1 to 25 of 176 ISO/IEC 27001 Jobs in the South East

with regulatory requirements, and conducting thorough security audits.You will be part of the IT committee and work closely with the risk and compliance team.Ideally, having a background in IT / Network security, progressing into information security and cybersecurity.**Key Responsibilities:**- Develop, draught, implement, and maintain information security policies, procedures, and guidelines.- Conduct regular security audits and assessments to identify … vulnerabilities and ensure compliance with industry standards (e.g., ISO 27001).- Monitor and respond to security incidents, conducting investigations and implementing corrective actions.- Collaborate with IT and other departments to ensure the security of network infrastructure and data.- Manage risk assessments and vulnerability assessments to identify potential security threats.- Oversee the implementation of security measures such … interpersonal skills.**Preferred Qualifications:**- Experience with regulatory compliance requirements such as GDPR, HIPAA, or SOX.- Familiarity with security tools and technologies such as SIEM, DLP, and endpoint protection. CISA / CISSP / CCSP MCSA-Microsoft Windows Server MCSE- Microsoft Certified Solution Expert; MCITP-Microsoft Certified IT Professional; VMware Certified Professional;CCNA / CCNP Experience with security tools More ❯

So, what's the role all about? The Information Security Analyst is primarily responsible for ensuring compliance with information security frameworks such as Cyber Essentials, Cyber Essentials Plus, ISO 27001, ISO 27701, ISO 42001, GDPR, and DORA. This role focuses on internal audits, regulatory compliance, and readiness for external audits while also … enhance IT controls, compliance with standards, and risk management processes. Audit Preparation: Assist internal control owners in scoping appropriate evidence and preparing for external audits. Gap Assessments: Facilitate and / or conduct internal gap assessments and audit readiness evaluations for frameworks such as ISO 27001, GDPR, and DORA. Framework Tracking: Monitor updates to Cyber Essentials … disability, veteran status, gender identity, sexual orientation or any other category protected by law. Apply for this job indicates a required field First Name Last Name Email Phone Resume / CV Enter manually Accepted file types: pdf, doc, docx, txt, rtf LinkedIn Profile Do you have any first-degree relatives (spouse, parent, child, sibling) that are currently employed by More ❯

ll play a crucial role in delivering technical excellence, leading customer engagements, and mentoring team members. Key Responsibilities: Design, implement, and manage enterprise-grade security solutions (firewalls, SIEM, IDS / IPS, endpoint protection, cloud security). Shape strategic security recommendations and collaborate on technical win plans. Maintain and update security policies, procedures, and incident response plans. Deliver security awareness … training and advise clients on best practices. Support audits and compliance initiatives (ISO 27001, NIST, GDPR, etc.). Work cross-functionally with internal and external teams, including partner engagements. Research emerging threats and recommend security framework enhancements. Mentor and support junior security team members. What We’re Looking For: A degree in Cybersecurity, IT, or equivalent … forensic analysis. Knowledge of SOAR tools (especially Palo Alto XSOAR or similar). Familiarity with compliance standards: ISO 27001, NIST, CIS, GDPR, HIPAA. Bonus: scripting / automation skills (Python, PowerShell, Bash). Deep understanding of Microsoft security technologies. Certifications such as CISSP, CEH, OSCP, CISM, or Security+ are highly desirable. Strong problem-solving, communication, and More ❯

solutions Advanced knowledge of Microsoft Active Directory and Entra ID administration Demonstrated experience with SIEM implementation and management Strong background in network security and infrastructure protection Experience with IDS / IPS systems and security monitoring tools Proven incident response and threat hunting experience Programming / scripting skills for security automation Microsoft 365 Security Administration certification Cloud security certifications … Azure Security Engineer, AWS Security) Fortinet NSE certification (Level 7 or 8) Experience with security automation and orchestration Knowledge of compliance frameworks (ISO 27001, NIST More ❯

