1 to 25 of 96 ISO/IEC 27001 Jobs in the North of England

Security Engineer - Cloud / Compliance / ISO 27001 Location: Knutsford (Cheshire) - Hybrid Salary: £65,000 - £80,000 DOE + benefits About the Role We're working with a rapidly growing, cloud-first technology business that provides secure, compliant software to global enterprise clients across regulated sectors. They're now looking for an experienced Security … policies, and frameworks. Oversee day-to-day security operations including access control, patching, log review, and alert response. Implement and manage controls across cloud and on-premises environments (Azure / AWS preferred). Lead incident response processes and investigations, coordinating remediation actions. Support compliance programmes - ISO 27001, SOC 2 Type II, and data-protection (GDPR … Strong understanding of ISMS principles (ISO 27001) and audit support for SOC 2 Type II. Hands-on experience with security tools and controls - SIEM, IAM / PAM, endpoint protection, vulnerability management. Working knowledge of data-protection and privacy standards (GDPR, HIPAA). Excellent communication skills - able to collaborate across technical and non-technical teams. Relevant More ❯

Risk & Compliance Analyst - ISO 27001, SOC 2, GDPR Location: Knutsford (Cheshire) | Office-based Salary: £35,000 - £45,000 DOE + benefits About … the Role We're supporting a fast-growing technology company that delivers secure, cloud-based platforms to highly regulated enterprise clients. They're looking for a Risk & Compliance Officer / Analyst to play a key part in maintaining and improving their information-security and compliance frameworks. Working closely with senior leadership, you'll help ensure the business remains compliant … audit readiness, evidence gathering, and control implementation. Excellent attention to detail, analytical thinking, and confident stakeholder communication. Relevant certifications welcomed - CRISC, ISO 27001 Lead Implementer / Auditor, CIPP / E, GDPR Practitioner, CISM, or CISA. Why Apply? Join a modern, compliance-driven business where security and governance are at the heart of operations. Visible More ❯

automation, enhancing client experiences, and building strong team dynamics. Because client communication and information security are vital to the service we deliver, you’ll receive Client Communication and ISO 27001 awareness training, delivered as part of your onboarding. This will ensure you’re confident not only in the technical aspects of your role, but also in … our Python automation framework, by writing plugins • Collaborate with colleagues to continuously improve internal processes and automation • Document fixes and create knowledge base articles • Operate in line with ISO 27001 standards and best practices for security and compliance • Participate in the on-call rota (after probation) • Support the wider team, sharing knowledge and contributing ideas for … continuous improvement What You’ll Gain • Client Communication and ISO 27001 awareness training • Hands-on experience with GitOps and infrastructure as code from the start • Mentoring to grow your Python, DevOps, security, and automation skills • Regular opportunities to contribute to automation and tooling • A friendly, supportive team culture where learning is encouraged • The chance to directly More ❯

Information Security Officer / ISO27001 / Data Protection £65,000 - £75,000 + Benefits Newcastle Our client is an internationally renowned SaaS organisation that's flagship product is used by household media organisations around the world. They're looking for an Information Security Officer to join the organisation to drive their infosec maturity. You'll be responsible for … designing and implementing their security procedures in line with ISO27001, GDPR and Cyber Essentials+, ensuring compliance across the business. You will also act as the Data Protection Officer and work with stakeholders of across the business to ensure awareness of cyber security best practices. You must have proven experience as an Information Security Officer who has taken a business through … the ISO27001 accreditation process. You'll have outstanding stakeholder management experience and the ability to articulate complex security challenges to non-technical stakeholders to ensure standards are met. Newcastle £65,000 - £75,000 + Benefits Information Security Officer / ISO27001 / Data Protection More ❯

the business. You’ll lead audits, influence policy, and strengthen the organisation’s security and compliance posture. Key Responsibilities Lead and enhance governance, risk, and compliance frameworks. Manage internal / external audits and risk assessments. Ensure compliance with PCI DSS, ISO 27001, GDPR, and NIST. Develop and improve policies, procedures, and vendor risk management. Support … incident response and promote a culture of security awareness. Experience & Skills Proven leadership in GRC or Information Security. Strong knowledge of ISO 27001, PCI DSS, GDPR, NIST. Experience managing audits and compliance programmes. Excellent communication and … stakeholder management. Hands-on technical understanding of security controls. Desirable: Certifications: CISM, CRISC, ISO 27001 Lead Auditor (or equivalent). Experience with cloud security (AWS / Azure) and enterprise-scale environments. Benefits Salary up to £75,000+ (DOE) Private healthcare, pension & income protection Life assurance & wellbeing support Cycle-to-work & EV schemes Career growth in More ❯

