1 to 25 of 32 Contract ISO/IEC 27001 Jobs in the UK excluding London

accessible, compassionate care Optimising the use of digital technology, research, and innovation Delivering value for money. If you would like to know more or require further information, please visithttps: / / www.england.nhs.uk / . Colleagues with a contractual office base are expected to spend, on average, at least 40% of their time working in-person. Staff recruited … have Developed Vetting already, however, failure to achieve the requirements for Developed Vetting after offer, will result in the job offer being withdrawn. For further advice please check https: / / www.gov.uk / government / publications / united-kingdom-security-vetting-clearance-levels / national-security-vetting-clearance-levels#security-check-sc Please be aware … to be made to the Disclosure and Barring Service (formerly known as CRB) to check for any previous criminal convictions. Employer details Employer name NHS England Address Wellington Place / Hexagon House / Wellington House Leeds / Exeter / London LS1 4AP Employer's website https: / / www.england.nhs.uk / about / More ❯

delivery of the technology infrastructure within the organisation. This role is ideal for a forward-thinking individual with a strong background in IT architecture and infrastructure management. Main responsibilities / duties Technology Strategy & Architecture Roadmap Work with the Director of IT to co-create a forward-looking, business-aligned technology strategy that sets a clear direction for IT. Design … cost efficiency. Technology Governance & Operating Model Transformation Standardise and simplify technology governance, policies, and processes to reflect a modern, strategic IT function. Embed frameworks such as: ISO / IEC 27001: The international standard for information security management systems (ISMS), ensuring data confidentiality, integrity, and availability. ITIL (Information Technology Infrastructure Library): A framework for … external partners Experience in implementing IT strategies Experienced in running and managing IT infrastructure, application, and network services Ensuring organisation-wide compliance with information security and governance policies ITIL / ISO 20000 / ISO 9001 experience Experience in similar organisation structures (many sites and geographically spread) Experience of upper mid / large enterprise More ❯

Role: IT Security Lead Salary / Rate: market rates Location: hybrid London + travelContract Duration: 3-6 months We are currently looking for an IT Security Lead for an established IT Managed Service Provider delivering outsourced IT support, infrastructure management, and technology solutions to a diverse range of clients. The role is based between on site in central London … responsible for managing IT security incidents, leading technical projects and advising clients on best practices, especially around Cyber Essentials and cloud platforms Microsoft 365 and Google Workspace. Essential skills / experience required: 2+ years in IT security or IT project-based roles. Experience with Cyber Essentials, client risk assessments and delivering security training. Strong understanding of Microsoft 365, Google … Workspace, and endpoint security. Familiarity with Windows / macOS / Linux environments and basic server administration. Excellent communication, documentation, and problem-solving skills. A proactive, professional, and approachable attitude. Desirable - Microsoft 365 admin experience (Exchange, SharePoint, Teams, Azure AD). Desirable - Knowledge of ISO 27001 / 9001 standards. Desirable - CompTIA certifications (Security+, Network+ More ❯

security culture and architecture promoting continuous improvement, innovation and agility in how services are delivered Acting as a trusted source of advice, and support the whole organisation to build / buy / rent modern technology services which are secure but maintain the highest levels of accessibility Key Skills and Experience Required: Ability to bridge the gap between technical … or services and identify the associated risks and vulnerabilities Experience of delivering systems and security designs, patterns and decisions at pace Expert knowledge of adopting best practice security methodology / standards (including standards such as ISO / IEC 27001 and Cyber Essentials) Deep knowledge of using information and security legislation to enable More ❯

Security Analyst / SOC Analyst Contract £475 PD (Inside IR35) – 6 months 2-3 days onsite Peterborough Overview An excellent opportunity has arisen with a global brand for a Security Analyst / SOC Analyst on a 6-month Contract basis. You’ll play a key role in security operations, vulnerability management, compliance auditing, and incident response, ensuring robust … exception tracking, and remediation Handle EDR alert triage (CrowdStrike) and escalate incidents as needed Conduct system audits for ISO 27001 compliance and review pen test / vulnerability scan outputs Perform log analysis, assist with threat hunting, and escalate risks or unusual activity Develop incident reports and track system impacts for analysis and improvement Collaborate with … communication skills Desirable Experience in managed services or multi-tenant environments Familiarity with compliance frameworks (ISO 27001, PCI-DSS, NIST) Relevant certifications (CEH, CISSP, Security+ / CySA+, etc.) Knowledge of ITIL and experience with change-controlled environments Security Clearance (SC) or ability to be cleared More ❯

