1 to 25 of 65 Contract ISO/IEC 27001 Jobs in the UK

Incident Response (CSIRT) / Security Operations Centre (SOC) Level 3 Analyst 2-3 Days onsite - Crawley 6-9 Month duration Reporting line: The Analyst will report to the Cyber Security Response Manager and work within the Information Systems directorate, based in the Crawley office. Job purpose: The role of an Incident Response (CSIRT) / SOC Level 3 Analyst … are contained and eradicated. Cyber Crisis Testing: Participate in cyber-attack simulations and scenario exercises to test resilience and improve preparedness. Reporting: Develop and improve reporting dashboards and security / performance metrics to drive continuous improvement in security operations. Security Tools Support: Support the implementation, maintenance, and configuration of security tools and systems for prevention, detection, and response. Audit … OT environments. SOC-specific training, qualifications, or a degree in Computer Science, Cybersecurity, IT, or a related subject. Ideally hold recognised security qualifications such as CISSP, AZ-500, GIAC / GCIA / GCIH, CASP+, CEH, or SIEM certifications. Strong knowledge of log correlation, analysis, forensics, and chain of custody requirements. Familiarity with regulatory frameworks (NCSC CAF, ISO More ❯

Incident Response (CSIRT) / SOC Level 3 Analyst Location: Crawley (Hybrid) Department: Information Systems Type: Contract Full-time Outside IR35 About the Role My client is seeking an experienced Incident Response (CSIRT) / Security Operations Centre (SOC) Level 3 Analyst to join their Information Systems directorate, based in Crawley. In this critical role, you'll respond to high … in incident response and advanced threat hunting. A degree in Computer Science, Cybersecurity, IT, or a related discipline, or equivalent professional experience. Industry-recognised certifications such as CISSP, GIAC / GCIA / GCIH, AZ-500, CEH, CASP+, or SIEM-specific training. Strong knowledge of SIEM, SOAR, EDR, IDS / IPS, NAC, DLP, and related security technologies. Familiarity … with frameworks such as MITRE ATT&CK, NIST, CIS, and ISO / IEC 27001 / 27002. Hands-on experience with tools such as FortiSIEM, Q-Radar, Microsoft Defender, Darktrace, Microsoft Sentinel, or similar platforms. Experience in forensic analysis, red-team exercises, and crisis simulation activities. Desirable Experience managing or supporting both IT More ❯

Incident Response (CSIRT) / SOC Level 3 Analyst Location: Crawley (Hybrid) Department: Information Systems Type: Contract | Full-time Outside IR35 About the Role My client is seeking an experienced Incident Response (CSIRT) / Security Operations Centre (SOC) Level 3 Analyst to join their Information Systems directorate, based in Crawley. In this critical role, you'll respond to high … in incident response and advanced threat hunting. A degree in Computer Science, Cybersecurity, IT, or a related discipline, or equivalent professional experience. Industry-recognised certifications such as CISSP, GIAC / GCIA / GCIH, AZ-500, CEH, CASP+, or SIEM-specific training. Strong knowledge of SIEM, SOAR, EDR, IDS / IPS, NAC, DLP, and related security technologies. Familiarity … with frameworks such as MITRE ATT&CK, NIST, CIS, and ISO / IEC 27001 / 27002. Hands-on experience with tools such as FortiSIEM, Q-Radar, Microsoft Defender, Darktrace, Microsoft Sentinel, or similar platforms. Experience in forensic analysis, red-team exercises, and crisis simulation activities. Desirable Experience managing or supporting both IT More ❯

