1 to 25 of 97 ISO/IEC 27001 Jobs in the North of England

standards, ensuring compliance with emerging global AI regulations, and building trust in our AI solutions. A primary focus will be leading the implementation and upkeep of ISO / IEC 42001 certification for AI Management Systems while embedding AI governance, risk management, and lifecycle processes into our wider assurance framework. You will act as the key … collaborate with product, customer, and technology teams to strengthen our compliance posture and enhance adoption. Required Qualifications & Experience Proven experience delivering ISO certifications (e.g., ISO / IEC 42001 , ISO 27001 , or similar standards). Strong knowledge of AI governance, risk management, and model lifecycle assurance frameworks. Familiarity with ISO … dependent upon your experience, qualifications and training. If you wish to apply, please read our Privacy Notice describing how we may process, disclose and store your personal data: roberthalf.com / gb / en / privacy-notice. JBRP1_UKTJ More ❯

automation, enhancing client experiences, and building strong team dynamics. Because client communication and information security are vital to the service we deliver, you’ll receive Client Communication and ISO 27001 awareness training, delivered as part of your onboarding. This will ensure you’re confident not only in the technical aspects of your role, but also in … our Python automation framework, by writing plugins • Collaborate with colleagues to continuously improve internal processes and automation • Document fixes and create knowledge base articles • Operate in line with ISO 27001 standards and best practices for security and compliance • Participate in the on-call rota (after probation) • Support the wider team, sharing knowledge and contributing ideas for … continuous improvement What You’ll Gain • Client Communication and ISO 27001 awareness training • Hands-on experience with GitOps and infrastructure as code from the start • Mentoring to grow your Python, DevOps, security, and automation skills • Regular opportunities to contribute to automation and tooling • A friendly, supportive team culture where learning is encouraged • The chance to directly More ❯

automation, enhancing client experiences, and building strong team dynamics. Because client communication and information security are vital to the service we deliver, you’ll receive Client Communication and ISO 27001 awareness training, delivered as part of your onboarding. This will ensure you’re confident not only in the technical aspects of your role, but also in … our Python automation framework, by writing plugins • Collaborate with colleagues to continuously improve internal processes and automation • Document fixes and create knowledge base articles • Operate in line with ISO 27001 standards and best practices for security and compliance • Participate in the on-call rota (after probation) • Support the wider team, sharing knowledge and contributing ideas for … continuous improvement What You’ll Gain • Client Communication and ISO 27001 awareness training • Hands-on experience with GitOps and infrastructure as code from the start • Mentoring to grow your Python, DevOps, security, and automation skills • Regular opportunities to contribute to automation and tooling • A friendly, supportive team culture where learning is encouraged • The chance to directly More ❯

response readiness. You will play a key role in managing cyber incident response planning , leading compliance activities (CIS Controls, ISO 27001, Cyber Essentials+), and configuring / optimising the CrowdStrike Falcon platform. The ideal candidate will also be comfortable designing and running desktop exercises to ensure IT staff are prepared to respond effectively to potential incidents. … e.g. ISO 27001, CIS, Cyber Essentials+ ). Ability to lead incident response planning and facilitate response exercises. Familiarity with patch management, vulnerability assessment, and endpoint / server hardening. Clear written and verbal communication skills, with the ability to train and guide IT staff. Desirable: Exposure to SIEM tools (e.g. Sentinel, Splunk). Scripting or automation … skills (PowerShell, Python). Knowledge of UK GDPR and data protection requirements. Security certification (e.g. Security+, CISSP, ISO 27001 Lead Implementer / Auditor). More ❯

response readiness. You will play a key role in managing cyber incident response planning , leading compliance activities (CIS Controls, ISO 27001, Cyber Essentials+), and configuring / optimising the CrowdStrike Falcon platform. The ideal candidate will also be comfortable designing and running desktop exercises to ensure IT staff are prepared to respond effectively to potential incidents. … e.g. ISO 27001, CIS, Cyber Essentials+ ). Ability to lead incident response planning and facilitate response exercises. Familiarity with patch management, vulnerability assessment, and endpoint / server hardening. Clear written and verbal communication skills, with the ability to train and guide IT staff. Desirable: Exposure to SIEM tools (e.g. Sentinel, Splunk). Scripting or automation … skills (PowerShell, Python). Knowledge of UK GDPR and data protection requirements. Security certification (e.g. Security+, CISSP, ISO 27001 Lead Implementer / Auditor). More ❯

