1 to 25 of 84 ISO/IEC 27001 Jobs in the South West

code reviews, provide guidance on secure libraries and frameworks. Standards & Compliance Ensure products meet regulatory and defence standards (ISO 27001 / 27005, NIST 800-30 / 53, JSP 440 / 604, Def Stan 05-series). Lead the creation and maintenance of security … execute penetration tests and automated vulnerability scans; validate fixes. Oversee third-party security assessments as required. Continuous Improvement Drive security tooling and automation (CI / CD integration, SAST / DAST). Stay ahead of emerging threats and security technologies; evangelise best practices across teams. Qualifications & Experience Proven experience … in product or application security within defence, government, or security-cleared environments. Deep knowledge of risk management frameworks (ISO 27001 / 2 / 5 / 31000, NIST 800-series) and Defence Standards (JSPs, Def Stan 05-138 / 139). Hands-on More ❯

code reviews, provide guidance on secure libraries and frameworks. Standards & Compliance Ensure products meet regulatory and defence standards (ISO 27001 / 27005, NIST 800-30 / 53, JSP 440 / 604, Def Stan 05-series). Lead the creation and maintenance of security … execute penetration tests and automated vulnerability scans; validate fixes. Oversee third-party security assessments as required. Continuous Improvement Drive security tooling and automation (CI / CD integration, SAST / DAST). Stay ahead of emerging threats and security technologies; evangelise best practices across teams. Qualifications & Experience Proven experience … in product or application security within defence, government, or security-cleared environments. Deep knowledge of risk management frameworks (ISO 27001 / 2 / 5 / 31000, NIST 800-series) and Defence Standards (JSPs, Def Stan 05-138 / 139). Hands-on More ❯

and Experience Required Knowledge of HMG standards (including MOD-specific JSP, Def Stan 05-138, Def Stan ). An understanding of MOD ISN 23 / 09 Secure by Design. Knowledge of security frameworks, such as ISO / IEC 27001, NIST … NIST 800-53 or OWASP. Experience of working with risk management frameworks and methodologies (e.g., ISO 27001 / 2, ISO27005 / 31000, NIST 800-30, NIST 800-53) Why Join? You'll gain exposure to cutting-edge defence technology and intelligence insights, alongside good … salary & benefits . The client offers flexible working options, with some hybrid / remote working. Apply now to be immediately considered for this fantastic opportunity. More ❯

Required Knowledge of HMG standards (including MOD-specific JSP, Def Stan 05-138, Def Stan 05 139). An understanding of MOD ISN 23 / 09 Secure by Design. Knowledge of security frameworks, such as ISO / IEC 27001, NIST … NIST 800-53 or OWASP. Experience of working with risk management frameworks and methodologies (e.g., ISO 27001 / 2, ISO27005 / 31000, NIST 800-30, NIST 800-53) Why Join? You'll gain exposure to cutting-edge defence technology and intelligence insights, alongside good … salary & benefits . The client offers flexible working options, with some hybrid / remote working. Apply now to be immediately considered for this fantastic opportunity. More ❯

may include: Knowledge of HMG standards (including MOD-specific JSP, Def Stan 05-138, Def Stan 05-139) An understanding of MOD ISN 23 / 09 Secure by Design Knowledge of security frameworks, such as ISO / IEC 27001, NIST … NIST 800-53 or OWASP Working with risk management frameworks and methodologies (e.g., ISO 27001 / 2, ISO27005 / 31000, NIST 800-30, NIST 800-53) If this all sounds like something you will be interested in then simply apply and we can discuss More ❯

may include: Knowledge of HMG standards (including MOD-specific JSP, Def Stan 05-138, Def Stan 05-139) An understanding of MOD ISN 23 / 09 Secure by Design Knowledge of security frameworks, such as ISO / IEC 27001, NIST … NIST 800-53 or OWASP Working with risk management frameworks and methodologies (e.g., ISO 27001 / 2, ISO27005 / 31000, NIST 800-30, NIST 800-53) If this all sounds like something you will be interested in then simply apply and we can discuss More ❯

may include: Knowledge of HMG standards (including MOD-specific JSP, Def Stan 05-138, Def Stan 05-139) An understanding of MOD ISN 23 / 09 Secure by Design Knowledge of security frameworks, such as ISO / IEC 27001, NIST … NIST 800-53 or OWASP Working with risk management frameworks and methodologies (e.g., ISO 27001 / 2, ISO27005 / 31000, NIST 800-30, NIST 800-53) If this all sounds like something you will be interested in then simply apply and we can discuss More ❯

may include: Knowledge of HMG standards (including MOD-specific JSP, Def Stan 05-138, Def Stan 05-139) An understanding of MOD ISN 23 / 09 Secure by Design Knowledge of security frameworks, such as ISO / IEC 27001, NIST … NIST 800-53 or OWASP Working with risk management frameworks and methodologies (e.g., ISO 27001 / 2, ISO27005 / 31000, NIST 800-30, NIST 800-53) If this all sounds like something you will be interested in then simply apply and we can discuss More ❯

