1 to 25 of 44 Contract ISO/IEC 27001 Jobs in the UK

accessible, compassionate care Optimising the use of digital technology, research, and innovation Delivering value for money. If you would like to know more or require further information, please visithttps: / / www.england.nhs.uk / . Colleagues with a contractual office base are expected to spend, on average, at least 40% of their time working in-person. Staff recruited … have Developed Vetting already, however, failure to achieve the requirements for Developed Vetting after offer, will result in the job offer being withdrawn. For further advice please check https: / / www.gov.uk / government / publications / united-kingdom-security-vetting-clearance-levels / national-security-vetting-clearance-levels#security-check-sc Please be aware … to be made to the Disclosure and Barring Service (formerly known as CRB) to check for any previous criminal convictions. Employer details Employer name NHS England Address Wellington Place / Hexagon House / Wellington House Leeds / Exeter / London LS1 4AP Employer's website https: / / www.england.nhs.uk / about / More ❯

delivery of the technology infrastructure within the organisation. This role is ideal for a forward-thinking individual with a strong background in IT architecture and infrastructure management. Main responsibilities / duties Technology Strategy & Architecture Roadmap Work with the Director of IT to co-create a forward-looking, business-aligned technology strategy that sets a clear direction for IT. Design … cost efficiency. Technology Governance & Operating Model Transformation Standardise and simplify technology governance, policies, and processes to reflect a modern, strategic IT function. Embed frameworks such as: ISO / IEC 27001: The international standard for information security management systems (ISMS), ensuring data confidentiality, integrity, and availability. ITIL (Information Technology Infrastructure Library): A framework for … external partners Experience in implementing IT strategies Experienced in running and managing IT infrastructure, application, and network services Ensuring organisation-wide compliance with information security and governance policies ITIL / ISO 20000 / ISO 9001 experience Experience in similar organisation structures (many sites and geographically spread) Experience of upper mid / large enterprise More ❯

Role: IT Security Lead Salary / Rate: market rates Location: hybrid London + travelContract Duration: 3-6 months We are currently looking for an IT Security Lead for an established IT Managed Service Provider delivering outsourced IT support, infrastructure management, and technology solutions to a diverse range of clients. The role is based between on site in central London … responsible for managing IT security incidents, leading technical projects and advising clients on best practices, especially around Cyber Essentials and cloud platforms Microsoft 365 and Google Workspace. Essential skills / experience required: 2+ years in IT security or IT project-based roles. Experience with Cyber Essentials, client risk assessments and delivering security training. Strong understanding of Microsoft 365, Google … Workspace, and endpoint security. Familiarity with Windows / macOS / Linux environments and basic server administration. Excellent communication, documentation, and problem-solving skills. A proactive, professional, and approachable attitude. Desirable - Microsoft 365 admin experience (Exchange, SharePoint, Teams, Azure AD). Desirable - Knowledge of ISO 27001 / 9001 standards. Desirable - CompTIA certifications (Security+, Network+ More ❯

Cybersecurity Specialist (ISO 27001 & Risk Compliance) Location: Guildford - Hybrid Employment Type: 12 month contract Rate: £450-475 per day INSIDE IR35 About the Role We’re seeking a proactive Cybersecurity Specialist to safeguard company data, infrastructure, and services by ensuring adherence to security best practices and maintaining critical accreditations (e.g., ISO 27001 … Review configurations and coordinate changes with infrastructure teams. Incident Response: Act as part of the Cyber Security Incident Response Team (CSIRT) to address threats. Compliance: Ensure alignment with ISO 27001, and other security standards. Risk Management: Maintain risk frameworks and produce assurance documentation. Secure by Design: Partner with project teams to integrate security requirements early in … Degree in Computing or related field. Proven experience in cybersecurity, SIEM tools (e.g., Splunk), and ISO 27001 compliance. Knowledge of Microsoft OS, cloud security (Azure / AWS), and risk management. Strong communication skills to engage stakeholders at all levels. Desirable: Certifications like MCSE, CCNA, or Splunk ES expertise. Experience with Secure by Design principles and More ❯