and regulated by the FCA, this multi-award-winning finance & credit company has a proven track record for customer and employee satisfaction. With a Trustpilot rating of 4.8 / 5 and over 33,500 combined online reviews, they pride themselves on their customer service and their duty as a responsible lender. Role This company is seeking an experienced DevSecOps … testing, vulnerability assessments, and security scanning. Experience implementing and managing WAF, IPS, and DNS security solutions. Extensive experience with Terraform for IaC security automation. Knowledge of DevOps pipelines (CI / CD) and security hardening. Deep understanding of PCI DSS compliance, security frameworks, and audit processes. Familiarity with SIEM solutions, security orchestration platforms, and log management. Strong experience with incident … GDPR by applying you give Profile 29 consent to use your data for recruitment purposes only (details of Profile 29s privacy policy can be found at: profile-29 .com / privacy) Profile 29 recruitment keywords: DevSecOps DevOps Azure cloud security Microsoft Defender Microsoft Sentinel WAF IPS DNS pcidss pci dss pci-dss soar loughton Debden essex London More ❯

level reporting. Key Responsibilities: Define and enforce security best practices across cloud environments (Azure, AWS) Lead cloud security risk assessments, audits, and incident response efforts Integrate security into CI / CD pipelines and DevOps operations Manage and interpret insights from cloud-native security tools (e.g., GuardDuty, Azure Defender) Ensure compliance with frameworks such as ISO 27001 More ❯

with the ability to demonstrate the attitude and aptitude to take this next career step Experience working in a software environment that is cloud native Experience of successfully achieving ISO27001 or preferably SOC2 Type 2 Strong understanding of application security, cloud infrastructure, and DevOps practices Awareness of industry frameworks, such as NCSC Cyber Assessment Framework, Cyber Essentials Plus and OWASP … as Microsoft Visio Ability to assess risk and prioritise security tasks in a fast-paced environment A pragmatic communicator who can bridge the gap between technical teams and auditors / customers Excellent communication and teamwork skills to collaborate effectively with cross-functional teams Detail-oriented, process-oriented and thorough Must currently hold or be able to hold UK security More ❯

cybersecurity tools and operations and overseeing regulatory standards. You will lead the development and execution of the companies cyber and information security strategy ensuing it is aligned with ISO 27001, GDPR and Cyber essentials. Combining strong information security experience with hands-on technical knowledge of SIEM, EDR, vulnerability management and incident response. You will have the … risk into clear business advice. This is a great permanent opportunity to demonstrate your strong experience and to lead this specialist area. This role offers hybrid working of two / three days in the office and the other days working from home per week. There is a competitive salary and great benefits on offer. Skills / Experience and … attributes: A minimum of 4-5 years experience working in a similar role Strong understanding of information security principles, risk management and compliance (GDPR, ISO 27001 and Cyber Essentials) Ability to talk technically then non-technically to the business Solid understanding of IT Infrastructure eg; networking, Active Directory and endpoint security, Outstanding communication skills verbally, written More ❯

cybersecurity tools and operations and overseeing regulatory standards. You will lead the development and execution of the companies cyber and information security strategy ensuing it is aligned with ISO 27001, GDPR and Cyber essentials. Combining strong information security experience with hands-on technical knowledge of SIEM, EDR, vulnerability management and incident response. You will have the … risk into clear business advice. This is a great permanent opportunity to demonstrate your strong experience and to lead this specialist area. This role offers hybrid working of two / three days in the office and the other days working from home per week. There is a competitive salary and great benefits on offer. Skills / Experience and … attributes: A minimum of 4-5 years’ experience working in a similar role Strong understanding of information security principles, risk management and compliance (GDPR, ISO 27001 and Cyber Essentials) Ability to talk technically then non-technically to the business Solid understanding of IT Infrastructure eg; networking, Active Directory and endpoint security, Outstanding communication skills verbally, written More ❯

