1 to 25 of 178 ISO/IEC 27001 Jobs in the South East

Senior ISO27001 Consultant Location: Hybrid (75% remote) with on-site presence as required Contract Type: Permanent & Full-time Salary: Competitive + Benefits About the Role As a Senior ISO27001 Consultant, you will lead client engagements to design, implement, and maintain ISO frameworks, supporting clients through gap analysis, remediation, certification readiness, and continual improvement. You'll collaborate with senior … through Stage 1 and Stage 2 certification audits Establish ISMS performance monitoring and reporting mechanisms Provide targeted training to embed a security-first culture Experience Required Proven experience in ISO27001 implementation and auditing Strong understanding of ISMS frameworks and private sector regulatory requirements Excellent communication and client-facing consultancy skills Relevant certifications such as ISO27001 Lead Auditor / Implementor … CISSP, CISM, CRISC, CISA Experience with additional standards (ISO / IEC27701, ISO / IEC29100, ISO / IEC42001, ISO / IEC22301) is a plus What's in it for You Flexible Working: Remote-first with travel as needed. Career Development: Continuous learning and professional growth. Benefits Package: Includes Private More ❯

Internal Auditor - ISO 27001 Location: Portsmouth (Hybrid - 1 day per week onsite) Contract: initial 12-month FTC We're seeking an Internal Auditor with experience as a lead auditor or certified in ISO 27001 to support our integrated management system and drive continuous improvement across information security and quality standards. Key Responsibilities … Audit Delivery - Plan and conduct risk-based audits (ISO 27001 & ISO 9001), both onsite and remotely, assessing processes, controls, and compliance. Reporting & Recommendations - Produce clear reports highlighting non-conformances, risks, and opportunities, with actionable recommendations and timelines. Follow-Up & Closure - Work with stakeholders to agree corrective actions, track progress, and verify remediation. Management Reviews … by compiling data, metrics, and reports. Policy & Documentation - Maintain audit procedures and ensure policies reflect current standards and best practice. Awareness & Training - Deliver workshops to strengthen understanding of ISO 27001 and related standards. Cross-Functional Projects - Contribute to supplier audits, business continuity exercises, and risk assessments. About You Essential: Experience auditing ISO 27001. Certified More ❯

Internal Auditor - ISO 27001 Location: Portsmouth (Hybrid - 1 day per week onsite) Contract: initial 12-month FTC We're seeking an Internal Auditor with experience as a lead auditor or certified in ISO 27001 to support our integrated management system and drive continuous improvement across information security and quality standards. Key Responsibilities … Audit Delivery - Plan and conduct risk-based audits (ISO 27001 & ISO 9001), both onsite and remotely, assessing processes, controls, and compliance. Reporting & Recommendations - Produce clear reports highlighting non-conformances, risks, and opportunities, with actionable recommendations and timelines. Follow-Up & Closure - Work with stakeholders to agree corrective actions, track progress, and verify remediation. Management Reviews … by compiling data, metrics, and reports. Policy & Documentation - Maintain audit procedures and ensure policies reflect current standards and best practice. Awareness & Training - Deliver workshops to strengthen understanding of ISO 27001 and related standards. Cross-Functional Projects - Contribute to supplier audits, business continuity exercises, and risk assessments. About You Essential: Experience auditing ISO 27001. Certified More ❯

As our Information Security Management Specialist (m / f / d) , you'll provide experienced support in the implementation and management of the Information Security Management System (ISMS) framework in alignment of current ISO 27001 standard and guidelines. With a focus on cybersecurity, this role involves leading risk assessments, ensuring alignment with industry standards … Collaborate with the IT department to set Information security standard for Cyber Security Support in preparing management Information Security reports and dashboards. Review and respond to customer Service Agreements / RFPs / RFIs with respect to Information Security related clauses / questionnaires. Actively participate in Information Security External certification audits, internal audits, and gap assessments. Perform other … looking for Bachelors degree or equivalent in Information Technology or Computer Science degree or related field. Information Security certifications such as ISO 27001 Lead Auditor / Implementer, CISM, CISA, CRISC, CISSP, CEH, COBIT or equivalent preferred. Fluent in English, Multilingual skills are an advantage. Skilled proficiency in conducting risk assessments, analyzing security controls, and policy More ❯