security culture and architecture promoting continuous improvement, innovation and agility in how services are delivered Acting as a trusted source of advice, and support the whole organisation to build / buy / rent modern technology services which are secure but maintain the highest levels of accessibility Key Skills and Experience Required: Ability to bridge the gap between technical … or services and identify the associated risks and vulnerabilities Experience of delivering systems and security designs, patterns and decisions at pace Expert knowledge of adopting best practice security methodology / standards (including standards such as ISO / IEC 27001 and Cyber Essentials) Deep knowledge of using information and security legislation to enable More ❯

month assignment. Location: Hybrid working- London Essential Skills: The ideal candidates will hold an Active SC clearance and have a proven Information Security background, with the following skills / experience: Experience of security assurance and the measurement of controls. Experience of IT Security documentation (policies, standards, processes, procedures and patterns). Experience of IT Health Check and Vulnerability Assessments … Experience of risk and threat modelling. Qualifications: accreditation / assurances CISM / XCCP / ISO 27001 To apply, please submit your most recent CV for review. More ❯

Head of Information Security Location: London Rate: Up to £1,000 / day outside IR35 Hybrid: 50% of time onsite Sector: Strong regulated industries Contract Type: 6-9 months contract Job Summary: Our client, a leading legal firm, is seeking an experienced Head of Information Security to lead their security function and drive enterprise-wide strategy. This senior leadership … 27001 across multiple organizations with accreditation experience Strong background in developing and executing security policies, standards, and remediation programs Industry certifications such as ISC2 CISSP / SSCP, SANS / GIAC GSEC, or ISACA CISM / CISA Outstanding communication skills with ability to present complex security concepts to diverse audiences To be considered, please … ensure you complete your application on the Computappoint website. Services offered by Computappoint Limited are those of an Employment Business and / or Employment Agency in relation to this vacancy . More ❯

Job title: Technology Risk Manager Location: London / Hybrid Duration: 6 months Adecco is an employment consultancy. We put expertise, energy, and enthusiasm into improving everyone's chance of being part of the workplace. We respect and appreciate people of all ethnicities, generations, religious beliefs, sexual orientations, gender identities, and more. We do this by showcasing their talents, skills … update process documentation across key technology processes to support governance, compliance, and operational consistency. SSSDLC Integration: Support the integration of security controls and risk assessments throughout the Secure Software / System Development Lifecycle. Controls Assurance: Review and challenge the design and operation of controls to ensure they mitigate risks effectively. Risk Register Monitoring: Maintain and update a register of … these, develop action plans, identify owners and track through to completion. Requirements: Technology Knowledge: Work towards a detailed understanding of Technology and cyber risk frameworks (e.g. NIST / ISO27001 / COBIT / ITIL). SSSDLC Expertise: Understanding of the Secure Software / System Development Lifecycle, including secure design, development, testing, and deployment practices. Process Documentation: Experience More ❯

Job title: Risk Management Specialist Location: London / Hybrid Duration: 6 months Adecco is an employment consultancy. We put expertise, energy, and enthusiasm into improving everyone's chance of being part of the workplace. We respect and appreciate people of all ethnicities, generations, religious beliefs, sexual orientations, gender identities, and more. We do this by showcasing their talents, skills … update process documentation across key technology processes to support governance, compliance, and operational consistency. SSSDLC Integration: Support the integration of security controls and risk assessments throughout the Secure Software / System Development Lifecycle. Controls Assurance: Review and challenge the design and operation of controls to ensure they mitigate risks effectively. Risk Register Monitoring: Maintain and update a register of … these, develop action plans, identify owners and track through to completion. Requirements: Technology Knowledge: Work towards a detailed understanding of Technology and cyber risk frameworks (e.g. NIST / ISO27001 / COBIT / ITIL). SSSDLC Expertise: Understanding of the Secure Software / System Development Lifecycle, including secure design, development, testing, and deployment practices. Process Documentation: Experience More ❯

