1 to 25 of 84 ISO/IEC 27001 Jobs in the North of England

Lead Cyber Security Architect- IDM CYBER SECURITY ARCHITECT / IDM / IDENTITY ACCESS MANAGEMENT / SAILPOINT IIQ / SAILPOINT IDENTITY SECURITY CLOUD ISC / SAP IDM / NIST / ISO 27001 / POWERSHELL / JAVASCRIPT / LDAP / SAML / OAUTH / AZURE … AD £600-700 Per Day-Umbrella 6 Months- Extensions Likely Sheffield / Remote- must be willing to be on site 3 days a week Our client is undertaking a strategic migration from two legacy identity systems — SailPoint IIQ and SAP IDM — to a unified platform, SailPoint Identity Security Cloud (ISC). This is part of a multiyear transformation programme … IAM concepts including authentication, authorization, SSO, MFA, and directory services. Experience working in large-scale enterprise environments, preferably in regulated industries Solid grasp of security frameworks (e.g., NIST, ISO 27001) and compliance requirements (e.g., GDPR). Proficiency in scripting languages (e.g., PowerShell, JavaScript) and integration protocols (e.g., LDAP, SAML, OAuth). Desirable Experience: Experience in Identity More ❯

Cyber Security Policy Specialist / Consultant CYBER SECURITY POLICY / CYBER SECURITY CONSULTANT / CYBER SECURITY POLICIES / COOKIE MANAGEMENT / PRIVACY REGULATIONS / GDPR / COMPLIANCE / RISK / DIGITAL PRIVACY / NIST / ISO 27001 £450-500 Per Day-Umbrella 6 Months- Extensions … Likely Sheffield / Remote- must be willing to be on site 3 days a week Our client is looking for detail-oriented and experienced Cyber Policy Specialist to lead the development and refinement of the organisations cybersecurity policies, with a particular focus on cookie governance and external attack surface management. This role is ideal for someone with a strong … policy writing, ideally within large or complex organisations. Understanding of cookie management, privacy regulations (e.g., GDPR, ePrivacy), and external attack surface risks. Familiarity with cybersecurity frameworks (e.g., NIST, ISO 27001) and governance models. In the first instance please submit your CV More ❯

due diligence programme, including onboarding and periodic reviews. Track and publish key security metrics such as risk severity, SLA adherence, and turnaround times. Provide audit artefacts and support internal / external audits. Contribute to broader security initiatives and continuous improvement within the organisation. About You 3+ years’ experience in Information Security, GRC, or Vendor Risk Management. Strong experience issuing … or responding to security questionnaires. Knowledge of ISO 27001 Annex A, SOC 2, and GDPR / CCPA. Excellent communication skills, able to translate technical risk to non-technical stakeholders. Eligible to work in the UK and able to pass background checks. Desirable: Certifications such as CRISC, CISSP, CISA, or ISO 27001 … Lead Auditor. Familiarity with SaaS / cloud platforms (AWS, Azure, GCP). Understanding of secure software supply chains (SBOM, SLSA). What’s on Offer £50,000 – £55,000 base salary 25 days annual leave + public holidays (increasing with service) Matched pension scheme Private medical insurance & life assurance Fitness allowance Paid study leave & volunteering days Flexible hybrid working More ❯

due diligence programme, including onboarding and periodic reviews. Track and publish key security metrics such as risk severity, SLA adherence, and turnaround times. Provide audit artefacts and support internal / external audits. Contribute to broader security initiatives and continuous improvement within the organisation. About You 3+ years' experience in Information Security, GRC, or Vendor Risk Management. Strong experience issuing … or responding to security questionnaires. Knowledge of ISO 27001 Annex A, SOC 2, and GDPR / CCPA. Excellent communication skills, able to translate technical risk to non-technical stakeholders. Eligible to work in the UK and able to pass background checks. Desirable: Certifications such as CRISC, CISSP, CISA, or ISO 27001 … Lead Auditor. Familiarity with SaaS / cloud platforms (AWS, Azure, GCP). Understanding of secure software supply chains (SBOM, SLSA). What's on Offer 50,000 - 55,000 base salary 25 days annual leave + public holidays (increasing with service) Matched pension scheme Private medical insurance & life assurance Fitness allowance Paid study leave & volunteering days Flexible hybrid working More ❯