delivery of the technology infrastructure within the organisation. This role is ideal for a forward-thinking individual with a strong background in IT architecture and infrastructure management. Main responsibilities / duties Technology Strategy & Architecture Roadmap Work with the Director of IT to co-create a forward-looking, business-aligned technology strategy that sets a clear direction for IT. Design … cost efficiency. Technology Governance & Operating Model Transformation Standardise and simplify technology governance, policies, and processes to reflect a modern, strategic IT function. Embed frameworks such as: ISO / IEC 27001: The international standard for information security management systems (ISMS), ensuring data confidentiality, integrity, and availability. ITIL (Information Technology Infrastructure Library): A framework for … external partners Experience in implementing IT strategies Experienced in running and managing IT infrastructure, application, and network services Ensuring organisation-wide compliance with information security and governance policies ITIL / ISO 20000 / ISO 9001 experience Experience in similar organisation structures (many sites and geographically spread) Experience of upper mid / large enterprise More ❯

Compliance Location: Mainly remote based working in the UK with travel to Oxford, Cowley (OX4 2GQ) occasionally Contract: Permanent Hours: Full time Salary: £70,000 per annum, plus car / car allowance Benefits: 33 days holiday, pension, life assurance, employee assistance programme, wellbeing support, and flexible benefits scheme About the Job As our Head of Cybersecurity Governance Risk and … but please apply if you think youd be able to perform well in this role! Excellent written and verbal communication skills Previous experience within a GRC function, IT Security / Cyber team, Internal Audit or an IT environment Hands on practical experience of ensuring full compliance with legal & regulatory frameworks including ISO 27001 Risk management … Cybersecurity Risk and Compliance Lead, Information Security Compliance Manager, Head of InfoSec Governance, ISO 27001 Compliance Lead, ISO 27001 Lead Implementer / Auditor, NIST Cybersecurity Framework, Risk management (cyber / information security), Information Security Management System (ISMS), Control assurance / control testing, Regulatory compliance (GDPR, UK Cyber Essentials), Security More ❯

understanding of compliance obligations across departments. Continuous Improvement Review and refine compliance processes regularly. Stay up to date with changes in standards and regulations, adapting internal processes accordingly. Results / Measures Successful maintenance and renewal of all accreditations. Positive audit outcomes with minimal non-conformities. Up-to-date and accessible compliance documentation. Increased staff awareness and engagement with compliance … practices. Positive feedback from auditors and stakeholders. Responsible for (Budget / People) Compliance across all departments and functions. Coordination of external audit and certification budgets. Software and Technology Competencies Microsoft Office Suite (Word, Excel, PowerPoint) SharePoint for document management Power BI for compliance reporting Familiarity with compliance management tools and ISO documentation systems Skills, Knowledge, and Experience … management and internal controls. Excellent organisational and documentation skills. Ability to interpret and apply regulatory and accreditation requirements. Relevant certifications (e.g., ISO 27001 Lead Implementer / Auditor) preferred but if dont have it yet, No problem well provide full training and certification support to help you get there. Key Behaviours Detail-oriented and methodical Proactive More ❯

be part of an experienced team, build your skills, and grow professionally. Dionach by Nomios holds impressive certifications, including CREST, Cyber Scheme, CHECK, PCI QSA, SWIFT CSCF and ISO 27001. With our focus on enhancing customers' security and fostering team development,be joining a company that prioritizes both your growth and the safety of our clients. We're … highly skilled Cyber Security Team you will be responsible for contributing to our information security consultancy, with opportunities to work on information security assessments within sizeable projects, conduct ISO 27001 audits, help implement aspects of ISO 27001, and engage in risk management. Furthermore, there is potential for growth into such diverse fields … as PCI DSS, privacy, and business continuity. Essential experience and skills: Recognized ISO 27001 Lead Auditor qualification. Significant experience in auditing ISO 27001 based Information Security Management Systems. Significant experience in consulting and implementing Information Security Management Systems. Strong knowledge of regulatory frameworks such as the GDPR. Significant previous IT experience. Ability More ❯

