13 of 13 Permanent ISO/IEC 27001 Jobs in the East of England

management system and adherence by the EMEA EIT department to all relevant legislation and regulations, including but not limited to Health and Safety, Financial and Privacy laws. Main duties / responsibilities: Conduct information security, information system, and compliance-based risk assessments, evaluate responses and recommend risk treatment actions Develop and execute risk mitigation plans in conjunction with relevant internal … and external stakeholders / groups and to agreed timescales, following through to completion Support the creation, implementation and maintenance of information security policies and standards, in accordance with ISO 27001 other relevant frameworks and standards (NIST CSF, IEC 62443, CIS, GDPR etc.) Maintain the department’s information security procedures, including but not limited … obligations include security clauses as relevant Support information security and compliance audits conducted in the department Qualifications and Experience required: Degree level qualified or equivalent - highly desirable. CISM and / or CRISC or other relevant certification is highly desirable ISO 27001:2022 Lead Implementer / Auditor certification is essential. Demonstratable experience in an Information More ❯

27001:2022 certification and ensure adherence to health, safety, financial, and privacy regulations. What are we looking for? Degree level qualified or equivalent - essential. CISM and / or CISSP or other relevant certification is highly desirable ISO 27001:2022 Lead Implementer / Auditor certification is highly desirable Demonstratable experience in an … Security, IT Governance, Risk and Compliance based role, including maintaining and continually improving an ISO 27001 compliant management system. Experience of information security management and / or security awareness. Good knowledge of industry standard frameworks and best practices – ISO 27001: 2022, NIS2, AI Act etc. and their practical application in a … maintain data classification standards within a corporate environment. Experience in developing and executing an Information Security awareness training across multi-business units. Experience with ensuring corporate compliance with UK / EMEA data protection legislation such as DPA and GDPR. Good knowledge of a broad range of IT technology platforms, products, services. Stakeholder management experience at both a technical and More ❯

Security Operations Collaboration and Stakeholder Management Risk Management Compliance Operations Audit, incident response, and risk management ✅ Requirements: Junior or Grad Cyber or Information Security Analyst Keen interest in ISO 27001 … SOC 2 Type 2, and cloud environments. 📜 You will receive certifications in the following: CISSP, CISM, ISO 27001 Lead Implementer, CISA, CRISC, CIPP / E. Physical Security (PSP, CPP) certifications a plus. If you're interested, please apply with your latest CV. I will aim to get back to you within 48 hours. More ❯

ll bring: Proficient in using SIEM technologies such as Splunk, Sentinel, and QRadar. Thorough grasp of security standard methodologies and protocols, for instance ISO 27001 / 27002, PCI DSS. Familiarity with security frameworks such as NIST, ISO, and CIS. Experience with programming languages such as Python, PowerShell, and regex. If you are interested More ❯

safeguarding our organisation’s digital environment. Communications with key business partners is key regarding risks, threats and SOC performance. Familiarity with NIST Cybersecurity, MITRE ATT&CK, Splunk, Sentinel and ISO27001 is vital What you will be doing: Lead, mentor, and develop SOC analysts and incident responders. Provide technical direction, conduct performance reviews, and foster continuous improvement. Oversee full lifecycle of … Confident communicator with the ability to translate complex technical risks into clear business impacts for senior stakeholders. Familiarity with NIST Cybersecurity Framework and MITRE ATT&CK. Understanding of ISO 27001 standards and compliance best practices. Working knowledge of the CREST SOC Maturity Model. Experience applying ITIL processes across incident, problem, and change management. It would be … assurance, pension, and generous flexible benefits fund (3% of base salary). Although this role is advertised as full-time, we believe that flexibility at work can promote work / life balance, increase your motivation, reduce stress and improves performance and productivity. We support different ways of working and can offer a range of flexible working arrangements. So, if More ❯

service security risks. Support AI and automation initiatives to streamline GRC processes. Key Requirements Proven hands-on experience with ServiceNow IRM and risk quantification methodologies. Strong knowledge of ISO 27001, NIST CSF, and NIST SP800-53. Certifications such as CRISC, CISM, CISSP, or FAIR are desirable. Excellent stakeholder management and communication skills. Experience in third-party More ❯

SQL) for data extraction and transformation. Prior experience with Data warehousing and Data modelling (Star Schema or Snowflake Schema). Skilled in security frameworks such as GDPR, HIPAA, ISO 27001, NIST, SOX, and PII, with expertise in IAM, KMS, and RBAC implementation. Cloud automation and orchestration tools like Terraform and Airflow. Strong analytical skills to assess More ❯

align technical and business stakeholders. Preferred Qualifications Experience in a global manufacturing organization. Relevant certifications (e.g., CISSP, CISM, CCSP). Familiarity with frameworks such as NIST CSF, ITIL, ISO 27001, HIPAA, FedRamp. Work Location & Flexibility At Brooks, we aim to foster a collaborative and engaging environment while offering flexibility where possible. Work arrangements may include a More ❯