Outside IR35, Senior DevSecOps Architect / Consultant, hybrid, ISO 27001 My client is looking for a Senior DevSecOps Architect / Consultant to lead governance, architecture guidance, and assurance for cloud and infrastructure security across Microsoft Azure, AWS, and key SaaS platforms. This is a hybrid role, so you need to be flexible to attend … embed best practices, validate implementations, and support audit readiness across IaaS, PaaS, and SaaS environments. Responsibilities Define and maintain multi-cloud security standards and reference blueprints (e.g. Azure Policy / Initiatives, AWS Control Tower / SCPs) Own security architecture patterns and contribute to HLD / LLD, threat models, and risk assessments Set assurance criteria and control evidence … standards (Entra ID Conditional Access, MFA, PIM; AWS IAM federation) Govern SaaS security onboarding (SSO, OAuth governance, DLP controls, vendor assessments) Specify telemetry and logging requirements for Microsoft Sentinel / SOC and review analytics / reporting Lead compliance mapping for ISO 27001 and curate audit-ready evidence packs Chair Cloud & Platform Security design reviews More ❯

legal and regulatory requirements. Deliver cybersecurity audits for client organisations in line with UK regulations. Assess compliance with: UK GDPR & Data Protection Act 2018 NIS Regulations ISO / IEC 27001 Cyber Essentials / Plus Telecommunications (Security) Act 2021 Identify risks and provide actionable recommendations. Produce clear audit reports and present findings to … standards. Proven experience in cybersecurity auditing, ideally in a consultancy or client-facing role. Strong knowledge of UK legal frameworks and compliance standards. Relevant certifications (e.g. CISA, CISSP, ISO 27001 Lead Auditor). Excellent communication and stakeholder engagement skills. Ability to work independently and manage multiple client engagements. This is an interim opportunity ideal for professionals More ❯

in the days that you work, and the opportunity to work across diverse industries. Our client works with a range of standards including the main international standards (e.g., ISO 9001, ISO 14001, ISO 27001, ISO 45001). They are seeking someone to focus on mainly information security so experience or … sessions to staff on system awareness, compliance, and continual improvement. Advise on integration of multiple standards into a unified management system. Requirements Essential Skills & Attributes Strong understanding of ISO standards and management system principles. Excellent analytical and problem-solving abilities. Exceptional written and verbal communication skills. Ability to work independently and manage multiple client projects. High level of … not essential. Training & Development Training will be provided where required to support specific standards, tools, or client needs. Opportunities for ongoing professional development and certification support. Engagement Terms Freelance / Contract basis with flexible working arrangements. Project-based or retainer agreements depending on client scope. Competitive day rates based on experience and project complexity. More ❯

Cyber Security Architect - Defence SectorLocation: Newport (Typically 4 days per week) | Clearance Required: SC Clearance RequiredType: Full-Time | Salary: Inside IR35 - from £63.00 per hour (PAYE / LTD option available) Belcan are currently supporting one of our long standing clients, who are seeking a Cyber Security Architect with a strong background in secure systems design and defence standards to … has experience across the following; Key Responsibilities Design, develop, and maintain secure system architectures for MOD platforms and networks. Ensure alignment with standards including NIST SP 800-53, ISO 27001, JSP 440, DEF STAN 05-138, and NCSC guidance. Produce and maintain security documentation such as Security Architecture Documents, Risk Assessments, and Management Plans. Lead secure … STANs). Proven experience in Secure by Design principles and secure development lifecycles. Deep understanding of security architectures, processes, and compliance frameworks (ISO 27001, CE / CE+). Experience with MOD security assurance artefacts and risk management frameworks (HMG IS1 / IS2, NIST RMF). Excellent communication skills - able to engage technical and non More ❯

Cyber Security Architect - Defence Sector Location: Newport (Typically 4 days per week) Clearance Required: SC Clearance Required Type: Full-Time Salary: Inside IR35 - from 63.00 per hour (PAYE / LTD option available) Belcan are currently supporting one of our long standing clients, who are seeking a Cyber Security Architect with a strong background in secure systems design and defence … has experience across the following; Key Responsibilities Design, develop, and maintain secure system architectures for MOD platforms and networks. Ensure alignment with standards including NIST SP 800-53, ISO 27001, JSP 440, DEF STAN 05-138, and NCSC guidance. Produce and maintain security documentation such as Security Architecture Documents, Risk Assessments, and Management Plans. Lead secure … STANs). Proven experience in Secure by Design principles and secure development lifecycles. Deep understanding of security architectures, processes, and compliance frameworks (ISO 27001, CE / CE+). Experience with MOD security assurance artefacts and risk management frameworks (HMG IS1 / IS2, NIST RMF). Excellent communication skills - able to engage technical and non More ❯