The following content displays a map of the jobs location - Exeter Lead Application Operations Engineer - Microsoft SharePoint Job Reference metoffice / TP / 508 / 725 Permanent - Full Time Working Hours: 37 Location (City / Town): Exeter Closing Date: 26 / 05 / 2025 Profession: Region / Division: UK Region Careers website category: Technology Job Introduction We're looking for an exceptional Lead Application Operations Engineer - Microsoft SharePoint to help us make a difference to our planet . As our Lead Application Operations Engineer - Microsoft SharePoint, the job may be suitable … and communicate best practice • Evaluate the effectiveness of SharePoint training, providing recommendations and assistance in delivering agreed training in collaboration with any other teams / parties. • Ability to explain technical concepts in simple and clear terms. • Collaborate with colleagues on how applications are performing and changes that need to More ❯

Information Security Engineer Hybrid: Remote / Bristol Reporting to: Joe Mathews - VP of Technology Salary: £45,000 - £50,000 About Us Duel is a SaaS company on a mission to make Brand Advocacy the industry standard playbook for building brilliant retail brands. It was founded by world record breaking … a timely manner. Learn and implement security monitoring and automation solutions to detect and respond to threats. Help manage security tooling, including SIEM, IDS / IPS, and vulnerability scanning solutions. Work closely with engineers to support secure coding practices and help embed security considerations early in the development process. … as Secureframe, Drata, or Vanta. Experience working with pen testing and bug bounties a plus. Basic understanding of security tools such as SIEM, IDS / IPS, and vulnerability management solutions. Experience or knowledge of cloud security (AWS, GCP, or Azure). Awareness of security best practices in application and More ❯

UK. The Information Security Manager Role: As Information Security Manager, you’ll be the go-to expert for all things security, steering our ISO 27001 compliance and leading security strategy across the business. From protecting internal operations to aligning with defence frameworks, your work will directly … the cutting edge of cybersecurity excellence. Key Responsibilities of the Information Security Manager: Maintain and enhance ISO 27001, Cyber Essentials / Cyber Essentials+, and DCPP compliance Lead policy development and risk mitigation across the business Advise on Secure by Design (SbD) assurance and government protective … Own security controls for our North Bristol site Support the creation of project-specific security documentation and assurance strategies Skills & Experience: Experience leading ISO 27001 and cybersecurity governance Strong knowledge of NIST CSF, ISO 27005, and DCPP frameworks Confident communicator with a security-first More ❯

UK. The Information Security Manager Role: As Information Security Manager, you'll be the go-to expert for all things security, steering our ISO 27001 compliance and leading security strategy across the business. From protecting internal operations to aligning with defence frameworks, your work will directly … the cutting edge of cybersecurity excellence. Key Responsibilities of the Information Security Manager: Maintain and enhance ISO 27001, Cyber Essentials / Cyber Essentials+, and DCPP compliance Lead policy development and risk mitigation across the business Advise on Secure by Design (SbD) assurance and government protective … Own security controls for our North Bristol site Support the creation of project-specific security documentation and assurance strategies Skills & Experience: Experience leading ISO 27001 and cybersecurity governance Strong knowledge of NIST CSF, ISO 27005, and DCPP frameworks Confident communicator with a security-first More ❯

knowledge sharing across teams. What We’re Looking For Technical Experience & Knowledge Experience with risk management frameworks and methodologies such as ISO / IEC 27001 / 2, ISO27005 / 31000, NIST 800-30, NIST 800-53. Strong understanding of security … standards and frameworks including OWASP, Secure by Design principles, and MOD-specific guidelines (e.g., JSP, Def Stan 05-138 / 139). Familiarity with HMG security principles and assurance frameworks is advantageous. Comfortable using threat modelling tools and implementing mitigation strategies. Experience with NIST standards. (this is an absolute More ❯

knowledge sharing across teams. What We’re Looking For Technical Experience & Knowledge Experience with risk management frameworks and methodologies such as ISO / IEC 27001 / 2, ISO27005 / 31000, NIST 800-30, NIST 800-53. Strong understanding of security … standards and frameworks including OWASP, Secure by Design principles, and MOD-specific guidelines (e.g., JSP, Def Stan 05-138 / 139). Familiarity with HMG security principles and assurance frameworks is advantageous. Comfortable using threat modelling tools and implementing mitigation strategies. Experience with NIST standards. (this is an absolute More ❯

