1 to 25 of 43 Contract ISO/IEC 27001 Jobs in the UK excluding London

based multi-site enterprise, is delivering a multi-year cybersecurity, controls and resilience programme aligned to NIST CSF v2.0 and ISO / IEC 27001:2022. They require an experienced, hands-on Infrastructure Engineer to design, implement and uplift infrastructure controls translating cyber security … environments. Remediate security findings arising from audits, risk assessments and maturity reviews. Engineer and embed technical controls supporting NIST CSF and ISO / IEC 27001 objectives. Support security tooling integration (SIEM log sources, EDR / XDR dependencies, vulnerability tooling). Enable ...

criteria marked Application Able to demonstrate a clear understanding and capability to work within relevant IT related standards including IITIL V4, ISO / IEC 38500, ISO / IEC 27001, ISO / IEC … ISO / IEC 20000, PRINCE2 and MSP E4 Qualification Educated to GCSE level or equivalent Hold ITIL V4 Foundation accreditation 5 Core Behaviour Communicates Effectively Communicates ...

27001 control operation and evidence collection. Ensure compliance with MoD security standards including JSP 440 and SbD requirements. Support internal / external audit, accreditation and remediation activities. Maintain secure configurations, firewall rules, access control policies, and logging standards. Provide security assurance during change, deployment and release activities. … operational security within governed environments Eligible for DV clearance Desirable Experience in MOD or classified environments Automation experience (Ansible, Terraform, scripting) Experience with Nessus / Tenable or similar tools Familiarity with JSP 440 / 441 / 453 and NCSC guidance Role Purpose To deliver security operations ...

including cloud providers, SaaS platforms, and managed service partners. You'll play a key role in ensuring suppliers meet our cyber security standards, ISO 27001 requirements, and broader technical security expectations. What You'll Be Doing Own and manage cyber security assurance across ~80 third-party … Third Party Risk Management (TPRM) or supplier assurance Experience performing technical security assessments of suppliers or systems Strong understanding of: Cloud security (AWS / Azure / GCP) IAM, network, and application security Hands-on experience with ISO 27001 audits and technical control assessment Ability ...

Manufacturing IT / OT Support Technician Location: Siemens Energy – Worcester, UK Contract: 6 months initial (likely extension) Working Pattern: 5 days on site, 8 hours / day, Mon–Fri Rate: £40–£54 / hour (Inside IR35 via umbrella) Start: ASAP Other: Basic DBS required, must confirm notice … period Role Overview Hands-on IT / OT support role in a live manufacturing environment, supporting production-critical systems, industrial connectivity, and factory digital infrastructure. Focus on uptime, troubleshooting, cybersecurity compliance, and IT / OT integration. Key Responsibilities OT & Production Support Support and troubleshoot OT systems (PLCs, HMIs ...

issuesareresolvedandidentifiedimprovementsaredeliveredthroughtheContinuousServiceImprovementPlan 4.ResponsibleforcontrollingITassets,includingbusinessandoperationalsoftwarelicencing,ensuringthatadministrationoftheacquisition,storage,distribution,movement,anddisposalofassetsiscarriedouttoreducecost,maintainsecurityandenablereuseandavoidingunnecessaryacquisition. 5.ResponsibleforworkingwithTechnologyAssuranceandOperationsteamstoimplementarrangementsfordisasterrecoveryanddocumentsrecoveryproceduresinordertoensurearapidrecoveryofbusinessservicesreducinganyadverseimpactonbusinessoperations. 6.Responsibleforassessing,analysing,developing,documenting,andcontrollingtheimplementationofchangesbasedonrequestsforchangetoensurecontinuityofoperationsandavoidanceofincidentsresultingfromITchangeinthebusinessenvironment. Totakeresponsibility,appropriatetothepostfortacklingracismandpromotinggoodrace,ethnicandcommunityrelations. 34PERSONSPECIFICATIONItisessentialthatinyourwrittensupportingstatementyougiveevidenceorexamplesofyourprovenexperienceineachoftheshort-listingcriteriamarkedApplication AbletodemonstrateaclearunderstandingandcapabilitytoworkwithinrelevantITrelatedstandardsincludingIITILV4,ISO / IEC38500,ISO / IEC27001,ISO / IEC22301,ISO / IEC20000,PRINCE2andMSPE4QualificationEducatedtoGCSElevelorequivalentHoldITILV4Foundationaccreditation5CoreBehaviourCommunicatesEffectivelyCommunicates ...

Title: Cyber Security Assurance Specialist Location: Culham, UK (23 days / week on site) Type & Duration: Contract |6+ Months Contract with InsideIR35 Job Description: Role Overview: A cross-functional role combining advisory and hands-on responsibilities. Focus areas include security assurance, risk management, architecture review, vulnerability management, cyber defence … compliance (Gov Assure, CAF, ISO 27001, Cyber Essentials), and drive secure-by-design practices. Essential Skills: Designing & implementing secure cloud / infrastructure architectures Risk assessment & maintaining risk registers (ISO 31000, FAIR, OWASP) Knowledge of Gov Assure, CAF, ISO 27001 ...

