24 of 24 ISO/IEC 27002 (supersedes ISO/IEC 17799) Jobs in the UK excluding London

Birmingham, Bristol, Manchester, Reading, St Albans Business Line Enabling Functions Job Type Permanent / FTC Date published 07-Aug-2025 19967 Connect to your Industry Deloitte Technology works at the forefront of technology development and processes to support and protect Deloitte around the world. In this truly global environment, we operate not in "what is" but rather "what … initiatives and advise internal clients on applicability and interpretation of the standards' requirements Develop and maintain compliance mapping of Deloitte standards' requirements to ISO 27002 Collaborate with team members and other Deloitte cybersecurity teams to ensure alignment Foster continuing maturity of the Policies & Standards team, using newer technologies such as Artificial Intelligence and Machine … Required Qualifications: Bachelor's degree (or equivalent) in cybersecurity, information systems, computer science, or other technology-related field, or equivalent experience Proven combined experience in the information security / cybersecurity domain, with a focus on policies and standards, or cybersecurity governance and risk management Strong ability to clearly communicate complex cybersecurity statements to technical and non-technical audiences More ❯

Birmingham, Bristol, Manchester, Reading, St Albans Business Line Enabling Functions Job Type Permanent / FTC Date published 07-Aug-2025 19967 Connect to your Industry Deloitte Technology works at the forefront of technology development and processes to support and protect Deloitte around the world. In this truly global environment, we operate not in "what is" but rather "what … initiatives and advise internal clients on applicability and interpretation of the standards' requirements Develop and maintain compliance mapping of Deloitte standards' requirements to ISO 27002 Collaborate with team members and other Deloitte cybersecurity teams to ensure alignment Foster continuing maturity of the Policies & Standards team, using newer technologies such as Artificial Intelligence and Machine … Required Qualifications: Bachelor's degree (or equivalent) in cybersecurity, information systems, computer science, or other technology-related field, or equivalent experience Proven combined experience in the information security / cybersecurity domain, with a focus on policies and standards, or cybersecurity governance and risk management Strong ability to clearly communicate complex cybersecurity statements to technical and non-technical audiences More ❯

Birmingham, Bristol, Manchester, Reading, St Albans Business Line Enabling Functions Job Type Permanent / FTC Date published 07-Aug-2025 19967 Connect to your Industry Deloitte Technology works at the forefront of technology development and processes to support and protect Deloitte around the world. In this truly global environment, we operate not in "what is" but rather "what … initiatives and advise internal clients on applicability and interpretation of the standards' requirements Develop and maintain compliance mapping of Deloitte standards' requirements to ISO 27002 Collaborate with team members and other Deloitte cybersecurity teams to ensure alignment Foster continuing maturity of the Policies & Standards team, using newer technologies such as Artificial Intelligence and Machine … Required Qualifications: Bachelor's degree (or equivalent) in cybersecurity, information systems, computer science, or other technology-related field, or equivalent experience Proven combined experience in the information security / cybersecurity domain, with a focus on policies and standards, or cybersecurity governance and risk management Strong ability to clearly communicate complex cybersecurity statements to technical and non-technical audiences More ❯

Birmingham, Bristol, Manchester, Reading, St Albans Business Line Enabling Functions Job Type Permanent / FTC Date published 07-Aug-2025 19967 Connect to your Industry Deloitte Technology works at the forefront of technology development and processes to support and protect Deloitte around the world. In this truly global environment, we operate not in "what is" but rather "what … initiatives and advise internal clients on applicability and interpretation of the standards' requirements Develop and maintain compliance mapping of Deloitte standards' requirements to ISO 27002 Collaborate with team members and other Deloitte cybersecurity teams to ensure alignment Foster continuing maturity of the Policies & Standards team, using newer technologies such as Artificial Intelligence and Machine … Required Qualifications: Bachelor's degree (or equivalent) in cybersecurity, information systems, computer science, or other technology-related field, or equivalent experience Proven combined experience in the information security / cybersecurity domain, with a focus on policies and standards, or cybersecurity governance and risk management Strong ability to clearly communicate complex cybersecurity statements to technical and non-technical audiences More ❯