Security Analyst - Contract Opportunity Location: Hybrid (Peterborough 2 / 3 days a week) Rate: £465 per day inside IR35 Start Date: ASAP What's the role? This is a technically diverse … Security Analyst position covering areas like: Vulnerability management (Tenable.io or equivalent) SIEM monitoring (Elastic preferred) and log analysis Incident detection, triage, and escalation (CrowdStrike or similar EDR) Compliance audits (ISO27001, STIGs) Infrastructure hardening and security baseline validation Some threat hunting and forensic analysis Creating documentation, playbooks, and security runbooks Who are we looking for? Ideal candidates will bring: At least … years' experience in a Security Analyst or SOC-type role Strong understanding of vulnerability management, EDR / SIEM alert triage, and incident response Experience with compliance frameworks (ISO 27001, NIST, etc.) A working knowledge of VMware, AD, Windows Server, Linux Comfort handling multiple tools - Elastic, Tenable, CrowdStrike (or comparable alternatives) Bonus points for: CEH / More ❯

Job title: Technology Risk Manager Location: London / Hybrid Duration: 6 months Adecco is an employment consultancy. We put expertise, energy, and enthusiasm into improving everyone's chance of being part of the workplace. We respect and appreciate people of all ethnicities, generations, religious beliefs, sexual orientations, gender identities, and more. We do this by showcasing their talents, skills … update process documentation across key technology processes to support governance, compliance, and operational consistency. SSSDLC Integration: Support the integration of security controls and risk assessments throughout the Secure Software / System Development Lifecycle. Controls Assurance: Review and challenge the design and operation of controls to ensure they mitigate risks effectively. Risk Register Monitoring: Maintain and update a register of … these, develop action plans, identify owners and track through to completion. Requirements: Technology Knowledge: Work towards a detailed understanding of Technology and cyber risk frameworks (e.g. NIST / ISO27001 / COBIT / ITIL). SSSDLC Expertise: Understanding of the Secure Software / System Development Lifecycle, including secure design, development, testing, and deployment practices. Process Documentation: Experience More ❯

Job title: Risk Management Specialist Location: London / Hybrid Duration: 6 months Adecco is an employment consultancy. We put expertise, energy, and enthusiasm into improving everyone's chance of being part of the workplace. We respect and appreciate people of all ethnicities, generations, religious beliefs, sexual orientations, gender identities, and more. We do this by showcasing their talents, skills … update process documentation across key technology processes to support governance, compliance, and operational consistency. SSSDLC Integration: Support the integration of security controls and risk assessments throughout the Secure Software / System Development Lifecycle. Controls Assurance: Review and challenge the design and operation of controls to ensure they mitigate risks effectively. Risk Register Monitoring: Maintain and update a register of … these, develop action plans, identify owners and track through to completion. Requirements: Technology Knowledge: Work towards a detailed understanding of Technology and cyber risk frameworks (e.g. NIST / ISO27001 / COBIT / ITIL). SSSDLC Expertise: Understanding of the Secure Software / System Development Lifecycle, including secure design, development, testing, and deployment practices. Process Documentation: Experience More ❯

We're Hiring: DevOps Engineer - Centre of Excellence (Cloud / CI / CD / Automation) Location: London, United Kingdom (Hybrid - Minimum 2 days onsite / week)?? Start Date: Immediate? Engagement Type: Contract - Outside IR35 , 12-month initial term (with potential for extension or permanent employment) Industry: Financial Services / Technology Consulting About the Role We … scalable, and production-grade digital platforms across multiple client engagements in the financial services sector. This role is ideal for an engineer with strong experience in cloud infrastructure , CI / CD pipelines , and infrastructure as code , who thrives in collaborative, high-accountability environments. The successful candidate will play a key role in enabling continuous delivery, platform reliability, and engineering … excellence across the CoE. Key Responsibilities Design, implement, and maintain CI / CD pipelines to support rapid and reliable software delivery Build and manage cloud-native infrastructure (AWS, Azure, or GCP) using Infrastructure as Code (IaC) tools Collaborate with engineering teams to automate deployment, monitoring, and scaling of applications Ensure platform security, compliance, and observability through DevSecOps best practices More ❯

