1 to 25 of 365 ISO/IEC 27001 Jobs in the UK

based multi-site enterprise, is delivering a multi-year cybersecurity, controls and resilience programme aligned to NIST CSF v2.0 and ISO / IEC 27001:2022. They require an experienced, hands-on Infrastructure Engineer to design, implement and uplift infrastructure controls translating cyber security … environments. Remediate security findings arising from audits, risk assessments and maturity reviews. Engineer and embed technical controls supporting NIST CSF and ISO / IEC 27001 objectives. Support security tooling integration (SIEM log sources, EDR / XDR dependencies, vulnerability tooling). Enable ...

pitched appropriately for each audience from shopfloor to Board; influence organisational culture to embed risk‐based thinking at every level. Regulatory Reporting (GDPR / NIS2 / DORA) & Legal Liaison Lead regulatory compliance reporting across applicable regimes, including GDPR, NIS2, and DORA; act as the primary cyber security liaison … patching currency, MFA adoption rates, vulnerability remediation SLAs, and phishing resilience scores – and report progress against targets to senior leadership and divisional stakeholders. Board / ExCo / ISC Reporting Pack Production Produce clear, authoritative, and insightful reporting packs for the Board, Executive Committee, and Information Security Committee; deliver ...

SECURITY CONSULTANT Up to £50,000 + Certification Support + Mentorship Opportunity + Staff Benefits SECURE our proud to Partner with a Specialised Information / Cyber Security Consultancy that believes True Resilience is Built on Empowering People. Founded by Former investigators, they bring a Practical, Evidence-Based Perspective … deeply committed to providing you with Ongoing Mentoring, Training & Support to Continuously Elevate Your Consulting Career. Who Should Apply: The Practical Implementer: GRC / Information Security / Cyber Security Experience & find satisfaction in Guiding Clients from an Initial Assessment to Successful Certification Status. You enjoy Detail-Oriented Work ...

+ 20% Bonus Hybrid / Remote (UK) Permanent ISO 27001 & ISO 22301 Compliance Specialist We are looking for an experienced Compliance Specialist with strong expertise in ISO 27001 and ISO 22301 to support and maintain our management … systems. Key Responsibilities Write, review, and maintain policies, procedures, and supporting documentation. Ensure compliance with ISO 27001 and ISO 22301 requirements and best practices. Support internal and external audits. Identify gaps and recommend improvements to existing controls and processes. Assist with business continuity ...

Southeastern, and TransPennine Express. Our consumer-facing brand, TicketyBoo, is a train ticket booking app available to passengers across Great Britain. We hold ISO 27001 accreditation and PCI DSS compliance, and operate in a regulated, high-availability environment where governance and security are central to everything … Familiarity with PCI DSS compliance requirements Experience supporting public sector or regulated procurement processes Knowledge of the UK rail industry or exposure to RDG / TOC commercial environments What We Offer A direct reporting line to the Managing Director and genuine influence over a business-critical programme The chance ...

27001 control operation and evidence collection. Ensure compliance with MoD security standards including JSP 440 and SbD requirements. Support internal / external audit, accreditation and remediation activities. Maintain secure configurations, firewall rules, access control policies, and logging standards. Provide security assurance during change, deployment and release activities. … operational security within governed environments Eligible for DV clearance Desirable Experience in MOD or classified environments Automation experience (Ansible, Terraform, scripting) Experience with Nessus / Tenable or similar tools Familiarity with JSP 440 / 441 / 453 and NCSC guidance Role Purpose To deliver security operations ...

Information Security Analyst - ISO 27001, SOC2, PCI DSS Audit & Compliance - Large Government Projects London Hybrid. Full-Time Permanent £80,000 - £90,000 plus bonus & benefits We're working with a global leader in workforce management solutions to find a certified Information Security Analyst well versed … Cyber Essentials, GDPR, DORA). Experience with CSOC tools such as Rapid7 InsightIDR or other SIEM solutions. Hands-on experience with internal / external audits and compliance assessments. Relevant security / audit certifications (CISA, CISM, CISSP, ISO 27001 Lead Auditor, Cyber Essentials Assessor ...

your scope. Compliance (30%) Own our data protection function day‐to‐day: UK GDPR, US state privacy law, and cross‐border transfer mechanisms (UK / EU / US / SG). Work closely with our vCISO to maintain ISO 27001 … just mark them up. Working knowledge of UK GDPR and practical experience managing compliance programmes or certification cycles (ISO 27001 / SOC 2 exposure strongly preferred). Genuine AI literacy – you use Claude or equivalent tools in your workflow; drafting without them would feel like ...