Server environments, and networking components. Develop and manage automation solutions to streamline infrastructure deployment, management, and monitoring. Implement and optimize automation tools such as Azure DevOps (or other CI / CD pipelines), Terraform, Node-Red, and Packer. Automate configuration management, infrastructure provisioning, and application deployment. Ensure system reliability, scalability, and performance through proactive monitoring and automation. Deploy and manage … monitoring tools (Zabbix, SolarWinds SentryOne, and other network / database monitoring solutions). Maintain and improve local network environments, including Dell servers and Dell switch configurations. Strong technical expertise in Microsoft Active Directory (AD), Windows Server environments, and authentication solutions. Plan for scalability, redundancy, and high availability to support future growth. Cloud & DevOps Integration (these tools and skills will … compliance in regulated environments. Proven ability to secure high-value data (PCI cardholder data, PII) and implement security best practices. Strong networking knowledge (LAN, WAN, DNS, DHCP, VPN, TCP / IP). Proficiency in firewall and load balancer technologies for secure environments. Hands-on experience with virtualization platforms (VMware, Citrix Xen) and backup solutions (Veeam or similar). Experience More ❯

role is key in building and improving Primark's Cyber Security posture. Duties & Responsibilities Actively progress and improve Primark's cyber security posture with the delivery of agreed projects / initiatives aligned with industry best practice. Ensure project deliverables are aligned with the Cyber Roadmap with outcomes directly addressing strategic objectives / maturity gaps / audit points. … Advise and lead on solutions with our internal teams / outsourced partners, having a 'hands on approach' including the construction of business cases and contractual arrangements. Have a metric based approach with a structure to enable auditing and managing vendor performance. Coordinating resources, preparing delivery teams for kick-off and ensure effective completion of milestones, controlling scope and mitigating … defining, developing and managing implementation schedules Maintaining a roadmap of future initiatives, that effectively facilitates the prioritisation of delivery plans. Ensuring an ongoing focus on delivering the required quality / value for money and compliance with published standards and guidelines. Co-ordinates cross-functional team members, identifies resources needed, assigns and prioritises tasks / responsibilities and ensures deadlines More ❯

Technology IT Strategy 2030. The minimum criteria for this role are: Practical experience of operating information security controls under a certified ISMS using ISO 27001 / 12, NIST, CSF or other security standards. Practical experience working with third party suppliers in evidencing their compliance with security policies, standards and controls to internal and external auditors. … reduce or vary the days worked work compressed hours job share Click here to see the benefits we offer at Nest.For more information about our recruitment process click hereDirectorate / Department OverviewThe Central Change and Corporate IT department reports to the Director of Central Change and Technology. It is one of several teams overseen by the Chief Technology and … determined to ensure that no applicant or employee receives less favourable treatment because of their age, disability, gender identity, marital status, national origin, pregnancy or caring responsibilities, race, religion / belief, sex, sexual orientation or socio economic background.We also recognise the importance of diversity of thought and other forms of neurocognitive variation.Nest is a Disability Confident Leader, which is More ❯

and evaluation of risk, as well as using GRC tools and guidance developed for Risk mitigation. Practical knowledge of information security standards and risk assessment frameworks such as ISO 27001, SOC 2, NIST 800-32 Strong knowledge of cyber controls, policies, and procedures. Experience of delivering metrics for senior level audiences. Demonstrate analytical and problem-solving … to work every day. And you'll never stop growing, whatever your level . Discover more reasons to connect with us, our people and purpose-driven culture at deloitte.co.uk / careers More ❯

and evaluation of risk, as well as using GRC tools and guidance developed for Risk mitigation. Practical knowledge of information security standards and risk assessment frameworks such as ISO 27001, SOC 2, NIST 800-32 Strong knowledge of cyber controls, policies, and procedures. Experience of delivering metrics for senior level audiences. Demonstrate analytical and problem-solving … to work every day. And you'll never stop growing, whatever your level . Discover more reasons to connect with us, our people and purpose-driven culture at deloitte.co.uk / careers More ❯

of Olympus Tech. KNOWLEDGE, SKILLS AND EXPERIENCE Technical Educated to Degree Level, or equivalent, in Computer Science, Information Technology or related discipline. Proven experience in software support and technical / business / data analysis. Able to communicate effectively and clearly in writing and verbally, including drafting correspondence and documents and good presentation skills. Experience with business intelligence and … MRI Qube, Yardi or similar. Experience with complex databases Experience in system support, monitoring & troubleshooting. Experience of working in environments with high information security standards to meet needs of ISO27001, SOC2 and GDPR etc Experience with AI and / or Machine Learning Project planning and management experience. Experience with finance systems i.e. Sage, Qube, IRIS or similar. Experience with More ❯