response readiness. You will play a key role in managing cyber incident response planning , leading compliance activities (CIS Controls, ISO 27001, Cyber Essentials+), and configuring / optimising the CrowdStrike Falcon platform. The ideal candidate will also be comfortable designing and running desktop exercises to ensure IT staff are prepared to respond effectively to potential incidents. … e.g. ISO 27001, CIS, Cyber Essentials+ ). Ability to lead incident response planning and facilitate response exercises. Familiarity with patch management, vulnerability assessment, and endpoint / server hardening. Clear written and verbal communication skills, with the ability to train and guide IT staff. Desirable: Exposure to SIEM tools (e.g. Sentinel, Splunk). Scripting or automation … skills (PowerShell, Python). Knowledge of UK GDPR and data protection requirements. Security certification (e.g. Security+, CISSP, ISO 27001 Lead Implementer / Auditor). More ❯

Information Security Manager (3 days / week, permanent pro-rata) Location: Leeds-hybrid (on-site 1-2 day / week, typically Mon / Tue) Reports to: VP, Information Security Team: 5 in security (within a wider UK tech org of ~25, multi-region) We’re looking for a hands-on InfoSec Manager to take pressure off the … shape the control environment, and keep the security operations and compliance moving at speed. You’ll blend GRC and technical oversight , working closely with two security engineers (vuln scanning / IDS, external pen-test liaison) and two GRC specialists. What you’ll do Drive and extend ISO 27001 implementation / maintenance (UK certified; expanding … to Madrid and Manila ). Support SOC 2 Type 2 maintenance (already accredited)—expert level not required. Oversee SIEM operations with the tech team: ensure log ingestion / coverage , daily monitoring, and follow-up. Guide vulnerability management, alert triage (Alert Logic), and external pen-test cycles. Keep evidence flows tight: client questionnaires, audit responses, security awareness, and user access More ❯

security perspective. Policy, Procedure, and Guidance Oversight Review, update, and enforce security policies, standards, and guidance (e.g. Acceptable Use, Incident Response, Remote Access). Ensure compliance with NCSC, ISO 27001, NIST, Cyber Essentials, and GDPR frameworks. Clarify security roles and responsibilities across departments. Support Information Governance and Data … Protection teams on policy alignment and compliance. Technical Review and Oversight Lead or oversee reviews of system architectures, applications, cloud services (IaaS, PaaS, SaaS), and network security. Assess IAM / PAM implementations and M365 / Azure / Active Directory configurations. Conduct or oversee penetration testing, vulnerability assessments, and threat modelling. Review and approve technical designs and solution … security standpoint. Assurance, Compliance, and Audit Develop and maintain an IT Security Assurance Framework. Lead internal and external audits, accreditation, and certification activities (e.g. PSN, Cyber Essentials Plus, ISO 27001). Monitor compliance with standards and respond to audit findings. Analyse SIEM outputs, threat intelligence feeds, and monitoring tools. Performance Monitoring and Reporting Define and track More ❯

central leader responsible for the company's overall security and compliance posture. You will manage the entire Information Security Management System (ISMS), ensuring the continuous maintenance of the ISO 27001 standard and leading the comprehensive risk management program. Your duties include coordinating internal and external audits, ensuring effective tracking of strategic security objectives and KPIs, and … overseeing all security incident response and resolution efforts. WHAT WILL I BE DOING: Lead and manage the end-to-end Information Security Management System (ISMS), ensuring continued ISO 27001 compliance. Drive information risk management across the organisation, including identification, assessment, treatment, and ongoing tracking of risks, non-compliances, and associated action plans. Coordinate Information Asset Owners … good teacher Ability to work independently and with ad hoc teams Rigour, precision and attention to details Writing skills Ensuring technological and regulatory watch IT tools skills (Microsoft Office / Google Workspace / Jira) Policies and procedures related to information security, in particular ISO 27001 Project management techniques Control of the audit activity: procedure More ❯

central leader responsible for the company's overall security and compliance posture. You will manage the entire Information Security Management System (ISMS), ensuring the continuous maintenance of the ISO 27001 standard and leading the comprehensive risk management program. Your duties include coordinating internal and external audits, ensuring effective tracking of strategic security objectives and KPIs, and … overseeing all security incident response and resolution efforts. WHAT WILL I BE DOING: Lead and manage the end-to-end Information Security Management System (ISMS), ensuring continued ISO 27001 compliance. Drive information risk management across the organisation, including identification, assessment, treatment, and ongoing tracking of risks, non-compliances, and associated action plans. Coordinate Information Asset Owners … good teacher Ability to work independently and with ad hoc teams Rigour, precision and attention to details Writing skills Ensuring technological and regulatory watch IT tools skills (Microsoft Office / Google Workspace / Jira) Policies and procedures related to information security, in particular ISO 27001 Project management techniques Control of the audit activity: procedure More ❯

