1 to 25 of 70 ISO/IEC 27001 Jobs in the North West

Head of Governance, Risk and Compliance Salary : Competitive Salary plus cash car allowance Location: Remote Keywords: Information Security, ISO 27001, Risk Management, Compliance, Governance, Cyber Security, Team Management, Audit, Stakeholder Engagement, Data Protection A distinguished opportunity has arisen for a Head of Governance, Risk and Compliance to join a highly regarded organisation. This position is integral … ideally having led certification projects-and an ability to apply structured frameworks for risk assessment across complex organisational landscapes. Exposure to NIST frameworks or certifications such as CISMP / CISSP / CISM / CRISC which would further enhance your suitability for this influential position. five years' experience in Information Security / GRC functions Experience in managing … teams - multiple functional domains Understanding of ISO Standards-ISO 27001 / 22301 Expertise in applying risk management frameworks Capacity to translate complex security requirements into accessible language What's next: Should you wish to elevate your career in information security governance within a forward-thinking organisation renowned for its commitment to excellence, we More ❯

Microsoft Dynamics Nav Developer. This is an excellent opportunity to make a meaningful impact within a collaborative and forward-thinking environment. The Role at a Glance: Microsoft Dynamics NAV / BC Developer - C / AL / AL. 100% Remote UK £60,000 - £70,000 Training and Development Contributory pension scheme, Perkbox Membership Company: Leading provider of tailored … chain, inventory management and the back-office; benefiting both the NHS and healthcare suppliers Pedigree: First GS1 UK Approved Solution for inventory management in the NHS. ISO / IEC 27001:2022 Certified. ISO Certified Awards: Extensive awards in the Heath Tech, Innovation & Supply Chain Categories Other Tech Innovations: 360 Healthcare Management … Familiar with Microsoft SQL Server, XML, APIs, and other OOP languages (e.g., C#, Java). Tooling & Standards: •Experienced with DevOps, GitHub, and automated testing tools. •Knowledge of ISO9001 and ISO27001 standards and integrated management systems. Consultancy & Mentoring: •Consultancy experience in Microsoft Dynamics NAV / BC implementations. •Familiar with third-party NAV / BC tools such as Tasklet Mobile More ❯

Microsoft Dynamics Nav Developer. This is an excellent opportunity to make a meaningful impact within a collaborative and forward-thinking environment. The Role at a Glance: Microsoft Dynamics NAV / BC Developer - C / AL / AL. 100% Remote UK £60,000 - £70,000 Training and Development Contributory pension scheme, Perkbox Membership Company: Leading provider of tailored … chain, inventory management and the back-office; benefiting both the NHS and healthcare suppliers Pedigree: First GS1 UK Approved Solution for inventory management in the NHS. ISO / IEC 27001:2022 Certified. ISO 9001-2015 Certified Awards: Extensive awards in the Heath Tech, Innovation & Supply Chain Categories Other Tech Innovations … Familiar with Microsoft SQL Server, XML, APIs, and other OOP languages (e.g., C#, Java). Tooling & Standards: • Experienced with DevOps, GitHub, and automated testing tools. • Knowledge of ISO9001 and ISO27001 standards and integrated management systems. Consultancy & Mentoring: • Consultancy experience in Microsoft Dynamics NAV / BC implementations. • Familiar with third-party NAV / BC tools such as Tasklet Mobile More ❯

Microsoft Dynamics Nav Developer. This is an excellent opportunity to make a meaningful impact within a collaborative and forward-thinking environment. The Role at a Glance: Microsoft Dynamics NAV / BC Developer - C / AL / AL. 100% Remote UK £60,000 - £70,000 Training and Development Contributory pension scheme, Perkbox Membership Company: Leading provider of tailored … chain, inventory management and the back-office; benefiting both the NHS and healthcare suppliers Pedigree: First GS1 UK Approved Solution for inventory management in the NHS. ISO / IEC 27001:2022 Certified. ISO (Apply online only) Certified Awards: Extensive awards in the Heath Tech, Innovation & Supply Chain Categories Other Tech Innovations … Familiar with Microsoft SQL Server, XML, APIs, and other OOP languages (e.g., C#, Java). Tooling & Standards: • Experienced with DevOps, GitHub, and automated testing tools. • Knowledge of ISO9001 and ISO27001 standards and integrated management systems. Consultancy & Mentoring: • Consultancy experience in Microsoft Dynamics NAV / BC implementations. • Familiar with third-party NAV / BC tools such as Tasklet Mobile More ❯