Job title: Technology Risk Manager Location: London / Hybrid Duration: 6 months Adecco is an employment consultancy. We put expertise, energy, and enthusiasm into improving everyone's chance of being part of the workplace. We respect and appreciate people of all ethnicities, generations, religious beliefs, sexual orientations, gender identities, and more. We do this by showcasing their talents, skills … update process documentation across key technology processes to support governance, compliance, and operational consistency. SSSDLC Integration: Support the integration of security controls and risk assessments throughout the Secure Software / System Development Lifecycle. Controls Assurance: Review and challenge the design and operation of controls to ensure they mitigate risks effectively. Risk Register Monitoring: Maintain and update a register of … these, develop action plans, identify owners and track through to completion. Requirements: Technology Knowledge: Work towards a detailed understanding of Technology and cyber risk frameworks (e.g. NIST / ISO27001 / COBIT / ITIL). SSSDLC Expertise: Understanding of the Secure Software / System Development Lifecycle, including secure design, development, testing, and deployment practices. Process Documentation: Experience More ❯

Job title: Risk Management Specialist Location: London / Hybrid Duration: 6 months Adecco is an employment consultancy. We put expertise, energy, and enthusiasm into improving everyone's chance of being part of the workplace. We respect and appreciate people of all ethnicities, generations, religious beliefs, sexual orientations, gender identities, and more. We do this by showcasing their talents, skills … update process documentation across key technology processes to support governance, compliance, and operational consistency. SSSDLC Integration: Support the integration of security controls and risk assessments throughout the Secure Software / System Development Lifecycle. Controls Assurance: Review and challenge the design and operation of controls to ensure they mitigate risks effectively. Risk Register Monitoring: Maintain and update a register of … these, develop action plans, identify owners and track through to completion. Requirements: Technology Knowledge: Work towards a detailed understanding of Technology and cyber risk frameworks (e.g. NIST / ISO27001 / COBIT / ITIL). SSSDLC Expertise: Understanding of the Secure Software / System Development Lifecycle, including secure design, development, testing, and deployment practices. Process Documentation: Experience More ❯

IT Risk Management Specialist City of London / Hybrid 6-months contract Up £750 per day (via Umbrella) cer Financial are working alongside a bank who are based in the City of London. They are seeking an IT Risk Management Specialist to work with them on a contract. The responsibilities of the IT Risk Management Specialist will include: Provide … update process documentation across key technology processes to support governance, compliance, and operational consistency. SSSDLC Integration: Support the integration of security controls and risk assessments throughout the Secure Software / System Development Lifecycle. Controls Assurance: Review and challenge the design and operation of controls to ensure they mitigate risks effectively. Risk Register Monitoring: Maintain and update a register of … track through to completion. The successful It Risk Management Specialist will have: Technology Knowledge: Work towards a detailed understanding of Technology and cyber risk frameworks (e.g. NIST / ISO27001 / COBIT / ITIL). SSSDLC Expertise: Understanding of the Secure Software / System Development Lifecycle, including secure design, development, testing, and deployment practices. Process Documentation: Experience More ❯

designing and implementing hybrid multi cloud solutions including appropriate Identity and Access Management options Experience of TOGAF and Zachman methodologies Knowledge of Infrastructure as Code tools (e.g. Terraform, ARM / Bicep, etc.) Knowledge of cloud security best practices and compliance standards (e.g. ISO 27001, SOC2, GDPR) Experience with containerisation and orchestration technologies (e.g. Docker, OpenShift … Kubernetes) Knowledge of ECB / DORA standards applicable to financial institutions. Daily Rate: 1150 per day inside IR35 via an umbrella company Tenure: Up to 30 / 05 / 2026, extendable Hybrid: 3 days a week onsite in City of London; 2 days remote More ❯

designing and implementing hybrid multi cloud solutions including appropriate Identity and Access Management options Experience of TOGAF and Zachman methodologies Knowledge of Infrastructure as Code tools (e.g. Terraform, ARM / Bicep, etc.) Knowledge of cloud security best practices and compliance standards (e.g. ISO 27001, SOC2, GDPR) Experience with containerisation and orchestration technologies (e.g. Docker, OpenShift … Kubernetes) Knowledge of ECB / DORA standards applicable to financial institutions. Daily Rate: £1150 per day inside IR35 via an umbrella company Tenure: Up to 30 / 05 / 2026, extendable Hybrid: 3 days a week onsite in City of London; 2 days remote Keywords: Enterprise Architect, Azure, TOGAF, DORA, ECB, Zachman, cloud, Google Cloud platform, GCP More ❯

essential Microsoft Purview, Compliance Manager and related compliance tools - essential Entra ID (Azure AD), Conditional Access and Identity Governance Data Loss Prevention, sensitivity labels and insider risk management ISO 27001, SOC 2, GDPR and NIS2 frameworks PowerShell … scripting and use of Microsoft Graph API Working across cloud, infrastructure and application teams Certifications required: AZ-500 SC-100 (or working towards) One or more of MS-500 / SC-400 / SC-900 The following are desired: CISSP, CISM, CCSP Interested? Please apply below. Senior Cloud Security Engineer, Azure Security Engineer, Azure Security Consultant, Cloud Security More ❯