We encourage you to hit your personal and professional learning and development goals with our tailored programs and tools. Your wellness: We care about your holistic wellbeing Your work / life blend: We know that work is just one aspect of your life - we want to help you create your ideal work / life blend, rather than squeezing … lead our Security Operations (SOC), Security Engineering, and Information Security and Governance functions, covering everything from incident response and secure architecture to audits, lender assurance, and compliance with ISO 27001 and FCA requirements. This is a senior leadership role offering the opportunity to define security strategy, strengthen governance, and protect critical systems, data, and operations. You … of security governance, assurance frameworks, and audit processes (ISO 27001, NIST, GDPR, Cyber Essentials Plus). Experience with modern security tooling such as: Cortex XDR / Palo Alto Networks Splunk (SIEM and dashboarding) Abnormal Security (email security) Prisma Cloud (cloud security posture management) Airlock (application and API security) Nucleus (vulnerability management and reporting) Deep knowledge More ❯

We encourage you to hit your personal and professional learning and development goals with our tailored programs and tools. Your wellness: We care about your holistic wellbeing Your work / life blend: We know that work is just one aspect of your life - we want to help you create your ideal work / life blend, rather than squeezing … lead our Security Operations (SOC), Security Engineering, and Information Security and Governance functions, covering everything from incident response and secure architecture to audits, lender assurance, and compliance with ISO 27001 and FCA requirements.This is a senior leadership role offering the opportunity to define security strategy, strengthen governance, and protect critical systems, data, and operations. You'll … security governance, assurance frameworks, and audit processes (ISO 27001, NIST, GDPR, Cyber Essentials Plus). Experience with modern security tooling such as:o Cortex XDR / Palo Alto Networkso Splunk (SIEM and dashboarding)o Abnormal Security (email security)o Prisma Cloud (cloud security posture management)o Airlock (application and API security)o Nucleus (vulnerability management More ❯

closely with cloud, cyber, and engineering teams desirable Knowledge and experience in different security standards and frameworks with track record in leading ISO 27001 accreditation / re-accreditation projects Excellent Communication Skills About the role Continue review and improve the security policies Implement and maintain ISMS … Ensure compliance with relevant security standards and regulations (ISO 27001, SOC 2, Cyber Essentials, etc.) Experience of undergoing third-party assessments / audits (e.g. ISO27001, SOC 2, etc.) Work to acquire new accreditations in line with the business aspirations Review, implement, and test business continuity plan and policy Manage technical and business stakeholders to achieve … assessments and internal process audits Work with internal teams and stakeholders to manage risks, find solutions, and resolve issues Work with external auditor for the regular auditing activities Vendor / supplier reviews Participating in the sales process - security questionnaires for prospects and / or customers Maintain and / or improve information security awareness within the business Monitoring More ❯

the organisation's security posture. You'll collaborate closely with infrastructure, development, and compliance teams to maintain high standards of cyber resilience and uphold key frameworks such as ISO 27001 and Cyber Essentials Plus . Key Responsibilities: * Lead threat detection, incident response, and vulnerability management activities * Strengthen cyber security posture across cloud, infrastructure, and applications * Provide … expert guidance to development teams on secure SDLC practices * Maintain compliance with ISO 27001 and Cyber Essentials Plus standards * Mentor junior … analysts and support SOC process development Key Skills & Experience: * Strong technical background in cyber security * Experience with application, cloud (AWS) , and infrastructure security * Proven hands-on experience with EDR / NDR tools , particularly CrowdStrike * Proficient with Linux and databases such as MySQL , PostgreSQL , Apache , and PHP * Knowledge of ISO 27001 , Cyber Essentials , and general security More ❯

IT Security Maturity Assessment Lead IT Security Maturity Assessment Lead - IT Maturity Assessments, Maturity Models, IT Security Function, CMMI, COBIT, NIST, ITIL, ISO 27001, Resource Management - Hybrid (Preston) - to £57k + excellent pension and bonus My client has an urgent need for an IT Security Maturity Assessment Leadto play a key role in ensuring that its … NIST, ITIL, ISO 27001) would be ideal The role will also involve managing and reporting on KPIs for the IT and Security function, recommending improvements / changes to these KPIs and striving for operational excellence by identifying threats and opportunities to optimise resource usage, reduce waste and improve cost-efficiency. IT Security Maturity Assessment Lead … IT Maturity Assessments, Maturity Models, IT Security Function, CMMI, ITIL, ISO 27001, Resource Management - Hybrid (Preston) - to £57k + excellent pension and bonus Essential Recruitment is an IT recruitment business with an in-depth understanding of the rapidly-changing nature of the Technology market. We build long-term relationships with our clients and candidates based on More ❯

