1 to 25 of 47 Contract ISO/IEC 27001 Jobs in the UK excluding London

Incident Response (CSIRT) / SOC Level 3 Analyst Location: Crawley (Hybrid) Department: Information Systems Type: Contract Full-time Outside IR35 About the Role My client is seeking an experienced Incident Response (CSIRT) / Security Operations Centre (SOC) Level 3 Analyst to join their Information Systems directorate, based in Crawley. In this critical role, you'll respond to high … in incident response and advanced threat hunting. A degree in Computer Science, Cybersecurity, IT, or a related discipline, or equivalent professional experience. Industry-recognised certifications such as CISSP, GIAC / GCIA / GCIH, AZ-500, CEH, CASP+, or SIEM-specific training. Strong knowledge of SIEM, SOAR, EDR, IDS / IPS, NAC, DLP, and related security technologies. Familiarity … with frameworks such as MITRE ATT&CK, NIST, CIS, and ISO / IEC 27001 / 27002. Hands-on experience with tools such as FortiSIEM, Q-Radar, Microsoft Defender, Darktrace, Microsoft Sentinel, or similar platforms. Experience in forensic analysis, red-team exercises, and crisis simulation activities. Desirable Experience managing or supporting both IT More ❯

Incident Response (CSIRT) / SOC Level 3 Analyst Location: Crawley (Hybrid) Department: Information Systems Type: Contract | Full-time Outside IR35 About the Role My client is seeking an experienced Incident Response (CSIRT) / Security Operations Centre (SOC) Level 3 Analyst to join their Information Systems directorate, based in Crawley. In this critical role, you'll respond to high … in incident response and advanced threat hunting. A degree in Computer Science, Cybersecurity, IT, or a related discipline, or equivalent professional experience. Industry-recognised certifications such as CISSP, GIAC / GCIA / GCIH, AZ-500, CEH, CASP+, or SIEM-specific training. Strong knowledge of SIEM, SOAR, EDR, IDS / IPS, NAC, DLP, and related security technologies. Familiarity … with frameworks such as MITRE ATT&CK, NIST, CIS, and ISO / IEC 27001 / 27002. Hands-on experience with tools such as FortiSIEM, Q-Radar, Microsoft Defender, Darktrace, Microsoft Sentinel, or similar platforms. Experience in forensic analysis, red-team exercises, and crisis simulation activities. Desirable Experience managing or supporting both IT More ❯

Outside IR35, Senior DevSecOps Architect / Consultant, hybrid, ISO 27001 My client is looking for a Senior DevSecOps Architect / Consultant to lead governance, architecture guidance, and assurance for cloud and infrastructure security across Microsoft Azure, AWS, and key SaaS platforms. This is a hybrid role, so you need to be flexible to attend … embed best practices, validate implementations, and support audit readiness across IaaS, PaaS, and SaaS environments. Responsibilities Define and maintain multi-cloud security standards and reference blueprints (e.g. Azure Policy / Initiatives, AWS Control Tower / SCPs) Own security architecture patterns and contribute to HLD / LLD, threat models, and risk assessments Set assurance criteria and control evidence … standards (Entra ID Conditional Access, MFA, PIM; AWS IAM federation) Govern SaaS security onboarding (SSO, OAuth governance, DLP controls, vendor assessments) Specify telemetry and logging requirements for Microsoft Sentinel / SOC and review analytics / reporting Lead compliance mapping for ISO 27001 and curate audit-ready evidence packs Chair Cloud & Platform Security design reviews More ❯

in the days that you work, and the opportunity to work across diverse industries. Our client works with a range of standards including the main international standards (e.g., ISO 9001, ISO 14001, ISO 27001, ISO 45001). They are seeking someone to focus on mainly information security so experience or … sessions to staff on system awareness, compliance, and continual improvement. Advise on integration of multiple standards into a unified management system. Requirements Essential Skills & Attributes Strong understanding of ISO standards and management system principles. Excellent analytical and problem-solving abilities. Exceptional written and verbal communication skills. Ability to work independently and manage multiple client projects. High level of … not essential. Training & Development Training will be provided where required to support specific standards, tools, or client needs. Opportunities for ongoing professional development and certification support. Engagement Terms Freelance / Contract basis with flexible working arrangements. Project-based or retainer agreements depending on client scope. Competitive day rates based on experience and project complexity. More ❯