Cybersecurity Specialist (ISO 27001 & Risk Compliance) Location: Guildford - Hybrid Employment Type: 12 month contract Rate: £450-475 per day INSIDE IR35 About the Role We’re seeking a proactive Cybersecurity Specialist to safeguard company data, infrastructure, and services by ensuring adherence to security best practices and maintaining critical accreditations (e.g., ISO 27001 … Review configurations and coordinate changes with infrastructure teams. Incident Response: Act as part of the Cyber Security Incident Response Team (CSIRT) to address threats. Compliance: Ensure alignment with ISO 27001, and other security standards. Risk Management: Maintain risk frameworks and produce assurance documentation. Secure by Design: Partner with project teams to integrate security requirements early in … Degree in Computing or related field. Proven experience in cybersecurity, SIEM tools (e.g., Splunk), and ISO 27001 compliance. Knowledge of Microsoft OS, cloud security (Azure / AWS), and risk management. Strong communication skills to engage stakeholders at all levels. Desirable: Certifications like MCSE, CCNA, or Splunk ES expertise. Experience with Secure by Design principles and More ❯

As the GRC Analyst, you’ll work closely with process owners, auditors, and stakeholders to monitor and address risk and compliance issues. You’ll be responsible for administering ISO 27001, ISO 22301, and PCI compliance programs, managing audits, and overseeing our GRC tooling to ensure it’s configured and maintained to the highest standards. … Key Responsibilities Own and manage the GRC tool and vendor relationship Lead risk assessments, compliance reviews, and validation testing Support and manage ISO 27001, 22301, and other audits Maintain a central repository for audit evidence Develop and enhance the GRC framework in line with best practices Collaborate across teams to identify and mitigate IT and business … Head of Audit What We’re Looking For Strong computer literacy and adaptability to niche IT systems (essential) Proficiency in Microsoft Teams, PowerPoint, Word, etc. (essential) Experience with ISO 27001 and 22301 Familiarity with GRC tooling and supply chain management (preferred) Excellent organisational, communication, and interpersonal skills Ability to influence at all levels and communicate with More ❯

As the GRC Analyst, you’ll work closely with process owners, auditors, and stakeholders to monitor and address risk and compliance issues. You’ll be responsible for administering ISO 27001, ISO 22301, and PCI compliance programs, managing audits, and overseeing our GRC tooling to ensure it’s configured and maintained to the highest standards. … Key Responsibilities Own and manage the GRC tool and vendor relationship Lead risk assessments, compliance reviews, and validation testing Support and manage ISO 27001, 22301, and other audits Maintain a central repository for audit evidence Develop and enhance the GRC framework in line with best practices Collaborate across teams to identify and mitigate IT and business … Head of Audit What We’re Looking For Strong computer literacy and adaptability to niche IT systems (essential) Proficiency in Microsoft Teams, PowerPoint, Word, etc. (essential) Experience with ISO 27001 and 22301 Familiarity with GRC tooling and supply chain management (preferred) Excellent organisational, communication, and interpersonal skills Ability to influence at all levels and communicate with More ❯

As the GRC Analyst, you’ll work closely with process owners, auditors, and stakeholders to monitor and address risk and compliance issues. You’ll be responsible for administering ISO 27001, ISO 22301, and PCI compliance programs, managing audits, and overseeing our GRC tooling to ensure it’s configured and maintained to the highest standards. … Key Responsibilities Own and manage the GRC tool and vendor relationship Lead risk assessments, compliance reviews, and validation testing Support and manage ISO 27001, 22301, and other audits Maintain a central repository for audit evidence Develop and enhance the GRC framework in line with best practices Collaborate across teams to identify and mitigate IT and business … Head of Audit What We’re Looking For Strong computer literacy and adaptability to niche IT systems (essential) Proficiency in Microsoft Teams, PowerPoint, Word, etc. (essential) Experience with ISO 27001 and 22301 Familiarity with GRC tooling and supply chain management (preferred) Excellent organisational, communication, and interpersonal skills Ability to influence at all levels and communicate with More ❯