issuesareresolvedandidentifiedimprovementsaredeliveredthroughtheContinuousServiceImprovementPlan 4.ResponsibleforcontrollingITassets,includingbusinessandoperationalsoftwarelicencing,ensuringthatadministrationoftheacquisition,storage,distribution,movement,anddisposalofassetsiscarriedouttoreducecost,maintainsecurityandenablereuseandavoidingunnecessaryacquisition. 5.ResponsibleforworkingwithTechnologyAssuranceandOperationsteamstoimplementarrangementsfordisasterrecoveryanddocumentsrecoveryproceduresinordertoensurearapidrecoveryofbusinessservicesreducinganyadverseimpactonbusinessoperations. 6.Responsibleforassessing,analysing,developing,documenting,andcontrollingtheimplementationofchangesbasedonrequestsforchangetoensurecontinuityofoperationsandavoidanceofincidentsresultingfromITchangeinthebusinessenvironment. Totakeresponsibility,appropriatetothepostfortacklingracismandpromotinggoodrace,ethnicandcommunityrelations. 34PERSONSPECIFICATIONItisessentialthatinyourwrittensupportingstatementyougiveevidenceorexamplesofyourprovenexperienceineachoftheshort-listingcriteriamarkedApplication AbletodemonstrateaclearunderstandingandcapabilitytoworkwithinrelevantITrelatedstandardsincludingIITILV4,ISO / IEC38500,ISO / IEC27001,ISO / IEC22301,ISO / IEC20000,PRINCE2andMSPE4QualificationEducatedtoGCSElevelorequivalentHoldITILV4Foundationaccreditation5CoreBehaviourCommunicatesEffectivelyCommunicates ...

position based in Essex, working closely with operational, technical, and leadership teams across the business. * Ideal for candidates with experience in process improvement, ISO compliance, automation, and operational governance within an MSP, IT services, or technical environment. * To apply, please email . Who is the client? Our client … business. To Apply Please apply through this advert or send your CV directly to For further information please call me on 0203 763 3888 / 07441 348 206. By applying for this role, you give express consent for us to process and submit (subject to required skills) your application ...

+ 20% Bonus Based in Milton Keynes (Hybrid / Remote considered) Permanent Compliance Manager About the Opportunity We are seeking an experienced Compliance Manager to join our People & Compliance team. Working within a leading international technology solutions provider, you will take ownership of the company's compliance, governance … writing, documentation and communication skills. Self-motivated, organised and able to work independently. Desirable Experience implementing and maintaining Cyber Security compliance. Business Continuity and / or Health & Safety qualifications. Knowledge of NIS2, DORA and wider European regulatory frameworks. What You'll Bring Strong stakeholder management and influencing skills. ...

Role: Cyber Security Consultant Location: Leeds or Manchester (Hybrid, 1 day on site / week) Salary: £60,000 Type: Permanent, Full-Time Summary: We are working with a UK cyber security consultancy to bring in Cyber Risk & Compliance Consultants into their advisory practice. The team supports a varied client … information security, compliance or audit. Working knowledge of ISO 27001, NIST, GDPR. Certifications: ISO 27001 LI / LA, CISA, CRISC, CISM, CISSP. Cloud security review experience (AWS, Azure, M365). Strong written and verbal communication across technical and executive audiences. Benefits ...

best team to address our clients’ needs. Typical projects will include: Carrying out PLM diagnostic and development of business case Defining the business architecture / operating model, requirements and PLM solution blueprint Leading PLM Transformation initiatives Qualifications Essential qualifications and experience PLM Leadership: 10+ years of PLM experience, working … Experience working with Siemens solutions will be an advantage. Technical Expertise: Deep hands‐on expertise in core PLM processes, such as BOM management, change / config, variant / options management, CAD / CAE integration, ALM / requirements trace, maintenance and through‐life support. Business acumen. Experience ...

comprehensive documentation (Manual, processes, procedures and controls) in accordance with contractual requirements, ISO 9001 and other applicable standards (ITIL, ISO / IEC 20000, ISO 27001, ISO 31000, etc). Develop and implement a Project Quality Plan … detail. Ability to work under pressure and manage competing priorities. Benefits: 25 days' holiday per annum + 8 days' bank holidays (options to buy / sell days) Pension - 4% employee and 4% employer Private medical insurance (including dental & optical) Life assurance Income protection Employee assistance programmes Flexible / ...

that the Trusts systems and information collection processes are aligned to the Data Security and Protection Toolkit (CAF), ISO 27001 / 2 and compliant with the Data Protection Act 2018 as well as other regulatory frameworks in the aspects of confidentiality and data protection. Lead … submission of the Data Security and Protection Toolkit / CAF Desirable Registration Authority experience. Knowledge and Skills Essential Detailed specialist knowledge of ISO27001 / 2, Freedom of Information Act 2000, Data Protection Act 2018 and Information Governance Ability to lead a team Ability to communicate effectively ...

Cyber Security Implement Cyber Security policies under the SIRO. Lead ISO 27001 recertification, internal audits, and remediation. Work with infrastructure / product teams on data security and incident handling. Oversee playbooks and ensure measurable risk reduction. Digital Clinical Safety Collaborate with IT, Clinical, Legal … SIRO, and Caldicott Guardian. Maintain the Digital Clinical Safety Policy with CMO / CTO. Lead biennial reviews for DCB0129 / 0160 and MDD compliance. Oversee training compliance and safety case documentation. Quality Management Lead the ISO 9001aligned Quality Management System. Manage ISO 9001 audits ...

