1 to 25 of 32 Contract ISO/IEC 27001 Jobs in the South East

Plus, ISO 27001, DSPT and GDPR. Responsibilities Conduct risk assessments for systems, projects and third parties; document findings and remediation. Review and respond to supplier / security questionnaires and tender submissions. Support vulnerability and patch management; interpret scans and prioritise fixes. Advise IT teams on alerts, incidents and security configuration (M365 / Azure / Defender / DLP / Conditional Access). Maintain risk register and track remediation actions from audits or incidents. Support compliance activities (ISO 27001, Cyber Essentials Plus, DSPT) and contribute to policy updates. Provide clear security advice to projects and senior stakeholders. What you'll need to succeed Proven experience in information security, with … M365, Defender suite, DLP, Conditional Access). Skilled in evaluating supplier security through questionnaires, procurement documents, and assurance reviews. Knowledgeable in risk management practices and frameworks such as ISO 27005 and NIST RMF. Familiar with key compliance standards including ISO 27001, Cyber Essentials Plus, DSPT, and GDPR. Capable of interpreting vulnerability assessments and advising More ❯

Division, the Enterprise Infrastructure Solutions unit is responsible for the design, delivery, and management of centrally supported IT infrastructure and applications. This includes enterprise compute platforms, data networks, UNIX / Linux / Windows environments, cloud services, data centres, commercial software solutions, and end-user support across all UKAEA sites. Role Overview : The Cyber Security Specialist plays a pivotal … o Experience conducting or supporting security audits and implementing remediation plans. o Proficiency in assessing and securing platforms such as Entra ID (Azure AD), Microsoft 365 E5, Azure IaaS / PaaS, Windows / Linux / Unix. o Strong knowledge of security tooling such as SIEM, endpoint detection (EDR / XDR), and vulnerability management platforms. o Hands … Experience working in a regulated or government environment, particularly within research, energy, or national infrastructure. o Knowledge of Incident Management, Vulnerability Assessments, SIEM & SOC Systems. o Knowledge of OT / ICS / SCADA security principles and industrial control environments. o Experience designing or reviewing secure software supply chain and CI / CD security. o Practical experience in More ❯

IIAM / PAM Specialist Rate: £475-£500 Location: Hybrid (mainly remote, occasional travel to Oxfordshire HQ) Start: ASAP | IR35: Outside | Clearance: SC required The Role We're seeking an experienced IAM / PAM Specialist to lead the design and delivery of greenfield Identity and Access Management and Privileged Access Management solutions. You'll provide hands-on technical leadership … ensure secure-by-design implementation, and contribute to the development of SIEM / SOC capabilities. Key Responsibilities Lead end-to-end IAM / PAM design and delivery. Integrate IAM / PAM telemetry into SIEM tooling. Provide technical oversight for MSPs and vendors. Develop and manage Conditional Access, MFA, and RBAC policies. Mentor junior team members and build … internal capability. Maintain IAM / PAM architecture and standards aligned to ISO 27001 & NIST. Skills & Experience Proven IAM / PAM implementation experience (e.g. Entra ID, CyberArk, BeyondTrust). Hands-on with Azure AD / Entra ID , Conditional Access & Identity Protection. Understanding of OAuth2.0, SAML, OpenID Connect . Familiarity with ISO 27001 More ❯

supplier and project security documentation, responding to security questionnaires and tenders, supporting incident investigations, and helping to maintain security posture and compliance with relevant standards (Cyber Essentials Plus, ISO 27001, DSPT, GDPR, NCSC). This is a hands-on delivery role for someone who can work independently, make sound judgements, and communicate clearly with both technical … personal data very seriously. Any information provided to us will be processed as detailed in our Privacy Notice, a copy of which can be found on our website http: / / proactive.it / privacy-notice / More ❯

Job Title: SC Cleared PAM Engineer Location: Wokingham (3x days on-site per week) Salary / Rate: 492 inside IR35 Start Date: 03 / 11 / 2025 Job Type: Initial contract until 13 / 02 / 2026 CANDIDATES MUST HOLD AN ACTIVE SC CLEARANCE Company Introduction: We have an exciting opportunity now available with one … of our sector-leading consultancy clients! They are currently looking for a skilled SC Cleared PAM Engineer to join their team in Wokingham on a hybrid basis. Job Responsibilities / Objectives: You will be responsible for designing, implementing, and managing Privileged Access Management (PAM) solutions-such as CyberArk, BeyondTrust, or Delinea-to secure privileged accounts, enforce least-privilege access … teams to ensure seamless PAM integration Provide technical support and troubleshooting for PAM-related issues Stay current with industry trends, threats, and best practices in access management Required Skills / Experience: The ideal candidate will have the following: Experience in PAM engineering or cybersecurity roles Proficiency with PAM tools such as CyberArk, BeyondTrust, or Delinea Strong understanding of Active More ❯