Birmingham, Bristol, Manchester, Reading, St Albans Business Line Enabling Functions Job Type Permanent / FTC Date published 07-Aug-2025 19967 Connect to your Industry Deloitte Technology works at the forefront of technology development and processes to support and protect Deloitte around the world. In this truly global environment, we operate not in "what is" but rather "what … initiatives and advise internal clients on applicability and interpretation of the standards' requirements Develop and maintain compliance mapping of Deloitte standards' requirements to ISO 27002 Collaborate with team members and other Deloitte cybersecurity teams to ensure alignment Foster continuing maturity of the Policies & Standards team, using newer technologies such as Artificial Intelligence and Machine … Required Qualifications: Bachelor's degree (or equivalent) in cybersecurity, information systems, computer science, or other technology-related field, or equivalent experience Proven combined experience in the information security / cybersecurity domain, with a focus on policies and standards, or cybersecurity governance and risk management Strong ability to clearly communicate complex cybersecurity statements to technical and non-technical audiences More ❯

affecting products Your skillset may include: Knowledge of HMG standards (including MOD-specific JSP, Def Stan 05-138, Def Stan 05-139) An understanding of MOD ISN 23 / 09 Secure by Design Knowledge of security frameworks, such as ISO / IEC 27001, NIST 800-30, NIST … or OWASP Working with risk management frameworks and methodologies (e.g., ISO 27001 / 2, ISO27005 / 31000, NIST 800-30, NIST 800-53) Please reach out to Lewis Dunn @ ARM if you are interested or simply have some questions - E: or DD: Disclaimer: This vacancy is being advertised by either Advanced Resource More ❯

affecting products Your skillset may include: Knowledge of HMG standards (including MOD-specific JSP, Def Stan 05-138, Def Stan 05-139) An understanding of MOD ISN 23 / 09 Secure by Design Knowledge of security frameworks, such as ISO / IEC 27001, NIST 800-30, NIST … or OWASP Working with risk management frameworks and methodologies (e.g., ISO 27001 / 2, ISO27005 / 31000, NIST 800-30, NIST 800-53) Please reach out to Lewis if you are interested or simply have some questions - E: or DD: (phone number removed) Disclaimer: This vacancy is being advertised by either Advanced More ❯

design). Perform security code reviews, provide guidance on secure libraries and frameworks. Standards & Compliance Ensure products meet regulatory and defence standards (ISO 27001 / 27005, NIST 800-30 / 53, JSP 440 / 604, Def Stan 05-series). Lead the creation and maintenance of security documentation (RMADS, Security … Testing & Assurance Design and execute penetration tests and automated vulnerability scans; validate fixes. Oversee third-party security assessments as required. Continuous Improvement Drive security tooling and automation (CI / CD integration, SAST / DAST). Stay ahead of emerging threats and security technologies; evangelise best practices across teams. Qualifications & Experience Proven experience (5+ years) in product … or application security within defence, government, or security-cleared environments. Deep knowledge of risk management frameworks (ISO 27001 / 2 / 5 / 31000, NIST 800-series) and Defence Standards (JSPs, Def Stan 05-138 / 139). Hands-on experience with security testing tools and techniques (SAST More ❯

SLA’s and KPI’s for our customers leveraging vulnerability and assessment tools such as Qualys and Microsoft’s EDR offering. Analyse vulnerability test reports and provide remediation / mitigation plans to the team. Integrate with our vendors and security providers to identify the most up-to-date information on the latest vulnerabilities and deliver key awareness and … s Operation team to plan and implement internal security adoption across all our platforms including our hosted cloud platform, aligning to CE+, ISO 27001 / 27002 and ITIL. With the Technical Services Manager, identify and implement the best practice security posture for LIMA’s Managed Services Engineers when working with customers and … with technical accreditations or demonstrable experience in security and vulnerability remediation technologies: Security Tooling: OWASP ZAP, Nmap, Wireshark Assessment Tooling: Nessus, Qualys, etc Remediation Tooling: Microsoft Endpoint Management / Intune Microsoft Security / Compliance: MFA,?Conditional Access, SSPR, DLP, IPM, IRM, DKIM, MCAS Application packaging for automated deployment Intermediate scripting experience utilising PowerShell or Python You More ❯

Lead Implementer or Auditor certification (essential). Demonstrated experience in an Information Security or IT Governance role. Strong knowledge of frameworks like ISO 27001 / 27002, NIST, GDPR, and related standards. Proven ability to manage audits, compliance reporting, and security training programs. Excellent stakeholder management, communication, and analytical skills. This is an … reach out directly with your CV and a good time to speak at oloveland@planet-pharma.co.uk . About Planet Pharma: Planet Pharma is an American parented Employment Business / Agency that provides global staffing services with its head-quarters in Chicago and our EMEA regional office located in Central London. We have invested significantly in creating a robust … international platform that enables us to work compliantly in 30+ countries with a current network of 2500+ active contractors globally as well as a very strong permanent / direct hire recruitment offering. Our specialist knowledge and close relationships with our clients and the wider industry really makes us unique in our field. Just recently we were recognised by More ❯

