1 to 25 of 34 ISO/IEC 27001 Jobs in the Thames Valley

supplement these from time to time. Interpret complex legislation or regulations related to information governance and information security such as ISO / IEC 27001, the Data Protection Act 1998, NHS Information Risk Management, Computer Misuse Act, implementing and enforcing suitable and relevant information … procedures across the Trust. The role will include supporting the implementation and development of systems, policies and procedures which comply with ISO / IEC 27001, NHS England, CareCERT guidance, Cyber Essentials, DSPT, NHS Information Risk Management and other relevant guidance. Please see attached ...

Role: Cyber Security Assurance Specialist Salary / Rate: £45-55 per hr inside IR35 Location: Hybrid, near Oxford 3x per week Contract Duration: until December 2026 We are currently looking for a Cyber Security Assurance Specialist for our government client. This Cyber Security Assurance Specialist role is hybrid, based … gathering and remediation planning for Secure-by-design,CAF and GovAssure Conduct internal technical assurance reviews aligned to GovAssure / CAF / ISO27001 domains Maintain traceability of security controls to frameworks (NIST, CE+, NCSC), Evaluate Suppliers against internal and external risk criteria for Assurance. Contribute to the adoption ...

advising on security architecture & design patterns Owning and maintaining enterprise risk registers Leading technical assurance reviews aligned to GovAssure / CAF / ISO27001 Supporting audit, compliance, and remediation activities Embedding security controls across platforms (Azure, M365, infrastructure) Working closely with engineering, architecture, and delivery teams Key experience: Strong … secure cloud or infrastructure design (Azure / M365) Experience with risk frameworks (ISO 31000, NIST, OWASP etc.) Knowledge of GovAssure, CAF, ISO27001, Cyber Essentials Entra ID / Azure / M365 SIEM / EDR / vulnerability management tools Access control models (RBAC / ...

27001, NIST, CAF, Cyber Essentials, and GovAssure. Assess and secure platforms including Entra ID (Azure AD), Microsoft 365 E5, Azure IaaS / PaaS, and Windows / Linux / Unix systems. Utilise security tooling such as SIEM, EDR / XDR, and vulnerability management platforms … models (RBAC, ABAC), and logging standards. Support incident management, vulnerability assessments, and SOC-related activities. Contribute to secure software supply chain practices, including CI / CD security reviews. Interpret threat intelligence, CVEs, and CVSS scores to inform risk-based decision making. Collaborate with stakeholders across technical and non-technical ...

Cybersecurity Architect Security Clearance - SC Currently Active Location: Hybrid 60% office-40% remote - Wokingham Duration: 21 / 07 / 2026 Rate £590 MUST BE PAYE THROUGH UMBRELLA Role Description: "Core Responsibilities: Develop and maintain secure architecture frameworks for enterprise-grade systems, including cloud, on-premises, and hybrid environments … analyses across infrastructure and application layers Define security standards, reference architectures, and policy controls based on industry frameworks (e.g., NIST, ISO / IEC 27001, CIS) Evaluate and integrate security technologies, including IAM, SIEM, EDR, DLP, WAF, and encryption solutions Collaborate with engineering, DevOps ...

Cybers Security Architect Contract Details Role Title: Cybersecurity Architect Location: Hybrid 2-3 days onsite per week Wokingham Contract Duration: 12 Months Rate: £570 / day inside IR35 Active SC Clearance Required Core Responsibilities Design and maintain secure architecture frameworks for enterprise systems across cloud, on-premises, and hybrid … across infrastructure and application layers Define and enforce security standards, reference architectures, and policy controls aligned with frameworks such as NIST, ISO / IEC 27001, and CIS Evaluate, select, and integrate security technologies including: Identity and Access Management (IAM) Security Information and Event ...

diligence, contractual security commitments and third‐party risk management Help define how security responsibilities and capabilities are allocated across Aurora’s technology, legal / compliance and business functions, ensuring clear accountability, effective challenge and strong delivery Drive security by design across Aurora’s products, platforms, systems and infrastructure, working … sufficient depth to guide strategy, challenge decisions and work effectively with specialist software engineering and IT teams Broad experience across areas such as product / application security, cloud / infrastructure security, identity and access management, incident response, vulnerability management and security governance Proven experience developing and delivering ...

Design and evolve scalable backend services in Python using FastAPI for high-availability, high-throughput workloads. Build well-versioned RESTful APIs aligned to OpenAPI / Swagger, with strong conventions for consistency, idempotency, and backward compatibility. Implement authentication and authorization using OAuth2 / OIDC, session management, and fine-grained … meet performance budgets and latency goals. Integrate with AI pipelines and model-serving endpoints, including streaming responses, async inference jobs, and robust error / retry semantics. Palantir Foundry Integration Work with Palantir Foundry to build and maintain data pipelines, ontologies, and integrations that connect backend services to Foundry-based ...

