8 of 8 DemandTrendPermanent ISO/IEC 27001 Jobs in Avon

principles Experience in system security engineering, ideally in defence, space, or critical infrastructure Familiarity with MOD, NCSC, and ISO standards (e.g. ISO 27001 / 2, NIST 800-series, JSP 604) Competence in requirements engineering and systems thinking Practical experience with security in software and / or system development environments Effective communication and … space system architectures or satellite communications DevSecOps awareness or experience with security automation Benefits: Annual Company Bonus 25 Days holiday not including bank holidays with the option to buy / sell up to 5 days Competitive pension contribution Continuous professional development including incentives Access to online Udemy training facility Flexible working arrangements Bike to work scheme Electric car scheme More ❯

Cyber Security Consultant - Risk Consultant (MOD / Defence - SC) Location: Remote / Southwest on-site presence Contract Type: Permanent & Full-time Salary: Competitive + Benefits About the Role As a Cyber Security Consultant, you will play a pivotal role in delivering Secure by Design risk and security assurance services within MOD and Public Sector environments. You'll collaborate … part of a knowledge-sharing culture, working alongside expert peers in Secure Architecture and Risk Planning. Key Responsibilities Deliver Secure by Design risk and security assurance functions within MOD / Public Sector. Lead and advise on risk management frameworks, ISMS, and Enterprise Security Risk Management. Facilitate security and risk workshops with Authority departments. Produce clear reporting on vulnerabilities, risks … of CIISEC and UK Cyber Security Council professional registration at either Chartered or Principal for Risk Management. Hold an active and transferable SC clearance Willingness to undergo DV clearance / UK Citizen / residing in UK Strong working knowledge of: Security Assurance Coordinator or Delivery Team Security Lead roles JSP440, JSP604 / 453 & JSP490 Working with system More ❯

high performing Security team Leading by example to create a culture of continuous service improvements About you Experience in a regulated environment, preferably Financial Services. Previous experience in Information / Cyber Security, with demonstrable experience of Cloud Security tooling, to reduce risks and maintain strong controls in a DevSecOps cloud context Highly organised with the ability to prioritise workload … for example CCSK, CCSP, CISSP, CRISC Hands on demonstratable experience and knowledge of: Carrying out security reviews against recognised security control frameworks such as CSA Cloud Control Matrix, ISO27017 / 27001, NIST CSF, PCI-DSS, SWIFT, AWS CAF Atlassian, IAAC Terraform, Merge Requests, GIT Ops, Git Hub, Workflow, Wiz, Security Hub, Macie, Audit Manager, Microsoft Compliance Portal … / Purview, Microsoft Information Protection (AIP), Azure Security Centre. Strong experience with DevOps practices, continuous integration / continuous deployment (CI / CD) pipelines, and related tools Ability to evaluate the adequacy of cloud security controls, and how they are applied in a business context. Interview process The interview process for this role will be in two stages. More ❯

We’re looking for a Senior Cloud / Infrastructure Engineer with strong Oracle Cloud (OCI) expertise. You’ll design, build, and support mission-critical cloud environments, driving automation, migrations, and innovation on high-impact projects. Location - Bristol (Hybrid) Key Skills: Strong knowledge of OCI services (compute, storage, networking, load balancers) Automation with Terraform, Ansible, Python, Bash, PowerShell Experience with … CI / CD pipelines (Jenkins, GitHub Actions) Knowledge of IAM, VPNs, WAF, GDPR, ISO 27001 Exposure to Autonomous DB, Exadata, Data Guard, Kubernetes, Docker Security clearance (or willingness to obtain More ❯

Were looking for a Senior Cloud / Infrastructure Engineer with strong Oracle Cloud (OCI) expertise. Youll design, build, and support mission-critical cloud environments, driving automation, migrations, and innovation on high-impact projects. Location - Bristol (Hybrid) Key Skills: Strong knowledge of OCI services (compute, storage, networking, load balancers) Automation with Terraform, Ansible, Python, Bash, PowerShell Experience with CI / CD pipelines (Jenkins, GitHub Actions) Knowledge of IAM, VPNs, WAF, GDPR, ISO 27001 Exposure to Autonomous DB, Exadata, Data Guard, Kubernetes, Docker Security clearance (or willingness to obtain More ❯

pure' managerial role with no hands-on technical work Technical knowledge of Windows Server, Azure, Active Directory and cloud-based O365 environments Strong knowledge of IT Security and ISO 27001 standards A mix of polictical and technical skills A personable nature, able to manage up and down where requried The successful IT Infrastructure Manager will work … fall under the Equality Act 2010. For the purposes of the Conduct Regulations 2003, when advertising permanent vacancies we are acting as an Employment Agency, and when advertising temporary / contract vacancies we are acting as an Employment Business. More ❯

architectures Perform vulnerability assessments , penetration testing , and remediation strategy delivery Lead and coordinate incident response , forensic analysis, and post-incident reporting Use and optimise security tooling (e.g. firewalls, IDS / IPS , endpoint protection) Collaborate with developers and IT teams to embed secure coding and operational practices Maintain clear documentation of risk, incidents, and security configurations Contribute to evolving internal … controls and support continuous improvement in InfoSec Required Skills & Experience: Strong knowledge and hands-on experience with cloud security (AWS and / or Azure) Proven ability to perform detailed risk assessments and identify meaningful control improvements … Experience using and managing firewalls, intrusion detection systems, and SIEM solutions Familiarity with secure networking protocols (VPNs, TCP / IP, etc.) and malware analysis Understanding of industry frameworks: ISO27001, Cyber Essentials, NIST800-53 Experience working on security operations, threat management, and incident resolution Excellent communication skills, with ability to translate technical risk to non-technical stakeholders Relevant certifications are More ❯

management, including due diligence and third-party incident management. Work closely with stakeholders to provide advice in relation to third party information security risks, recommending risk mitigation strategies and / or advising on risk exceptions based on the business' risk appetite. Driving policy & standard governance processes including creating new policies and standards where required. Managing framework alignments, identifying gaps … at all levels and be confident in influencing business areas to meet compliance requirements. Demonstrable experience of working with compliance and risk management in a NIST CSF (Preferable) or ISO27001 aligned environment, along with an understanding of PCI-DSS. Experience in managing supply chain risk, including due diligence, risk escalation and treatment. Good writing capabilities, analytical skills, including demonstrated experience More ❯