Information Security Specialist Permanent - Good salary + strong benefits Location: Hybrid - Bristol / Edinburgh - 2 / 3 days a week on site Your new company: A leading UK Law and Professional Services company is currently looking for an Information Security Specialist to come in and support the existing … Manager to improve and maintain their governance, risk and compliance (GRC) capability and help us continually improve our ISO 27001 / CE+ Information Security Management System (ISMS). The role is full-time, with a hybrid working pattern usually around 2 / 3 days ...

cybersecurity audits for client organisations in line with UK regulations. Assess compliance with: UK GDPR & Data Protection Act 2018 NIS Regulations ISO / IEC 27001 Cyber Essentials / Plus Telecommunications (Security) Act 2021 Identify risks and provide actionable recommendations. Produce clear audit … auditing, ideally in a consultancy or client-facing role. Strong knowledge of UK legal frameworks and compliance standards. Relevant certifications (e.g. CISA, CISSP, ISO 27001 Lead Auditor). Excellent communication and stakeholder engagement skills. Ability to work independently and manage multiple client engagements. Why Consultants choose ...

Reports, Risk Management, and additional Vanta solutions. Serve as a trusted GRC advisor, guiding customers through complex regulatory environments such as SOC 2, ISO 27001, ISO 42001, GDPR, HIPAA, and custom frameworks. Provide strategic guidance on scaling security programs, operationalizing continuous compliance, and maturing … years managing large enterprise or strategic accounts. Strong GRC domain expertise, with hands‐on experience in security compliance frameworks such as SOC 2, ISO 27001, HIPAA, GDPR, ISO 42001, or similar. Proven experience engaging and influencing C-level executives in complex, global organisations. Demonstrated ...

online tutorials to enhance and achieve your personal and professional goals. Healthcare cash plan. This will give you access to online GP appointments, 24 / 7 access to qualified counsellors and cash back against a range of general healthcare Casual dress policy Company Pension Scheme Company social events … days annual leave plus public / bank holidays Purchase of annual leave scheme Life at Littlefish: Our company values shape who we are as a business, what we stand for and how we work. Hiring people with our values at heart, is very important as we see Littlefish grow. ...

Purpose of Position As Information Security Risk Manager (f / m / d) you will own and drive Awin’s global Information Security Risk Management capability end-to-end, ensuring the business not only understands its risks but takes measurable action to reduce them. You will be accountable … implementing, or improving control frameworks Experience with GRC platforms (e.g. Hyperproof) Confident communicator (with very good English skills) - able to build relationships and challenge / influence senior stakeholders Our Offer Flexi-Week : We prioritise your mental health and wellbeing by offering you a four-day Flexi-Week (with ...

expert for security, working across infrastructure, operations, and leadership to embed best practice in a live 24 / 7 production environment. The Role You will take ownership of cyber security across the organisation, combining hands-on technical delivery with strategic oversight. Key Responsibilities Lead delivery of Cyber Essentials, CE+ … security lead without the luxury of a large team. Strong cyber security background across infrastructure and systems environments Experience delivering or supporting Cyber Essentials / ISO 27001 Knowledge of: Identity & access management (Entra ID, MFA, Conditional Access) Endpoint & network security (EDR / MDR, firewalls ...

with strong DORA experience to lead operational resilience, major incident management and recovery planning within a regulated financial services environment. Key experience:* MUST DORA / Operational Resilience * Major Incident Management* Business Continuity & Disaster Recovery* Financial Services / FinTech* ISO 22301 / ISO 27001 … / NIST* Stakeholder & Regulatory Management This role will lead DORA implementation, resilience testing, ICT incident response, third-party risk and enterprise recovery planning across the business. High-impact role with strong visibility and ownership. Apply now for immediate consideration. #DORA #OperationalResilience #BusinessContinuity #FinTech #RiskManagement Robert Half Ltd acts ...

Manchester, Reading, Nottingham, Ireland or Scotland) Occasional UK travel required – expenses paid Salary: £45,000 – £50,000 per annum Are you an experienced ISO auditor looking for an opportunity to shape and lead a group-wide audit function? Do you enjoy combining hands-on auditing with governance, oversight … Reporting audit findings to senior stakeholders and driving corrective actions and continuous improvement initiatives Ensuring the organisation remains audit-ready and maintains its ISO certifications What We're Looking For Essential: Proven experience conducting ISO audits and internal audits Strong experience with ISO 27001 ...

Manchester, Reading, Nottingham, Ireland or Scotland) Occasional UK travel required – expenses paid Salary: £45,000 – £50,000 per annum Are you an experienced ISO auditor looking for an opportunity to shape and lead a group-wide audit function? Do you enjoy combining hands-on auditing with governance, oversight … Reporting audit findings to senior stakeholders and driving corrective actions and continuous improvement initiatives Ensuring the organisation remains audit-ready and maintains its ISO certifications What We're Looking For Essential: Proven experience conducting ISO audits and internal audits Strong experience with ISO 27001 ...