continual learning, collaboration, and innovation. We don't just support businesses - we shape how they stay secure, agile, and competitive. We are now looking for a talented Cybersecurity Lead / Specialist to join our growing team and take ownership of our cybersecurity offering. This is a hybrid, hands-on role that blends strategy with technical implementation - ideal for someone … Analyse alerts, threat intelligence, and forensic data from platforms like CrowdStrike and RoboShadow Conduct root cause analysis and manage remediation Compliance, Risk & Certification Support: Guide clients through Cyber Essentials / CE+, ISO 27001, and PCI DSS frameworks Perform regular risk assessments, policy audits, and technical documentation Ensure evidence gathering, hardening practices, and governance alignments are … clear documentation and reporting Desirable Skills: Certifications: Security+, SC-200, CEH, ISO 27001 Lead Implementer, PCIP Penetration testing or red teaming exposure Experience with SIEM / SOAR platforms (e.g., Microsoft Sentinel) Familiarity with MSP toolsets (Autotask, IT Glue, Rewst) or automation experience Personal Attributes: Friendly and professional Excited about tech and thrives on developing understanding More ❯

continual learning, collaboration, and innovation. We don't just support businesses - we shape how they stay secure, agile, and competitive. We are now looking for a talented Cybersecurity Lead / Specialist to join our growing team and take ownership of our cybersecurity offering. This is a hybrid, hands-on role that blends strategy with technical implementation - ideal for someone … Analyse alerts, threat intelligence, and forensic data from platforms like CrowdStrike and RoboShadow Conduct root cause analysis and manage remediation Compliance, Risk & Certification Support: Guide clients through Cyber Essentials / CE+, ISO 27001, and PCI DSS frameworks Perform regular risk assessments, policy audits, and technical documentation Ensure evidence gathering, hardening practices, and governance alignments are … clear documentation and reporting Desirable Skills: Certifications: Security+, SC-200, CEH, ISO 27001 Lead Implementer, PCIP Penetration testing or red teaming exposure Experience with SIEM / SOAR platforms (e.g., Microsoft Sentinel) Familiarity with MSP toolsets (Autotask, IT Glue, Rewst) or automation experience Personal Attributes: Friendly and professional Excited about tech and thrives on developing understanding More ❯

RoboShadow, Microsoft Defender, and ThreatLocker Assist with incident response playbook development and execution, analysing alerts and threat intelligence for effective remediation Contribute to client compliance guidance across Cyber Essentials / CE+, ISO 27001, and PCI DSS frameworks Provide technical support for pre-sales activities and deliver cybersecurity awareness training to clients Support internal knowledge sharing … environments, or strong development motivation Technical familiarity with security tools including CrowdStrike Falcon, Microsoft Defender, Conditional Access, and MFA Understanding of compliance frameworks such as Cyber Essentials Plus, ISO 27001, and PCI DSS Interest in incident response and real-world security investigations Foundational knowledge of identity security, patch management, and user awareness training Strong written and … Skills you'll gain or strengthen Industry certifications: Security+, SC-200, CEH, ISO 27001 Lead Implementer, or PCIP Penetration testing or red teaming exposure SIEM / SOAR platform experience, particularly Microsoft Sentinel MSP toolset familiarity, including Autotask, IT Glue, or Rewst Career Development Opportunities. This role offers clear advancement potential within our expanding cybersecurity practice. More ❯

hosted (often michelin star) lunches as well as half and full year icentive trips to places all over the world Vouchers Technology vouchers, activity passes, restaurant discount card Partner / family Benefits Option to add your partner / family to some of the benefits Access to Perklife, our dedicated portal for all perks and flexible benefits Maternity, Paternity … hosted (often michelin star) lunches as well as half and full year icentive trips to places all over the world Vouchers Technology vouchers, activity passes, restaurant discount card Partner / family Benefits Option to add your partner / family to some of the benefits Access to Perklife, our dedicated portal for all perks and flexible benefits Maternity, Paternity … hosted (often michelin star) lunches as well as half and full year icentive trips to places all over the world Vouchers Technology vouchers, activity passes, restaurant discount card Partner / family Benefits Option to add your partner / family to some of the benefits Access to Perklife, our dedicated portal for all perks and flexible benefits Maternity, Paternity More ❯

