1 to 25 of 59 Contract ISO/IEC 27001 Jobs in the UK

with architects, security teams, and accreditors to ensure solutions meet the stringent requirements of a highly classified defence environment. WHAT YOU'LL BE DOING / / Acting as the programme's technical authority on all Cross Domain Solution matters / / Defining and owning CDS architecture … design patterns, and security controls / / Leading the evaluation, selection, and integration of accredited CDS products and technologies / / Working with security architects and accreditors to achieve and maintain system accreditation / / Providing SME input to risk assessments, HMG / ...

System Engineer Location: East London (Hybrid – office / home) Rate: £450–£500 per day (Inside IR35) Duration: Initial 3–4 month contract (backlog clearance) with strong potential for extension or permanent conversion Client Environment: Major London Rail customers (TfL, Network Rail – station systems) Overview We are seeking … assurance deliverables while providing technical oversight to junior engineers and supporting SIEM integration activities. This is a hybrid East London role with no trackside / site access required. Key Responsibilities Cybersecurity Governance & Assurance Produce and maintain: Cyber Security Management Plans (CSMP) Risk assessments and threat models Assurance and compliance ...

Engineer Location:Wokingham Hybrid - 50 / 50 Duration: 28 / 08 / 2026 £250 MUST BE PAYE THROUGH UMBRELLA Role Description: "A Power BI and CMDB IT specialist combines expertise in data analysis and reporting with the governance and management of CNI data. This specialist uses data … running regular audits and reconciliation routines between the physical IT environment and the CMDB data to identify and resolve discrepancies and meet audit / regulatory requirements (e.g., ISO / IEC 27001). * Process Improvement: Identifying opportunities for process automation and efficiency improvements ...

Contract: 6 Mths Based in Essex / Hybrid Day Rate: £500-£600 per day Radius is looking for a Project Manager who has initially strong experience in Remedy to ServiceNow migrations. Role Responsibilities The role, reporting to the CIO, is responsible for ensuring the delivery of the main Corporate … primarily Service Now but also covering Sharepoint and Microsoft365 improvements as required). The role will be expected to cover requirements capture / definition, managing the suppliers, users, IT admins required as part of the project, completing system testing and project managing the full delivery. Main Duties This role ...

from the GRC Analyst: Proven experience in a GRC, security risk, or compliance role Certifications for ISO 27001 (Lead Implementer / Auditor) , would be required Strong knowledge of frameworks such as ISO 27001, NIST, SOC 2, CIS , and data protection standards … Onboarding / vendor risk management experience Hands-on experience supporting or leading ISO 27001 certification activities Solid understanding of risk assessment, control design, and audit processes Experience working with GRC tooling, evidence management, and reporting Experience / Knowledge around high volume data process would ...

Product Delivery Manager +SC cleared role +Hybrid working 2 / 3 days a week in Reading +Inside IR35 + 80 - 83 ph We are seeking an experienced Product Delivery Manager to lead the delivery of model-based Product Security digital capabilities across a complex, regulated engineering environment. Reporting … digital toolchains, including: Threat & risk modelling (STRIDE, STPA-Sec, TARA, attack trees) Security requirements & controls modelling SBOM & vulnerability management Cryptography & key management governance Configuration / change control Verification & validation orchestration Security / assurance case evidence Define Product Security reference architecture and Digital Thread integrations Own roadmap, backlog ...

Systems Engineer +SC cleared role +Hybrid working 2 / 3 days a week in Reading +Inside IR35 + 80 - 83 ph We are seeking an experienced Senior Systems Engineer to lead the delivery of model-based Product Security digital capabilities across a complex, regulated engineering environment. Reporting … digital toolchains, including: Threat & risk modelling (STRIDE, STPA-Sec, TARA, attack trees) Security requirements & controls modelling SBOM & vulnerability management Cryptography & key management governance Configuration / change control Verification & validation orchestration Security / assurance case evidence Define Product Security reference architecture and Digital Thread integrations Own roadmap, backlog ...

Outside IR35, Business Change Manager, Hybrid, Data Discovery, Information Management, Cyber Essentials / ISO 27001, My leading client is urgently seeking a Business Change Manager to support a series of high-impact initiatives across Information Management, Data Discovery, and Data Management . These workstreams … tightly aligned to major Cyber Security programmes, so previous exposure to frameworks such as Cyber Essentials / NIST / ISO 27001 would be helpful Key Responsibilities Lead end-to-end business change management activities across multiple data and security-focused projects. Conduct impact assessments ...

Outside IR35,Business Change Manager, Hybrid, Data Discovery, Information Management, Cyber Essentials / ISO 27001, My leading client is urgently seeking a Business Change Manager to support a series of high-impact initiatives across Information Management, Data Discovery, and Data Management . These workstreams … tightly aligned to major Cyber Security programmes, so previous exposure to frameworks such as Cyber Essentials / NIST / ISO 27001 would be helpful Key Responsibilities Lead end-to-end business change management activities across multiple data and security-focused projects. Conduct impact assessments ...