secure solutions. Responsibilities • Design, develop, and maintain secure system architectures for MOD platforms, applications, and networks • Ensure alignment with relevant standards and frameworks including NIST SP 800-53, ISO 27001, JSP 440, DEF STAN 05-138, and NCSC guidance • Produce and maintain security documentation including Security Architecture Documents, Security Risk Assessments and Security Management Plans • Lead … working knowledge and experience of Secure by Design • A robust background in security architectures, process and both industry and government compliances (e.g. ISO 27001, CE / CE+) • Solid understanding of systems engineering principles and secure development lifecycles • Experience developing artefacts to support MOD security assurance • Hands-on knowledge of risk management frameworks (e.g. HMG IS1 … / IS2, NIST RMF) • Excellent communication skills, both written and verbal – able to present to technical and non-technical stakeholders Certifications • Certified Information Systems Security Professional (CISSP) • Certified Information Security Manager (CISM) • SABSA, TOGAF or equivalent architecture certifications More ❯

INSIDE IR35 Responsibilities Design, develop, and maintain secure system architectures for MOD platforms, applications, and networks Ensure alignment with relevant standards and frameworks including NIST SP 800-53, ISO 27001, JSP 440, DEF STAN 05-138, and NCSC guidance Produce and maintain security documentation including Security Architecture Documents, Security Risk Assessments and Security Management Plans Lead … working knowledge and experience of Secure by Design A robust background in security architectures, process and both industry and government compliances (e.g. ISO 27001, CE / CE+) Solid understanding of systems engineering principles and secure development lifecycles Experience developing artefacts to support MOD security assurance Hands-on knowledge of risk management frameworks (e.g. HMG IS1 … / IS2, NIST RMF) Excellent communication skills, both written and verbal - able to present to technical and non-technical stakeholders Currently holds SC Clearance Certifications Certified Information Systems Security Professional (CISSP) Certified Information Security Manager (CISM) SABSA, TOGAF or equivalent architecture certifications More ❯

INSIDE IR35 Responsibilities Design, develop, and maintain secure system architectures for MOD platforms, applications, and networks Ensure alignment with relevant standards and frameworks including NIST SP 800-53, ISO 27001, JSP 440, DEF STAN 05-138, and NCSC guidance Produce and maintain security documentation including Security Architecture Documents, Security Risk Assessments and Security Management Plans Lead … working knowledge and experience of Secure by Design A robust background in security architectures, process and both industry and government compliances (e.g. ISO 27001, CE / CE+) Solid understanding of systems engineering principles and secure development lifecycles Experience developing artefacts to support MOD security assurance Hands-on knowledge of risk management frameworks (e.g. HMG IS1 … / IS2, NIST RMF) Excellent communication skills, both written and verbal - able to present to technical and non-technical stakeholders Currently holds SC Clearance Certifications Certified Information Systems Security Professional (CISSP) Certified Information Security Manager (CISM) SABSA, TOGAF or equivalent architecture certifications More ❯

be involved in: Design, develop, and maintain secure system architectures for MOD platforms, applications, and networks Ensure alignment with relevant standards and frameworks including; NIST SP 800-53, ISO 27001, JSP 440, DEF STAN 05-138, and NCSC guidance Produce and maintain security documentation including; Security Architecture Documents, Security Risk Assessments, and Security Management Plans Lead … working knowledge and experience of Secure by Design A robust background in security architectures, processes, and both industry and government compliances (e.g. ISO 27001, CE / CE+) Solid understanding of systems engineering principles and secure development lifecycles Experience developing artefacts to support MOD security assurance Hands-on knowledge of risk management frameworks (e.g. HMG IS1 … / IS2, NIST RMF) Excellent communication skills, both written and verbal - able to present to technical and non-technical stakeholders Certified Information Systems Security Professional (CISSP) Certified Information Security Manager (CISM) SABSA, TOGAF or equivalent architecture certifications If this all sounds like something you will be interested in then simply apply and we can discuss the opportunity further! Security More ❯