fostering a culture of security awareness throughout the organisation. Security Strategy Development: Design and implement a comprehensive information security strategy that aligns with business objectives and complies with ISO 27001 standards. Microsoft 365 Expertise: Leverage Microsoft 365 tools to enhance security measures, ensuring optimal configuration and deployment to protect data and information assets. Data and Information … s security posture. Requirements Bachelor's degree in Information Security, Computer Science, or a related field. 5+ years of experience in information security management, with a focus on ISO 27001 and compliance. Strong expertise in Microsoft 365 security features and configurations. Proven background in cybersecurity, risk management, and data governance. Excellent analytical and problem-solving skills … with the ability to think strategically. Strong communication and interpersonal skills, with a focus on collaboration and teamwork. Relevant certifications (e.g., CISSP, CISM, ISO 27001 Lead Implementer) are highly desirable. Other information Your package and perks At M247, we go beyond the pay check to bring you a package of perks that truly enrich your journey More ❯

within ServiceNow. Learning how to conduct Information Security risk assessments within the Surecloud GRC tool. Assist in managing the requirements for the firm to comply with ISO / IEC 27001 Policies and Standards and Cyber Essentials Plus. Assisting with conducting information security audits internally and externally. Assist in remediation activities to resolve audit … logical reasoning and problem-solving abilities 2:1 degree in an IT or Science, Technology, Engineering or Mathematics (STEM) subject desired Knowledge of GDPR and Data Protection Knowledge of ISO27001 and other best practice security management frameworks Experience in third party security auditing Knowledge of cloud security controls Knowledge of the legal sector WHAT CAN YOU EXPECT WithAddleshawGoddard, youcanexpect asupportiveteam … year, with a review to increase in your second year (subject to performance). The team will also be supportive of the following courses for the graduate to complete: ISO27001:2022 Lead Auditor Course, CISSP (Certified Information System Security Professional), CompTIA Security+ and Soft skills courses. Corebenefitsinclude Life Assurance, Income Protection, Pension and Bonus schemes,withadditionalHealth & Wellbeingbenefitsand services, plus manyvoluntaryLifestylebenefits More ❯

within ServiceNow. Learning how to conduct Information Security risk assessments within the Surecloud GRC tool. Assist in managing the requirements for the firm to comply with ISO / IEC 27001 Policies and Standards and Cyber Essentials Plus. Assisting with conducting information security audits internally and externally. Assist in remediation activities to resolve audit … year, with a review to increase in your second year (subject to performance). The team will also be supportive of the following courses for the graduate to complete: ISO27001:2022 Lead Auditor Course, CISSP (Certified Information System Security Professional), CompTIA Security+ and Soft skills courses. Core benefits include Life Assurance, Income Protection, Pension and Bonus schemes, with additional Health … logical reasoning and problem-solving abilities 2:1 degree in an IT or Science, Technology, Engineering or Mathematics (STEM) subject desired Knowledge of GDPR and Data Protection Knowledge of ISO27001 and other best practice security management frameworks Experience in third party security auditing Knowledge of cloud security controls Knowledge of the legal sector Any Additional job details Location Manchester Contract More ❯

s digital assets by working collaboratively with colleagues across multiple departments. Your day-to-day responsibilities will include supporting policy development in line with leading frameworks such as ISO 27001 or NIST, overseeing vulnerability management activities alongside IT professionals, conducting architectural reviews for new projects, and helping drive continuous improvement in technical controls. You will also … will bring proven experience on protecting sensitive data within regulated environments. Your background should include hands-on involvement with risk assessments, policy development aligned with industry standards like ISO 27001 or NIST, vulnerability management activities spanning identification through remediation, and direct participation in incident response processes. Demonstrable experience applying risk assessment methodologies to identify vulnerabilities and … recommend effective mitigations is highly valued. Recognised information security frameworks such as ISO 27001 or NIST ensures you can contribute meaningfully to policy development. A solid understanding of core security technologies-including firewalls, intrusion detection systems, endpoint protection platforms-and their practical application is important. Experience supporting vulnerability management processes from identification through remediation demonstrates your More ❯

