1 to 25 of 40 ISO/IEC 27001 Jobs in the Thames Valley

security audits and testing activities. Actively working towards (or keen to achieve) a recognised security qualification such as ISO 27001 / 42001 / 27017 / 27701 auditor, CISM, CISSP, COBIT, CISA, CGEIT, or an equivalent. Responsibilities & delivery Maintain a clear RACI for security … breaks in between online assessments, a sign language interpreter, or assistive technology, please refer to the Accessibility section of our Careers website (https: / / careers.vodafone.com / uk / reasonable-adjustments / ) for guidance. We use AI in different parts of our business to boost ...

Cyber Security Implement Cyber Security policies under the SIRO. Lead ISO 27001 recertification, internal audits, and remediation. Work with infrastructure / product teams on data security and incident handling. Oversee playbooks and ensure measurable risk reduction. Digital Clinical Safety Collaborate with IT, Clinical, Legal … SIRO, and Caldicott Guardian. Maintain the Digital Clinical Safety Policy with CMO / CTO. Lead biennial reviews for DCB0129 / 0160 and MDD compliance. Oversee training compliance and safety case documentation. Quality Management Lead the ISO 9001aligned Quality Management System. Manage ISO 9001 audits ...

ITIL v3 Service Management Qualification Educated to degree level or equivalent Formal certification (ISACA: Certified Information Security Manager (CISM). CISSP, or CRISC) and / or formal training in information security standards and best practice (e.g.: ISO 27001 / 2, COBIT), or equivalent work … understanding of the same. Experience Essential Extensive experience of developing and delivering an Information Security service to a large complex organisation using confidential and / or sensitive information Desirable IT experience gained in both and Acute and Community setting Disclosure and Barring Service Check This post is subject ...

Head of Internal Audit, you will build and lead a modern, insight-led assurance capability across IRISs multi-product SaaS portfolio, including accountancy, payroll / HCM, and education, as well as core group functions and processes. This role combines Third Line (Internal Audit) leadership with support from … Audit Charter, methodology , and quality framework in line with IIA Global Internal Audit Standards Lead end-to-end audits across operational, financial, compliance, product / technology, and change domains, directing co-sourced SMEs where required , and introducing agile, data-enabled auditing techniques to increase coverage and reduce cycle time ...

Cyber Security Analyst Culham, Oxfordshire (2 days onsite per week) £50 / hour Umbrella | £36.43 / hour PAYE Contract until 18th December 2026 Active SC Clearance Required (or lapsed within last 12 months) A government backed organisation is hiring an OT Cyber Security Analyst with industry experience … Responsibilities Implement and maintain OT security controls across industrial environments Support OT network segmentation and secure remote access solutions Integrate OT environments into SIEM / SOC platforms Develop and tune OT threat detection rules Conduct OT security assessments, gap analysis, and remediation planning Support OT incident response and investigation ...

Information Security & Data Protection Manager Based: Remote (UK) / High Wycombe / London (N7) / Hybrid Term: Permanent, Full time Reporting to: Chief Information Officer (CIO) Salary: £60k - £85k pa + excellent benefits The Role We're looking for an Information Security Compliance Specialist to take ownership … business, own the incident management process (including phishing response and simulation exercises), and manage vulnerability scans and penetration testing (including external Red / Purple / Blue Team engagements) Risk & resilience: conduct risk assessments across products, systems, and processes; own the Information Security and Data Protection risk register, contributing ...

Role : PAM Specialist ( Privileged Access Management) Location : Abingdon , UK With Hybrid (2 to 3 Days / Week onsite) Contract: Contract | InsideIR35 | 6 months (possible and likely extension) Overview: The Client is seeking a PAM (Privileged Access Management) Specialist to implement, configure, and manage the BeyondTrust PAM platform. The role … rotation and manage privileged account workflows Record, monitor, and manage privileged sessions Onboard servers, network devices, and applications to PAM Discover and vault service / application / shared accounts Configure session proxies, Just-in-Time access, and break-glass procedures Integrate PAM with SIEM and Active Directory / ...

enable global coverage Driving continuous improvement across security and network operations processes and performance Essential Experience Proven experience leading a Security Operations Centre (SOC / NSOC) or cyber security function within a complex organisation. Experience in security operations, incident response, risk management, and service delivery. Experience maintaining compliance with … response, and security monitoring. Good knowledge of network infrastructure, cloud technologies, and endpoint security. Experience with Microsoft Azure, Microsoft Sentinel, Microsoft Defender, and Windows / macOS environments. Understanding of security governance, compliance, and audit requirements. Leadership & Communication Strong leadership, people management, and team development skills. Ability to drive continuous ...