be involved in: Design, develop, and maintain secure system architectures for MOD platforms, applications, and networks Ensure alignment with relevant standards and frameworks including; NIST SP 800-53, ISO 27001, JSP 440, DEF STAN 05-138, and NCSC guidance Produce and maintain security documentation including; Security Architecture Documents, Security Risk Assessments, and Security Management Plans Lead … working knowledge and experience of Secure by Design A robust background in security architectures, processes, and both industry and government compliances (e.g. ISO 27001, CE / CE+) Solid understanding of systems engineering principles and secure development lifecycles Experience developing artefacts to support MOD security assurance Hands-on knowledge of risk management frameworks (e.g. HMG IS1 … / IS2, NIST RMF) Excellent communication skills, both written and verbal - able to present to technical and non-technical stakeholders Certified Information Systems Security Professional (CISSP) Certified Information Security Manager (CISM) SABSA, TOGAF or equivalent architecture certifications If this all sounds like something you will be interested in then simply apply and we can discuss the opportunity further! Security More ❯

assessments, and security design reviews for OT environments. Work closely with engineering and project teams to embed security into delivery. Produce and review security documentation in line with MOD / Defence standards. Provide SME input on OT security to stakeholders across projects. Essential Skills & Experience Active UK DV Clearance (mandatory). Security Practitioner Strong background in Operational Technology. Demonstrable … experience applying MOD / Nuclear Secure by Design (SbD) principles. Proven experience in security architecture and engineering within Defence or Critical National Infrastructure. Knowledge of risk management methodologies and security assurance. Desirable Skills Experience with IEC / ISA 62443 standards. Familiarity with NIST 800-82, ISO 27001, and Defence Security standards (e.g. … JSPs). Previous MOD / Defence and or Nuclear experience. Due to the nature and urgency of the role, candidates are required to hold current Developed Vetting (DV) clearance, if you do not hold this, unfortunately we cannot sponsor. Please familiarise yourself with the security vetting process before applying. More ❯

Job title: Network Solution Architect Will the role be 100% remote, hybrid or 100% office? Hybrid If the role is hybrid / office based specify location: Coventry Duration of assignment: 6 Months Start date: 01-Nov-2025 Number of persons required: 1 Special working conditions: (travel, weekend, overtime, on call etc.) NA Role description: ( Please include a brief outline … Centre Design Knowledge F5 LTM and WAF Design Knowledge F5 Distributed cloud Knowledge Cisco ISE Palo Alto Firewalls Palo Alto SASE Prisma Access LAN, WAN, WLAN design. Key skills / knowledge / experience: (Up to 10, Avoid repetition) More general skills / experience: 1.Core Responsibilities Design and document enterprise network architectures (LAN, WAN, WLAN, cloud networking). … ensure end-to-end solution integrity. Prepare network capacity and resilience plans. Document network topology, standards, and procedures. 2. Technical Requirements Networking Technologies Expert knowledge of IP networking (IPv4 / IPv6, routing, switching, subnetting, VLANs, NAT, QoS). Deep understanding of protocols such as BGP, OSPF, EIGRP, MPLS, STP, VXLAN, and DNS / DHCP. Familiarity with SDN and More ❯

Security Lead to strengthen their cyber resilience and provide assurance across a complex, fast-moving environment. This role will lead on assurance activities, including gap analysis against recognised standards (ISO27001, NIST CSF, ONR), ensuring controls are implemented, measured, and continually improved. The position requires a confident, dynamic individual who can engage at all levels of the business, with broad exposure … credibility, and the ability to influence are as critical as technical expertise. Key responsibilities - Cyber Assurance and GRC Leadership: Lead assurance activities and programmes, aligning security controls to ISO 27001, NIST CSF, ONR, and UK Gov standards Gap Analysis and Compliance: Produce audit-ready evidence, manage ONR requirements, and ensure ongoing alignment with NCSC and NPSA … and Experience - Essential - Established cyber security credentials with demonstrable experience in assurance, GRC, and cloud security Proven leadership in delivering gap analysis, audit evidence, and certification programmes (e.g. ISO 27001, NIST CSF, Cyber Essentials+) Strong technical background in Microsoft Security Stack and cloud security architecture Familiarity with risk assessment methodologies (ISO27005, NIST) Excellent communication, presentation, and More ❯