and identify improvements in the vulnerability management program. Monitor and track the status of identified vulnerabilities and ensure timely resolution. Security Monitoring and Incident Response Leverage Microsoft Defender EDR / XDR and other security tools to monitor, analyse, and respond to security threats. Investigate suspicious activity and determine if incidents have occurred. Contain and mitigate security incidents to prevent … further impact. Develop, implement, and optimise security automation processes to improve detection, response, and mitigation efforts Security Compliance & Governance Ensure security configurations align with compliance frameworks such as ISO 27001, Cyber Essentials Plus, and regulatory requirements Skills and experience Essential 3yrs+ with current IT Security Analyst experience. Proven experience with M365 security solutions. Proven experience in … to centres. Degree or postgraduate degree in Computer Science, Cybersecurity, Information Technology, or equivalent industry experience. Desirable Experience of Microsoft Sentinel Knowledge of Cyber Essentials, Cyber Essentials Plus and / or ISO 27001 Please send in your CV if you have the above skills and you do not need sponsoring, as my client cannot sponsor More ❯

management structures, policies, and practices within Technology and Network functions. Design a fit-for-purpose Technology Risk Management Framework that aligns with business needs and industry standards (e.g. ISO 27001, NIST, COBIT). Develop practical tools such as risk registers, heatmaps, control libraries, and risk assessment templates. Stakeholder Engagement & Knowledge Transfer: Work closely with internal stakeholders … sectors, ideally telecoms. Familiarity with regulatory and compliance requirements relevant to telecom (e.g., GDPR, NIS2, national telecom regulations). Experience working with risk and control frameworks such as ISO 31000, ISO 27001, NIST CSF, COBIT, or COSO. Ability to communicate clearly and influence senior stakeholders. Self-starter, capable of driving outcomes independently in a … or equivalent. What We Offer: Immediate-start contract for 3–6 months (with potential to extend). Opportunity to shape and formalize risk practices in a key industry. Flexible / hybrid working options. Competitive day rate. More ❯

strategy, translating them into reusable templates and guardrails. Lead architecture reviews for high risk projects, providing actionable recommendations and tracking remediation through to closure. Perform and interpret threat modelling / pen test results, converting findings into road mapped improvements and measurable risk reductions. Advise on security controls for hybrid and cloud platforms (AWS, Azure, Kubernetes, serverless), balancing usability, cost … strategies. Oversee vendor and SaaS evaluations, ensuring contracts include appropriate security clauses and ongoing assurance. Essential skills: Risk based decision making: expert in ISO 27001 / NIST / CIS controls, able to quantify and articulate risk, then select proportionate, cost effective controls. Technical depth: hands on knowledge of cloud security, IAM, container & API security … ability to engage C suite and delivery squads alike, adapting style to gain agreement and drive secure by design culture. Mentoring & governance: experience line managing or coaching security architects / engineers and running architecture assurance or design review boards. At the Home Office, your work has real-world impact, shaping the safety and security of millions. We offer: Meaningful More ❯

digital transformation initiatives. Develop and deliver a compliance strategy aligned with legislation (e.g., UK GDPR, Data Protection Act 2018, PCI-DSS), internal policies, external frameworks (e.g., NIST CSF, ISO 27001) and aligned with sector-specific best practice (e.g UCISA, NCSC) Develop and deliver a Security Assurance Testing program, including internal and external audit, penetration testing and … Desirable Certifications Industry-recognised certifications such as CISSP, CISM, GIAC (e.g., GDSA, GCIH, GCIA), and CompTIA CASP+ Framework-related qualifications (e.g. ISO 27001 Lead Implementer / Auditor, NIST CSF, TOGAF or SABSA) demonstrating capability in structured security operations and strategic alignment. To learn more about this exciting opportunity and benefits we offer, please read the More ❯