Specialist (Privileged Access Management) Culham (2-3 days onsite) Contract until 30 / 09 / 2026 (extension possible) £55 / hour Umbrella Inside IR35 Overview We're looking for an experienced Privileged Access Management (PAM) Specialist to support the implementation, optimisation, and ongoing management of PAM controls … Experience Proven hands-on experience with PAM toolsets Strong knowledge of privileged access controls and security best practice Experience with: Windows Server and Linux / Unix environments Network device onboarding into PAM Credential vaulting and session management Understanding of ISO 27001 and / ...

etc. As the Cyber Security Engineer, you will have strong technical expertise across Cyber Security including working with technologies and standards such as ISO 27001, SOC2 and NIST. This role will require a heavy hands on technical expertise with a wide range technologies that they … Balancers & Endpoint Security - Knowledge of cloud security within Azure & AWS environments - Knowledge of cyber security principles, methods, technologies, and standards like NIST, SOC2, ISO 27001 Location: Hybrid - 1 - 2 days per week in Oxford Salary: £60,000 - £75,000 per annum plus benefits Apply ...

hands-on role combining infrastructure, engineering, and security—where your work will have immediate impact. What You’ll Do Build and optimise CI / CD pipelines Manage cloud infrastructure (AWS) using IaC (Terraform / Pulumi) Run and scale containerised systems (Docker, Kubernetes) Monitor performance and improve system reliability … internal tooling Embed security best practices and support ISO 27001 compliance What You’ll Bring 3–5 years in DevOps / SRE / Platform Engineering Strong AWS, Linux, and Python skills Experience with Docker, Kubernetes, and CI / CD tools Knowledge of monitoring ...

minimum of 3 years proven experience in cybersecurity sales. Familiarity with Microsoft security technologies and leading vendors (e.g., Mimecast, CrowdStrike). Background in MSP / MSSP environments or channel sales models. Direct experience of working for, or closely with, leading security vendors such as Microsoft, Mimecast, Crowdstrike. Experience working … audiences. Technical & Industry Knowledge: Understanding of cybersecurity frameworks and compliance (ISO 27001, NIST, GDPR). Familiarity with threat detection, MDR / EDR / XDR, SIEM, email security, and identity management solutions. Awareness of current threat landscape and MSSP service models (SOC, vulnerability management, incident ...

product demonstrations, PoCs, and troubleshooting activities Collaborate closely with product and engineering teams to provide market feedback and influence roadmap direction Contribute to RFP / RFI responses, technical documentation, and whitepapers Build and maintain strong relationships with customers, integrators, and service providers Identify upsell and expansion opportunities within existing … working within UK Government or Public Sector environments Active SC Clearance (essential) Strong technical knowledge of: Cisco routing, switching, gateways, and network applications TCP / IP, SNMP, NetFlow, VoIP LAN / WAN architectures (MPLS, Frame Relay, ATM) Network security principles and infrastructure design Understanding of cloud and virtualisation ...

Specialist - £410 P / D (Inside IR35) – 8 Month Contract - Hybrid 2 / 3 Days in Oxford – BPSS Required Role Overview Our longstanding enterprise corporation that is backed by central government is hiring a IAM specialist with IGA platform,Azure AD and identity lifecycle management and JML automation. … Essential Skills & Experience Hands-on experience implementing IGA platforms (SailPoint, Saviynt, Omada, One Identity, or equivalent) Proven experience integrating IGA with Microsoft Entra ID / Azure AD Strong understanding of identity lifecycle management and JML automation Experience integrating HR systems and other authoritative data sources Solid knowledge of authentication ...

Engineer Location: Wokingham Hybrid - 50 / 50 Duration: role starts with a 6 months contract Rate to SSC Rate - £625 SC CLEARED INSIDE IR35 Role Description: Qualifications Relevant certifications (e.g., CyberArk Defender, CISSP, CISM) Experience in cloud environments (AWS, Azure, GCP) and hybrid infrastructures Knowledge of DevSecOps practices … / CD pipeline integration Key Responsibilities Design, deploy, and manage PAM solutions (e.g., CyberArk, BeyondTrust, Delinea) Implement least privilege access models and enforce secure credential management Monitor and audit privileged access activities across systems and applications Integrate PAM tools with SIEM, IAM, and other security platforms Develop and maintain ...

including policies and standards Establish governance processes aligned to enterprise security frameworks Conduct OT risk assessments and gap analyses against recognised standards (e.g. IEC 62443, NIST CSF, CAF) Identify and oversee implementation of security controls across OT environments Provide technical oversight when working with managed service providers … oversee third-party vendors and managed security services Strong documentation and stakeholder communication skills Desirable Experience Experience in solution architecture Familiarity with SIEM / SOC integration in OT environments Experience with OT asset discovery and monitoring tools Knowledge of regulatory frameworks within critical infrastructure (e.g. NIS) Experience contributing ...