due diligence programme, including onboarding and periodic reviews. Track and publish key security metrics such as risk severity, SLA adherence, and turnaround times. Provide audit artefacts and support internal / external audits. Contribute to broader security initiatives and continuous improvement within the organisation. About You 3+ years' experience in Information Security, GRC, or Vendor Risk Management. Strong experience issuing … or responding to security questionnaires. Knowledge of ISO 27001 Annex A, SOC 2, and GDPR / CCPA. Excellent communication skills, able to translate technical risk to non-technical stakeholders. Eligible to work in the UK and able to pass background checks. Desirable: Certifications such as CRISC, CISSP, CISA, or ISO 27001 … Lead Auditor. Familiarity with SaaS / cloud platforms (AWS, Azure, GCP). Understanding of secure software supply chains (SBOM, SLSA). What's on Offer £50,000 - £55,000 base salary 25 days annual leave + public holidays (increasing with service) Matched pension scheme Private medical insurance & life assurance Fitness allowance Paid study leave & volunteering days Flexible hybrid working More ❯

due diligence programme, including onboarding and periodic reviews. Track and publish key security metrics such as risk severity, SLA adherence, and turnaround times. Provide audit artefacts and support internal / external audits. Contribute to broader security initiatives and continuous improvement within the organisation. About You 3+ years’ experience in Information Security, GRC, or Vendor Risk Management. Strong experience issuing … or responding to security questionnaires. Knowledge of ISO 27001 Annex A, SOC 2, and GDPR / CCPA. Excellent communication skills, able to translate technical risk to non-technical stakeholders. Eligible to work in the UK and able to pass background checks. Desirable: Certifications such as CRISC, CISSP, CISA, or ISO 27001 … Lead Auditor. Familiarity with SaaS / cloud platforms (AWS, Azure, GCP). Understanding of secure software supply chains (SBOM, SLSA). What’s on Offer £50,000 – £55,000 base salary 25 days annual leave + public holidays (increasing with service) Matched pension scheme Private medical insurance & life assurance Fitness allowance Paid study leave & volunteering days Flexible hybrid working More ❯

Person Specification Qualifications Essential Education to a minimum of Masters Degree level or equivalent post graduate qualification or equivalent senior level experience Formal certification (CISSP, CISM or CRISC) and / or formal training in information security standards and best practice (e.g.: ISO 27001 / 2, COBIT, Cyber Essentials) Advanced level of IT literacy with … experience of using a range of IT applications Significant evidence of continued professional development Desirable ITIL Qualification COBIT Knowledge and Experience Essential Proven and significant leadership experience and / or formal management qualification Demonstrated expertise in an IT Security environment Direct experience of strategic and budgetary planning and financial management and controls Previously worked within the NHS A good … practical knowledge of security technologies and wider business solutions including Firewalls, IDS / IPS, Identity and access management, SIEM, remote working and cloud technologies Proven experience of working at a senior level leading and delivering IT Security in a sensitive and complex environment which is undergoing significant change Experience of delivering presentations to large groups of stakeholders Demonstrable commitment More ❯

Design and implement a comprehensive security strategy and roadmap, ensuring our security posture meets the requirements of the NHS Data Security and Protection Toolkit (DSPT), Cyber Essentials Plus, ISO 27001:2022, and other relevant frameworks. Risk Management: Lead the information security risk management program, including the identification, assessment, mitigation, and monitoring of risks across all systems … experience with UK healthcare security standards and regulations, including demonstrable expertise with the NHS Data Security and Protection Toolkit (DSPT), Digital Technology Assessment Criteria (DTAC) and NCSC CAF. ISO 27001:2022 implementation & maintenance: Hands-on experience with the successful implementation, certification, and ongoing maintenance of an ISO 27001 Information Security Management System More ❯

QA / RA Assistant – £28,000 depending on experience + Benefits – Liverpool The Role Are you looking to kickstart your career in quality management and regulatory affairs within the medical device industry? MyCardium is offering an exciting opportunity for a QA / RA Assistant to join our team and play a key role in ensuring compliance with international … to the success of a leading medical device company, we want to hear from you! Key Responsibilities: Assist in maintaining compliance with certifications and regulatory approvals such as ISO 27001, ISO 9001, ISO 13485, UKCA, CE, and FDA 510(k). … Support the update and maintenance of QMS and ISMS documentation. Help coordinate and conduct internal audits, document findings, and ensure corrective actions are followed up on. Deliver basic QMS / ISMS training to staff, including during induction sessions. Assist in vendor approval processes and monitor adherence to MyCardium's quality standards. Support post-market surveillance activities in collaboration with More ❯