Cyber Security / Infrastructure Consultant – 6-Month Contract - Outside IR35 We are seeking a Cyber Security Consultant for a high-impact 6-month contract to lead the review, design, and implementation of critical cyber security enhancements across our IT estate. You’ll work hands-on with infrastructure, policies, and tooling to ensure our clients systems and data are resilient … strengthen our security posture Develop and implement security policies aligned with Cyber Essentials, ISO 27001, NIST, and GDPR Configure and deploy essential tools: firewalls, IDS / IPS, endpoint protection, and encryption Overhaul Active Directory, Group Policies, and server configurations Lead incident response, forensic analysis, and threat mitigation Monitor and adapt to new threats with continuous … communicator and critical thinker who thrives in fast-paced environments Join us to make a tangible impact on our clients cyber resilience. Interested? Please Click Apply Now! Cyber Security / Infrastructure Consultant – 6-Month Contract - Outside IR35 More ❯

Cyber Security / Infrastructure Consultant – 6-Month Contract - Outside IR35 We are seeking a Cyber Security Consultant for a high-impact 6-month contract to lead the review, design, and implementation of critical cyber security enhancements across our IT estate. You’ll work hands-on with infrastructure, policies, and tooling to ensure our clients systems and data are resilient … strengthen our security posture Develop and implement security policies aligned with Cyber Essentials, ISO 27001, NIST, and GDPR Configure and deploy essential tools: firewalls, IDS / IPS, endpoint protection, and encryption Overhaul Active Directory, Group Policies, and server configurations Lead incident response, forensic analysis, and threat mitigation Monitor and adapt to new threats with continuous … communicator and critical thinker who thrives in fast-paced environments Join us to make a tangible impact on our clients cyber resilience. Interested? Please Click Apply Now! Cyber Security / Infrastructure Consultant – 6-Month Contract - Outside IR35 More ❯

Security Architect – Azure Focused | Contract | Inside IR35 Day Rate - £650 / day Inside Hybrid - 2 / 3 days in the office About the Role: We’re seeking a highly skilled Security Architect with deep expertise in Microsoft Azure to join a dynamic enterprise environment. You’ll play a critical role in shaping and securing cloud-first strategies, ensuring … management processes. Essential Skills Minimum 5 years’ experience as a Security Architect, with a strong focus on Azure environments. Deep understanding of cloud security frameworks (e.g., NIST, CIS, ISO 27001). Hands-on experience with the Microsoft security stack (Defender, Sentinel, Entra, Purview). Familiarity with Zero Trust architecture, identity and access management, and network security. More ❯

Azure Cloud Security Architect – £700 / day – Outside IR35 – Hybrid (Cardiff) We’re working with a major organisation undergoing a large-scale Azure transformation. They’re seeking a Cloud Security Architect with deep Azure expertise to lead the design and implementation of secure cloud solutions. Key Details: Location: Cardiff (Hybrid – 2 days / week on-site) Rate: Up … to £700 / day IR35 Status: Outside IR35 Contract Length: 6 months (strong extension potential) Start Date: ASAP Role Overview: As the Azure Cloud Security Architect, you’ll play a critical role in shaping the organisation’s cloud security posture. You’ll work across architecture, engineering, and compliance teams to ensure secure-by-design principles are embedded throughout the … Key Responsibilities: Design and implement secure Azure cloud architectures Lead threat modelling, risk assessments, and security reviews Define and enforce cloud security policies and governance Integrate security into CI / CD pipelines and DevOps practices Provide guidance on Azure-native security tools (e.g., Defender for Cloud, Sentinel, Key Vault, Azure Policy) Support zero trust and identity-based security models More ❯