Information Security Specialist (ISO Certified) About the Role Our client, a leading organisation in Berkshire, is seeking an experienced Information Security Specialist with in-depth knowledge of ISO 9001, ISO 14001, ISO 22301, ISO 27001, and PCI-DSS compliance. This role will be central to designing, implementing, and … in-class security and compliance frameworks, ensuring that all information assets and operational processes are safeguarded to the highest standards. Key Responsibilities Develop, implement, and maintain compliance with ISO , and PCI-DSS standards. Conduct risk assessments, security audits, and vulnerability testing across systems and processes. Lead incident response activities, ensuring rapid and effective mitigation. Collaborate with internal stakeholders … and external auditors to achieve and maintain certifications. Deliver organisation-wide security and compliance awareness training. Monitor and report on security performance, providing actionable recommendations. Essential Skills & Qualifications ISO 27001 Lead Implementer or Lead Auditor certification (or equivalent). Demonstrable experience managing compliance for ISO , and PCI-DSS. Strong understanding of governance, risk management More ❯

a similar sized organisation. Knowledge of external certifications and the ability to audit the organisation’s conformance to those standards; Working experience within ISO 27001 / NIST standards Good level of experience and competency within an IT OPC and Governance environment. Personal experience of implementing high quality standards (ideally ISO etc.) within an … organisation and the ability to drive quality standards through the organisation. Desirable qualifications ITIL Life cycle / Capability certification ISACA Certificate in the Governance of Enterprise IT (CGEIT) CISA certification Due to the volume of applications received for positions, it will not be possible to respond to all applications and only applicants who are considered suitable for interview will … personal data very seriously. Any information provided to us will be processed as detailed in our Privacy Notice, a copy of which can be found on our website http: / / proactive.it / privacy-notice / More ❯

Compliance / IT Audit Analyst Location: UK with significant travel across Europe (Must be based in the UK) Salary: Up to £45,000 + Benefits About the Role: We are looking for a motivated Compliance / Audit Analyst to join our Governance, Risk and Compliance (GRC) team. In this role, you will play a key part in managing … dynamic pan-European environment, giving you the opportunity to work across multiple sites and manage a diverse range of audit and compliance programmes, including Security, Business Continuity, and ESG / Sustainability. What You'll Do: Manage and coordinate audit activities, liaising with internal stakeholders, clients, and external auditors Prepare for audits, including gathering pre-audit information and supporting documentation … Run operational audit programmes covering Security (e.g., PCI-DSS, ISAE 3402, ISO / IEC 27001, ENS), Business Continuity (e.g., ISO 22301, KRITIS), and ESG / Sustainability (e.g., ISO 14001, EcoVadis) Evaluate internal compliance and implement risk management strategies Collaborate with Site Managers and teams to ensure audit workplans More ❯

proactive role in shaping and delivering future security programmes as part of the Global IT Security Team. Key Responsibilities Lead and manage the IT security team, including outsourced SOC / MDR / DFIR providers. Maintain and enhance our ISMS, including policies, procedures, registers, and reports. Ensure compliance with ISO 27001, ISAE 3402 Type II … vulnerabilities. Respond to and manage security incidents, including investigation, mitigation, and reporting. Oversee user access controls, identity management, and data protection measures. Lead Business Continuity and Disaster Recovery (BC / DR) planning and testing. Manage and deliver IT security awareness training for staff and end users. Qualifications & Experience Bachelor's degree in Computer Science, Information Security, or related field. … or managerial role. Strong knowledge of ISO 27001, ISAE 3402, and related frameworks. Experience with security technologies such as XDR, MDR, EDR, SIEM, NAC, IDS / IPS, and SASE. Proven background in incident response, risk management, and ISMS operation. Essential Skills Demonstrated leadership and team management experience. Strong analytical and problem-solving skills. Excellent communication More ❯

Information Security Risk and Governance Lead Location: London or Lausanne Type: Full-time | Hybrid (3 days / week onsite) Company Overview Join a pioneering AI-first biotech company that’s redefining how we discover and develop medicines. This organisation leverages cutting-edge machine learning to unlock new possibilities in drug discovery, aiming to solve some of humanity’s most … drug design. You will play a pivotal role in aligning data governance, security operations, and compliance within an environment that spans regulated biopharma workflows, cloud-native infrastructure, and AI / ML experimentation at scale. Key Responsibilities Design and implement a unified compliance framework across AI, cyber, and life sciences regulatory domains. Own and drive the strategic programme for ISO … NIST, GDPR, HIPAA, GxP, and the EU AI Act. Demonstrated experience leading compliance certification programmes and external audits. Strong understanding of cybersecurity and IT infrastructure within ML / cloud environments. Proven track record managing risk end-to-end — from identification to mitigation and communication. Practical experience with privacy and data lifecycle controls, including audit trails, de-identification, and retention. More ❯