Security Architect (Network Security) Location -Warwick / Wokingham / Hybrid About the Role We are seeking an experienced Security Architect (Network Security) to design, implement, and maintain enterprise-grade network security solutions. This role will play a critical part in safeguarding infrastructure, ensuring compliance with global standards, and driving a proactive security posture across the organization. You will … risks. Apply industry frameworks such as NIST Cybersecurity Framework, ISO 27001, CIS Controls . Oversee and enhance security technologies: SIEM, vulnerability management, cloud security (OCI / Azure / AWS), PKI, cryptography, web / email security, logging and monitoring . Monitor network traffic for anomalies and potential breaches. Collaborate with IT teams (network engineers … lifecycles (SDLC), Agile frameworks, and security tools . Strong communication skills with the ability to simplify technical concepts for executives. Qualifications & Certifications Relevant certifications such as Palo Alto PCNSA / PCNSE, F5, CompTIA, Zscaler, Azure, AWS, CISSP, CCSP, ISSAP, ITIL (preferred). Performance Expectations Customer Centricity : Deliver timely solutions to security incidents, enhance customer experience, and recommend effective controls. More ❯

Title: HCM Cloud - Functional Lead Location: Reading / Havant / Thatcham / Perth Duration: Untill march 2026 Key Accountabilities Support the successful delivery of the Oracle Fusion HCM Project through liaison with SI Partners, OCS, Business SMEs and IT colleagues through the build, test and cut over phases. Take particular ownership for the functional delivery of reporting … Identify risks, issues, and dependencies of the Integrations and Data Migration Workstream, mitigate, and manage these as required. Support the upcoming test phases with expertise in Parallel Payroll Runs / Payroll Comparison testing a particular focus Produce a range of project documentation, including but not limited to specs, strategies, project plans, RAID items. Translate technical concepts or terminology for … non-technical audiences. A strong customer / client focus, with the ability to manage expectations appropriately and provide a superior customer / client experience. Ability to interact with staff at all levels up to senior and across all business units and organisations, and to understand business imperatives Strong organisation and communication skills. Ability to work well under minimal More ❯

responsible for: Conducting security assurance activities across projects, products, and systems. Supporting risk assessments, security reviews, and compliance checks in line with organisational and government standards (e.g., NCSC, ISO 27001, JSP440). Producing clear, concise, and insightful security assurance reports for technical and non-technical stakeholders. Working closely with engineering, architecture, and risk management teams to … accreditation and audit processes. Required Skills and Experience: You’ll bring a strong blend of technical knowledge, analytical thinking, and communication skills. You have: Active Security Clearance (e.g., SC / DV). Proven experience in Security Assurance, Information Assurance, or Cyber Risk Management. Strong understanding of security frameworks (NIST, ISO 27001, MoD JSPs, CAF, etc. More ❯

CyberArk, BeyondTrust, or Delinea Strong understanding of Active Directory, LDAP, and authentication protocols Scripting experience (PowerShell or Python) for automation and reporting Familiarity with compliance frameworks such as ISO 27001, NIST, or GDPR Excellent communication and problem-solving skills To Be Considered: Please either apply through this advert or email me directly at . For further … skills) your application to our client in conjunction with this vacancy only. Key Skills: PAM Engineer, CyberArk, BeyondTrust, Delinea, Privileged Access, Active Directory, PowerShell, Python, Access Management, Cybersecurity, ISO 27001, NIST, GDPR, NSD More ❯

risk treatment activity. Facilitate security and risk workshops with the various Authority departments, to align with wider customer transformational Security and risk management outcomes. Provide accurate and pragmatic remediation / risk management guidance / advice in balance with Business objectives and risk appetites. Have an understanding of risk assessment in an agile delivery environment. Exceptional team working ethic … interpersonal skills. Have a good understanding of modern IT technologies and services, such as Cloud Computing, AI (ISO42001), Mobile Computing, IT Security, Infrastructure technologies, Zero Trust, Data at Rest / In Transit Cryptography, Cross Domain Solutions and demonstrate an understanding of security architecture both physical and cloud (be able to read and understand HLDs / LLDs). Strong … working knowledge of : Security Assurance Coordinator or Delivery Team Security Lead roles JSP440, JSP604 / 453 & JSP490 MOD / GDS Secure by Design Principles Supplier Chain Assurance and Risks. Security related legislation (e.g. GDPR, PCI DSS, ICO requirements). Security Control Frameworks such as ISO 27001, NIST CSF and CIS Controls v8. HMG, NPSA More ❯