tools for access governance, identity lifecycle, and privileged access management in alignment with defence-grade standards Security Assurance & Compliance Ensure commission controls comply with MOD policies (e.g. JSP 440 / JSP 604) and security frameworks such as NIST, ISO 27005, STIGs, and UK Functional Standard 007 Vulnerability Assessment & Access Review Support regular access reviews, entitlement audits, and … DV Clearance : Must hold active Developed Vetting (DV) clearance (or immediate transfer eligibility) Access Control Expertise : Deep experience in identity & access management, particularly designing and enforcing commission controls, RBAC / ABAC models, access provisioning, and entitlement workflows. Tools & Technologies : Hands-on with identity platforms (e.g. Active Directory, Azure AD, Okta), PAM / IGA systems, SSO / SAML … / OAuth, and access governance tools. Security Framework Knowledge : Understanding of defence and public-sector security frameworks (JSP 440 / 604, STIGs, ISO 27001, Government Functional Standard 007) Incident & Risk Handling : Proven ability to conduct security incident investigations relevant to unauthorized access and remediate gaps. Communication Skills : Strong ability to engage with both technical More ❯

Director or Partner level. Ensure that the project adheres to Deloitte's Cybersecurity capability framework, relevant information security regulations and industry standards. Examples include GDPR, EU AI Act, ISO 27001, NIST Cybersecurity Framework, and Cyber Essentials +. Communicate security awareness, concerns, and requirements to project stakeholders, including developers, project managers, and business leaders, to ensure alignment … or equivalent field. Excellent communication and stakeholder management abilities. Demonstrable ability to work in a fast-paced, deadline driven environment. Demonstrated excellence in a variety of competencies including teamwork / collaboration, analytical thinking, communication and influencing skills, and technical expertise. Ability to work with changing priorities and with multiple projects. Relevant certifications like Certified Information Systems Security Professional (CISSP … self to work every day. And you'll never stop growing, whatever your level. Discover more reasons to connect with us, our people and purpose-driven culture at deloitte.co.uk / careers More ❯

failure. Essential Skills & Experience: At least 2 years of hands-on experience in information security or IT infrastructure within an enterprise environment. Familiarity with security standards such as ISO 27001, Cyber Essentials, GDPR, and Data Protection Act. Experience with Microsoft O365 Security solutions and network security operations. Understanding of security testing principles, including vulnerability scanning, risk … apply now. Keywords: Information Security Consultant, IT Security Consultant, Cybersecurity Specialist, Microsoft O365 Security, Enterprise Security Jobs, Information Security Leeds, IT Risk Management, Security Incident Response, Vulnerability Management, ISO 27001, GDPR Compliance, Security Awareness, Disaster Recovery and Business Continuity. More ❯

DEFCON and HMG Secure by Design requirements to highlight key issues Support and implement service improvement for the assurance function Work with EIT Business Operation Teams to ensure findings / recommendations stemming from Operational Assurance are highlighted, tracked, and remediated Your skills and experiences: Educated to degree level (or equivalent … preferably in a related technical discipline Understanding of cyber security technologies, their implementation and secure configuration CompTIA (A+, Network+, Security+) / NSCP Practitioner / CCSK / ISO27001 Practitioner (Lead Auditor etc.), CISM-P Cyber Security qualification - Desirable one or more certifications Capable of a high standard of written communication including experience of writing complex reports and giving … Security Assurance team: The Cyber Security Assurance Team with Shared Services are part of Enterprise IT (EIT) with responsibility for assuring all enterprise managed systems and services, spanning UK / RoW. The team ensure systems / services are built and configured in-line with applicable Cyber Security Standards. Why BAE Systems? This is a place where you'll More ❯

Robert Half have partnered on an exclsuive basis with a growing Pharmaceutical / MedTech organisation in the Greater Manchester area to recruit and IT Manager on a permanent basis. As the IT Manager, you will lead the planning, implementation, maintenance, and security of IT systems, ensuring seamless day-to-day operations. You will work closely with cross-functional teams … technical research and implementation. Provide technical support, training and communications to end-users as part of the wider change projects. Monitor system performance and implement improvements as needed. Experience / Skills required: Proven experience in an IT Manager or similar leadership role, preferably within healthcare, life sciences, or medical communications. Strong knowledge of cloud-based platforms (especially Microsoft … SharePoint, Azure). Excellent understanding of cybersecurity frameworks and data protection regulations (e.g. GDPR, ISO 27001). Experience supporting hybrid / remote teams using collaboration tools such as Teams, Zoom, and project management systems. Salary / logistics: £60,000-£65,000 + additional benefits Hybrid working - 2 / 3 days a week on More ❯