data platforms. Perform threat modelling, architecture reviews, and propose mitigation strategies. Ensure alignment with European regulatory standards (e.g., GDPR, PSD2, DORA, NIS2). Embed DevSecOps into SDLC and CI / CD pipelines using IaC and automation tools. Drive adoption of Zero Trust principles, secure APIs, container security, and logging strategies. What Were Looking For 15+ years in Information Security … years of hands-on cloud security experience (AWS, Azure, or GCP multi-cloud preferred). In-depth understanding of financial services compliance requirements and frameworks (e.g., NIST CSF, ISO 27001, CSA CCM, PCI DSS). Expert-level knowledge of IAM, network security, encryption, API and application security, container security, and SIEM strategies. Proven leadership in DevSecOps More ❯

and enterprise networks. Implement secure identity and access management using Azure AD and Microsoft Entra. Consulting & Advisory: Provide expert guidance to clients on cybersecurity best practices, compliance (e.g., ISO 27001, NIST), and risk mitigation. Conduct assessments and audits of existing network and cloud security postures. Deliver workshops and training sessions on M365 and Azure security capabilities. … automation tools. Excellent communication and stakeholder management skills. Preferred Certifications: Microsoft Certified: Azure Network Engineer Associate Microsoft Certified: Cybersecurity Architect Expert Microsoft Certified: Security Operations Analyst Associate Cisco CCNA / CCNP (with cybersecurity focus) CompTIA Security+ or equivalent More ❯

forensic investigations Maintaining and enhancing SOC documentation, SOPs, and playbooks Collaborating with cross-functional teams and contributing to security strategy Ensuring security policies align with standards like NIST, ISO 27001, MITRE ATT&CK We're Looking for Someone With: Expert-level SIEM experience (Azure Sentinel highly preferred) Strong knowledge of Kusto Query Language (KQL) Demonstrated experience More ❯

/ ?? ???????? ????-???????? ?????????????? ???????? ???????????? ?????????? ?? ?????????? ?????????????? ???????????????? I'm currently recruiting for a highly skilled ?????????? ???????????????? ???????? ?????????????? to lead the development and implementation of a cyber risk management programme. Key Responsibilities Design and deliver a robust cyber security risk management framework. Conduct regular risk and vulnerability assessments Work collaboratively across departments to define risk tolerance and align with strategic objectives. Analyse cyber security data to identify risks … external partners to enhance incident response and cyber resilience. Candidates will have; Experience in a cyber security risk management role. Strong understanding of cyber security frameworks and standards (ISO 27001, SOC2, NIST, GDPR). Excellent analytical, communication, and stakeholder engagement skills. Proficient in risk assessment tools and methodologies. Professional certifications such as CRISC, CISM or CISSP More ❯

OpenAI, Key Vault, Azure Policy Experience with Self Hosting LLM Fine-tuning and prompt engineering for LLMs (e.g., GPT, Gemini, Claude) Secure deployment of LLMs via APIs with input / output filtering and logging Integration of LLMs into RAG pipelines, document intelligence, and agentic workflows Use of vector databases (e.g., FAISS, Pinecone, Chroma) for semantic search and retrieval Implementation … agentic patterns to automate complex financial tasks such as client onboarding, document summarisation, and risk signal extraction Security Tooling Static code analysis (Bandit, SonarQube) Secrets scanning, encryption (at rest / in-transit), token management Identity integration (Google Identity, Azure Entra ID) Data Security & Governance RAG pipelines with data classification, masking, and DLP GDPR and data residency compliance MLOps & DevSecOps … GitHub Actions, CI / CD security testing, model drift detection, audit logging Lab Environment Tooling Infrastructure-as-Code (IaC): Terraform, Pulumi Containerization & Orchestration: Docker, Kubernetes (GKE / AKS) Networking & Isolation: VPCs, private endpoints, firewall rules, network policies Data Sandboxing: Synthetic datasets, masking, DLP tooling Monitoring & Observability: Prometheus, Grafana, Cloud Logging More ❯

assessment tools and methodologies. Familiarity with relevant regulations and compliance standards (ISO 27001, SOC2, NIST, GDPR, etc.). Interviews will be taking place from w / c 18 th August onwards. Apply online or call Alasdair Walker from Be-IT. More ❯