Cyber Security / Infrastructure Consultant – 6-Month Contract - Outside IR35 We are seeking a Cyber Security Consultant for a high-impact 6-month contract to lead the review, design, and implementation of critical cyber security enhancements across our IT estate. You’ll work hands-on with infrastructure, policies, and tooling to ensure our clients systems and data are resilient … strengthen our security posture Develop and implement security policies aligned with Cyber Essentials, ISO 27001, NIST, and GDPR Configure and deploy essential tools: firewalls, IDS / IPS, endpoint protection, and encryption Overhaul Active Directory, Group Policies, and server configurations Lead incident response, forensic analysis, and threat mitigation Monitor and adapt to new threats with continuous … communicator and critical thinker who thrives in fast-paced environments Join us to make a tangible impact on our clients cyber resilience. Interested? Please Click Apply Now! Cyber Security / Infrastructure Consultant – 6-Month Contract - Outside IR35 More ❯

Cyber Security / Infrastructure Consultant – 6-Month Contract - Outside IR35 We are seeking a Cyber Security Consultant for a high-impact 6-month contract to lead the review, design, and implementation of critical cyber security enhancements across our IT estate. You’ll work hands-on with infrastructure, policies, and tooling to ensure our clients systems and data are resilient … strengthen our security posture Develop and implement security policies aligned with Cyber Essentials, ISO 27001, NIST, and GDPR Configure and deploy essential tools: firewalls, IDS / IPS, endpoint protection, and encryption Overhaul Active Directory, Group Policies, and server configurations Lead incident response, forensic analysis, and threat mitigation Monitor and adapt to new threats with continuous … communicator and critical thinker who thrives in fast-paced environments Join us to make a tangible impact on our clients cyber resilience. Interested? Please Click Apply Now! Cyber Security / Infrastructure Consultant – 6-Month Contract - Outside IR35 More ❯

Security Architect – Azure Focused | Contract | Inside IR35 Day Rate - £650 / day Inside Hybrid - 2 / 3 days in the office About the Role: We’re seeking a highly skilled Security Architect with deep expertise in Microsoft Azure to join a dynamic enterprise environment. You’ll play a critical role in shaping and securing cloud-first strategies, ensuring … management processes. Essential Skills Minimum 5 years’ experience as a Security Architect, with a strong focus on Azure environments. Deep understanding of cloud security frameworks (e.g., NIST, CIS, ISO 27001). Hands-on experience with the Microsoft security stack (Defender, Sentinel, Entra, Purview). Familiarity with Zero Trust architecture, identity and access management, and network security. More ❯

Cyber Security Specialist ** Location: London / Hybrid (2 days in office) Rate: A highly competitive salary is available for suitable candidates Role Profile As a Cyber Security Specialist, you will be the go-to Subject Matter Expert (SME) for various projects, offering your insights and recommendations to enhance our security posture. With a strong technical background, you will work … and practises. Experience with security assessment and risk management methodologies. Proficiency in cloud security, particularly with Azure security tools and services. Familiarity with security standards and frameworks (e.g., ISO 27001, NIST, CIS). Knowledge of security technologies such as firewalls and web proxies; experience with ZTNA, CTI, and threat modelling is beneficial. Excellent communication and interpersonal More ❯