Design and evolve scalable backend services in Python using FastAPI for high-availability, high-throughput workloads. Build well-versioned RESTful APIs aligned to OpenAPI / Swagger, with strong conventions for consistency, idempotency, and backward compatibility. Implement authentication and authorization using OAuth2 / OIDC, session management, and fine-grained … meet performance budgets and latency goals. Integrate with AI pipelines and model-serving endpoints, including streaming responses, async inference jobs, and robust error / retry semantics. Palantir Foundry Integration Work with Palantir Foundry to build and maintain data pipelines, ontologies, and integrations that connect backend services to Foundry-based ...

Interim, 6 months+, Telecoms Security Act Compliance, TSA, CAF / CAS(T) / ISO . Risk Management, Regulator, OFCOM Your new company A well-known telecoms provider offers a long-term assignment to a TSA Regulatory compliance specialist or high level ISO-standards expert … open to considering candidates who tick all the boxes in terms of working with regulatory measures and regulators AND have extensive experience with CAF / CAS(T) ISO standards (27001 and 22301 and 33000) and have experience interpreting complex regulatory matters. Experience within the telecommunications ...

support new opportunities Provide technical leadership across problem management and complex change activities What We’re Looking For Essential Skills & Experience Strong 3rd Line / Infrastructure experience (3–5 years minimum) Experience in a Managed Services environment Expertise in networking technologies including: Juniper (Mist), Aruba, or Cisco (switching, routing … wireless) VLANs, DNS, DHCP, and certificate services Firewalls (Fortinet, Cisco, Palo Alto, Check Point) ESX / virtualisation experience Network Access Control (Cisco ISE / Aruba ClearPass) Familiarity with ITSM tools (e.g. ServiceNow) Confident working directly with customers and senior stakeholders Desirable Cisco CCNP (or equivalent) ITIL v4 Foundation ...

Policy & Governance Lead / GRC Analyst Active SC Clearanc e – required to work on‐site with Edgewing and support sensitive MOD / aerospace programmes Aerospace and Defence Experience – demonstrable background delivering architecture within MOD, Defence Digital, or UK aerospace environments .This role will be based in Readin … with hybrid / custom working options where appropriate Policy & Governance, GRC / Assurance Purpose of the Role Define, maintain, govern, and assure compliance with the organisation’s ISMS policy framework, standards, and procedures, while supporting audit readiness and control assurance Key Responsibilities Own and maintain al l policies ...

response, cyber investigations, and escalation procedures. Oversee annual penetration testing programmes and security audits. Support compliance initiatives including Cyber Essentials, Cyber Essentials Plus, ISO 27001, and similar frameworks. Produce security reporting for IT leadership and senior business stakeholders. Conduct security due diligence for acquisitions and support … Strong understanding of cyber security governance, risk management, and compliance. Experience implementing and supporting security frameworks such as Cyber Essentials, Cyber Essentials Plus, ISO 27001, or similar. Strong knowledge of Microsoft Azure security and cloud governance. Experience working with modern identity, endpoint protection, email security ...

response, cyber investigations, and escalation procedures. Oversee annual penetration testing programmes and security audits. Support compliance initiatives including Cyber Essentials, Cyber Essentials Plus, ISO 27001, and similar frameworks. Produce security reporting for IT leadership and senior business stakeholders. Conduct security due diligence for acquisitions and support … Strong understanding of cyber security governance, risk management, and compliance. Experience implementing and supporting security frameworks such as Cyber Essentials, Cyber Essentials Plus, ISO 27001, or similar. Strong knowledge of Microsoft Azure security and cloud governance. Experience working with modern identity, endpoint protection, email security ...

with technical teams across the domain & drive the security solution deployment.Should have experience in configuring and managing security products such as firewalls, intrusion detection / prevention systems (IDS / IPS), SIEM (Security Information and Event Management) systems, Log Collector and Identity Management solution.Should have customer facing skills … least in one of the following solutions: Logging, PKI Infrastructure, Identity, and access management, Security testing in telecom networks.Experience with 3GPP 5G Release 15 / 16 will be a plus.Security certifications (e.g., CISSP, CISA, CCIE, CISM) or knowledge of security frameworks and best practices (e.g., NIST, ISO ...

Description PAM Specialist - £592 PD (Inside IR35) – 6 Month Contract – Hybrid 2 / 3 Days in Oxford – BPSS RequiredOverview:We are seeking an experienced Privileged Access Management (PAM) Specialist to join a major UK government research organisation on a long-term programme of work. This is a hands … Responsibilities: Implement, configure, and manage enterprise PAM toolkits. Configure and support Privileged Remote Access solutions. Manage credential vaulting, automated password rotation, and check-in / check-out workflows. Configure and maintain session monitoring and recording. Support discovery, onboarding, and lifecycle management for service accounts. Onboard Windows, Linux / ...