Cloud Security Specialist (Azure AD, M365 / O365 Security) (Snowhill, Birmingham, United Kingdom) Hybrid 3 days a week together out of our Birmingham / Snowhill office (flexible 2 days remote wherever). Why this job matters Innovation has been at the heart of BT since 1846. It’s not just about developing new technologies—it’s … policy enforcement, and incident response Active Directory and directory services (including Azure AD and Oracle Unified Directory) Microsoft security tools such as Defender, Sentinel, DLP, AIP, and passwordless / passkey deployments Regulatory frameworks like NIST CSF, ISO 27002, and CIS Controls Working with stakeholders across Information Security to align on strategy and … would also be great if you’re familiar with: Identity platforms such as SailPoint and CyberArk Creating and communicating telemetry data across identity systems, and working with SOC / SIEM teams to ensure compliance Our leadership standards Looking in: Ensure all your application information is up to date and in order before applying for this opportunity. Leading inclusively More ❯

Cloud Security Specialist (Azure AD, M365 / O365 Security) (Snowhill, Birmingham, United Kingdom) Hybrid 3 days a week together out of our Birmingham / Snowhill office (flexible 2 days remote wherever). Why this job matters Innovation has been at the heart of BT since 1846. Its not just about developing new technologiesits about using them … policy enforcement, and incident response Active Directory and directory services (including Azure AD and Oracle Unified Directory) Microsoft security tools such as Defender, Sentinel, DLP, AIP, and passwordless / passkey deployments Regulatory frameworks like NIST CSF, ISO 27002, and CIS Controls Working with stakeholders across Information Security to align on strategy and … It would also be great if youre familiar with: Identity platforms such as SailPoint and CyberArk Creating and communicating telemetry data across identity systems, and working with SOC / SIEM teams to ensure compliance Our leadership standards Looking in: Leading inclusively and Safely I inspire and build trust through self-awareness, honesty and integrity. Owning outcomes I take More ❯

vulnerabilities, and suggest improvements. Stay updated on security trends, threats, and best practices. Skills & Qualifications: Mandatory: BSc Degree or equivalent experience Certifications such as CCNA, CCNP, CWNP, ISA / IEC 62443, GICSP (highly desirable) Experience in Control System Network Design Engineering Understanding of IEC62443 and IEC27001 / 2 standards Knowledge of automation … Familiarity with industrial communication protocols (Modbus, DNP3, OPC) and security implications Experience in writing network specifications Experience with multiple system implementation projects and control platforms Experience in upgrades / replacements in automation / control projects Strong knowledge of engineering practices, standards, and procedures Knowledge of modern automation tools, methodologies, and security considerations in OT environments Organized … detail-oriented, inquisitive Desirable: Experience with Rockwell, Honeywell, Schneider PLC / SCADA systems Familiarity with telecom protocols, satellite communications, radio-link tech Experience with OT Intrusion Detection Systems With over 90 years of combined experience, NES Fircroft is a leading engineering staffing provider across multiple sectors worldwide, offering comprehensive support from visas to benefits and accommodation. More ❯

studies & cyber design documentation. Resolve engineering issues by applying standards and best practices. Skills & Qualifications: Minimum BSc degree or equivalent experience. Certifications such as CCNA, CCNP, CWNP, ISA / IEC 62443, or GICSP are highly desirable. Experience in Control System Network Design Engineering. Understanding of IEC62443 Cyber Security standards. Knowledge of IEC27001 / 2 Information Security Management. Familiarity with industrial communication protocols (e.g., Modbus, DNP3, OPC) & their security implications. Experience with multiple system implementations & control platforms. Experience in brownfield upgrades / replacements. Strong knowledge of engineering practices, standards, and codes. Understanding of automation & control applications and tools. Knowledge of physical security & cybersecurity interplay in OT environments. Good awareness of safety … standards & regulations for OT. Proficiency with current industry technologies & software tools. Detail-oriented, organized, inquisitive. Desirable: Experience with Rockwell, Honeywell, Schneider PLC / SCADA systems. Familiarity with telecom protocols, satellite, & radio-link technologies. Experience with OT Intrusion Detection Systems. With over 90 years of combined experience, NES Fircroft is a leading engineering staffing provider across multiple sectors worldwide. More ❯

Applying cybersecurity principles to solution design Working directly with customers, particularly on large or complex accounts Navigating regulatory frameworks such as NIST CSF, ISO 27002, and CIS Controls Developing scalable, compliant solutions across cloud platforms Integrating systems using APIs and web services Gathering requirements and translating them into technical outcomes Aligning solutions with product More ❯

Applying cybersecurity principles to solution design Working directly with customers, particularly on large or complex accounts Navigating regulatory frameworks such as NIST CSF, ISO 27002, and CIS Controls Developing scalable, compliant solutions across cloud platforms Integrating systems using APIs and web services Gathering requirements and translating them into technical outcomes Aligning solutions with product More ❯