We encourage you to hit your personal and professional learning and development goals with our tailored programs and tools. Your wellness: We care about your holistic wellbeing Your work / life blend: We know that work is just one aspect of your life - we want to help you create your ideal work / life blend, rather than squeezing … lead our Security Operations (SOC), Security Engineering, and Information Security and Governance functions, covering everything from incident response and secure architecture to audits, lender assurance, and compliance with ISO 27001 and FCA requirements.This is a senior leadership role offering the opportunity to define security strategy, strengthen governance, and protect critical systems, data, and operations. You'll … security governance, assurance frameworks, and audit processes (ISO 27001, NIST, GDPR, Cyber Essentials Plus). Experience with modern security tooling such as:o Cortex XDR / Palo Alto Networkso Splunk (SIEM and dashboarding)o Abnormal Security (email security)o Prisma Cloud (cloud security posture management)o Airlock (application and API security)o Nucleus (vulnerability management More ❯

and compliance experience and familiarity with other standards. Experience Required: At least 2-3 years in a Cyber security & GRC role Be a PCI-DSS expert around payments ISO 27001and GDPR Knowledge of Risk Management, including risk identification, assessment, and mitigation techniques Good experience around Audits and compliance Any penetration testing experience would be a bonus You'll … work closely with both internal and external stakeholders across Legal, Risk & Audit, Procurement, and IT to embed strong governance and maintain alignment with leading standards such as ISO 27001, NIST CSF, and GDPR. The position combines both strategic oversight and hands-on delivery, providing clear visibility of risks and driving measurable improvements in security maturity. This … and forward-thinking environment we'd love to hear from you. Press 'Apply Now', or send your CV directly to faye . landells @ circlerecruitment . com Keywords: Cyber Security / GRC / PCI DSS / Governance Risk Compliance / Manchester Circle Recruitment is acting as an Employment Agency in relation to this vacancy. Earn yourself a More ❯

and compliance experience Experience Required: At least 5 years in a Cyber security & GRC role, at Senior, lead or manager level. Be a PCI-DSS expert around payments ISO 27001and GDPR Knowledge of Risk Management, including risk identification, assessment, and mitigation techniques Good experience around Audits and compliance Any penetration testing experience would be a bonus You'll … work closely with both internal and external stakeholders across Legal, Risk & Audit, Procurement, and IT to embed strong governance and maintain alignment with leading standards such as ISO 27001, NIST CSF, and GDPR. The position combines both strategic oversight and hands-on delivery, providing clear visibility of risks and driving measurable improvements in security maturity. This … collaborative and forward-thinking environment, we'd love to hear from you. Press 'Apply Now', or send your CV directly to matthew. leach @ circlerecruitment . com Keywords: Cyber Security / GRC / PCI DSS / Governance Risk Compliance / Manchester Circle Recruitment is acting as an Employment Agency in relation to this vacancy. Earn yourself a More ❯

the organisation’s security posture. You’ll collaborate closely with infrastructure, development, and compliance teams to maintain high standards of cyber resilience and uphold key frameworks such as ISO 27001 and Cyber Essentials Plus . Key Responsibilities: • Lead threat detection, incident response, and vulnerability management activities • Strengthen cyber security posture across cloud, infrastructure, and applications • Provide … expert guidance to development teams on secure SDLC practices • Maintain compliance with ISO 27001 and Cyber Essentials Plus standards • Mentor junior … analysts and support SOC process development Key Skills & Experience: • Strong technical background in cyber security • Experience with application, cloud (AWS) , and infrastructure security • Proven hands-on experience with EDR / NDR tools , particularly CrowdStrike • Proficient with Linux and databases such as MySQL , PostgreSQL , Apache , and PHP • Knowledge of ISO 27001 , Cyber Essentials , and general security More ❯