IT Security Maturity Assessment Lead IT Security Maturity Assessment Lead - IT Maturity Assessments, Maturity Models, IT Security Function, CMMI, COBIT, NIST, ITIL, ISO 27001, Resource Management - Hybrid (Preston) - to £57k + excellent pension and bonus My client has an urgent need for an IT Security Maturity Assessment Leadto play a key role in ensuring that its … NIST, ITIL, ISO 27001) would be ideal The role will also involve managing and reporting on KPIs for the IT and Security function, recommending improvements / changes to these KPIs and striving for operational excellence by identifying threats and opportunities to optimise resource usage, reduce waste and improve cost-efficiency. IT Security Maturity Assessment Lead … IT Maturity Assessments, Maturity Models, IT Security Function, CMMI, ITIL, ISO 27001, Resource Management - Hybrid (Preston) - to £57k + excellent pension and bonus Essential Recruitment is an IT recruitment business with an in-depth understanding of the rapidly-changing nature of the Technology market. We build long-term relationships with our clients and candidates based on More ❯

New and existing systems, applications, and infrastructure. Cloud service configurations (IaaS, SaaS, PaaS). Network architecture, including firewalls, VPNs, and segmentation. Identity and Access Management (IAM) implementations, including PIM / PAM. Security configurations in Microsoft 365, Azure, Active Directory, etc. Conduct or oversee vulnerability assessments, penetration tests, and threat modelling. Review and approve technical designs and solution architectures from … a security standpoint. Assurance, Compliance, and Audit Develop and maintain the IT Security Assurance Framework. Lead or coordinate internal / external audits and security assessments. Track and report on compliance with standards and regulatory requirements. Work with internal and external partners to deliver accreditation or certification activities (e.g., PSN, Cyber Essentials Plus, ISO 27001). … You will always however hear from us by phone if we are able to take your CV forward to the next stage. You can also follow us at Twitter / Facebook / LinkedIn or via our website www.essentialemploy.co.uk. More ❯

professional development and funded certifications (AWS, security, etc.). Work that makes a difference to how citizens access vital public services. Be part of a company that holds ISO 9001, ISO 27001, and Cyber Essentials Plus certifications. Key Responsibilities of the Infrastructure & Security Support Specialist: Supporting and maintaining the AWS infrastructure that powers live … Helping monitor security alerts and incidents — learning from experienced engineers. Supporting Docker-based web environments (nginx, WordPress, Drupal, MariaDB). Learning how to meet key government security standards (ISO 27001, Cyber Essentials Plus). What We’re Looking For: Commercial experience in IT support (1st Line, Service Desk, or similar) with a clear track record of More ❯

professional development and funded certifications (AWS, security, etc.). Work that makes a difference to how citizens access vital public services. Be part of a company that holds ISO 9001, ISO 27001, and Cyber Essentials Plus certifications. Key Responsibilities of the Infrastructure & Security Support Specialist: Supporting and maintaining the AWS infrastructure that powers live … Helping monitor security alerts and incidents — learning from experienced engineers. Supporting Docker-based web environments (nginx, WordPress, Drupal, MariaDB). Learning how to meet key government security standards (ISO 27001, Cyber Essentials Plus). What We’re Looking For: Commercial experience in IT support (1st Line, Service Desk, or similar) with a clear track record of More ❯

architecture, ETL pipelines, and automation frameworks to accelerate digital transformation across centralized modules. Provide technical leadership and mentorship to architects, developers, and DevOps engineers; conduct architecture reviews, ensure HLD / LLD / TSD documentation, and enforce compliance with TOGAF, ISO 27001, and GDPR. Partner with CXOs, product heads, and delivery leaders to align technology … decisions with strategic business outcomes, fostering a culture of DevSecOps, CI / CD automation, and Infrastructure as Code (IaC) for continuous modernization, operational excellence, and measurable ROI. Required Qualifications Bachelors or Masters degree in Computer Science, Engineering, or a related discipline. 15+ years of experience in enterprise software engineering and architecture, including 8+ years in architectural leadership roles. Proven … ability to translate complex business goals into scalable architectural blueprints, guide cross-functional teams, and communicate architectural vision effectively to executive stakeholders. Technology Stack Architecture & Frameworks: TOGAF, Microservices, REST / GraphQL APIs, Event-driven Design Programming: Java, Groovy, Spring Boot, Spring Cloud, Spring Data JPA, Spring Security, Hibernate Frontend / UI: ReactJS, HTML5, CSS3, jQuery CCM Platforms: Quadient More ❯