tools for access governance, identity lifecycle, and privileged access management in alignment with defence-grade standards Security Assurance & Compliance Ensure commission controls comply with MOD policies (e.g. JSP 440 / JSP 604) and security frameworks such as NIST, ISO 27005, STIGs, and UK Functional Standard 007 Vulnerability Assessment & Access Review Support regular access reviews, entitlement audits, and … DV Clearance : Must hold active Developed Vetting (DV) clearance (or immediate transfer eligibility) Access Control Expertise : Deep experience in identity & access management, particularly designing and enforcing commission controls, RBAC / ABAC models, access provisioning, and entitlement workflows. Tools & Technologies : Hands-on with identity platforms (e.g. Active Directory, Azure AD, Okta), PAM / IGA systems, SSO / SAML … / OAuth, and access governance tools. Security Framework Knowledge : Understanding of defence and public-sector security frameworks (JSP 440 / 604, STIGs, ISO 27001, Government Functional Standard 007) Incident & Risk Handling : Proven ability to conduct security incident investigations relevant to unauthorized access and remediate gaps. Communication Skills : Strong ability to engage with both technical More ❯

tight SLA’s and KPI’s for our customers leveraging vulnerability and assessment tools such as Qualys and Microsoft’s EDR offering. Analyse vulnerability test reports and provide remediation / mitigation plans to the team. Integrate with our vendors and security providers to identify the most up-to-date information on the latest vulnerabilities and deliver key awareness and … LIMA’s Operation team to plan and implement internal security adoption across all our platforms including our hosted cloud platform, aligning to CE+, ISO 27001 / 27002 and ITIL. With the Technical Services Manager, identify and implement the best practice security posture for LIMA’s Managed Services Engineers when working with customers and vendors. Produce … experience with technical accreditations or demonstrable experience in security and vulnerability remediation technologies: Security Tooling: OWASP ZAP, Nmap, Wireshark Assessment Tooling: Nessus, Qualys, etc Remediation Tooling: Microsoft Endpoint Management / Intune Microsoft Security / Compliance: MFA,?Conditional Access, SSPR, DLP, IPM, IRM, DKIM, MCAS Application packaging for automated deployment Intermediate scripting experience utilising PowerShell or Python You should More ❯

now looking for an experienced and dynamic Senior Cyber Security Engineer to join our vibrant office with hybrid working. Senior Cyber Security Engineer – Responsibility: Carry out daily security engineering / operation tasks under an ITIL framework Develop an understanding of the threats, risks, vulnerabilities and evolving attack vectors facing the business. Using strong technical knowledge, continuously analyse and make … recommendations to implement effective security controls, system hardening and security improvement projects with a particular focus in application / web hosting security. Assist in the management of patching, vulnerability analysis and penetration testing to ensure recommendations are risk assessed and implemented in a timely manner Senior Cyber Security Engineer – Skills: Experience in Security Engineering, Network Security, and / … protocols such as networks, domain management, and virtualized environments. Holds or is working towards certifications like CISSP, SANS GCIA, CompTIA Security+, CCNA / CCNP, or similar. Knowledge of ISO27001, Cyber Essentials, and AAF frameworks is a plus. Due to the volume of applications received for positions, it will not be possible to respond to all applications and only applicants More ❯

governance, risk, and assurance. Key Responsibilities: 1. Governance, Risk & Compliance (GRC) Management Develop, implement, and maintain GRC policies, frameworks, and procedures aligned with industry standards and regulatory requirements (ISO 27001, NIST, SOC 2, GDPR, HIPAA, PCI DSS). Conduct … workshops to gather requirements for risk assessments and security reviews, ensuring risk mitigation strategies are in place. Maintain a risk register and track risk management initiatives. Lead third-party / vendor risk assessments requirement gathering, ensuring supplier security and compliance. Collaborate with leadership to align GRC practices with business objectives. 2. Compliance & Assurance Ensure the organization meets regulatory requirements … and industry best practices. Manage compliance audits (ISO 27001, SOC 2, PCI DSS, GDPR, HIPAA) and coordinate with internal / external auditors. Conduct compliance monitoring and provide periodic reports on adherence to policies. Develop and implement assurance programs to validate control effectiveness. Stay updated on changing regulations and emerging compliance risks. 3. Business Analysis & Process More ❯