Experience Extensive expertise in threat intelligence, risk management, incident response, compliance (e.g. GDPR, ISO 27001), and security architecture? Proficiency with tools such as Rapid7 InsightIDR / InsightVM, SentinelOne, Fortinet, Netskope, SOAR automation (Rapid7 InsightConnect), and cloud security (AWS / CNAPP)? Proven experience leading complex cybersecurity engagements with cross-functional teams? Strong communication skills, capable More ❯

Experience with governance, risk, and compliance frameworks (e.g., ISO 27001, NIST, GDPR) PRINCE2, PMP, or similar project management certification desirable Knowledge of cloud security (Azure / AWS) a plus Reasonable Adjustments: Respect and equality are core values to us. We are proud of the diverse and inclusive community we have built, and we welcome applications More ❯

You will define and enforce rigorous security configuration standards, baselines, and hardening guides for Azure resources, collaborating closely with DevOps and Engineering teams to integrate security seamlessly into CI / CD pipelines (DevSecOps). Conducting thorough risk assessments and gap analyses will be part of your remit, as will developing comprehensive remediation strategies. Your responsibilities will include maintaining detailed … scheduled, that's why we have a range of support to help you keep yourself well. We have the thrive mental health app, our colleague assistance programme available 24 / 7, our own, in-house mental health first aiders, support groups and a dedicated team to make sure we are covering your needs There's more! - 27 days annual … is an equal opportunities employer which means we treat people fairly. We welcome applications from all suitably skilled persons regardless of their gender, age, race, disability, ethnic background, religion / belief, sexual orientation, gender reassignment or marital / family status. Please also note that we have a thorough referencing process, which includes credit and criminal record checks. At More ❯

Cyber Security Specialist ** Location: London / Hybrid (2 days in office) Rate: A highly competitive salary is available for suitable candidates Role Profile As a Cyber Security Specialist, you will be the go-to Subject Matter Expert (SME) for various projects, offering your insights and recommendations to enhance our security posture. With a strong technical background, you will work … and practises. Experience with security assessment and risk management methodologies. Proficiency in cloud security, particularly with Azure security tools and services. Familiarity with security standards and frameworks (e.g., ISO 27001, NIST, CIS). Knowledge of security technologies such as firewalls and web proxies; experience with ZTNA, CTI, and threat modelling is beneficial. Excellent communication and interpersonal More ❯

Role: Senior Cyber Security Engineer (Cyber SME) Salary : Up to 70,000 Location: Reading / Birmingham - Hybrid (1 day / week in office) Be the Cyber Security Subject Matter Expert protecting the backbone of our business. Are you a highly skilled cyber security professional ready to take ownership of security engineering and infrastructure hardening? We're looking for … re Looking For Essential: Right to work in the UK. Proven experience in cyber security engineering, including vulnerability management, SIEM, WAFs, and secure infrastructure design. Strong knowledge of TCP / IP, firewalls, routing, access controls, and threat-based security approaches. Excellent communication skills with the ability to create and maintain technical documentation. Background in infrastructure / networks and … CCNA / CCNP, or similar certifications. Familiar with ITIL-based service delivery, security hardening, and working cross-functionally. Desirable: Degree in Computer Science or equivalent experience. Understanding of ISO27001, Cyber Essentials, and AAF frameworks. What We Offer Competitive salary up to 70,000 Hybrid working - only 1 day a week in the office 25 days holiday (plus option to More ❯

Role: Senior Cyber Security Engineer (Cyber SME) Salary : Up to £70,000 Location: Reading / Birmingham - Hybrid (1 day / week in office) Be the Cyber Security Subject Matter Expert protecting the backbone of our business. Are you a highly skilled cyber security professional ready to take ownership of security engineering and infrastructure hardening? We're looking for … re Looking For Essential: Right to work in the UK. Proven experience in cyber security engineering, including vulnerability management, SIEM, WAFs, and secure infrastructure design. Strong knowledge of TCP / IP, firewalls, routing, access controls, and threat-based security approaches. Excellent communication skills with the ability to create and maintain technical documentation. Background in infrastructure / networks and … CCNA / CCNP, or similar certifications. Familiar with ITIL-based service delivery, security hardening, and working cross-functionally. Desirable: Degree in Computer Science or equivalent experience. Understanding of ISO27001, Cyber Essentials, and AAF frameworks. What We Offer Competitive salary up to £70,000 Hybrid working - only 1 day a week in the office 25 days holiday (plus option to More ❯