the organisation's security posture. You'll collaborate closely with infrastructure, development, and compliance teams to maintain high standards of cyber resilience and uphold key frameworks such as ISO 27001 and Cyber Essentials Plus . Key Responsibilities: * Lead threat detection, incident response, and vulnerability management activities * Strengthen cyber security posture across cloud, infrastructure, and applications * Provide … expert guidance to development teams on secure SDLC practices * Maintain compliance with ISO 27001 and Cyber Essentials Plus standards * Mentor junior … analysts and support SOC process development Key Skills & Experience: * Strong technical background in cyber security * Experience with application, cloud (AWS) , and infrastructure security * Proven hands-on experience with EDR / NDR tools , particularly CrowdStrike * Proficient with Linux and databases such as MySQL , PostgreSQL , Apache , and PHP * Knowledge of ISO 27001 , Cyber Essentials , and general security More ❯

off site retention and routine recovery tests Support infrastructure and architecture delivery across servers, storage, networking and identity Maintain risk and compliance records, prepare for audits and evidence ISO 27001 controls and testing Write clear process guides and runbooks, keep them current, and gain approval through the change process Track cyber risk items, plan mitigation, and … experience Proven delivery of disaster recovery, backup and restoration in enterprise or public sector settings Strong grasp of infrastructure and architecture fundamentals and identity services Working knowledge of ISO 27001 controls and evidence gathering for audits Experience creating process guides, change requests and policy documents that are approved and used Comfortable presenting to technical and non … audiences Calm, approachable style with clear written and verbal communication A track record of testing plans, learning and improving based on measurable results Nice to have Experience with ISO 22301 or operational resilience frameworks Familiarity with Microsoft Graph, Intune, Sentinel or Defender suite Knowledge of business impact analysis and risk registers Experience with backup platforms such as Veeam More ❯

a Security Consultant, you will be responsible for delivering customer projects across a range of GRC services in line with your current capabilities, and future capabilities after suitable training / mentoring. You will be responsible for providing professional service delivery including but not limited to; consultancy services and audit / assessment services against multiple security compliance frameworks / … of your job responsibilities to support the delivery of services which will include, but not limited to; customer scoping calls and scoping activities, quality assurance activities, customer project admin / planning, service development activities, internal collaboration with other Claranet teams to provide and support customer project delivery, shadowing and mentoring where appropriate. Beyond this, you may work with other … high standard, meeting customer and company expectations Proactively support a knowledge sharing culture between GRC team members and the wider Claranet family All Security Consultants Perform consultancy and audit / assessment activities during delivery of customer projects across the range of the Cyber Security GRC services, in line with both employee capabilities and business need Interact professionally with customers More ❯

professional development and funded certifications (AWS, security, etc.). Work that makes a difference to how citizens access vital public services. Be part of a company that holds ISO 9001, ISO 27001, and Cyber Essentials Plus certifications. Key Responsibilities of the Infrastructure & Security Support Specialist: Supporting and maintaining the AWS infrastructure that powers live … Helping monitor security alerts and incidents — learning from experienced engineers. Supporting Docker-based web environments (nginx, WordPress, Drupal, MariaDB). Learning how to meet key government security standards (ISO 27001, Cyber Essentials Plus). What We’re Looking For: Commercial experience in IT support (1st Line, Service Desk, or similar) with a clear track record of More ❯

Security Operations Collaboration and Stakeholder Management Risk Management Compliance Operations Audit, incident response, and risk management ✅ Requirements: Junior or Grad Cyber or Information Security Analyst Keen interest in ISO 27001 … SOC 2 Type 2, and cloud environments. 📜 You will receive certifications in the following: CISSP, CISM, ISO 27001 Lead Implementer, CISA, CRISC, CIPP / E. Physical Security (PSP, CPP) certifications a plus. If you're interested, please apply with your latest CV. I will aim to get back to you within 48 hours. More ❯