Cybers Security Architect Contract Details Role Title: Cybersecurity Architect Location: Hybrid 2-3 days onsite per week Wokingham Contract Duration: 12 Months Rate: £570 / day inside IR35 Active SC Clearance Required Core Responsibilities Design and maintain secure architecture frameworks for enterprise systems across cloud, on-premises, and hybrid … across infrastructure and application layers Define and enforce security standards, reference architectures, and policy controls aligned with frameworks such as NIST, ISO / IEC 27001, and CIS Evaluate, select, and integrate security technologies including: Identity and Access Management (IAM) Security Information and Event ...

based multi-site enterprise, is delivering a multi-year cybersecurity, controls and resilience programme aligned to NIST CSF v2.0 and ISO / IEC 27001:2022. They require an experienced, hands-on Infrastructure Engineer to design, implement and uplift infrastructure controls translating cyb click ...

Title: MDA Security Operations (SecOps) Engineer Clearance: DV required Location: PTP / Hybrid About the Role We are seeking a hand-on Security Operations (SecOps) Engineer to secure and operate a MoD-hosted private cloud environment and its associated services. You will play a key role in active defence … 27001 control operation and evidence collection. Ensure compliance with MoD security standards including JSP 440 and SbD requirements. Support internal / external audit, accreditation and remediation activities. Maintain secure configurations, firewall rules, access control policies, and logging standards. Provide security assurance during change, deployment and release activities. ...

Role : PAM Specialist ( Privileged Access Management) Location : Abingdon , UK With Hybrid (2 to 3 Days / Week onsite) Contract: Contract | InsideIR35 | 6 months (possible and likely extension) Overview: The Client is seeking a PAM (Privileged Access Management) Specialist to implement, configure, and manage the BeyondTrust PAM platform. The role … rotation and manage privileged account workflows Record, monitor, and manage privileged sessions Onboard servers, network devices, and applications to PAM Discover and vault service / application / shared accounts Configure session proxies, Just-in-Time access, and break-glass procedures Integrate PAM with SIEM and Active Directory / ...

controls Carrying out tasks aligned with wider "Know Your System" (KYS) principles (understanding assets, processes and risks across the environment) Environment: Currently a developing / low-maturity security environment Work is often reactive and fast-moving Strong need for someone who can roll up their sleeves and deliver … play a key role in establishing and improving GRC basics Experience with: Third-party risk / supplier assurance Policy management Risk and compliance processes Understanding of frameworks such as: ISO 27001 / NIST / CIS (basic awareness is fine) Comfortable working ...

workplace environments. The Role You'll take ownership of cybersecurity operations, leading a small engineering team and working closely with an outsourced SOC / MSSP to ensure robust monitoring, response, and continuous improvement. Responsibilities Leading technical incident response (containment, eradication, recovery) and post-incident analysis Owning and improving security … CE+) Essential experience: Strong background in cybersecurity operations within complex environments Proven experience leading incident response and remediation activity Expertise in Microsoft 365 / Azure security and hybrid cloud environments Experience operating security tooling (EDR, SIEM, firewalls, identity platforms) at scale Solid understanding of frameworks such as ISO ...

Location: Culham, Oxfordshire (2 days / week on-site) Contract: Until 18 / 12 / 2026 IR35: In Scope Rate: 50 / hr Umbrella Clearance: Active SC or lapsed within 12 months Role Overview We are seeking an experienced OT Cyber Security Analyst to support … implement and maintain effective OT security controls. Key Responsibilities Implement OT security controls (segmentation, secure remote access, monitoring tools) Integrate OT environments into SIEM / SOC platforms and tune detections Support OT asset discovery, inventory, and security assessments Identify vulnerabilities and support remediation planning Assist with OT incident response ...

organisations based in Portsmouth. Knowledge: Knowledge of working and designing using security frameworks o NIST Cybersecurity Framework o ISO 27001 / 27002 o CIS Critical Security Controls o Zero Trust Architecture principles o NIS 2 o DEFSTAN 05-138 Knowledge of employing a secure … technologies and Cyber services. Creatively applies innovative thinking and design practices in identifying solutions that will deliver value for the benefit of the customer / stakeholder. Clearly demonstrates impactful communication skills (oral, written and presentation) in both formal and informal settings, articulating complex ideas to broad audiences. Learning ...

IR35 paying from £400 - £600 a day. This role is hybrid to Havant and will support our client in the ongoing management of ISO 27001 accreditation. Ensure compliance with all required standards, controls, and audit cycles Act as the key point of contact for certification bodies … Solid background in risk management, controls, and regulatory compliance Ability to engage with senior stakeholders across business and technology Desirable Experience Experience in utilities / energy or regulated industries Exposure to supplier assurance and third-party risk Familiarity with ITSM / ServiceNow environments Please apply today with your ...