support smarter, faster decision-making at every level of the firm. With a small but growing team, we're looking for someone ready to wear multiple hats-from business / data analysis to solution design, implementation, and testing. The core foundation is in place-now we need someone to help operationalise and scale it, turning potential into business value. … SQL queries and stored procedures, and formal database design methodologies. Experience in setting up monitoring and data quality exception handling. Strong data modelling experience. Experience managing and developing CI / CD pipelines. Experience with Microsoft Azure products and services, and proficiency in ETL processes. Experience of working with APIs to integrate data flows between disparate cloud systems. Strong analytical … Experience in semi / fully unstructured datasets and NoSQL environments Awareness of working in a regulated environment, with experience of data legislation and cyber security accreditations e.g., GDPR, ISO27001, Cyber Essentials. Expertise in Business Intelligence, ideally via Power BI for data visualization and reporting Use of DevOps (CI / CD) concepts to test, schedule, and deploy to a More ❯

Information Security Analyst - 6-Month FTC Governance, Risk and Compliance Location: London / Hybrid Contract Type: Fixed Term (6 months) Salary: Competitive A global professional services firm is seeking a proactive Information Security Analyst to support the delivery of robust security and privacy policies across its global operation. This role is ideal for someone with hands-on experience in … information risk management, policy compliance, ISO 27001 , and client security due diligence . Key Responsibilities: Maintain and evolve the firm’s Information Security Management System (ISMS) and associated documentation Support audits and ensure security practices align with industry standards (e.g., ISO 27001, Cyber Essentials) Assist with Business Continuity Management (BCM) - including BIAs … cyber team in aligning security measures with application and infrastructure development What We’re Looking For: Demonstrable experience in information security and privacy risk management Working knowledge of ISO 27001 , Cyber Essentials , and CIS Controls frameworks Ability to articulate security risks and controls clearly to technical and non-technical stakeholders Strong analytical and written communication skills More ❯

and maintenance of our Information Security Management System (ISMS) including policies, objectives, and risk assessments Assist with internal audits and help prepare for external audits to maintain compliance with ISO27001 and other standards Help identify and assess information security risks, working closely with the Cyber Risk Manager Provide guidance to colleagues on basic security best practices and requirements Contribute to … to confidentiality and professionalism Qualifications A bachelor's degree in computer science, information technology, cyber security, or a related field Experience and knowledge Familiarity with information security frameworks, especially ISO27001 (2013 or 2022) Basic understanding of risk management principles and security controls Interest in developing expertise in auditing, compliance, and risk Desirable (nice to have) Knowledge of other standards or … to become a specialist in your field or climb to the top, we'll support you every step of the way. Job Info Job Identification 23936 Posting Date 07 / 01 / 2025, 09:07 AM Job Schedule Full time Locations 64 Newman Street, London, GT LON, W1T 3EF, GB Crawley Court, Winchester, HANTS, SO21 2QA, GB More ❯

SOC Tier 3 Analyst 6 Month contract initially Based: Remote / Reading - Hybrid. Max 3 days p / w onsite. Rate: Market rates p / d (via Umbrella company) We have a great opportunity with a world leading organisation where you will be provided with all of the support and development to succeed. A progressive organisation where … actions are taken to block further attacks. 5. Compliance and Risk Management: o Ensure all incident response activities align with industry standards, regulations, and best practices (e.g., NIST, ISO 27001, GDPR, HIPAA). o Work with legal and compliance teams to manage incidents within the scope of data privacy laws and regulations. Key Skills & Experience: o … methods. o Strong experience in handling complex cyber incidents (e.g., APTs, ransomware, data breaches). o Hands-on experience with SIEM platforms (e.g., Splunk, ArcSight, LogRhythm) and endpoint detection / response (EDR) tools. *Certifications (Preferred ): o Certified Information Systems Security Professional (CISSP) o Certified Incident Handler (GCIH, EC-Council) o Certified Forensic Computer Examiner (CFCE) o GIAC Certified Forensic More ❯