Information Security Risk and Governance Lead Location: London or Lausanne Type: Full-time | Hybrid (3 days / week onsite) Company Overview Join a pioneering AI-first biotech company that’s redefining how we discover and develop medicines. This organisation leverages cutting-edge machine learning to unlock new possibilities in drug discovery, aiming to solve some of humanity’s most … drug design. You will play a pivotal role in aligning data governance, security operations, and compliance within an environment that spans regulated biopharma workflows, cloud-native infrastructure, and AI / ML experimentation at scale. Key Responsibilities Design and implement a unified compliance framework across AI, cyber, and life sciences regulatory domains. Own and drive the strategic programme for ISO … NIST, GDPR, HIPAA, GxP, and the EU AI Act. Demonstrated experience leading compliance certification programmes and external audits. Strong understanding of cybersecurity and IT infrastructure within ML / cloud environments. Proven track record managing risk end-to-end — from identification to mitigation and communication. Practical experience with privacy and data lifecycle controls, including audit trails, de-identification, and retention. More ❯

Information Security Risk and Governance Lead Location: London or Lausanne Type: Full-time | Hybrid (3 days / week onsite) Company Overview Join a pioneering AI-first biotech company that’s redefining how we discover and develop medicines. This organisation leverages cutting-edge machine learning to unlock new possibilities in drug discovery, aiming to solve some of humanity’s most … drug design. You will play a pivotal role in aligning data governance, security operations, and compliance within an environment that spans regulated biopharma workflows, cloud-native infrastructure, and AI / ML experimentation at scale. Key Responsibilities Design and implement a unified compliance framework across AI, cyber, and life sciences regulatory domains. Own and drive the strategic programme for ISO … NIST, GDPR, HIPAA, GxP, and the EU AI Act. Demonstrated experience leading compliance certification programmes and external audits. Strong understanding of cybersecurity and IT infrastructure within ML / cloud environments. Proven track record managing risk end-to-end — from identification to mitigation and communication. Practical experience with privacy and data lifecycle controls, including audit trails, de-identification, and retention. More ❯

Information and Cyber Security within EMEA. Manage the intragroup relationships across AD and EMEA for Information and Cyber Security, ensuring service levels are met for all services received and / or provided. Accountabilities & Responsibilities : Define intra group security governance and service management framework Enhance and embed the operating / engagement model and service level agreement to ensure continuous … depth knowledge of third-party regulations across UK and EU such as ECB's EBA, DORA and related standards Information and Cyber Security Frameworks and industry Standards (e.g., NIST / ISO 27001 / COBIT / ITIL) Experience creating and delivering presentations and concise writing skills to produce clear documentation (security policy, senior management More ❯

pivotal role in managing and maintaining their IT infrastructure, ensuring the continuous operation of critical systems both on-premises and in their data centres. You will lead a 24 / 7 NOC team and work closely with our outsourced SOC to guarantee the security and reliability of their services. This role requires a hands-on approach to technical support … Bank Holidays Enhanced Pension Death in service Main duties and responsibilities: Oversee IT systems at UK data Centres, ensuring reliable and robust service delivery. Manage a UK-based 24 / 7 NOC operation of Networks, IT systems, servers, switches, routers and resolve incidents or issues / actions. Ensuring adherence to Information Security Management, ISO 27001 … and UK legal standards, especially Nations Infrastructure (CNI) Manage recording and monitoring of Service Level Agreements(SLA) for all incidents / issues / changes in conjunction with the Services IT Head and NOC / SOC. Provide first-line technical support when required and support remote users for hardware and software issues / improvements / changes More ❯