Security Lead to strengthen their cyber resilience and provide assurance across a complex, fast-moving environment. This role will lead on assurance activities, including gap analysis against recognised standards (ISO27001, NIST CSF, ONR), ensuring controls are implemented, measured, and continually improved. The position requires a confident, dynamic individual who can engage at all levels of the business, with broad exposure … credibility, and the ability to influence are as critical as technical expertise. Key responsibilities - Cyber Assurance and GRC Leadership: Lead assurance activities and programmes, aligning security controls to ISO 27001, NIST CSF, ONR, and UK Gov standards Gap Analysis and Compliance: Produce audit-ready evidence, manage ONR requirements, and ensure ongoing alignment with NCSC and NPSA … and Experience - Essential - Established cyber security credentials with demonstrable experience in assurance, GRC, and cloud security Proven leadership in delivering gap analysis, audit evidence, and certification programmes (e.g. ISO 27001, NIST CSF, Cyber Essentials+) Strong technical background in Microsoft Security Stack and cloud security architecture Familiarity with risk assessment methodologies (ISO27005, NIST) Excellent communication, presentation, and More ❯

security projects, ensuring compliance with cyber assurance standards and information security frameworks. Key Responsibilities Support and maintain information assurance across Defence and OGD (Other Government Department) environments. Conduct ISO 27001 audits and ensure continued compliance with security frameworks. Act as a Defence or OGD Information Technology Security Officer (DITSO), providing expert advice and assurance to programmes. … Security with a willingness to learn and travel when required. ISO 27001 auditor experience. Proven experience in Defence or Government cyber security assurance roles (DITSO / WARP). Desired Skills Broad knowledge of HMG Cyber Security and Assurance policy and guidance. Experience working with CCF, CAF, and NIST frameworks. Familiarity with NCSC best practice and More ❯

to-end solution integrity. Prepare network capacity and resilience plans. Document network topology, standards, and procedures. Skills, Experience, and Abilities Required: Technical Requirements: Expert knowledge of IP networking (IPv4 / IPv6, routing, switching, subnetting, VLANs, NAT, QoS). Deep understanding of protocols (BGP, OSPF, EIGRP, MPLS, STP, VXLAN, DNS / DHCP). Familiarity with SDN and SD-WAN … Security integration: Zero Trust, segmentation, NAC; familiarity with ISO 27001, NIST, PCI-DSS, GDPR. Cloud & Virtualisation: AWS, Azure, or GCP networking services; understanding of hybrid / multi-cloud; automation tools (Terraform, Ansible, Python). Monitoring & Management: Network management systems (SolarWinds, Cisco DNA Center); performance monitoring, logging, incident response. Experience Requirements: 7 10+ years in network … engineering, with 3 5 years in architecture / design roles. Proven experience in large-scale or complex enterprise environments. Architectural artefact production (HLDs, LLDs, diagrams, standards). Leading technical design workshops and influencing senior stakeholders. Vendor selection and cost optimisation experience. Educational & Certification Requirements: Bachelor's degree (or higher) in Computer Science, Information Technology, or related field. Preferred certifications More ❯

Outside IR35 | 3 Months | Fully Remote We’re hiring a Cybersecurity Engineer to support a client on a 3-month contract focused on achieving SOC 2 and ISO 27001 compliance. This role is Outside IR35, fully remote, and offers a daily rate of £500–£600.The successful candidate will deliver the integration of CrowdStrike Falcon with Vanta … help implement the security controls, monitoring, and documentation required for audit readiness. Key Requirements Proven experience in cybersecurity engineering and compliance delivery Deep understanding of SOC 2 and ISO 27001 frameworks and audit processes Hands-on experience with integrating cybersecurity tools and platforms Experience integrating CrowdStrike Falcon and Vanta is a plus Strong adherence to Azure More ❯

infrastructure, network and cloud platforms, - Collaborate with the wider business to ensure new and existing systems meet security requirements through the development of SecOps and DevSecOps processes. Required Skills / Experience: - Advanced knowledge of Microsoft Security technology solutions. - Microsoft Defender - Mimecast - Tenable Nessus - Entra ID - Purview - Cisco XDR / FTD / SSE - Experience or knowledge of in … Security Frameworks such as ISO 27001, NIST, CES Desirable Skills / Experience; - CISSP certification - CEH or CCSP certification Cyber Security Engineer (Contract) In accordance with the Employment Agencies and Employment Businesses Regulations 2003, this position is advertised based upon DGH Recruitment Limited having first sought approval of its client to find candidates for this position. More ❯