developing mitigation strategies. Conducting security code reviews and offering guidance to ensure a secure-by-design approach. Ensuring products meet key regulatory standards (ISO 27001, NIST 800 series, JSPs, Def Stans). Authoring vital security documentation, including RMADS and Security Assurance Documents. … Performing penetration testing and coordinating remediation efforts. What You Bring: A solid understanding of security frameworks such as ISO 27001 / 2, ISO 31000, NIST 800-30 / 37 / 53. Hands-on experience with Defence Standards (JSPs, HMG, Def Stan … / 139). Strong knowledge of security testing tools and techniques. Excellent communication skills — able to explain complex risks and solutions clearly. A proactive, problem-solving mindset with a high level of personal integrity and professional ethics. Experience with NIST standards. (this is an absolute must) You'll Succeed More ❯

developing mitigation strategies. Conducting security code reviews and offering guidance to ensure a secure-by-design approach. Ensuring products meet key regulatory standards (ISO 27001, NIST 800 series, JSPs, Def Stans). Authoring vital security documentation, including RMADS and Security Assurance Documents. … Performing penetration testing and coordinating remediation efforts. What You Bring: A solid understanding of security frameworks such as ISO 27001 / 2, ISO 31000, NIST 800-30 / 37 / 53. Hands-on experience with Defence Standards (JSPs, HMG, Def Stan … / 139). Strong knowledge of security testing tools and techniques. Excellent communication skills — able to explain complex risks and solutions clearly. A proactive, problem-solving mindset with a high level of personal integrity and professional ethics. Experience with NIST standards. (this is an absolute must) You'll Succeed More ❯

developing mitigation strategies. Conducting security code reviews and offering guidance to ensure a secure-by-design approach. Ensuring products meet key regulatory standards (ISO 27001, NIST 800 series, JSPs, Def Stans). Authoring vital security documentation, including RMADS and Security Assurance Documents. … Performing penetration testing and coordinating remediation efforts. What You Bring: A solid understanding of security frameworks such as ISO 27001 / 2, ISO 31000, NIST 800-30 / 37 / 53. Hands-on experience with Defence Standards (JSPs, HMG, Def Stan … / 139). Strong knowledge of security testing tools and techniques. Excellent communication skills — able to explain complex risks and solutions clearly. A proactive, problem-solving mindset with a high level of personal integrity and professional ethics. Experience with NIST standards. (this is an absolute must) You'll Succeed More ❯

Management Systems and Audit Manager, you will collaborate with cross-functional teams to support the continuous improvement. Support the maintenance of existing external ISO accreditation's and the support attainment of new ISO accreditation's to support the business strategy. Key Responsibilities: Support in the implementation … of National Security Solutions Audit Schedule Support in the maintenance of existing ISO accreditation's Support in the attainment of new ISO accreditations as required Maintain the company's Integrated Management System (IMS) Audit Schedule to ensure compliance with regulatory requirements and industry standards (e.g. ISO … benefits including private health care, career development opportunities and performance bonuses. For a comprehensive list of benefits, speak to our recruitment team. Essential qualifications / experience: ISO 9001 Lead auditor Detailed knowledge of ISO 9001, ISO 27001, ISO More ❯

to the Head of Cybersecurity and work within our specialist Cybersecurity Practice. In this role, you will provide cybersecurity assurance within a complex marine / defence engineering programme, supporting the development and delivery of cyber-resilient systems. This is a consultancy role focused on integrating cybersecurity into programme controls … Engineering, or a related technical or defence-focused discipline. Recognised cybersecurity certifications: CompTIA, CISSP, CISM, CRISC, ISO 27001 Lead Auditor / Implementer, or equivalent. Familiarity with MOD, maritime, or defence-specific frameworks: JSPs, DEFSTAN, NIST, IEC 62443, IMO or ISO / IEC 27001. SC clearance (or eligibility to obtain SC as a minimum) is required; DV clearance is desirable depending on the programme needs. Essential skills Strong understanding of cybersecurity assurance principles, risk management, and regulatory compliance in defence or safety-critical environments. Proven ability to produce and More ❯

to the Head of Cybersecurity and work within our specialist Cybersecurity Practice. In this role, you will provide cybersecurity assurance within a complex marine / defence engineering programme, supporting the development and delivery of cyber-resilient systems. This is a consultancy role focused on integrating cybersecurity into programme controls … Engineering, or a related technical or defence-focused discipline. Recognised cybersecurity certifications: CompTIA, CISSP, CISM, CRISC, ISO 27001 Lead Auditor / Implementer, or equivalent. Familiarity with MOD, maritime, or defence-specific frameworks: JSPs, DEFSTAN, NIST, IEC 62443, IMO or ISO / IEC 27001. SC clearance (or eligibility to obtain SC as a minimum) is required; DV clearance is desirable depending on the programme needs. Essential skills Strong understanding of cybersecurity assurance principles, risk management, and regulatory compliance in defence or safety-critical environments. Proven ability to produce and More ❯