Cyber Security Architect - Defence SectorLocation: Newport (Typically 4 days per week) | Clearance Required: SC Clearance RequiredType: Full-Time | Salary: Inside IR35 - from £63.00 per hour (PAYE / LTD option available) Belcan are currently supporting one of our long standing clients, who are seeking a Cyber Security Architect with a strong background in secure systems design and defence standards to … has experience across the following; Key Responsibilities Design, develop, and maintain secure system architectures for MOD platforms and networks. Ensure alignment with standards including NIST SP 800-53, ISO 27001, JSP 440, DEF STAN 05-138, and NCSC guidance. Produce and maintain security documentation such as Security Architecture Documents, Risk Assessments, and Management Plans. Lead secure … STANs). Proven experience in Secure by Design principles and secure development lifecycles. Deep understanding of security architectures, processes, and compliance frameworks (ISO 27001, CE / CE+). Experience with MOD security assurance artefacts and risk management frameworks (HMG IS1 / IS2, NIST RMF). Excellent communication skills - able to engage technical and non More ❯

Cyber Security Architect - Defence Sector Location: Newport (Typically 4 days per week) Clearance Required: SC Clearance Required Type: Full-Time Salary: Inside IR35 - from 63.00 per hour (PAYE / LTD option available) Belcan are currently supporting one of our long standing clients, who are seeking a Cyber Security Architect with a strong background in secure systems design and defence … has experience across the following; Key Responsibilities Design, develop, and maintain secure system architectures for MOD platforms and networks. Ensure alignment with standards including NIST SP 800-53, ISO 27001, JSP 440, DEF STAN 05-138, and NCSC guidance. Produce and maintain security documentation such as Security Architecture Documents, Risk Assessments, and Management Plans. Lead secure … STANs). Proven experience in Secure by Design principles and secure development lifecycles. Deep understanding of security architectures, processes, and compliance frameworks (ISO 27001, CE / CE+). Experience with MOD security assurance artefacts and risk management frameworks (HMG IS1 / IS2, NIST RMF). Excellent communication skills - able to engage technical and non More ❯

Security Architect Newport, South Wales (4 days onsite / Fridays remote) 6 month contract (strong potential for extension) Rate: Negotiable (DOE) ACTIVE SC Clearance is required About the Role A major defence organisation is seeking a Security Architect (Cyber) to play a key role in shaping, developing, and maintaining secure system architectures across mission-critical MOD programmes.You’ll ensure … highest standards of cyber assurance. Key Responsibilities Design and develop secure architectures for MOD platforms, systems, and networks. Align solutions with frameworks such as NIST SP 800-53, ISO 27001, JSP 440, DEF STAN 05-138, and NCSC guidance. Produce and maintain documentation: Security Architecture Documents, Risk Assessments, and Security Management Plans. Lead and support design … Strong understanding of MOD security frameworks (JSP 440, JSP 604, DEF STANs). Proven background in Secure by Design and security compliance (ISO 27001, CE / CE+). Experience producing security artefacts for MOD assurance. Working knowledge of risk management frameworks (HMG IS1 / IS2, NIST RMF). Excellent communication skills – confident engaging with More ❯

secure solutions. Responsibilities • Design, develop, and maintain secure system architectures for MOD platforms, applications, and networks • Ensure alignment with relevant standards and frameworks including NIST SP 800-53, ISO 27001, JSP 440, DEF STAN 05-138, and NCSC guidance • Produce and maintain security documentation including Security Architecture Documents, Security Risk Assessments and Security Management Plans • Lead … working knowledge and experience of Secure by Design • A robust background in security architectures, process and both industry and government compliances (e.g. ISO 27001, CE / CE+) • Solid understanding of systems engineering principles and secure development lifecycles • Experience developing artefacts to support MOD security assurance • Hands-on knowledge of risk management frameworks (e.g. HMG IS1 … / IS2, NIST RMF) • Excellent communication skills, both written and verbal – able to present to technical and non-technical stakeholders Certifications • Certified Information Systems Security Professional (CISSP) • Certified Information Security Manager (CISM) • SABSA, TOGAF or equivalent architecture certifications More ❯