with regulatory requirements, and conducting thorough security audits.You will be part of the IT committee and work closely with the risk and compliance team.Ideally, having a background in IT / Network security, progressing into information security and cybersecurity.**Key Responsibilities:**- Develop, draught, implement, and maintain information security policies, procedures, and guidelines.- Conduct regular security audits and assessments to identify … vulnerabilities and ensure compliance with industry standards (e.g., ISO 27001).- Monitor and respond to security incidents, conducting investigations and implementing corrective actions.- Collaborate with IT and other departments to ensure the security of network infrastructure and data.- Manage risk assessments and vulnerability assessments to identify potential security threats.- Oversee the implementation of security measures such … interpersonal skills.**Preferred Qualifications:**- Experience with regulatory compliance requirements such as GDPR, HIPAA, or SOX.- Familiarity with security tools and technologies such as SIEM, DLP, and endpoint protection. CISA / CISSP / CCSP MCSA-Microsoft Windows Server MCSE- Microsoft Certified Solution Expert; MCITP-Microsoft Certified IT Professional; VMware Certified Professional;CCNA / CCNP Experience with security tools More ❯

Job title: Technology Risk Manager Location: London / Hybrid Duration: 6 months Adecco is an employment consultancy. We put expertise, energy, and enthusiasm into improving everyone's chance of being part of the workplace. We respect and appreciate people of all ethnicities, generations, religious beliefs, sexual orientations, gender identities, and more. We do this by showcasing their talents, skills … update process documentation across key technology processes to support governance, compliance, and operational consistency. SSSDLC Integration: Support the integration of security controls and risk assessments throughout the Secure Software / System Development Lifecycle. Controls Assurance: Review and challenge the design and operation of controls to ensure they mitigate risks effectively. Risk Register Monitoring: Maintain and update a register of … these, develop action plans, identify owners and track through to completion. Requirements: Technology Knowledge: Work towards a detailed understanding of Technology and cyber risk frameworks (e.g. NIST / ISO27001 / COBIT / ITIL). SSSDLC Expertise: Understanding of the Secure Software / System Development Lifecycle, including secure design, development, testing, and deployment practices. Process Documentation: Experience More ❯

Job title: Risk Management Specialist Location: London / Hybrid Duration: 6 months Adecco is an employment consultancy. We put expertise, energy, and enthusiasm into improving everyone's chance of being part of the workplace. We respect and appreciate people of all ethnicities, generations, religious beliefs, sexual orientations, gender identities, and more. We do this by showcasing their talents, skills … update process documentation across key technology processes to support governance, compliance, and operational consistency. SSSDLC Integration: Support the integration of security controls and risk assessments throughout the Secure Software / System Development Lifecycle. Controls Assurance: Review and challenge the design and operation of controls to ensure they mitigate risks effectively. Risk Register Monitoring: Maintain and update a register of … these, develop action plans, identify owners and track through to completion. Requirements: Technology Knowledge: Work towards a detailed understanding of Technology and cyber risk frameworks (e.g. NIST / ISO27001 / COBIT / ITIL). SSSDLC Expertise: Understanding of the Secure Software / System Development Lifecycle, including secure design, development, testing, and deployment practices. Process Documentation: Experience More ❯

opportunity for a security leader with extensive experience designing and implementing enterprise-grade security architectures across complex, highly regulated environments. The role will focus heavily on cloud security, AI / ML security, regulatory compliance, and secure-by-design frameworks for critical systems. Why This Role? Shape and deliver the security architecture strategy for enterprise cloud and AI / … MLOps with security guardrails. Act as a trusted advisor to senior leadership , influencing both business and technology direction. Key Responsibilities Define and evolve security architecture strategies for cloud, AI / ML, and MLOps environments . Act as a senior security advisor to leadership, engineering, and business stakeholders. Develop security architecture standards, patterns, and guidelines for enterprise solutions, with specific … coverage for AI / ML workloads. Conduct security architecture reviews, threat modelling, and risk assessments for AI / ML systems and pipelines . Ensure solutions comply with European financial services regulations (GDPR, PSD2, DORA, NIS2) as well as emerging AI governance frameworks (e.g., EU AI Act, NIST AI RMF). Integrate security into DevSecOps and MLOps pipelines , including More ❯