Information Governance Manager. This is a hands-on, delivery-focused role responsible for operating and maintaining the organisation’s data protection, information security, ISO27001, and compliance policy frameworks. The role is operational in nature, not legal or strategic, and focuses on execution, maintenance, and evidence of compliance … RTBF) Act as the company DPO with reporting line to the CEO for this activity Act as operational data protection lead Maintain and operate ISO27001 and ISMS artefacts Support audits, evidence collation and remediation tracking Maintain risk register and compliance action plans Own internal compliance policy lifecycle Support customer ...

response, and vulnerability management Maintain and manage the IT risk framework and risk register Ensure alignment with regulatory requirements and industry frameworks (e.g. ISO 27001, NIST, DORA) Partner with senior leadership to embed security and risk awareness across the organisation Provide regular reporting to executive stakeholders ...

agentic AI systems in production Strong Python skills and hands-on experience with LLM frameworks (LangGraph, LangChain, Haystack, or similar) Experience deploying AI / ML systems into production environments Familiarity with Docker, Git, and cloud platforms (AWS preferred) Understanding of secure deployment patterns - air-gapped, on-premises, or sovereign … cloud Preferred Experience with multimodal reasoning Experience with edge or offline AI deployments Familiarity with Kubernetes (EKS / OpenShift) for monitoring and managing deployed applications MLOps experience - model evaluation, monitoring, reproducibility Observability tooling for agentic systems (model drift, agent behaviour, performance monitoring) Experience with agent orchestration patterns and inter ...

Cyber Security Project Manager / IAM lead required for a global FTSE 100 company. This role will lead the delivery of modern Identity & Access Management strategy, strengthening lifecycle processes, authentication capabilities and access governance to enable a secure, seamless and future-ready digital experience. Key Responsibilities Lead delivery … adoption of new identity processes and platforms. Manage financials and transition services into steady-state operations. Required Experience Proven experience leading large-scale IAM / IDAM transformation programmes. Strong understanding of identity principles (least privilege, zero trust, identity lifecycle, access governance). Experience implementing ...

Microsoft-centric environments. * Strong understanding of hybrid cloud infrastructure, Azure services, and modern workplace technologies. * Familiarity with security, resilience, and operational frameworks (e.g. ISO27001, NIST, ITIL). * Experience in agile and traditional delivery models, with the ability to work across project and BAU contexts. * Demonstrable experience delivering infrastructure change ...

Delivering platform improvements and transformation projects across compute, storage, networking, and identity. Implementing infrastructure automation and repeatable deployment models using PowerShell, Ansible, and CI / CD pipelines. Acting as a senior technical lead on projects, making key design decisions and ensuring best practice engineering standards. Designing and implementing secure … endpoint security, Zero Trust principles). Leading infrastructure upgrade and lifecycle projects, including major version upgrades, migrations, and re-platforming activities. Contributing to ISO 27001 compliance projects, including control implementation, gap analysis, and audit readiness. Designing and testing disaster recovery and business continuity solutions as part ...

Overview We are seeking an experienced and hands-on SOC Operations Technical Lead to lead a team of SOC Analysts operating in a 24 / 7 / 365 environment. This is a senior, technically focused leadership role within our Managed Security Services (MSSP) function, reporting directly … GCIA, GREM), SC-200 or SC-300 Experience in cloud security operations Background in MSSP or consulting environments Familiarity with frameworks such as NIST, ISO27001, or ITIL Key Competencies Strong technical depth with the ability to simplify complex concepts Excellent analytical and problem-solving skills under pressure Confident communicator with ...

Overview We are seeking an experienced and hands-on SOC Operations Technical Lead to lead a team of SOC Analysts operating in a 24 / 7 / 365 environment. This is a senior, technically focused leadership role within our Managed Security Services (MSSP) function, reporting directly … GCIA, GREM), SC-200 or SC-300 Experience in cloud security operations Background in MSSP or consulting environments Familiarity with frameworks such as NIST, ISO27001, or ITIL Key Competencies Strong technical depth with the ability to simplify complex concepts Excellent analytical and problem-solving skills under pressure Confident communicator with ...

Overview We are seeking an experienced and hands-on SOC Operations Technical Lead to lead a team of SOC Analysts operating in a 24 / 7 / 365 environment. This is a senior, technically focused leadership role within our Managed Security Services (MSSP) function, reporting directly … GCIA, GREM), SC-200 or SC-300 Experience in cloud security operations Background in MSSP or consulting environments Familiarity with frameworks such as NIST, ISO27001, or ITIL Key Competencies Strong technical depth with the ability to simplify complex concepts Excellent analytical and problem-solving skills under pressure Confident communicator with ...