INSIDE IR35 Responsibilities Design, develop, and maintain secure system architectures for MOD platforms, applications, and networks Ensure alignment with relevant standards and frameworks including NIST SP 800-53, ISO 27001, JSP 440, DEF STAN 05-138, and NCSC guidance Produce and maintain security documentation including Security Architecture Documents, Security Risk Assessments and Security Management Plans Lead … working knowledge and experience of Secure by Design A robust background in security architectures, process and both industry and government compliances (e.g. ISO 27001, CE / CE+) Solid understanding of systems engineering principles and secure development lifecycles Experience developing artefacts to support MOD security assurance Hands-on knowledge of risk management frameworks (e.g. HMG IS1 … / IS2, NIST RMF) Excellent communication skills, both written and verbal - able to present to technical and non-technical stakeholders Currently holds SC Clearance Certifications Certified Information Systems Security Professional (CISSP) Certified Information Security Manager (CISM) SABSA, TOGAF or equivalent architecture certifications More ❯

INSIDE IR35 Responsibilities Design, develop, and maintain secure system architectures for MOD platforms, applications, and networks Ensure alignment with relevant standards and frameworks including NIST SP 800-53, ISO 27001, JSP 440, DEF STAN 05-138, and NCSC guidance Produce and maintain security documentation including Security Architecture Documents, Security Risk Assessments and Security Management Plans Lead … working knowledge and experience of Secure by Design A robust background in security architectures, process and both industry and government compliances (e.g. ISO 27001, CE / CE+) Solid understanding of systems engineering principles and secure development lifecycles Experience developing artefacts to support MOD security assurance Hands-on knowledge of risk management frameworks (e.g. HMG IS1 … / IS2, NIST RMF) Excellent communication skills, both written and verbal - able to present to technical and non-technical stakeholders Currently holds SC Clearance Certifications Certified Information Systems Security Professional (CISSP) Certified Information Security Manager (CISM) SABSA, TOGAF or equivalent architecture certifications More ❯

be involved in: Design, develop, and maintain secure system architectures for MOD platforms, applications, and networks Ensure alignment with relevant standards and frameworks including; NIST SP 800-53, ISO 27001, JSP 440, DEF STAN 05-138, and NCSC guidance Produce and maintain security documentation including; Security Architecture Documents, Security Risk Assessments, and Security Management Plans Lead … working knowledge and experience of Secure by Design A robust background in security architectures, processes, and both industry and government compliances (e.g. ISO 27001, CE / CE+) Solid understanding of systems engineering principles and secure development lifecycles Experience developing artefacts to support MOD security assurance Hands-on knowledge of risk management frameworks (e.g. HMG IS1 … / IS2, NIST RMF) Excellent communication skills, both written and verbal - able to present to technical and non-technical stakeholders Certified Information Systems Security Professional (CISSP) Certified Information Security Manager (CISM) SABSA, TOGAF or equivalent architecture certifications If this all sounds like something you will be interested in then simply apply and we can discuss the opportunity further! Security More ❯

be involved in: Design, develop, and maintain secure system architectures for MOD platforms, applications, and networks Ensure alignment with relevant standards and frameworks including; NIST SP 800-53, ISO 27001, JSP 440, DEF STAN 05-138, and NCSC guidance Produce and maintain security documentation including; Security Architecture Documents, Security Risk Assessments, and Security Management Plans Lead … working knowledge and experience of Secure by Design A robust background in security architectures, processes, and both industry and government compliances (e.g. ISO 27001, CE / CE+) Solid understanding of systems engineering principles and secure development lifecycles Experience developing artefacts to support MOD security assurance Hands-on knowledge of risk management frameworks (e.g. HMG IS1 … / IS2, NIST RMF) Excellent communication skills, both written and verbal - able to present to technical and non-technical stakeholders Certified Information Systems Security Professional (CISSP) Certified Information Security Manager (CISM) SABSA, TOGAF or equivalent architecture certifications If this all sounds like something you will be interested in then simply apply and we can discuss the opportunity further! Security More ❯