Specialist - £592 PD (Inside IR35) – 6 Month Contract – Hybrid 2 / 3 Days in Oxford – BPSS Required Overview: We are seeking an experienced Privileged Access Management (PAM) Specialist to join a major UK government research organisation on a long-term programme of work. This is a hands-on technical … Responsibilities: Implement, configure, and manage enterprise PAM toolkits. Configure and support Privileged Remote Access solutions. Manage credential vaulting, automated password rotation, and check-in / check-out workflows. Configure and maintain session monitoring and recording. Support discovery, onboarding, and lifecycle management for service accounts. Onboard Windows, Linux / ...

security reporting, SIEM alignment, and incident response coordination Oversee security incident management in line with the client Cyber Security Incident Response Plan Own joiner / mover / leaver processes, RBAC, PAM, and monthly access control audits Ensure delivery of security assurance artefacts for internal and external audit requirements … Support and coordinate penetration testing, vulnerability management, and disaster recovery exercises Ensure compliance with GDPR / DPA 2018, NCSC IAS5, CAF, and related government standards Maintain and enforce security controls across Oracle Cloud environments and SaaS applications Ensure secure configuration of Oracle ERP (HCM, ERP, EPM) security models including ...

Power BI or Tableau to visualise and report automation outcomes. Desirable technical skills and qualifications Professional certifications such as CISA, CISSP, CRISC, or ISO 27001 Lead Auditor. What's in it for you? Competitive salary between £65,000 and £80,000 per annum, depending on experience. ...

Cyber Security ConsultantMainly remote with occasional UK office / site visits£55,000-£65,000 depending on experience, + Benefits An established and expanding information security consultancy is looking to appoint a Cyber Security Consultant to support a growing portfolio of client engagements across the UK. This … governance documentation Experience required: 2+ years experience in information or cyber security Previous consultancy experience with the ability to engage effectively with clients / customers and understand their requirements Ability to simplify complex topics and offer practical, grounded advice An understanding of ISO 27001, GDPR ...

full network cycle services for fixed, private and mobile operators. Private networks- We find the best technology, manage assets and refresh systems. With 24 / 7 network operations, we keep things running smoothly, while operating comprehensive network repair and maintenance to keep everything in top shape. Want to come … customer-facing roles; strong knowledge of vulnerability management, PEN testing, and risk mitigation; expertise in network security, device management, and governance; familiarity with PUAM / UAM tools and practices; excellent communication, reporting, and stakeholder management. Desirable: Certifications such as CISSP, CISM, or CEH; knowledge of CAF, ISO ...

utility industry or other large, complex critical national infrastructure organisations. Desirable technical skills and qualifications Professional certifications such as CISA, CISSP, CRISC, or ISO 27001 Lead Auditor. What's in it for you? Competitive salary between £40,000 and £55,000 per annum, depending on experience. ...

expert knowledge of KPMG's technology ecosystem, incl. the main applications and technologies that interact with integration technologies If required, provide advice to and / or seek to learn from other Member Firms, client teams and / or clients that are seeking to implement or improve their … Management, Logic Apps, Event Grid, Service Bus, Key Vault, and Blob Storage. Demonstrable knowledge of DevOps & IaC, including Azure DevOps, GitHub, Terraform, Azure Bicep / ARM, and Azure Policy. Knowledge of other leading Cloud-based integration platforms, e.g., AWS Integration Services, MuleSoft, Dell Boomi, Informatica Knowledge of security aspects ...

transport protocols (TCP, UDP, ICMP, ARP), infrastructure protocols (DNS, DHCP, BGP, SNMP), common application protocols (SMB, RDP, HTTP, FTP etc) and security protocols (TLS / SSL, IPSec, SSH, SAML, OAuth etc) Proven history of identifying, assessing and remediating network related security risks / misconfigurations Strong technical knowledge … projects spanning multiple countries and cultures Background of defining security standards and processes in large corporate IT environments Working knowledge of Cyber Security frameworks / methodologies (such as NIST, ISO 27001, MITRE ATT&CK, Lockheed Martin Kill Chain etc) Network Security Architect ...

/ 4 HANA Finance Enterprise Architect The role of the SAP S / 4 HANA Finance Enterprise Architect is to develop the UK Firm’s technology strategy for Finance and Engagement Management domain and translate this into a roadmap that determines our investment priorities and transformation portfolio. … solutions; and govern relevant technology choices within the Firm. In addition to the FEM domain, you will be expected to cover other business and / or technology domains as and when required. Core knowledge Maintain a high level of technical knowledge incl. current, emerging and future technology market trends ...