Azure Cloud Security Architect – £700 / day – Outside IR35 – Hybrid (Cardiff) We’re working with a major organisation undergoing a large-scale Azure transformation. They’re seeking a Cloud Security Architect with deep Azure expertise to lead the design and implementation of secure cloud solutions. Key Details: Location: Cardiff (Hybrid – 2 days / week on-site) Rate: Up … to £700 / day IR35 Status: Outside IR35 Contract Length: 6 months (strong extension potential) Start Date: ASAP Role Overview: As the Azure Cloud Security Architect, you’ll play a critical role in shaping the organisation’s cloud security posture. You’ll work across architecture, engineering, and compliance teams to ensure secure-by-design principles are embedded throughout the … Key Responsibilities: Design and implement secure Azure cloud architectures Lead threat modelling, risk assessments, and security reviews Define and enforce cloud security policies and governance Integrate security into CI / CD pipelines and DevOps practices Provide guidance on Azure-native security tools (e.g., Defender for Cloud, Sentinel, Key Vault, Azure Policy) Support zero trust and identity-based security models More ❯

data platforms. Perform threat modelling, architecture reviews, and propose mitigation strategies. Ensure alignment with European regulatory standards (e.g., GDPR, PSD2, DORA, NIS2). Embed DevSecOps into SDLC and CI / CD pipelines using IaC and automation tools. Drive adoption of Zero Trust principles, secure APIs, container security, and logging strategies. What Were Looking For 15+ years in Information Security … years of hands-on cloud security experience (AWS, Azure, or GCP multi-cloud preferred). In-depth understanding of financial services compliance requirements and frameworks (e.g., NIST CSF, ISO 27001, CSA CCM, PCI DSS). Expert-level knowledge of IAM, network security, encryption, API and application security, container security, and SIEM strategies. Proven leadership in DevSecOps More ❯

and enterprise networks. Implement secure identity and access management using Azure AD and Microsoft Entra. Consulting & Advisory: Provide expert guidance to clients on cybersecurity best practices, compliance (e.g., ISO 27001, NIST), and risk mitigation. Conduct assessments and audits of existing network and cloud security postures. Deliver workshops and training sessions on M365 and Azure security capabilities. … automation tools. Excellent communication and stakeholder management skills. Preferred Certifications: Microsoft Certified: Azure Network Engineer Associate Microsoft Certified: Cybersecurity Architect Expert Microsoft Certified: Security Operations Analyst Associate Cisco CCNA / CCNP (with cybersecurity focus) CompTIA Security+ or equivalent More ❯

and enterprise networks. Implement secure identity and access management using Azure AD and Microsoft Entra. Consulting & Advisory: Provide expert guidance to clients on cybersecurity best practices, compliance (e.g., ISO 27001, NIST), and risk mitigation. Conduct assessments and audits of existing network and cloud security postures. Deliver workshops and training sessions on M365 and Azure security capabilities. … automation tools. Excellent communication and stakeholder management skills. Preferred Certifications: Microsoft Certified: Azure Network Engineer Associate Microsoft Certified: Cybersecurity Architect Expert Microsoft Certified: Security Operations Analyst Associate Cisco CCNA / CCNP (with cybersecurity focus) CompTIA Security+ or equivalent More ❯

as a key lead in cloud security incident response , including triage, analysis, containment, and remediation. Work closely with development and DevOps teams to integrate security best practices into CI / CD pipelines, infrastructure-as-code deployments, and cloud-native services. Provide security architecture guidance on the secure design of applications, networking, storage, and identity management across multi-cloud environments. … Collaborate with risk, compliance, and governance teams to ensure alignment with relevant industry regulations and frameworks , such as ISO 27001, NIST, or CIS. Where applicable, assess and enhance the security configuration of Salesforce , ensuring effective data protection and access management. Desirable Skills and Experience: 6+ years of experience in cloud security, information security, or related technical More ❯

/ ?? ???????? ????-???????? ?????????????? ???????? ???????????? ?????????? ?? ?????????? ?????????????? ???????????????? I'm currently recruiting for a highly skilled ?????????? ???????????????? ???????? ?????????????? to lead the development and implementation of a cyber risk management programme. Key Responsibilities Design and deliver a robust cyber security risk management framework. Conduct regular risk and vulnerability assessments Work collaboratively across departments to define risk tolerance and align with strategic objectives. Analyse cyber security data to identify risks … external partners to enhance incident response and cyber resilience. Candidates will have; Experience in a cyber security risk management role. Strong understanding of cyber security frameworks and standards (ISO 27001, SOC2, NIST, GDPR). Excellent analytical, communication, and stakeholder engagement skills. Proficient in risk assessment tools and methodologies. Professional certifications such as CRISC, CISM or CISSP More ❯