assessments, and security design reviews for OT environments. Work closely with engineering and project teams to embed security into delivery. Produce and review security documentation in line with MOD / Defence standards. Provide SME input on OT security to stakeholders across projects. Essential Skills & Experience Active UK DV Clearance (mandatory). Security Practitioner Strong background in Operational Technology. Demonstrable … experience applying MOD / Nuclear Secure by Design (SbD) principles. Proven experience in security architecture and engineering within Defence or Critical National Infrastructure. Knowledge of risk management methodologies and security assurance. Desirable Skills Experience with IEC / ISA 62443 standards. Familiarity with NIST 800-82, ISO 27001, and Defence Security standards (e.g. … JSPs). Previous MOD / Defence and or Nuclear experience. Due to the nature and urgency of the role, candidates are required to hold current Developed Vetting (DV) clearance, if you do not hold this, unfortunately we cannot sponsor. Please familiarise yourself with the security vetting process before applying. More ❯

Job title: Network Solution Architect Will the role be 100% remote, hybrid or 100% office? Hybrid If the role is hybrid / office based specify location: Coventry Duration of assignment: 6 Months Start date: 01-Nov-2025 Number of persons required: 1 Special working conditions: (travel, weekend, overtime, on call etc.) NA Role description: ( Please include a brief outline … Centre Design Knowledge F5 LTM and WAF Design Knowledge F5 Distributed cloud Knowledge Cisco ISE Palo Alto Firewalls Palo Alto SASE Prisma Access LAN, WAN, WLAN design. Key skills / knowledge / experience: (Up to 10, Avoid repetition) More general skills / experience: 1.Core Responsibilities Design and document enterprise network architectures (LAN, WAN, WLAN, cloud networking). … ensure end-to-end solution integrity. Prepare network capacity and resilience plans. Document network topology, standards, and procedures. 2. Technical Requirements Networking Technologies Expert knowledge of IP networking (IPv4 / IPv6, routing, switching, subnetting, VLANs, NAT, QoS). Deep understanding of protocols such as BGP, OSPF, EIGRP, MPLS, STP, VXLAN, and DNS / DHCP. Familiarity with SDN and More ❯

leadership and communication skills. Key Accountabilities Develop and maintain the organisation's IT Security Strategy and governance framework. Ensure compliance with cybersecurity standards, legislation, and regulatory obligations (eg, ISO 27001, NIST, GDPR). Provide strategic security leadership and assurance across IT systems, infrastructure, and digital initiatives. Oversee security risk management , audits, and incident response to maintain … What the client is looking for: Proven experience developing and leading cybersecurity strategy and governance aligned with organisational goals and regulation. Strong knowledge of security frameworks and standards (ISO 27001, NIST, NCSC, Cyber Essentials, GDPR). Deep technical understanding of cloud, network, and identity security , with ability to review and assure complex solution designs. Demonstrated success … able to relocate temporarily for work. Please disregard any such emails that are not of interest and let us know if you would rather not receive such mailouts and / or if you wish us to delete your details and prefer to apply direct to our advertised roles. If you do not hear from us within three working days More ❯

security projects, ensuring compliance with cyber assurance standards and information security frameworks. Key Responsibilities Support and maintain information assurance across Defence and OGD (Other Government Department) environments. Conduct ISO 27001 audits and ensure continued compliance with security frameworks. Act as a Defence or OGD Information Technology Security Officer (DITSO), providing expert advice and assurance to programmes. … Security with a willingness to learn and travel when required. ISO 27001 auditor experience. Proven experience in Defence or Government cyber security assurance roles (DITSO / WARP). Desired Skills Broad knowledge of HMG Cyber Security and Assurance policy and guidance. Experience working with CCF, CAF, and NIST frameworks. Familiarity with NCSC best practice and More ❯