Experience & Skills: Must have: 10+ years in cyber resilience / cyber programme delivery / operating model change in large, regulated enterprises (CNI preferred: water, energy, utilities, transport, healthcare). Exceptional communication: storytelling, exec decks, clear visuals, concise decision papers. Highly organised, proactive, outcome driven; adept at prioritisation … evidence-based reporting. Proven bridge role experience between suppliers / consultancies and internal Product Owner / Execs. Hands on with operating model design / embedding, governance set up, and stakeholder management at CIO / CISO / SLT level. Strong knowledge of NIS Regulations, NCSC ...

HEAD OF NETWORK OPERATIONS ( GREENFIELD & AI STRATEGY ) / NOC SME Up to £1,200 Per Day SECURE has Strategically Partnered with a leading consultancy to support a FinTech leader operating under strict Regulatory Frameworks (FCA / PCI DSS). They are undertaking a strategic pivot … Dark NOC " Ecosystem , seeking a Leader to Architect this Capability from the "Ground Up". We are looking to speak with talented NOC SME / Principal Network Architects / Lead NRE . This is a Player-Coach role for a Technologist who refuses to be a "manager. ...

able to translate security insights into executive-level communications, influencing investment and change roadmaps. The company are looking for people with the following skills / experience: Significant leadership experience in enterprise information and cyber security roles, ideally within complex or regulated environments. Proven success in leading strategic reviews … date CV which showcases your experience in the above areas. CISO, Head of Information Security, Cybersecurity, legacy, cloud, operational resilience, CBEST, ISO / IEC 27001, NIST, Cyber Essentials+, information security, Head of Cyber, BYOD ...

CMBD Engineer Location: Wokingham Hybrid - 50 / 50 Duration: 28 / 08 / 2026 Rate £274 CONTRACTOR MUST BE SC ELEGIBLE MUST BE PAYE THROUGH UMBRELLA Role Description: A Power BI and CMDB IT specialist combines expertise in data analysis and reporting with the governance and management … running regular audits and reconciliation routines between the physical IT environment and the CMDB data to identify and resolve discrepancies and meet audit / regulatory requirements (eg, ISO / IEC 27001). Process Improvement: Identifying opportunities for process automation and efficiency improvements ...

more of the following areas: design and build of secure, fault-tolerant enterprise-class distributed network security systems with business-facing APIs / Web UIs, ensuring successful adoption and rotation at scale across domains including Zero Trust Network Access (ZTNA) for Remote Access and Proxy services, Network Access Control … Next[1]Generation Firewalls (NGFW), Intrusion Detection / Prevention Systems (IDS / IPS), and Security Information & Event Management (SIEM) integration, spanning physical, virtual, and cloud environments. Strong understanding of network security technology fundamentals including Zero Trust Architecture (ZTA) principles, Software[1]Defined Perimeter (SDP), identity-aware proxy architectures ...

solution designs including API contracts, integration patterns (Azure Functions, Logic Apps, Event-driven), security boundaries, and observability. Architect document intelligence pipelines (classification / extraction / OCR / validation) and integrate with downstream systems (CRM / ERP / ITSM / EDM). Define non-functional … requirements (availability, latency, throughput, cost, DR / RTO-RPO) and ensure solutions meet them. Implement identity & access (Entra ID), data isolation, Key Vault secrets, network security (Private Endpoints), and content filtering. Embed Responsible AI practices: safety filters, prompt / content governance, data privacy, red-teaming guidance, and human ...

Design and evolve scalable backend services in Python using FastAPI for high-availability, high-throughput workloads. Build well-versioned RESTful APIs aligned to OpenAPI / Swagger, with strong conventions for consistency, idempotency, and backward compatibility. Implement authentication and authorization using OAuth2 / OIDC, session management, and fine-grained … meet performance budgets and latency goals. Integrate with AI pipelines and model-serving endpoints, including streaming responses, async inference jobs, and robust error / retry semantics. Frontend contributions Contribute to frontend features using React / Next.js, Tailwind, shadcn / ui, TypeScript as required. Work with product ...

Role: Network Security Technical Product Owner Location: Hybrid (60% office / 40% remote) - South Manchester Contract Duration: Until 18 December 2026 Rate: £550 - £597 per day - Inside IR35 Role Overview We are seeking an experienced Network Security Technical Product Owner to define and drive the strategy, delivery, and lifecycle … designing and delivering enterprise-scale network security solutions, including: Zero Trust Network Access (ZTNA) Network Access Control (NAC) Next-Generation Firewalls (NGFW) IDS / IPS platforms SIEM integrations Support deployments across physical, virtual, and cloud environments. Document security architectures, threat models, control frameworks, and policy workflows aligned to industry ...