Applying cybersecurity principles to solution design Working directly with customers, particularly on large or complex accounts Navigating regulatory frameworks such as NIST CSF, ISO 27002, and CIS Controls Developing scalable, compliant solutions across cloud platforms Integrating systems using APIs and web services Gathering requirements and translating them into technical outcomes Aligning solutions with product More ❯

to deliver holistic, customer centric cyber security services and consultancy support that continually evolves to emerging technologies and the ever-changing threat and risk landscape to support HMRC / HMG business needs. This is an exciting time to be part of our active and encouraging cyber security community, working within HMRC and across HMG. Job description As a … the business and drive organisational objectives. You will influence policy and lead on technical and business change. You may also be required to take responsibility for a CSTS / Cyber GSEC Capability and form an integral part of our SLT. Broadly, we would expect the successful candidate to align with the Government Security Professional Framework for one or … cyber risks for the business and influence appropriate decisions in keeping with the HMRC and HMG risk appetite. Responsibilities Lead and develop the technical security expertise and capability / services of the CSTS / Cyber GSEC Technical team and drive learning and development strategy. Be the nominated Security Programme Lead, driving the delivery and development of More ❯

to deliver holistic, customer centric cyber security services and consultancy support that continually evolves to emerging technologies and the ever-changing threat and risk landscape to support HMRC / HMG business needs. This is an exciting time to be part of our active and encouraging cyber security community, working within HMRC and across HMG. Job description As a … the business and drive organisational objectives. You will influence policy and lead on technical and business change. You may also be required to take responsibility for a CSTS / Cyber GSEC Capability and form an integral part of our SLT. Broadly, we would expect the successful candidate to align with the Government Security Professional Framework for one or … cyber risks for the business and influence appropriate decisions in keeping with the HMRC and HMG risk appetite. Responsibilities Lead and develop the technical security expertise and capability / services of the CSTS / Cyber GSEC Technical team and drive learning and development strategy. Be the nominated Security Programme Lead, driving the delivery and development of More ❯

to deliver holistic, customer centric cyber security services and consultancy support that continually evolves to emerging technologies and the ever-changing threat and risk landscape to support HMRC / HMG business needs. This is an exciting time to be part of our active and encouraging cyber security community, working within HMRC and across HMG. Job description As a … the business and drive organisational objectives. You will influence policy and lead on technical and business change. You may also be required to take responsibility for a CSTS / Cyber GSEC Capability and form an integral part of our SLT. Broadly, we would expect the successful candidate to align with the Government Security Professional Framework for one or … cyber risks for the business and influence appropriate decisions in keeping with the HMRC and HMG risk appetite. Responsibilities Lead and develop the technical security expertise and capability / services of the CSTS / Cyber GSEC Technical team and drive learning and development strategy. Be the nominated Security Programme Lead, driving the delivery and development of More ❯

Applying cybersecurity principles to solution design Working directly with customers, particularly on large or complex accounts Navigating regulatory frameworks such as NIST CSF, ISO 27002, and CIS Controls Integrating systems using APIs and web services I demonstrate strong commercial focus, bringing an external perspective to decision-making. I experiment and identify opportunities for growth More ❯

technology to meet business, production, & operational goals. Principal Network & Cyber Security Engineer responsibilities Provide expertise in Network Design, implementation, & testing for networks supporting Automation & Control Systems Solutions Identify / define the network requirements for Automation & Controls solutions Develop Detailed Network Architecture Create Network Dataflow Diagrams Produce Cybersecurity requirement specifications Develop Network Schedules (IP addresses, Data communication, server & VM … standardization of project workflows Skills & Qualifications Expected: BSc Degree or equivalent experience Experience in Control System Network Design Engineering Understanding of IEC62443 & IEC 27001 / 2 standards Knowledge of Automation & Control engineering disciplines Experience in writing Network specifications Experience with multiple system implementations & control platforms Experience in Brownfield upgrades & replacements Knowledge of Rockwell & Schneider … PLC / SCADA systems (advantageous) Thorough knowledge of engineering practices, standards, & procedures Knowledge of cybersecurity tools & standards Multi-sector & global project experience Problem-solving skills Desirable: Knowledge of process automation & real-time systems Experience with security governance, risk, & compliance controls Experience with vulnerability management & penetration testing tools Candidates must be eligible to work in the UK. With over More ❯

Sales, Cybersecurity or similar technical consultancy role (MSP / reseller experience preferred). Strong understanding of incident response, SOC operations, and endpoint security. Familiarity with security standards (ISO27002, CIS, NIST, CAF). Experience with technologies such as SSE, SASE, SIEM, MDR / EDR. Confident in customer-facing engagements and solution design. Excellent communication, documentation and stakeholder More ❯

Sales, Cybersecurity or similar technical consultancy role (MSP / reseller experience preferred). Strong understanding of incident response, SOC operations, and endpoint security. Familiarity with security standards (ISO27002, CIS, NIST, CAF). Experience with technologies such as SSE, SASE, SIEM, MDR / EDR. Confident in customer-facing engagements and solution design. Excellent communication, documentation and stakeholder More ❯