Security Operations Collaboration and Stakeholder Management Risk Management Compliance Operations Audit, incident response, and risk management ✅ Requirements: Junior or Grad Cyber or Information Security Analyst Keen interest in ISO 27001 … SOC 2 Type 2, and cloud environments. 📜 You will receive certifications in the following: CISSP, CISM, ISO 27001 Lead Implementer, CISA, CRISC, CIPP / E. Physical Security (PSP, CPP) certifications a plus. If you're interested, please apply with your latest CV. I will aim to get back to you within 48 hours. More ❯

the first point of contact for security incidents, your expertise will be essential in keeping our systems secure. We regret that this position is only available for UK citizens / Residents with indefinite leave to remain in the UK, with current full time work rights for the United Kingdom, currently residing in the UK. The position is located in … premises environments. Strong understanding of security principles, technologies, and industry best practices , including vulnerability and incident management. Practical experience with security monitoring and protection tools such as Firewalls, IDS / IPS, XDR, SIEM, CNAPP, and log collection platforms (e.g., CrowdStrike, Lacework). Experience in designing and implementing Identity and Access Management (IAM) solutions and maintaining secure authentication practices. Proficiency … Add your resume and anything else to showcase why you would be a great addition to our team. We regret that this position is only available for UK citizens / Residents with indefinite leave to remain in the UK. No recruitment agencies, please! We won't accept any introductions. Vix Technology is an Equal Opportunity Employer and prohibits discrimination More ❯

improve processes, and deliver high-impact outcomes in a collaborative environment. Role Highlights Lead the design, maintenance, and optimisation of core systems across Microsoft 365 , Active Directory, Azure AD / Entra ID , Exchange (hybrid), Windows Server , Intune , and enterprise networking. Act as an escalation point for complex 3rd line issues, resolving root causes and implementing preventative solutions. Deliver and … oversee infrastructure improvement projects from planning and implementation through to structured handover. Ensure systems meet and exceed security and compliance standards (ISO 27001, GDPR, Cyber Essentials Plus). Collaborate with IT leadership and business stakeholders to align technical priorities with organisational objectives. Mentor junior engineers and promote a culture of … technical excellence and continuous improvement. You Will Need Proven experience in senior infrastructure or systems engineering within medium-to-large enterprise environments. Deep technical knowledge of Microsoft 365 , Azure / Entra ID , Intune , Windows Server , networking , Nutanix , and Veeam . Strong experience leading infrastructure projects and improving operational processes. Excellent communication and stakeholder management skills — able to translate complex More ❯

actions. Cross Domain Collaboration: Drive alignment and coherence across domain architectures to ensure performance, security, and operational integrity. Compliance & Governance: Maintain adherence to regulatory and security obligations (e.g., ISO 27001, GDPR) and ensure architectural governance processes are embedded across delivery teams. Your skills that will enable us to fulfil our purpose: Extensive experience in Enterprise and … and hybrid architecture models. Proven expertise in technology risk management, asset lifecycle governance, and configuration management. Knowledge of secure architecture design, cybersecurity frameworks, and regulatory compliance (e.g., GDPR, ISO 27001). Strong leadership, communication, and stakeholder management skills across both technical and non technical audiences. Experience integrating systems across diverse platforms using APIs, middleware, and data More ❯

all times, behaviours in line with our values Ensure all work is carried out in line with company health and safety procedures and policies Ensure compliance with all ISO standard accreditations held by the business, including but not limited to Quality, Information Security and Environmental standards as set out in ISO 9001, ISO 27001 … ISO 14001 respectively Be prepared to work collaboratively, in a flexible way to assist colleagues and customers alike, in the delivery of our services to all Document / update systems with all information relevant to all our procedures, processes and policies Personal development– maintain and extend personal expertise in specific areas relevant to the requirements of the … role Provide feedback to the business on all perceived risks, issues and possible areas for improvement Additional Duties / Responsibilities This role will also include the following: Responding to client requests and actioning within SLA’s (Service Level Agreements) Administrating client device portfolio to customers’ requirements. Organising logistics of client devices Assisting to ensure device builds are completed utilising More ❯

stakeholders. Liaise with regulators, auditors, and internal teams to support transparency and accountability. Mentor and develop junior compliance colleagues, fostering a culture of continuous improvement. Contribute to maintaining ISO 27001 certification and other relevant standards (e.g. PCI DSS, Information Security). Lead business continuity planning and ensure ongoing operational resilience. Manage corporate insurance coverage and relationships … solving approach to risk mitigation. Confident communicator, able to simplify complex issues and influence at senior levels. Experience leading compliance monitoring, audits, investigations, and remediation initiatives. Familiarity with ISO 27001 , PCI DSS , and other information security frameworks. Experience managing business continuity and insurance programmes. Leadership capability with a track record of mentoring others and representing compliance More ❯