Management, Compliance, Business Continuity / DR, Cloud Security gained in a previous delivery capacity. Experience in delivering assignments using well known security frameworks, standards and methodologies such as ISO27001, NIST CSF, CIS Top 18 and COBIT. Industry certifications such as CISSP / CISA / CRISC / CISM / CISMP. More ❯

Management, Compliance, Business Continuity / DR, Cloud Security gained in a previous delivery capacity. Experience in delivering assignments using well known security frameworks, standards and methodologies such as ISO27001, NIST CSF, CIS Top 18 and COBIT. Industry certifications such as CISSP / CISA / CRISC / CISM / CISMP. More ❯

Zero Trust. Build custom connectors for non-standard platforms (e.g., Oracle Cloud). Provide SME-level support and troubleshooting across CyberArk environments. Integrate CyberArk with DevOps pipelines using AIM / AAM / Conjur. Maintain documentation and deliver training to internal teams. Required Skills & Experience 10+ years of hands-on experience with CyberArk PAM suite. Strong knowledge of privileged … access concepts, RBAC, and compliance frameworks (NIST, ISO 27001). Experience with Linux (RHEL 9), Windows Server, Oracle DB, and cloud platforms. Scripting and automation skills (PowerShell, REST APIs). Proven track record in CyberArk upgrades and custom integrations. Excellent communication and stakeholder engagement skills. Desirable Experience in financial services or banking environments. Familiarity with Sentinel More ❯

the clients across EMEA, APAC, US and Canada. We have an excellent job opportunity for you. Role Title: Penetration Tester (CTM level) Location: Wokingham RG41 5BN | Hybrid - 3 office / 2 home Duration: 30 / 06 / 2026 Rate: 492£ / day on umbrella Description CONTRACTOR MUST HOLD ACTIVE SC CLEARANCE AND BE A SOLE UK … locations. Strong knowledge of penetration testing tools including (Burpsuite, Metasploit, Nmap) etc Good knowledge of multiple Operating Systems (OS) including Windows &.NIX Ability to configure network devices, Firewalls, IDS / IPS devices and wireless technologies … Document findings in detailed reports, providing clear recommendations for remediation using client in-house developed reporting tool. Good understanding of common security standards and regulatory compliance such as GDPR, ISO27001 and PCI DSS An ability to work effectively and positively within a team and willing to collaborate and readily share knowledge and skills MUST: Relevant degree / postgraduate degree More ❯

management is also essential. The ability to work closely with business, technical and vendor stakeholders. Engagement via Umbrella Company Only; all taxes & NI deducted at source. General responsibilities: - Define / maintain IT disaster recovery framework ensuring alignment with business continuity objectives. Conduct risk assessments of existing infrastructure services enabling identification of mitigation strategies. Develop and document disaster recovery plans … large-scale enterprise environments. Infrastructure resilience and failover strategies. Ability to engage with senior stakeholders ITIL v4 certification Knowledge of regulatory requirements for IT risk and resilience e.g. ISO 22301, ISO 27001 Experience working in highly regulated environments. Reasonable Adjustments: Respect and equality are core values to us. We are proud of the diverse More ❯

CAs, HSMs, OCSP, CRLs, SCEP , and related PKI components. Hands on experience with Microsoft ADCS, Thales HSMs, OpenSSL, DigiCert , and similar tools. Knowledge of certificate usage for TLS, S / MIME, code signing, document signing, VPN, and smart cards . Understanding of encryption algorithms, hashing, and key management. Experience designing secure solutions in hybrid or cloud environments such as … Azure or AWS. Familiarity with standards including NIST, FIPS, ISO 27001 and other compliance frameworks. Certifications such as CISSP, CISM, GIAC , or Microsoft identity qualifications are desirable. Shape secure digital services and lead critical cryptographic design as a PKI Architect . To apply, please send your CV by pressing the apply button. More ❯

business units and lead corrective actions where required. Cyber Security Lead the implementation and maintenance of Cyber Security policies, ensuring robust governance across all business areas. Manage the ISO 27001 certification lifecycle - including audits, remediation, and recertification. Collaborate with technical and product teams to embed security standards and oversee incident response procedures. Drive measurable improvements in … management. Digital & Clinical Safety Partner with IT, Clinical, Legal, and Executive teams to align on digital safety practices. Maintain and review Digital Clinical Safety Policies, ensuring compliance with DCB0129 / 0160 and the Medical Device Directive. Oversee training compliance for clinical and digital safety roles, ensuring safety case documentation remains current. Quality Management Lead the Quality Management System (QMS … coordination skills across technical and clinical disciplines. Experience working with SIROs, Caldicott Guardians, DPOs, and certification bodies. Knowledge of international regulatory frameworks and multi-site operations. Experience with DCB0129 / 0160 standards, incident management, and external inspections. *Rates depend on experience and client requirements More ❯