to-end solution integrity. Prepare network capacity and resilience plans. Document network topology, standards, and procedures. Skills, Experience, and Abilities Required: Technical Requirements: Expert knowledge of IP networking (IPv4 / IPv6, routing, switching, subnetting, VLANs, NAT, QoS). Deep understanding of protocols (BGP, OSPF, EIGRP, MPLS, STP, VXLAN, DNS / DHCP). Familiarity with SDN and SD-WAN … Security integration: Zero Trust, segmentation, NAC; familiarity with ISO 27001, NIST, PCI-DSS, GDPR. Cloud & Virtualisation: AWS, Azure, or GCP networking services; understanding of hybrid / multi-cloud; automation tools (Terraform, Ansible, Python). Monitoring & Management: Network management systems (SolarWinds, Cisco DNA Center); performance monitoring, logging, incident response. Experience Requirements: 7 10+ years in network … engineering, with 3 5 years in architecture / design roles. Proven experience in large-scale or complex enterprise environments. Architectural artefact production (HLDs, LLDs, diagrams, standards). Leading technical design workshops and influencing senior stakeholders. Vendor selection and cost optimisation experience. Educational & Certification Requirements: Bachelor's degree (or higher) in Computer Science, Information Technology, or related field. Preferred certifications More ❯

on role suited to someone with experience in public sector or defence environments, particularly around information assurance and threat reporting. Key Responsibilities: Deliver internal security audits aligned to ISO 27001 standards Provide support and guidance as part of the programme’s IT security function Monitor and respond to cyber threat intelligence and WARP notifications Maintain documentation … and contribute to risk assessments and mitigation plans Collaborate with stakeholders to ensure alignment with government security frameworks Required Skills & Experience: Valid SC Clearance Practical experience with ISO 27001 auditing Background in a DITSO or similar IT security role within Defence or OGD Familiarity with WARP processes and incident response coordination Understanding of UK government cyber More ❯

Outside IR35 | 3 Months | Fully Remote We’re hiring a Cybersecurity Engineer to support a client on a 3-month contract focused on achieving SOC 2 and ISO 27001 compliance. This role is Outside IR35, fully remote, and offers a daily rate of £500–£600.The successful candidate will deliver the integration of CrowdStrike Falcon with Vanta … help implement the security controls, monitoring, and documentation required for audit readiness. Key Requirements Proven experience in cybersecurity engineering and compliance delivery Deep understanding of SOC 2 and ISO 27001 frameworks and audit processes Hands-on experience with integrating cybersecurity tools and platforms Experience integrating CrowdStrike Falcon and Vanta is a plus Strong adherence to Azure More ❯

infrastructure, network and cloud platforms, - Collaborate with the wider business to ensure new and existing systems meet security requirements through the development of SecOps and DevSecOps processes. Required Skills / Experience: - Advanced knowledge of Microsoft Security technology solutions. - Microsoft Defender - Mimecast - Tenable Nessus - Entra ID - Purview - Cisco XDR / FTD / SSE - Experience or knowledge of in … Security Frameworks such as ISO 27001, NIST, CES Desirable Skills / Experience; - CISSP certification - CEH or CCSP certification Cyber Security Engineer (Contract) In accordance with the Employment Agencies and Employment Businesses Regulations 2003, this position is advertised based upon DGH Recruitment Limited having first sought approval of its client to find candidates for this position. More ❯