stakeholders. Liaise with regulators, auditors, and internal teams to support transparency and accountability. Mentor and develop junior compliance colleagues, fostering a culture of continuous improvement. Contribute to maintaining ISO 27001 certification and other relevant standards (e.g. PCI DSS, Information Security). Lead business continuity planning and ensure ongoing operational resilience. Manage corporate insurance coverage and relationships … solving approach to risk mitigation. Confident communicator, able to simplify complex issues and influence at senior levels. Experience leading compliance monitoring, audits, investigations, and remediation initiatives. Familiarity with ISO 27001 , PCI DSS , and other information security frameworks. Experience managing business continuity and insurance programmes. Leadership capability with a track record of mentoring others and representing compliance More ❯

JSON / AWS / Lambda Developer Location: North West England (Manchester / Liverpool corridor – hybrid, UK citizenship required) About the Company: My client is a UK sovereign AI company developing secure, mission-critical artificial intelligence and data platforms for defence, national security, and strategic industry partners. Our systems operate at the intersection of real-time data, autonomous … We’re scaling rapidly and seeking a hands-on Development & Operations Manager to lead the delivery and uptime of our AI cloud systems across AWS. I need a JSON / AWS / Lambda Developer to bridge software engineering , DevOps , and cloud operations , ensuring secure, compliant, and high-availability environments for our AI workloads. You’ll lead a small … architectures. Implement continuous integration and deployment (CI / CD) pipelines for code, models, and infrastructure. Ensure DevSecOps best practices — patching, logging, monitoring, and compliance with UK MoD or ISO27001 frameworks. Manage incident response, uptime SLAs , and operational dashboards. Collaborate with software engineers, AI researchers, and data scientists to optimise cloud performance. Maintain documentation and enforce secure coding and deployment More ❯

and configure ServiceNow GRC modules including: Policy and Compliance Management Risk Management Vendor Risk Management Customize workflows, dashboards, and reporting structures to align with organizational governance frameworks (e.g., ISO 27001, COBIT). 2. Process Design & Optimization Translate business and compliance requirements into ServiceNow solutions. Develop automated controls, risk, and compliance tracking processes. Streamline manual governance and … leadership visibility. Provide actionable insights into key metrics such as control effectiveness, risk exposure, and policy compliance status. Skills & Qualifications: Strong understanding of risk management frameworks (e.g., NIST, ISO 27001, COBIT). Proven expertise in ServiceNow platform administration and development, particularly GRC modules. In-depth knowledge of governance, risk, and regulatory compliance processes. Experience designing workflows More ❯

and configure ServiceNow GRC modules including: Policy and Compliance Management Risk Management Vendor Risk Management Customize workflows, dashboards, and reporting structures to align with organizational governance frameworks (e.g., ISO 27001, COBIT). 2. Process Design & Optimization Translate business and compliance requirements into ServiceNow solutions. Develop automated controls, risk, and compliance tracking processes. Streamline manual governance and … leadership visibility. Provide actionable insights into key metrics such as control effectiveness, risk exposure, and policy compliance status. Skills & Qualifications: Strong understanding of risk management frameworks (e.g., NIST, ISO 27001, COBIT). Proven expertise in ServiceNow platform administration and development, particularly GRC modules. In-depth knowledge of governance, risk, and regulatory compliance processes. Experience designing workflows More ❯

and configure ServiceNow GRC modules including: Policy and Compliance Management Risk Management Vendor Risk Management Customize workflows, dashboards, and reporting structures to align with organizational governance frameworks (e.g., ISO 27001, COBIT). 2. Process Design & Optimization Translate business and compliance requirements into ServiceNow solutions. Develop automated controls, risk, and compliance tracking processes. Streamline manual governance and … leadership visibility. Provide actionable insights into key metrics such as control effectiveness, risk exposure, and policy compliance status. Skills & Qualifications: Strong understanding of risk management frameworks (e.g., NIST, ISO 27001, COBIT). Proven expertise in ServiceNow platform administration and development, particularly GRC modules. In-depth knowledge of governance, risk, and regulatory compliance processes. Experience designing workflows More ❯