11 of 11 Permanent ISO/IEC 27001 Jobs in Avon

security documentation Support clients in defining business led security requirements and secure-by-design solutions Interpret and apply ISO 27001 / ISO 27002, NIST, NCSC CAF, and MOD security frameworks Engage confidently with technical and non-technical stakeholders, including senior leaders Contribute … understanding of ISO 27000-series standards and security risk frameworks Familiarity with NCSC guidance and legacy IA standards Experience operating within MOD / defence-aligned security frameworks (e.g. JSP 604, JSP 440, JSP 902) Ability to clearly articulate risk and assurance outcomes to diverse stakeholders Qualifications Essential ...

based Internal Developer Platform as a product, enabling self-service environment provisioning and repeatable golden paths. Develop and maintain Infrastructure as Code (Terraform and / or Bicep) modules and reusable templates for AKS, networking, storage, databases, and app runtimes. Implement and evolve CI / CD pipelines (HL version … delivery. Introduce and run GitOps for Kubernetes (AKS preferred), patterns and multi-environment promotions. Own platform observability: metrics, logs and traces using Azure Monitor / Log Analytics / Application Insights, plus Datadog / Grafana where appropriate. Embed security by design: Azure Policy, Defender for Cloud, secrets management ...

tools (DocuSign, Vanta, Drata, Asana, Trello) Excited about building your career in legal ops, compliance, or governance Nice-to-have: experience in tech / SaaS environments, certifications like CIPP / E, CIPM, ISO 27001 Lead Implementer, or ICA Certificate in Compliance. What we offer … days a year Health and Wellbeing Company sick pay Spill and Health Shield cash plan Community and Culture Free Caption.Ed & TalkType for 5 friends / family 2 volunteer days, team socials, away days & a dog-friendly office Hiring process Apply - Send your CV and cover note. Initial conversation ...

engineering, ideally in defence, space, or critical infrastructure Familiarity with MOD, NCSC, and ISO standards (e.g. ISO 27001 / 2, NIST 800-series, JSP 604) Competence in requirements engineering and systems thinking Practical experience with security in software and / or system … communications DevSecOps awareness or experience with security automation Benefits: Annual Company Bonus 25 Days holiday not including bank holidays with the option to buy / sell up to 5 days Competitive pension contribution Continuous professional development including incentives Access to online Udemy training facility Flexible working arrangements Bike ...

best practices in security assurance Experience Required Experience in information security, risk management, or assurance roles. Desirable qualifications - CISM, CRISC, CISSP, CISA, CGEIT, ISO 27001 Lead Auditor (or equivalent) Hold an active and transferable SC clearance Strong analytical skills with the ability to interpret technical … Remote first role with very occasional travel. Career Development: Continuous learning and professional growth. Benefits Package: Includes Private Health Care, Cash Back Plan, Buy / Sell Holiday Options, Life Assurance, and more. Interested? Submit your application to learn more about this exciting opportunity. Reasonable Adjustments: Respect and equality ...

Cyber Security Generalist £68,000 - 85,000 GBP Hybrid WORKING Location: Bristol, South West - United Kingdom Type: Permanent Cyber Security Generalist - Associate Manager (Bristol / Cheltenham, Southwest UK) Salary: £68,000-£85,000 per year (depending on level and experience) + £5,750 car allowance Working Model: Hybrid / … supported to enhance both technical and consultancy skills. For further information feel free to reach me at 02895213213, or simply apply! Reference: AMC / RKI Reference: AMC / RKI / Cyber Security Generalist Postcode: BS34 #riki ...

architectural patterns. Promote Secure by Design principles to reduce information risk. Validate security controls and their effectiveness. Deliver security architecture for cloud deployments (private / public). Design and scope IT Health Checks and interpret outcomes. Identify and mitigate security risks in solution architectures. Conduct threat modelling and risk … technical cyber role. Expertise in: Security legislation (GDPR, PCI DSS, ICO) Frameworks (ISO 27001, NIST CSF, CIS Controls v8) HMG / NCSC policies and guidance Cloud security (AWS, Azure) Microservice architectures PKI, Cryptography, Privileged Access Management Certifications: SABSA, TOGAF, AWS / Azure Architect, CISSP ...

week on-site due to workload classification and dependant on business need. Security Clearance : British Citizen This role will require DV Clearance. Restrictions and / or limitations relating to nationality and / or rights to work may apply. As a minimum and after offer stage, all successful candidates … DHCP, Sites and Services and Replication Proven experience managing AD within multi-forest, air-gapped or secure enclave environments. Experience with Azure AD / Entra ID, ADFS, and hybrid identity solutions under strict compliance controls Proficiency in PowerShell for automation, auditing and reporting Identity and Access Management service support ...

Role: Cloud Data Architect Location: Bristol, London / Hybrid (2 days a week on site, with travel to client sites as required) RoleType: Permanent / Full-Time Salary: Depends on experience Role Summary: As a Senior / Principal Consultant Cloud Data Architect, you will lead the design … architecture solutions. Strong understanding of UK Government secure data design principles, including Secure by Design. Awareness of relevant security & regulatory frameworks (NCSC, ISO 27001, NIST, GDPR). Ability to explain complex concepts to non - technical audiences. Ability to influence diverse stakeholders including senior leadership. Collaborative ...

skills Nice to Have Coding / scripting (Python, Bash, C#) Web / mobile app testing, reverse engineering, or malware analysis Audit experience (ISO27001, CTAS, CAS(T)) Mentoring or leadership capability Why Apply? Join a highly skilled team tackling complex cybersecurity challenges. This role offers real technical variety, professional ...

risks associated with installation or decommissioning, communicating with project managers and other stakeholders, and adopting measures to reduce risks. Plan, estimate, and schedule installation / decommissioning work, minimizing disruption and seeking necessary approvals for changes. Maintain high levels of IT security by implementing security baselines and configuration hardening … Engineer role. Strong experience with Microsoft environments and implementing security best practices. Knowledge of network security principles, IAM, and compliance frameworks like ISO 27001. Proficiency in virtualisation technologies, public cloud platforms, and hybrid environments. Excellent communication skills, able to act as a bridge between technical and non-technical ...