Role Title: Security Logging and monitoring specialist Duration: contract to run until 31 / 12 / 2025 Location: Knutsford, hybrid 2 / 3 days onsite Rate: up to £478.40 p / d Umbrella inside IR35 Role purpose / summary You will assists in the secure design and implementation of changes across various business areas, technologies … vulnerabilities are essential, along with excellent communication, teamwork, multitasking, and attention to detail. Familiarity with compliance standards such as GDPR, HIPAA, PCI-DSS, and frameworks like NIST and ISO 27001 is also important. A Security Logging Specialist requires a bachelor's degree in a relevant field (or equivalent experience) and preferred certifications (e.g., CISSP, CISM, CISA More ❯

prioritisation of functional and non-functional requirements across the UK business units. * Translate approved requirements into clear user stories, detailed acceptance criteria, and well-defined delivery plans within Jira / Confluence. * Portfolio & Road-map Planning: * Build and maintain a consolidated UK IT demand portfolio, strategically balancing new initiatives, essential technical debt reduction, and business-as-usual (BAU) activities. * Facilitate … the UK. * Demonstrable success in managing technology initiatives within complex, multi-platform environments (experience in e-commerce, shipping, or logistics is highly advantageous). * Strong practical knowledge of Agile / Scrum methodologies, effective backlog management, proficient use of Jira / Confluence, understanding of API concepts, and awareness of UX / UI best practices. * Hands-on experience establishing … e.g., sales performance, margin improvement, EBITDA contribution). Education & Certifications * Bachelor's degree in Computer Science, Information Systems, Business, or a related field. * Desirable: * Relevant certifications such as Agile / Scrum (e.g., PSM, CSM), ITIL, Prince2, security certifications (e.g., CISSP), or ISO 27001 awareness. Key Performance Indicators (KPIs) * Project delivery performance (on-time / More ❯

prioritisation of functional and non-functional requirements across the UK business units. * Translate approved requirements into clear user stories, detailed acceptance criteria, and well-defined delivery plans within Jira / Confluence. * Portfolio & Road-map Planning: * Build and maintain a consolidated UK IT demand portfolio, strategically balancing new initiatives, essential technical debt reduction, and business-as-usual (BAU) activities. * Facilitate … the UK. * Demonstrable success in managing technology initiatives within complex, multi-platform environments (experience in e-commerce, shipping, or logistics is highly advantageous). * Strong practical knowledge of Agile / Scrum methodologies, effective backlog management, proficient use of Jira / Confluence, understanding of API concepts, and awareness of UX / UI best practices. * Hands-on experience establishing … e.g., sales performance, margin improvement, EBITDA contribution). Education & Certifications * Bachelor's degree in Computer Science, Information Systems, Business, or a related field. * Desirable: * Relevant certifications such as Agile / Scrum (e.g., PSM, CSM), ITIL, Prince2, security certifications (e.g., CISSP), or ISO 27001 awareness. Key Performance Indicators (KPIs) * Project delivery performance (on-time / More ❯

be crucial to upholding quality as we grow, both in the UK and across our international offices. You'll be confident working with traditional management systems such as ISO standards (e.g., Information Security, Quality Management), while also appreciating modern agile and flexible delivery practices. You'll act as a quality advocate - helping us learn, share and improve internally … ll have the confidence to question assumptions and engage with senior colleagues in a constructive way, always focused on improvement and outcomes. Ensure the business maintains our existing ISO certification set through documentation, running board level reviews, and auditing teams. Facilitate the certification of the international group business units to the same Quality and Information Security standards of … Onboarding colleagues, suppliers and partners to Apadmi process and management systems. What you'll bring to the team You will have previous experience of creating, maintaining and auditing ISO management systems within a creative product company, preferably in a digital consultancy or software development environment working on large scale applications development and systems integration. You will be excited More ❯

Cyber Security / Infrastructure Consultant - 6-Month Contract - Outside IR35 We are seeking a Cyber Security Consultant for a high-impact 6-month contract to lead the review, design, and implementation of critical cyber security enhancements across our IT estate. You'll work hands-on with infrastructure, policies, and tooling to ensure our clients systems and data are resilient … strengthen our security posture Develop and implement security policies aligned with Cyber Essentials, ISO 27001, NIST, and GDPR Configure and deploy essential tools: firewalls, IDS / IPS, endpoint protection, and encryption Overhaul Active Directory, Group Policies, and server configurations Lead incident response, forensic analysis, and threat mitigation Monitor and adapt to new threats with continuous … communicator and critical thinker who thrives in fast-paced environments Join us to make a tangible impact on our clients cyber resilience. Interested? Please Click Apply Now! Cyber Security / Infrastructure Consultant - 6-Month Contract - Outside IR35 More ❯