and SQL databases (e.g., PostgreSQL, MySQL, SQL server) and schema design Experience using Visual Studios Understanding of the Software Development Lifecycle Proficient in Windows 10 application development Desirable Qualifications / Requirements Strong knowledge of Object-Oriented Analysis and Design, Software Design Patterns and coding principles Bachelor's degree in computer science or 'STEM' Majors (Science, Technology, Engineering and Math … experience Real-time or near-real-time data processing and visualization experience Experience using IBM Engineering Workflow Management Familiarity with regulatory or quality frameworks (e.g., AS9100, DO-178C, ISO 27001), and software safety practices Familiar with Windows 11 application development Experience in TestComplete automated testing tool Desired Characteristics You will be required to work in a More ❯

hands-off). Knowledge of ISO 27001, NIST, or similar frameworks. Excellent communication, analytical, and problem-solving skills. Contract Details: Location: London (2 days p / week onsite) Duration: 6-12 month initial If interested, please send your CV to with the subject "Security Officer - Apply". #InformationSecurity #CyberSecurity #SecurityConsultant #CloudSecurity #VendorRisk #ISO27001 #NIST #AI More ❯

engage diverse stakeholders. Proficiency in requirements management tools and techniques. Excellent communication skills, both written and verbal. Strong analytical and problem-solving abilities. Familiarity with regulatory frameworks (e.g., ISO 27001, NIST) is a plus. SC clearance is desirable. Apply Now! Don't miss out on the chance to join a vibrant team and contribute to our More ❯

Senior Security Consultant – 6-month contract – London / Remote My Customer is seeking an experienced Senior Security Consultant to take a leading role in the end-to-end (Design, implementation) delivery of Governance, Risk & Compliance (GRC) and IT simplification initiatives. The Senior Security Consultant would be working at the heart of major programmes – including designing and implementing Security frameworks … Hands-on experience designing and supporting ISMS governance and security implementation across large programmes of work. Practical experience creating and conducting risk assessments, including project risk and third-party / vendor risk. Solid understanding of security frameworks and assessment methodologies (e.g., ISO 27001, NIST, CSA, CIS). Exposure to cloud security, ideally Azure, and working More ❯

Role Title: PEN Tester Location: Bearwood Rd, Sindlesham, Wokingham RG41 5BN | Hybrid - 3 office / 2 home Duration: 30 / 06 / 2026 Rate: 500p / d via Umbrella Clearance: Contractor must hold active SC Clearance and be a sole UK National Role Description: A penetration tester plays a vital role within the UK's cybersecurity … Powerpoint Strong knowledge of penetration testing tools including (Burpsuite, Metasploit, Nmap) etc Good knowledge of multiple Operating Systems (OS) including Windows &.NIX Ability to configure network devices, Firewalls, IDS / IPS devices and wireless … technologies Document findings in detailed reports, providing clear recommendations for remediation using in-house developed reporting tool. Good understanding of common security standards and regulatory compliance such as GDPR, ISO27001 and PCI DSS An ability to work effectively and positively within a team and willing to collaborate and readily share knowledge and skills More ❯

landscape. What We're Looking For To be successful in this Governance & Risk Specialist role, you should possess the following: Policy experience with NIST and 800-53 Control Set, ISO27001 Proven experience in cyber risk management, with a strong understanding of risk assessment and mitigation strategies Excellent communication and stakeholder management skills to effectively collaborate with cross-functional teams Ability More ❯

or similar). Strong hands-on experience in threat investigation, log analysis, and remediation . Good understanding of common security frameworks and practices (e.g., MITRE ATT&CK, NIST, ISO 27001). Familiarity with a range of security tools and platforms – experience with Microsoft Sentinel is desirable but not essential. Excellent communication skills – able to liaise confidently More ❯

/ IPS devices and wireless technologies - Document findings in detailed reports, providing clear recommendations for remediation - Good understanding of common security standards and regulatory compliance such as GDPR, ISO27001 and PCI DSS - An ability to work effectively and positively within a team and willing to collaborate and readily share knowledge and skills MUST: - Relevant degree / postgraduate degree … CHECK Team Member qualification (Crest / CyberScheme) - Experience in Cloud Security (AWS / Azure) All of our opportunities require that applicants are eligible to work in the specified country / location, unless otherwise stated in the job description. Whitehall Resources are an equal opportunities employer who value a diverse and inclusive working environment. All qualified applicants will More ❯