Title: Senior Oracle / SQL / MySQL Database Administrator (Operational Technology Environment) Location: Wokingham or Warwick – Hybrid (3 days onsite) Clearance: SC Cleared or SC Eligible (Mandatory) Level: Senior / Lead Overview Our client is seeking a Senior Database Administrator with deep expertise across Oracle, SQL Server … stability, resilience, and security — where uptime, compliance, and safety are non-negotiable. Key Responsibilities Database Administration & Operations Administer, maintain, and optimise Oracle (12c / 19c), SQL Server (2016+), and MySQL databases in production OT environments Perform installations, patching, configuration, upgrades, backups, and recovery Manage database objects, storage, schemas, tablespaces ...

Vulnerability Response, Threat Intelligence, and Configuration Compliance. Lead integration of ServiceNow with key cybersecurity tools: SIEM, SOAR, EDR, CMDB, threat intelligence platforms, and OT / ICS systems. Collaborate across cybersecurity, IT, engineering, and energy operations to define secure workflows and automation for vulnerability and incident response. Shape the roadmap … with ServiceNow and enterprise architecture standards. Mentor and guide development and implementation teams, ensuring quality and alignment with strategic goals. Your Profile Essential skills / knowledge / experience: Proven experience as a ServiceNow Architect with strong delivery experience across SecOps and / or IRM modules. Deep understanding ...

Project Manager - Cyber, GRC, CMDB, Platform implementation Up to £600 per day (Inside IR35) London / HybridMy client is an instantly recognisable brand, who urgently require an IT Project Manager with a broad Technical and Cyber background, with proven experience of bringing a Platform live, with strong knowledge … travel to European site(s) if required)Nice to have: · Certification in PRINCE2, PMP, Agile, CISSP, CISM, CRISC, CGEIT etc · Previous Cloud Security (Azure / GCP) experience · Experience of working on large Cyber Transformation Programmes · Working knowledge of Sentinel / Splunk · Familiarity with IAM / PAM tools ...

Security Architect / AI Security Strategy Manager to play a key role in shaping and delivering the organisation s AI security agenda. This is a strategic leadership opportunity for a candidate with strong experience across AI governance, information security, target operating model design, and enterprise stakeholder engagement . … year planning Deep understanding of AI concepts, governance frameworks, enterprise adoption models, and associated risks Strong knowledge of information security frameworks and AI regulations / standards , including: ISO 27001 ISO 42001 NIST AI RMF EU AI Act Proven experience working with senior stakeholders ...

SecOps Engineer Croydon (Hybrid) 6 Month Contract £500 / day (Outside IR35) SecOps Engineer needed with both active SC Clearance and NPPV3 Security Clearance. 6 Month Contract based in Croydon (Hybrid). Paying up to £500 / day (Outside IR35). Start ASAP in Feb / March … 2026. Hybrid Working - 3 days / week remote (WFH), and 2 days / week working on-site in the Croydon office, plus occasional travel to the Birmingham office. A chance to work with a leading global IT transformation business specialising in delivering large-scale Government / Public ...

SecOps Engineer Croydon (Hybrid) 6 Month Contract £500 / day (Outside IR35) SecOps Engineer needed with both active SC Clearance and NPPV3 Security Clearance. 6 Month Contract based in Croydon (Hybrid). Paying up to £500 / day (Outside IR35). Start ASAP in Feb / March … 2026. Hybrid Working - 3 days / week remote (WFH), and 2 days / week working on-site in the Croydon office, plus occasional travel to the Birmingham office. A chance to work with a leading global IT transformation business specialising in delivering large-scale Government / Public ...

Cyber Security Specialist £430 / day Outside IR35 6 month contract Oxford - 1 day per week on-site We have an exciting opportunity to join a leading UK organisation operating in the critical infrastructure sector. As part of a greenfield initiative, they are building out their OT security capability … activities, including policy creation, risk assessments, and technical oversight. The organisation operates in a highly regulated environment, so experience with frameworks such as IEC 62443, NIST CSF, CAF, and ISO 27001 is essential. Experience required: Proven expertise in Operational Technology (OT) security within ...

Role Title: Solution Architect Duration: contract to run until 17 / 07 / 2026 Location: Hybrid. Ideally 1 day per week minimum on client site but not required. Rate: up to 874 p / d Umbrella inside IR35 Clearance required: Must be, or be eligible … cleared (UK passport or Indefinite Leave to Remain, 5 years' UK residency, no more than 28 consecutive days out of the UK) Role purpose / summary Capgemini seeks a hands-on detailed delivery architect responsible for leading the design, assurance, and implementation of secure, scalable, and high-performance network ...