ensuring all customers benefit from foundational security controls. Develop optional upgrade paths for customers seeking formal certification or enhanced assurance—such as Cyber Essentials, Cyber Essentials Plus, or ISO 27001—using the same framework as a foundation. Conduct a gap analysis of Curveball’s current product and service portfolio to identify areas requiring enhancement to meet … IT security strategies that align with evolving business objectives. Draft, maintain, and implement information security policies and Standard Operating Procedures (SOPs). Configure and oversee mobile security—MDM (MAM / BYOD)—to protect business continuity. Lead vulnerability assessments, penetration tests, firewall policy enforcement, and remediation efforts. Author compelling tender responses, clearly demonstrating technical capability and strategic value. Enhance Microsoft … naturally aligned with MSP-style work, deeply familiar with security frameworks, and thrive at the intersection of strategy and execution. In addition to this, you must have experience in / exposure to: Background in MSP / MSSP environments. Proven history of facilitating workshops and supporting sales from warm leads through closure. Strong understanding of ITIL, CAB, and structured More ❯

Data / Information Manager - Manchester (Hybrid) Robert Half has been retained by a leading infrastructure consulting business to recruit a Data Manager. This is an exciting opportunity for to work for an organisation that is supporting with the design and construction of a high profile, £3bn infrastructure project in Manchester. About the Role The Data Manager will be responsible … working with sensitive data have valid DBS certifications. Maintain an up-to-date log of certifications and renewal dates. Qualifications and Experience Circa 5 years of experience in data / information management. Proficiency in managing Common Data Environments (CDEs) and implementing robust data security protocols. Degree in Information Management, IT, Engineering, or a related field. Relevant certification, such as … dependent upon your experience, qualifications and training. If you wish to apply, please read our Privacy Notice describing how we may process, disclose and store your personal data: roberthalf.com / gb / en / privacy-notice. More ❯

Oversight Review and update security policies, procedures, standards, and guidance regularly (e.g., acceptable use, remote access, incident response, etc.). Ensure alignment with frameworks such as NCSC guidance, ISO 27001, NIST, Cyber Essentials, and GDPR. Develop and communicate clear roles and responsibilities for information security across departments. Support Information Governance and Data Protection with policy harmonisation … New and existing systems, applications, and infrastructure. Cloud service configurations (IaaS, SaaS, PaaS). Network architecture, including firewalls, VPNs, and segmentation. Identity and Access Management (IAM) implementations, including PIM / PAM. Security configurations in Microsoft 365, Azure, Active Directory, etc. Conduct or oversee vulnerability assessments, penetration tests, and threat modelling. Review and approve technical designs and solution architectures from … a security standpoint. Assurance, Compliance, and Audit Develop and maintain the IT Security Assurance Framework. Lead or coordinate internal / external audits and security assessments. Track and report on compliance with standards and regulatory requirements. Work with internal and external partners to deliver accreditation or certification activities (e.g., PSN, Cyber Essentials Plus, ISO 27001). More ❯

for a step up in their procurement career, applicants from a Buyer role will be considered depending on background. Ideally, your experience should include: Ideally, experience in IT hardware / software / electronic components procurement. Understanding of supplier risk management frameworks alongside proven ability to run effective tendering processes such as RFQs / RFIs / RFPs. … 27001 information security standards; awareness of SOC II requirements; knowledge of ISO 14001 sustainability principles. Exceptional negotiation skills supported by experience in contract drafting / review (with legal support) for both domestic and international suppliers. The Company Employees benefit from 3 days in the office and 2 from home, with an accessible office just … Robert Walters Operations Limited is an employment business and employment agency and welcomes applications from all candidates About the job Contract Type: Permanent Specialism: Procurement & Supply Chain Focus: Purchasing / Procurement Industry: Purchasing and Procurement Salary: £45,000 - £55,000 per annum + Benefits + Flexible Working Workplace Type: Hybrid Experience Level: Mid Management Location: Greater Manchester More ❯

for a step up in their procurement career, applicants from a Buyer role will be considered depending on background. Ideally, your experience should include: Ideally, experience in IT hardware / software / electronic components procurement. Understanding of supplier risk management frameworks alongside proven ability to run effective tendering processes such as RFQs / RFIs / RFPs. … 27001 information security standards; awareness of SOC II requirements; knowledge of ISO 14001 sustainability principles. Exceptional negotiation skills supported by experience in contract drafting / review (with legal support) for both domestic and international suppliers. The Company: Employees benefit from 3 days in the office and 2 from home, with an accessible office just More ❯