segmentation project in AWS, separating production and non-production environments. Key Responsibilities: Design, implement, and support enterprise network infrastructure across Cisco and Palo Alto on-premises environments, and Azure / AWS cloud platforms. Lead deployment and optimisation of SD-WAN and SASE / SSE technologies (e.g., Netskope, Zscaler, Cisco Umbrella). Manage and maintain secure network architectures including … root cause analysis, and ongoing improvements. Required Skills & Experience: Extensive experience executing network refresh projects. Strong expertise with Cisco, Palo Alto, HAProxy, and Azure networking. Solid understanding of TCP / IP, DNS, DHCP, VPNs, VLANs, firewall policies, and routing protocols (BGP, OSPF). Proven track record with SD-WAN deployments. Practical knowledge of SSE / SASE platforms (e.g. … Netskope, Zscaler, Prisma Access). Experience with AWS and / or Azure networking (VPC / VNet, transit gateways, peering, VPNs). Proficiency with monitoring and troubleshooting tools (NetFlow, Wireshark, CloudWatch, Grafana). Strong communication, documentation, and collaboration skills. Preferred Certifications: Cisco: CCNP, CCIE AWS: Advanced Networking, Solutions Architect Microsoft: Azure Network Engineer Associate, Azure Solutions Architect Expert Palo More ❯

Technical Knowledge & Experience Proven experience delivering IT or cyber security projects or capability enhancements in complex environments. Strong understanding of cyber security principles, controls, and frameworks (e.g. NIST, ISO 27001, CIS). Experience working with DevOps tools and practices (e.g. JIRA, Confluence, Azure DevOps). Familiarity with enterprise security domains such as identity management, cloud security … ability to work within structured governance and change control frameworks . Experience managing third-party suppliers and delivery partners. Strong knowledge of project delivery methodologies : PRINCE2 , APM PMQ , Agile / Scrum , or Hybrid delivery models. Understanding of ITIL and service management principles. Experience applying Change Management and Lean Six Sigma techniques is beneficial. Skills & Attributes Excellent leadership, stakeholder management More ❯

Technical Knowledge & Experience Proven experience delivering IT or cyber security projects or capability enhancements in complex environments. Strong understanding of cyber security principles, controls, and frameworks (e.g. NIST, ISO 27001, CIS). Experience working with DevOps tools and practices (e.g. JIRA, Confluence, Azure DevOps). Familiarity with enterprise security domains such as identity management, cloud security … ability to work within structured governance and change control frameworks . Experience managing third-party suppliers and delivery partners. Strong knowledge of project delivery methodologies : PRINCE2 , APM PMQ , Agile / Scrum , or Hybrid delivery models. Understanding of ITIL and service management principles. Experience applying Change Management and Lean Six Sigma techniques is beneficial. Skills & Attributes Excellent leadership, stakeholder management More ❯

SOC Operations Manager - Azure, ISO27001, Energy Up to £800 per day - Inside IR35 Primarily remote - Occasional travel 3 - 6 months My client is an instantly recognisable consultancy who require a SOC Operations Manager to lead the day-to-day operations of a Security Operations Centre. This is a hands-on leadership role where you'll manage a team of analysts … incident response, and ensure the SOC delivers measurable value to a well-known end client within the Energy Sector. Key Requirements: Proven experience working within SOC management, within Energy / Construction / Utilities Hands on leadership and team management skills. Proven experience with Enterprise Technologies (SOC / SIEM / XDR). Strong working knowledge of M365 … AWS. Ability to effectively communicate SOC value to stakeholders through clear and efficient reporting. Clear knowledge of current cybersecurity threats and trends. Familiarity with NCSC CAF, ONR SyAPs, and ISO27001 frameworks. Nice to have: Experience in complex, regulated environments, especially Critical National Infrastructure (CNI). Awareness of SOAR platforms and automation in incident response. Immediate availability If you're interested More ❯

management is also essential. The ability to work closely with business, technical and vendor stakeholders. Engagement via Umbrella Company Only; all taxes & NI deducted at source. General responsibilities: - Define / maintain IT disaster recovery framework ensuring alignment with business continuity objectives. Conduct risk assessments of existing infrastructure services enabling identification of mitigation strategies. Develop and document disaster recovery plans … large-scale enterprise environments. Infrastructure resilience and failover strategies. Ability to engage with senior stakeholders ITIL v4 certification Knowledge of regulatory requirements for IT risk and resilience e.g. ISO 22301, ISO 27001 Experience working in highly regulated environments. Reasonable Adjustments: Respect and equality are core values to us. We are proud of the diverse More ❯