AI Front End Engineer** (Contract) Duration: 6 Months (Possibility for extension) Location: London / Hybrid (2 - 3 days on site) Rate: A highly competitive Umbrella Day Rate is available for suitable candidates Role Profile In this development-heavy position, you will be responsible for creating production-ready user interfaces for AI-powered tools and GenAI applications. Working in a … integrate with LLM APIs (e.g., Gemini, Azure OpenAI) and internal systems. Implement advanced front-end security features, including token handling, session management, data masking, and audit logging. Translate UX / UI designs into modular, reusable components aligned with enterprise design systems. Integrate front-end applications with REST / GraphQL APIs, WebSockets, and backend services. Collaborate closely with AI … Ensure compliance with cybersecurity and data privacy standards through secure coding practises and regular code reviews. Deploy applications to GCP (Firebase, Cloud Run) and Azure App Services using CI / CD pipelines hardened for security and compliance. Participate in code reviews, technical design discussions, and architecture planning sessions. Required Skills & Experience: Proven experience building secure, production-grade front-end More ❯

frameworks (e.g., NIST, OWASP, ISO 27001). o Lead the strategic integration of security into DevOps pipelines, embedding security controls and automated testing into CI / CD workflows to enable secure-by-design delivery. o Oversee the implementation and optimisation of security tooling, including Static Application Security Testing (SAST), Dynamic Application Security Testing (DAST), Software … Secure Architecture Compliance Rate: Percentage of projects that meet defined secure architecture standards and pass architecture review gates. * DevSecOps Integration Maturity: Measured progress in embedding security controls into CI / CD pipelines, including automated testing, code scanning, and policy enforcement. * Security Testing Coverage: Proportion of applications and systems that undergo static, dynamic, and interactive security testing before release. * Vulnerability More ❯

of our Global Insurance Clients on a 6 month contract. Please note the role is Inside IR35. Experience Required: Strong knowledge of risk and control frameworks (e.g., NIST, ISO 27001, COBIT). Deep understanding of IT general controls, cyber security principles, and technology risk domains. Experience in control ownership, control testing, and remediation planning. Familiarity with More ❯

Leading patch management, endpoint hardening, and vulnerability resolution. Acting as escalation point for incidents from a third-party SOC and coordinating internal response. Supporting Cyber Essentials Plus and ISO 27001 compliance activities. Administering operational security tools including Microsoft Sentinel and Defender XDR. Maintaining technical documentation and clear operational procedures. About You Strong hands-on experience with … Excellent coordination skills, especially during incident response. Able to balance operational delivery with strategic infrastructure and security improvements. Contract Details Duration: Initial 6 months (potential extension) Rate: Circa £475 / day (Inside IR35) Location: Hybrid Nottingham (onsite presence required each week) If youre ready to step into a pivotal role shaping infrastructure and security operations for a high-profile More ❯

Job Title: Security Architect – Azure Focus Contract Type: Contract (Outside IR35) Day Rate: £600 / day Location: Hybrid – Remote with occasional travel to London Duration: 6 months (with potential extension) About the Role - We are looking for a highly skilled Security Architect with deep expertise in Microsoft Azure to join a leading organisation on a contract basis. This role … Microsoft Azure. Deep understanding of Azure security architecture, governance, and compliance. Hands-on experience with Azure-native security tools and services. Familiarity with security frameworks such as NIST, ISO 27001, CIS Benchmarks, and Zero Trust principles. Azure certifications such as AZ-500 (Azure Security Engineer Associate) or SC-100 (Cybersecurity Architect Expert) are highly desirable. Excellent More ❯

Rate: £[Competitive] per dayWe’re looking for a talented Security Architect with a strong background in AWS cloud security to join a high-impact project within a leading [industry / sector] organisation. This is a fantastic opportunity for someone with 5+ years of experience in security architecture to shape and secure cloud environments at scale. Key Responsibilities Architect secure … to embed security best practices. Define and maintain security policies, standards, and reference architectures. Support incident response and cloud forensics as needed. Ensure alignment with security frameworks (e.g., ISO 27001, NIST, CIS). Essential Skills 5+ years in security architecture roles, with … a strong AWS focus. Deep knowledge of AWS services (IAM, KMS, VPC, CloudTrail, GuardDuty, etc.). Experience with Infrastructure as Code (Terraform, CloudFormation). Familiarity with DevSecOps and CI / CD pipeline security. Strong understanding of cloud security frameworks and regulatory compliance. Excellent communication and stakeholder engagement skills. More ❯