1 to 25 of 386 ISO/IEC 27001 Jobs in the UK

with architects, security teams, and accreditors to ensure solutions meet the stringent requirements of a highly classified defence environment. WHAT YOU'LL BE DOING / / Acting as the programme's technical authority on all Cross Domain Solution matters / / Defining and owning CDS architecture … design patterns, and security controls / / Leading the evaluation, selection, and integration of accredited CDS products and technologies / / Working with security architects and accreditors to achieve and maintain system accreditation / / Providing SME input to risk assessments, HMG / ...

Role: This is a hands-on individual contributor role, reporting to the CTO. You’ll design, build, and run our cloud infrastructure, CI / CD, observability, and core IT operations (including device management). You’ll also help define IT business processes and uphold ISO 27001. … smooth for team members to get work done. What You'll Be Doing: Own the DevOps strategy - Design and implement scalable cloud infrastructure, CI / CD, observability, and security-by-default practices that let engineering ship fast and services accessed safely. Standardise how services are built, provisioned, administered ...

System Engineer Location: East London (Hybrid – office / home) Rate: £450–£500 per day (Inside IR35) Duration: Initial 3–4 month contract (backlog clearance) with strong potential for extension or permanent conversion Client Environment: Major London Rail customers (TfL, Network Rail – station systems) Overview We are seeking … assurance deliverables while providing technical oversight to junior engineers and supporting SIEM integration activities. This is a hybrid East London role with no trackside / site access required. Key Responsibilities Cybersecurity Governance & Assurance Produce and maintain: Cyber Security Management Plans (CSMP) Risk assessments and threat models Assurance and compliance ...

Engineer Basingstoke £28k - £35k + Benefite Hybrid working x2 days in office / x3 days work from home I am recruiting in Basingstoke for an OT SOC Engineer to join the OT SOC team and will report directly into the OT Cybersecurity Services Lead. As an OT SOC Engineer … will be paid extra for the on call duites of the OT SOC Engineer. OT SOC Engineer Responsibilities: Continuous / Proactive monitoring of OT security tools (e.g., Nozomi, Fortinet, TXOne) for alerts and anomalies. Acknowledge, analyse and validate alerts triggered from the OT security tools to reduce false positives ...

policies and contribute to a safe working environment. To carry out any other tasks where reasonable and relevant, when required QUALIFICATIONS: ISO / IEC 27001 Foundation, Lead Implementer, Lead Auditor related certifications Cyber certifications such as CompTIA Security+ (desirable) IT certifications such … CompTIA A+, Network+ (desirable) ESSENTIALREQUIREMENTS: Hands-on experience managing or supporting compliance programmes, such as: ISO / IEC 27001,Cyber Essentials / Cyber Essentials Plus, NIST frameworks, EASA Part-IS (for aviation), GDPR / data protection compliance & DFARS / CMMC ...

Engineer Location:Wokingham Hybrid - 50 / 50 Duration: 28 / 08 / 2026 £250 MUST BE PAYE THROUGH UMBRELLA Role Description: "A Power BI and CMDB IT specialist combines expertise in data analysis and reporting with the governance and management of CNI data. This specialist uses data … running regular audits and reconciliation routines between the physical IT environment and the CMDB data to identify and resolve discrepancies and meet audit / regulatory requirements (e.g., ISO / IEC 27001). * Process Improvement: Identifying opportunities for process automation and efficiency improvements ...

Contract: 6 Mths Based in Essex / Hybrid Day Rate: £500-£600 per day Radius is looking for a Project Manager who has initially strong experience in Remedy to ServiceNow migrations. Role Responsibilities The role, reporting to the CIO, is responsible for ensuring the delivery of the main Corporate … primarily Service Now but also covering Sharepoint and Microsoft365 improvements as required). The role will be expected to cover requirements capture / definition, managing the suppliers, users, IT admins required as part of the project, completing system testing and project managing the full delivery. Main Duties This role ...

primarily Service Now but also covering Sharepoint and Microsoft365 improvements as required). The role will be expected to cover requirements capture / definition, managing the suppliers, users, IT admins required as part of the project, completing system testing and project managing the full delivery. Main Duties This role … will work closely with the CIO to deliver a number of improvement / migration projects for a number of Corporate IT Systems / applications. The primary areas of responsibility will include, but not limited to: Technical Project Management Managing the GM UK Corporate IT Projects (see list below ...

from the GRC Analyst: Proven experience in a GRC, security risk, or compliance role Certifications for ISO 27001 (Lead Implementer / Auditor) , would be required Strong knowledge of frameworks such as ISO 27001, NIST, SOC 2, CIS , and data protection standards … Onboarding / vendor risk management experience Hands-on experience supporting or leading ISO 27001 certification activities Solid understanding of risk assessment, control design, and audit processes Experience working with GRC tooling, evidence management, and reporting Experience / Knowledge around high volume data process would ...