Exchange Online in particular), Active Directory Good knowledge of GPO deployment and configuration Understanding of Firewall technologies Ability to troubleshoot IT related issues Understanding of industrial control systems HMI / SCADA Understanding of industrial control systems communication protocols Networking knowledge covering LAN / VLAN / WAN technologies A sound range of IT / OT skills, which … need to be kept up to date in line with IT / OT developments in the business. Demonstrate the ability to acquire and apply new technical knowledge, be able to work without close supervision Understand NIST Understand ISO 27001 Cyber Resilience Disaster Recovery For more information on this opportunity please feel free to contact Imperial More ❯

Exchange Online in particular), Active Directory Good knowledge of GPO deployment and configuration Understanding of Firewall technologies Ability to troubleshoot IT related issues Understanding of industrial control systems HMI / SCADA Understanding of industrial control systems communication protocols Networking knowledge covering LAN / VLAN / WAN technologies A sound range of IT / OT skills, which … need to be kept up to date in line with IT / OT developments in the business. Demonstrate the ability to acquire and apply new technical knowledge, be able to work without close supervision Understand NIST Understand ISO 27001 Cyber Resilience Disaster Recovery For more information on this opportunity please feel free to contact Imperial More ❯

data products aligned to business priorities. Develop scalable data models that support BI and analytics platforms including Tableau and Power BI. Apply robust engineering practices (testing, version control, CI / CD) to all development. Advocate for and embed DataOps principles across data workflows. Partner with other technology functions to solve shared challenges and streamline processes. Ensure compliance with security … and quality frameworks, including ISO 27001, BS 10012, ISO 50001, and ISO 22301 . Skills & Experience Strong SQL expertise, with the ability to write and optimise complex queries. Hands-on experience with dbt (including testing and layered modelling). Practical knowledge of Snowflake for loading, transforming, and exporting datasets. Experience building and … solutions. Collaborative mindset with a passion for learning and improving processes. Desirable Extras Experience with cloud platforms such as AWS, Azure, or GCP . Knowledge of Git and CI / CD pipelines in data workflows. Exposure to Python or a similar programming language. More ❯

proactive security guidance. Ensure all penetration testing activities comply with NCSC CHECK scheme requirements, maintaining meticulous documentation and audit trails. Implement and maintain quality management processes aligned with ISO 9001 and ISO 27001 standards, driving continuous improvement in service delivery and client satisfaction. Review and approve penetration testing reports, ensuring technical accuracy, comprehensive coverage … AWS; knowledge of GCP and OCI is a bonus), including configuration reviews and penetration testing of these environments. Capability to perform penetration testing of API, Mobile (Android & iOS), Desktop / Thick Client Apps. Understanding or practical experience of code reviews, including CI / CD pipelines. Practical experience of operating system hardening for Microsoft and Linux environments. Non Essential … Industrial control systems (ICS / SCADA) security assessment Hardware security testing and IoT device assessment Security architecture review and design consultation While this role is advertised as remote, it will require occasional visits to client sites and the office as needed. Candidates must be based in the UK and have the right to work, as sponsorship cannot be provided. More ❯

outcomes* Proactively monitoring systems, managing SLAs, and keeping documentation sharp* Collaborating with vendors, internal teams and stakeholders to resolve issues* Getting involved in maintenance, incident response and occasional 24 / 7 supportMust haves:* 2+ years MIN technical consulting experience within a Managed Service Provider* Strong communicator who can simplify the complex for clients* Ability to recommend and implement smart … Hands-on expertise with:o Windows Server (AD, GPOs, DNS, DHCP, DFS, Hyper-V)o Microsoft 365 (Exchange Online, Teams, Entra ID, Intune, Defender suite)o Networking (VLAN, LAN / WAN, VPN, Firewalls, NAT, Layer 3 Switching)o Virtualisation (Hyper-V / VMware)o Backup solutions (cloud & on-prem)o Endpoint protection (XDR / MDR)What's … in it for you:* Competitive salary + car / car allowance* Unlimited holidays (yes, really)* Vitality healthcare perks (Apple Watch, cinema tickets, coffee and more)* Monthly CPD allowance for training / certs* Flexible hybrid working* Genuine career progression* Charity days, referral bonuses & social events* Electric car scheme* Free fruit, free parking & a friendly, collaborative culture More ❯