Specialist - £592 PD (Inside IR35) – 6 Month Contract – Hybrid 2 / 3 Days in Oxford – BPSS Required Overview: We are seeking an experienced Privileged Access Management (PAM) Specialist to join a major UK government research organisation on a long-term programme of work. This is a hands-on technical … Responsibilities: Implement, configure, and manage enterprise PAM toolkits. Configure and support Privileged Remote Access solutions. Manage credential vaulting, automated password rotation, and check-in / check-out workflows. Configure and maintain session monitoring and recording. Support discovery, onboarding, and lifecycle management for service accounts. Onboard Windows, Linux / ...

OpenShift, Docker). Architect and strengthen security controls across virtualisation technologies , including VMware, Hyper V, and cloud-native virtualisation frameworks. Produce high-quality HLDs / LLDs , security patterns, and architectural governance artefacts. Ensure designs align with NCSC guidance , industry best practices (e.g., CIS Benchmarks), and organisational policy. Security Assurance … design principles are followed. Support accreditation activities and ensure all architectural documentation meets government standards. DevSecOps & Platform Security Embed security controls within CI / CD pipelines. Advise on secure container image lifecycle management (build, scan, deploy, retire). Evaluate and implement tools for: Container security scanning (e.g., Trivy, Aqua ...

reporting, whilst also providing clear security reporting and insights to senior stakeholders. You will ensure compliance with relevant regulatory and industry standards (e.g. ISO 27001, GDPR, NIS2 or equivalent), and support secure delivery of technology projects by embedding security-by-design principles. In addition, you will … successful candidate for the Interim Cyber Security Manager position, you will have the following experience: Proven interim experience in a Cyber Security Manager / Lead / Security Consultant role. Strong understanding of security operations, threat detection, and incident response practices. Experience working with SIEM, EDR, and monitoring technologies ...

security reporting, SIEM alignment, and incident response coordination Oversee security incident management in line with the client Cyber Security Incident Response Plan Own joiner / mover / leaver processes, RBAC, PAM, and monthly access control audits Ensure delivery of security assurance artefacts for internal and external audit requirements … Support and coordinate penetration testing, vulnerability management, and disaster recovery exercises Ensure compliance with GDPR / DPA 2018, NCSC IAS5, CAF, and related government standards Maintain and enforce security controls across Oracle Cloud environments and SaaS applications Ensure secure configuration of Oracle ERP (HCM, ERP, EPM) security models including ...

Cyber Security analyst Until December £45 - £50 / Hr Inside IR35 Oxfordshire Clearance: SC We are seeking a Cyber Security Analyst for our Government client based in Oxfordshire. This role will be office based 2 days per week and the remainder remote. The Cyber Security analyst role will … initial contract until 18 / 12, paying between £45- £50 / Hr Inside IR35. This role is inside IR35 - Due to the service of the role it will now be based on an Umbrella solution. Clearance: SC Role Profile We are seeking an experienced OT Cyber Security Analyst ...

risk assessment, mitigation strategies, and patch management within cloud-based environments. Professional security certification, such as CompTIA Security+, SSCP, CISSP, or vendor-specific patch / vulnerability qualifications. Working knowledge of the insurance or financial services industry and its risk and regulatory landscape. Experience with third-party security tools, such … enterprise environment. Strong understanding of cybersecurity standards and frameworks, including ISO 27001, NIST 800 53, CIS Controls, OWASP, and SOC1 / 2. Guidant, Carbon60, Lorien & SRG - The Impellam Group Portfolio are acting as an Employment Business in relation to this vacancy. ...

Role: OT Cyber Security Analyst Location: Culham - 2 days per week on site (hybrid) Contract length: Until 18 / 12 / 2026 Day rate: Approx. 50 / hour (Umbrella) or 36.43 / hour (PAYE) IR35: In scope This role sits at the heart of operational technology … ensure security controls are implemented and sustained. Contribute to governance artefacts - policies, standards and documentation that underpin OT security. Support integration with SIEM / SOC functions for OT environments. What our client is looking for Strong OT security experience within ICS or critical infrastructure - ideally from oil & gas, rail ...

Lead 6 months Bath - hybrid x3 days onsite x2 remote Active SC / DV clearance required £700 per day outside IR35 The SOC Lead - Threat Hunting & Investigations is responsible for leading advanced threat detection, proactive threat hunting, and complex security investigations across the enterprise. This role focuses on identifying … hunting methodologies and investigative techniques Review and improve alert fidelity, detection coverage, and response effectiveness Provide technical oversight for tooling such as SIEM, EDR / XDR, NDR, SOAR, and cloud-native security platforms Detection Engineering & Improvement Collaborate with detection engineers to convert hunt findings into new or improved detections ...

Policy & Governance Lead / GRC Analyst Active SC Clearance – required to work on-site support sensitive aerospace programmes. Aerospace and Defence Experience– demonstrable background delivering architecture within MOD, Defence Digital, or UK aerospace environments. This role will be based in Reading with hybrid / custom working options where … appropriate. Area: Policy & Governance, GRC / Assurance Purpose of the Role Define, maintain, govern, and assure compliance with the organisation's ISMS policy framework, standards, and procedures, while supporting audit readiness and control assurance. Key Responsibilities Own and maintain all policies, standards, procedures, and guidelines aligned to ISO ...