Reporting to the Cyber Security Compliance Manager, you will support internal reviews, risk assessments, policy development, and ongoing compliance with frameworks such as ISO 27001 and NIS Regulations . Youll collaborate across the business to ensure risks are effectively managed, controls are embedded, and our security … standards remain robust and continually improved. Key Responsibilities: Plan, conduct, and document internal ISO 27001 audits across all areas of the Information Security Management System (ISMS), ensuring all controls and processes are regularly reviewed for effectiveness and compliance Evaluate the effectiveness of information security policies, procedures ...

Product Delivery Manager +SC cleared role +Hybrid working 2 / 3 days a week in Reading +Inside IR35 + 80 - 83 ph We are seeking an experienced Product Delivery Manager to lead the delivery of model-based Product Security digital capabilities across a complex, regulated engineering environment. Reporting … digital toolchains, including: Threat & risk modelling (STRIDE, STPA-Sec, TARA, attack trees) Security requirements & controls modelling SBOM & vulnerability management Cryptography & key management governance Configuration / change control Verification & validation orchestration Security / assurance case evidence Define Product Security reference architecture and Digital Thread integrations Own roadmap, backlog ...

Systems Engineer +SC cleared role +Hybrid working 2 / 3 days a week in Reading +Inside IR35 + 80 - 83 ph We are seeking an experienced Senior Systems Engineer to lead the delivery of model-based Product Security digital capabilities across a complex, regulated engineering environment. Reporting … digital toolchains, including: Threat & risk modelling (STRIDE, STPA-Sec, TARA, attack trees) Security requirements & controls modelling SBOM & vulnerability management Cryptography & key management governance Configuration / change control Verification & validation orchestration Security / assurance case evidence Define Product Security reference architecture and Digital Thread integrations Own roadmap, backlog ...

Outside IR35, Business Change Manager, Hybrid, Data Discovery, Information Management, Cyber Essentials / ISO 27001, My leading client is urgently seeking a Business Change Manager to support a series of high-impact initiatives across Information Management, Data Discovery, and Data Management . These workstreams … tightly aligned to major Cyber Security programmes, so previous exposure to frameworks such as Cyber Essentials / NIST / ISO 27001 would be helpful Key Responsibilities Lead end-to-end business change management activities across multiple data and security-focused projects. Conduct impact assessments ...

Outside IR35,Business Change Manager, Hybrid, Data Discovery, Information Management, Cyber Essentials / ISO 27001, My leading client is urgently seeking a Business Change Manager to support a series of high-impact initiatives across Information Management, Data Discovery, and Data Management . These workstreams … tightly aligned to major Cyber Security programmes, so previous exposure to frameworks such as Cyber Essentials / NIST / ISO 27001 would be helpful Key Responsibilities Lead end-to-end business change management activities across multiple data and security-focused projects. Conduct impact assessments ...

ensure product privacy and security posture. This role is a trusted collaborator of the Project Teams and works closely with Engineering and Quality / Regulatory functions. This role includes managing Cybersecurity Team members. About the Role As Senior Cybersecurity Manager , you’ll be the guardian of our products’ security … Special Publications) Knowledgeable and experience with laws and regulations on cyber security, privacy, data protection and breach notification (e.g.: FDA cyber security guidelines, 95 / 46 / ED, HIPAA, GDPR, ISO 13485, ISO 14971. ISO 27001 / 27017 / ...

continuous monitoring improvements. Design, implement, optimize, and monitor security controls and tooling from the ground up, strengthening security across endpoints, infrastructure, and application CI / CD pipelines. Collaborate with engineering teams to raise the security bar through reviews, guidance, and automation. Respond to security incidents in real time - manage … participate in tabletop exercises, incident simulations, and coordinate external penetration tests. Partner with Solutions Engineering to support enterprise customer onboarding, including SSO integrations (SAML / OIDC), network allowlisting, and security reviews. Join customer-facing technical and security discussions where needed, acting as a trusted security point of contact. Risk ...

Define, maintain, and communicate the product vision and roadmap aligned with company strategy. Gather and analyse user feedback, market trends, and regulatory requirements (ISO 13485, ISO 27001, ISO 42001, GDPR, AI Act). Translate compliance and business needs into clear functional requirements … short-term impact. Problem Solver: Self-driven, proactive, and positive team player. Whats on Offer Competitive salary and comprehensive benefits package. Flexible working (hybrid / remote options). Generous leave policies. Health insurance and wellbeing support. Career progression, mentorship, and global exposure. Opportunity to shape a growing HealthTech SaaS ...

