4 of 4 Contract ISO 27001 Lead Auditor Jobs in England

approval, candidates may be permitted to start the role prior to clearance being fully completed. Role Overview: We are seeking a highly experienced Senior Information Assurance Consultant to lead the development and implementation of security management processes for a new, high-profile service. This role will be instrumental in establishing and integrating a comprehensive Information Security Management … working on a critical and impactful programme. As the role involves working with sensitive information, eligibility for SC clearance or holding active SC clearance is essential. Key Responsibilities: Lead the design and implementation of security management processes for a new service offering. Develop and maintain a unified ISMS aligned with ISO / IEC 27001, NIST, PRISMA, and CoBIT frameworks. Conduct gap analyses and risk assessments to ensure compliance with relevant security standards and regulatory requirements. Collaborate with stakeholders across technical and business teams to embed security best practices throughout the service lifecycle. Provide expert guidance on information assurance, governance, and risk management strategies. Support audit and certification activities, ensuring More ❯

and deliver clear, actionable insights What You Bring: 8+ years in InfoSec / IT, with 3+ years in control testing or IT audit Strong knowledge of frameworks (NIST, ISO 27001, CIS, COBIT) Certifications: CISA, CISSP, CISM, or ISO 27001 Lead Auditor Excellent More ❯

As a Lead Security Control Assessor, you will be responsible for leading the assessment and evaluation of security controls across systems and processes both on-premise and in the cloud, to ensure they effectively mitigate risks and comply with regulatory and industry standards. You will oversee and conduct security control testing, to verify the design, implementation, and … control assurance testing, including automated testing steps for cloud environments. Ensure control tests are well-planned, including risk identification, sampling, selection of controls, testing methods, and reporting criteria. Lead control testing teams to perform design and operating effectiveness testing of information security controls, including fieldwork, testing, and reporting activities. Provide quality assurance for control testing documentation produced … improvement. Create and present reports of control testing findings to stakeholders, socialising any findings effectively. Serve as the primary contact with business stakeholders for the controls tests you lead, ensuring the quality of control testing engagements and stakeholder communications, including regular status updates. Contribute to the efficiency of the control testing program by ensuring KPIs are measurable More ❯

DV Rate: up to 700pd outside IR35 Start Date: 1st July Responsibilities: Provide expert security consultancy across the project lifecycle, with a focus on secure-by-design practices. Lead or support security risk assessments, threat modelling, and architectural reviews. Support the production and review of security documentation (RMADS, SyOps, Security Cases, etc.). Engage with technical and … and NCSC guidance. Experience producing or reviewing technical security documentation Ability to influence stakeholders and work collaboratively across multi-disciplinary teams. Security-related qualifications (e.g., CISSP, CISM, CCP, ISO 27001 Lead Auditor). Experience with cloud security Background in supporting complex ICT systems or programmes within secure environments. More ❯