Summary The primary objective of the Technical Delivery Associate Manager is to support projects to deliver either the transition of new a service and / or throughout the run-phase of the service. This role is responsible to drive the day-to-day delivery in defence of corporate networks … profile, challenging projects and our nurturing work environment, we offer excellent employee benefits, including: Competitive salary and benefits, including but not limited to: life / health insurance, performance based bonuses, company car (depending on management level), flexible work arrangements (remote working), employee share purchase plan, parental leave and various … incident response management and coordinating efforts across client and Accenture teams. Managing escalations and supporting incident management. Reporting and review of contractual metrics - KPI / SLA. Participate in business development activities (including responses to RFP / I / Q). Champion continuous service improvement and drive automation More ❯

SC or DV Eligible F5 are delighted to be partnering with an award winning Cyber Security Consultancy that services both the Private and Public / Defence Sector. They are seeking talented Cyber Security Consultants to join their growing team, with ideal candidates having good knowledge / understanding of … Governance Risk & Compliance (GRC), specifically around HMG / MOD frameworks such as Secure by Design, NIST, and ISO 27001. Because of the nature of the work and customers you could end up supporting, this role would suit a service leaver / ex-military professional. This company … Experience Recognised cyber security certifications (e.g. CISSP, CISM, CISA) Proven experience in a cyber security role Experience in customer-facing roles Familiarity with HMG / MoD cyber policies, standards (e.g. JSP440), and processes Experience with Secure by Design implementation and related tooling Knowledge of NCSC Cyber Assurance Framework (CAF More ❯

SC or DV Eligible F5 are delighted to be partnering with an award winning Cyber Security Consultancy that services both the Private and Public / Defence Sector. They are seeking talented Cyber Security Consultants to join their growing team, with ideal candidates having good knowledge / understanding of … Governance Risk & Compliance (GRC), specifically around HMG / MOD frameworks such as Secure by Design, NIST, and ISO 27001. Because of the nature of the work and customers you could end up supporting, this role would suit a service leaver / ex-military professional. This company … Experience Recognised cyber security certifications (e.g. CISSP, CISM, CISA) Proven experience in a cyber security role Experience in customer-facing roles Familiarity with HMG / MoD cyber policies, standards (e.g. JSP440), and processes Experience with Secure by Design implementation and related tooling Knowledge of NCSC Cyber Assurance Framework (CAF More ❯

SC or DV Eligible F5 are delighted to be partnering with an award winning Cyber Security Consultancy that services both the Private and Public / Defence Sector. They are seeking talented Cyber Security Consultants to join their growing team, with ideal candidates having good knowledge / understanding of … Governance Risk & Compliance (GRC), specifically around HMG / MOD frameworks such as Secure by Design, NIST, and ISO 27001. Because of the nature of the work and customers you could end up supporting, this role would suit a service leaver / ex-military professional. This company … Experience Recognised cyber security certifications (e.g. CISSP, CISM, CISA) Proven experience in a cyber security role Experience in customer-facing roles Familiarity with HMG / MoD cyber policies, standards (e.g. JSP440), and processes Experience with Secure by Design implementation and related tooling Knowledge of NCSC Cyber Assurance Framework (CAF More ❯

reviews and ensure secure-by-design principles. Conduct threat modelling exercises to identify and mitigate potential risks. Ensure compliance with security regulations such as ISO27001, NIST 800-30 / 37 / 53, JSP 440, 604, and Defence Standards. Develop and maintain security documentation (e.g., RMADS, Security Assurance Documents … penetration testing, vulnerability assessments, and remediation activities. Key Skills & Experience: Strong knowledge of risk management frameworks and methodologies (ISO 27001 / 2, ISO27005 / 31000, NIST 800-30, NIST 800-53) . Experience with defence and government security standards (JSPs, Def Stan … / 139). Proficiency in security testing tools, technologies, and techniques. Ability to analyze and mitigate security vulnerabilities effectively. Strong problem-solving, decision-making, and communication skills. Qualifications & Requirements: Degree in Cybersecurity, Computer Science, or a related field (or equivalent experience). Industry certifications such as CISSP, OSCP, CEH More ❯