servers, networks, and storage. Diagnose and resolve deep technical problems, providing clear explanations and mentoring to 1st and 2nd line engineers. Manage, maintain, and optimise infrastructure including: Windows Server / Active Directory (including GPO) VMware vSphere (HA / DRS, vSwitches, performance tuning) Linux Systems (Ubuntu, services, automation, troubleshooting) Networking (routing, switching, VLANs, firewalls, VPNs, TCP / IP … services. Virtualisation: Expert knowledge of VMware vSphere (vCenter, ESXi, clustering, storage, networking). Linux Administration: Strong command-line expertise, system hardening, and cross-platform integration. Networking: In-depth TCP / IP knowledge, subnetting, routing, switching, and performance analysis. Storage & Backup: RAID design, SAN / NAS, vSAN, snapshot strategies, backup / restore principles. Scripting & Automation: PowerShell, Bash, or … able to explain complex technical concepts in a clear and logical manner. Desirable Skills Experience with cloud platforms (Azure, AWS, GCP). Knowledge of DevOps practices and tools (CI / CD, Infrastructure as Code). Exposure to containerisation (Docker, Kubernetes). Familiarity with security frameworks and compliance standards (ISO 27001, CE+). What You Get More ❯

executing IT security strategies that align with evolving business objectives. Drafting, maintaining and implementing information security policies and Standard Operating Procedures (SOPs). Configuring and overseeing mobile securityMDM (MAM / BYOD)to protect business continuity. Leading vulnerability assessments, penetration tests, firewall policy enforcement, and remediation efforts. Authoring compelling tender responses, clearly demonstrating technical capability and strategic value. Enhancing Microsoft … security leveraging Purview, Conditional Access, MFA to safeguard modern workplaces. Ensuring compliance with GDPR (DPA 2018), Cyber Essentials (Basic & Plus), and ISO 27001, supported by frameworks like NCSC and NIST. Operating around cybersecurity fundamentals: CIA (Confidentiality, Integrity, Availability), proactive threat prevention, and rapid incident response About You You're … naturally aligned with MSP-style work, deeply familiar with security frameworks, and thrive at the intersection of strategy and execution. In addition to this, you must have experience in / exposure to: Background in MSP / MSSP environments. Proven history of facilitating workshops and supporting sales from warm leads through closure. Strong understanding of ITIL, CAB, and structured More ❯

so that it can be interpreted by Information Technology and business individuals Skills: Recognised qualifications include CISSP, CISM, CISA or equivalent ISO 27001 Lead Auditor / Lead Implementor or similar qualification Familiarity with the NIST Cybersecurity Framework is beneficial. Formal qualification in Information Security domain or equivalent experience desirable Cloud Security Controls Location – Manchester or More ❯

so that it can be interpreted by Information Technology and business individuals Skills: Recognised qualifications include CISSP, CISM, CISA or equivalent ISO 27001 Lead Auditor / Lead Implementor or similar qualification Familiarity with the NIST Cybersecurity Framework is beneficial. Formal qualification in Information Security domain or equivalent experience desirable Cloud Security Controls Location – Manchester or More ❯

so that it can be interpreted by Information Technology and business individuals Skills: Recognised qualifications include CISSP, CISM, CISA or equivalent ISO 27001 Lead Auditor / Lead Implementor or similar qualification Familiarity with the NIST Cybersecurity Framework is beneficial. Formal qualification in Information Security domain or equivalent experience desirable Cloud Security Controls Location – Manchester or More ❯

ll Be Doing Acting as a trusted point of contact, delivering excellent customer service across the business. Supporting and maintaining Citrix environments, Visualfiles, storage, and backup solutions. Providing 2nd / 3rd line support for infrastructure-related incidents and requests. Monitoring and managing servers, storage, and networks across multiple office locations. Ensuring backup, recovery, and security measures are in place … infrastructure projects, upgrades, and system improvements. What We're Looking For Solid knowledge of Windows Server, Active Directory, Group Policy, networking. Strong hands-on experience with Citrix Virtual Apps / Desktops. Background in Visualfiles administration / support. Experience with storage (SAN), backup tools (Veeam, Commvault), and virtualisation (VMware / Hyper-V). Previous experience working in a … Certified Associate or Microsoft Certified: Azure Administrator . Knowledge of Microsoft Azure or other cloud platforms. Familiarity with ITIL practices and service management tools. Exposure to other case management / legal applications (e.g., SOS). Why Apply? Chance to work on both day-to-day support and strategic IT projects . Wide technical exposure in a professional, supportive environment. More ❯