Active Directory, and Windows Server environments. Hands-on experience with Microsoft Endpoint Manager, Windows desktop support, and network administration. Understanding of cyber security standards and frameworks (e.g. Cyber Essentials, ISO27001). Excellent communication, problem-solving, and organisational skills. Strong understanding of IT governance, risk, and controls. Experience managing IT security and continuity processes. Ability to balance hands-on technical support More ❯

moves, and office relocations. Support the on-boarding of new clients, new users, and acquisitions. Build strong, trusted, in-person relationships with clients. Maintain accurate records in our PSA / RMM and documentation system. Provide on-site services where you will be primarily based. Assist our Service Desk and Provisioning teams when not travelling. Experience and Skills Required You … Directory and Windows across troubleshooting and support. You should also have experience upgrading laptops & desktops and have knowledge of anti-virus, malware & web content filtering solutions.Other experience required: Cat5e / Cat6 cabling: patching, termination & testing. Configuration and troubleshooting of DrayTek (or similar) routers. Configuration and troubleshooting of Ubiquiti Wi-Fi (or similar). Experience liaising with third-party providers … e.g. ISO 27001, GDPR). Comfortable working in a fast-paced, rapidly changing environment. Remuneration and Benefits Guaranteed allowance per annum to cover early starts / late finishes Company vehicle Holiday entitlement: 25 days + UK bank holidays Contributory pension scheme Personal Learning Plan High-spec equipment provided Subsistence allowance Working Pattern Standard hours More ❯

working in a service critical environment are advantageous. As a DevOps Engineer you will be responsible for ensuring all deployment processes and automation meet regulatory requirements, namely PCI DSS, ISO27001, and Cyber Security Essentials. This will include the introduction of standards to ensure conformity within the PayPoint development and deployment workflows. This role is Hybrid with a requirement to be … onsite at least once a month in Welwyn Garden City. Key responsibilities • Design, build, and maintain CI / CD pipelines using Azure DevOps and GitHub Actions • Implement and manage Infrastructure as Code using Terraform and ARM templates • Configure and maintain monitoring, logging, and alerting solutions for applications and infrastructure • Automate deployment processes across development, staging, and production environments • Manage … Security scanning and vulnerability management in pipelines • Performance optimization and capacity planning • Development team productivity through tooling and automation What we would like from you • Strong experience with CI / CD pipeline design and implementation (Azure DevOps, GitHub Actions) • Proficiency in Infrastructure as Code tools, particularly Terraform • Experience with containerization technologies (Docker) and orchestration platforms (Kubernetes) • Strong knowledge of More ❯

all infrastructure projects are delivered within the pre-agreed parameters of time, cost, scope, risk, quality and benefits. Ensuring all infrastructure services are managed and supported according to industry / vendor best practice, following defined processes and procedures and to meet agreed availability and performance KPIs. Ensuring all colleague infrastructure support tickets are resolved / fulfilled in line … with SLA and colleague satisfaction targets, following agreed ITSM processes. Ensuring that all infrastructure components are managed to the appropriate level of risk with respect to security patches, software / firmware revision levels and supplier supported versions. Proactively seeking service improvements in the areas of reliability, performance, availability, security, supportability or cost. Overseeing the effective transition of new or … laptops, mobile / tablets, peripherals). Technologies required Office 365 – ongoing management Nutanix Networking (LAN, WAN, VLAN, WiFi) preferably Juniper & Fortinet devices Security (ACL, Firewall, PCI, GDPR. GDP) ISO27001 principles Storage, iSCSI (HP, Tegile, Nutanix) Cloud (Azure ExressRoute, VMs,Load Balancers) Linux System Centre Database Management More ❯

a Fintech / Technology-focused company Primary Objective To lead and manage compliance and risk management operations—ensuring the company remains compliant with internal policies, external standards (like ISO27001, GDPR), and regulatory bodies. Key Responsibilities Policy & Compliance Management Review and enhance existing compliance policies Draft new policies aligned with standards like ISO27001 Audits & Controls Conduct internal audits; support external … External Engagement Keep up-to-date with evolving regulations Build relationships with regulators and industry bodies Required Skills & Experience Essential 5+ years in a similar Risk and Compliance role ISO27001 GDPR Experience managing audits Policy and procedure development Solid risk management knowledge Desirable Background in financial services Understanding of FCA material supplier requirements FSQS Cyber Essentials / Cyber Essentials More ❯