Define, maintain, and communicate the product vision and roadmap aligned with company strategy. Gather and analyse user feedback, market trends, and regulatory requirements (ISO 13485, ISO 27001, ISO 42001, GDPR, AI Act). Translate compliance and business needs into clear functional requirements … short-term impact. Problem Solver: Self-driven, proactive, and positive team player. Whats on Offer Competitive salary and comprehensive benefits package. Flexible working (hybrid / remote options). Generous leave policies. Health insurance and wellbeing support. Career progression, mentorship, and global exposure. Opportunity to shape a growing HealthTech SaaS ...

Experience & Skills: Must have: 10+ years in cyber resilience / cyber programme delivery / operating model change in large, regulated enterprises (CNI preferred: water, energy, utilities, transport, healthcare). Exceptional communication: storytelling, exec decks, clear visuals, concise decision papers. Highly organised, proactive, outcome driven; adept at prioritisation … evidence-based reporting. Proven bridge role experience between suppliers / consultancies and internal Product Owner / Execs. Hands on with operating model design / embedding, governance set up, and stakeholder management at CIO / CISO / SLT level. Strong knowledge of NIS Regulations, NCSC ...

administrating the security of both internal and external corporate network communications, including, routers, switches, firewalls, DMZ, servers, Wi-Fi, OT, telephony and LAN / WAN / VPN communication services. Constantly reviewing the IP space across the organisation ensuring that the TCP / IP stack, VLANs, IP Subnet … performance and security. Work closely with NIBE SOC teams and internal security engineers to ensure all preventative security measures are implemented and Zero Day / critical threats are extinguished in line with internal resolution targets. Collaborate with other business teams to ensure the proper use of systems. Coordinate investigations ...

Quality Assurance Manager United Kingdom £50,000 - £75,000 Basic + Full Relocation Package + Visa + Spousal / Family Sponsorship + Opportunity to stay indefinitely + Established & Growing Company + market leader + Prestigious Projects + Variety + Company Vehicle + Holiday + Pension + Sick Pay + … Friday role based in the Guernsey, Channel Islands area The Successful Quality Assurance Manager Will Need: * Experience in a Quality Assurance role in commercial / Residential environments. * Strong knowledge of ISO 9001 and quality systems, with experience managing audits and compliance processes. *Demonstrable experience in inspections, audits ...

Advert: Technology Governance Manager - £60,000 + Benefits Location: Warwick / Hybrid 2days p / w We are looking for an experienced Technology Governance Manager to lead and mature the governance, risk, and compliance framework across our Technology function. This role plays a critical part in ensuring that … solutions. Ensure effective risk based assessment of changes, balancing delivery velocity and risk control. Cyber & Information Security Work closely with the Information Security Manager / Data Protection Officer to align technology and security policies. Ensure operational controls support ISO 27001, CE+ and broader security requirements. ...

structured documentation suitable for both humans and AI models. Ensure all documentation is version-controlled, accessible, and aligned to enterprise governance frameworks. ISO & Cybersecurity Alignment: Ensure policies … support compliance with: ISO 27001, ISO 27701, ISO 22301, ISO 31000, Cyber Essentials / CE+, NIST Cybersecurity Framework (CSF). Conduct gap analyses against new or updated standards and lead remediation activity. Audit & Assurance: Support internal and external audit ...

structured documentation suitable for both humans and AI models. Ensure all documentation is version-controlled, accessible, and aligned to enterprise governance frameworks. ISO & Cybersecurity Alignment: Ensure policies … support compliance with: ISO 27001, ISO 27701, ISO 22301, ISO 31000, Cyber Essentials / CE+, NIST Cybersecurity Framework (CSF). Conduct gap analyses against new or updated standards and lead remediation activity. Audit & Assurance: Support internal and external audit ...

looking for a Senior Security Consultant with deep expertise in cybersecurity and practical experience in securing AI / ML systems. In this role, you will help clients navigate the rapidly evolving threat landscape of artificial intelligence. You will work across strategy, architecture, and hands-on technical analysis to design … resilient systems for high-impact environments. Key Responsibilities AI / ML Security Oversight: Evaluate and secure the entire AI lifecycle, including model governance, data pipelines, and deployment patterns. Threat Modeling: Conduct advanced security assessments and risk analysis across cloud, on-premise, and hybrid environments. Risk Mitigation: Advise clients ...