linux platforms. Demonstrate knowledge of software deployment and configuration using install switches. Be skilled in reading, writing, modifying, and backing up the Windows More ❯

Criteria: r+ years in a pen test role Excellent knowledge of Vulnerability and Penetrating Testing concepts and best practices, including the requirements for WhiteHat / Ethical Hacking. Experience with automated tools such as Nessus, Appscan, Burp Suite, Nipper, and Trustwave. Expert understanding of the difference between … a vulnerability assessment and a penetration test in the context of assessment scope, objectives, and deliverables. Working knowledge of information security frameworks such as ISO27001, NIST, and CIS. If this sounds like a good opportunity, apply today. Unfortunately no sponsorship is on offer at this stage for this role. More ❯

infrastructure using infrastructure-as-code approaches · Optimise system resources, cost, and performance in cloud environments · Implement robust monitoring, logging, and alerting systems · Maintain CI / CD pipelines for reliable deployment and testing LLM, Agents & AI Integration · Design, build and maintain AI-driven information retrieval and generation workflows · Securely integrate … processing · Ensure efficient data flow between systems and LLM components · Implement data validation, transformation, and enrichment processes · Optimise data storage and retrieval for AI / ML workloads Security & Compliance · Implement security best practices in API development and backend systems · Design secure authentication and authorisation mechanisms · Ensure compliance with relevant … Experience with real-time systems and event-driven architectures · Understanding of regulatory requirements in healthcare / pharmaceutical industries · Familiarity of working to ISMS ISO27001 standards · Growth mindset combined with tenacity · Entrepreneurial approach driven by curiosity and innovation · Deep customer centricity What We Offer · Competitive salary and benefits · Opportunities for More ❯