We are looking for an eDV / UK*C Product Manager to work 4 days a week on site for an exciting client, job spec below so please feel free to call me on 07887 575829. About the Role We are seeking a highly motivated and experienced Product Manager with active UK*C / eDV to lead and … continuous improvement. Define product vision, roadmap, and success metrics aligned to customer needs, business goals, and regulatory requirements. Work closely with cross-functional teams (engineering, data science, DevOps, UX / UI, compliance, etc.) to ensure timely delivery of high-quality solutions. Act as the voice of the customer and advocate for data-driven decision making. Manage product backlogs, define … adhere to data governance, information assurance, and cybersecurity policies. Support business development teams in identifying new opportunities for data product development and enhancement. Required Qualifications & Experience Active UK*C / eDV security clearance (essential). Proven experience as a Product Manager delivering successful data projects - such as data platforms, analytics tools, data warehouses, or ML / AI initiatives. More ❯

segmentation project in AWS, separating production and non-production environments. Key Responsibilities: Design, implement, and support enterprise network infrastructure across Cisco and Palo Alto on-premises environments, and Azure / AWS cloud platforms. Lead deployment and optimisation of SD-WAN and SASE / SSE technologies (e.g., Netskope, Zscaler, Cisco Umbrella). Manage and maintain secure network architectures including … root cause analysis, and ongoing improvements. Required Skills & Experience: Extensive experience executing network refresh projects. Strong expertise with Cisco, Palo Alto, HAProxy, and Azure networking. Solid understanding of TCP / IP, DNS, DHCP, VPNs, VLANs, firewall policies, and routing protocols (BGP, OSPF). Proven track record with SD-WAN deployments. Practical knowledge of SSE / SASE platforms (e.g. … Netskope, Zscaler, Prisma Access). Experience with AWS and / or Azure networking (VPC / VNet, transit gateways, peering, VPNs). Proficiency with monitoring and troubleshooting tools (NetFlow, Wireshark, CloudWatch, Grafana). Strong communication, documentation, and collaboration skills. Preferred Certifications: Cisco: CCNP, CCIE AWS: Advanced Networking, Solutions Architect Microsoft: Azure Network Engineer Associate, Azure Solutions Architect Expert Palo More ❯

along with the ability to produce clear, concise documentation Enthusiastic about problem-solving, and a willingness to take responsibility and solve challenges Familiarity with industry frameworks such as ISO 22301, ISO 27001 Ability to adapt and respond to changing priorities and demands An appreciation for confidentiality and the ability to be successfully vetted to More ❯

OT Cyber Security Cloud Specialist - Freelance (Contract) Location : Hybrid Position : Freelance / Contract, 6-12 months Clearance : Active DV or eDV required; UKIC or Reservist background About the Role We are seeking a highly skilled OT Cyber Security Cloud Specialist to support our defence client in securing Operational Technology (OT) systems integrated with cloud environments. This role focuses on … Responsibilities Design and implement cybersecurity measures for OT systems (e.g., SCADA, PLCs) integrated with cloud platforms (AWS, Azure GovCloud). Conduct threat, vulnerability, and risk assessments (TVRA) for OT / cloud hybrid environments. Develop and enforce security policies aligned with IEC 62443, NIST 800-82, and JSP 440 standards. Collaborate with stakeholders to embed security by design … in OT / cloud deployments, including HPC clusters. Lead incident response and recovery for OT / cloud security breaches, coordinating with UKIC or reservist teams. Provide technical assurance and compliance reporting to senior leaders and regulators. Mentor cross-functional teams on OT / cloud security best practices. Essential Skills & Experience Extensive experience in OT cybersecurity, including system More ❯