development. • Understanding of key security principles, threats, controls, and risks • Detailed knowledge of key threat actors affecting the NAO. Desirable • Significant experience working within or implementing ISO 27001:2022 ISMS • Experience maintaining Cyber Essentials Plus • Hold one or more of the following industry accreditations, or able to achieve within six months: o CISSP, CISM, CISA, CRISC o Comp TIA Sec+ More ❯
excels at developing measurable controls that align with an organisation's risk appetite, capacity, and tolerance for breaches. Known for crafting innovative and cost-effective InformationSecurityManagement Systems (ISMS), the consultancy enables quantifiable compliance with key informationsecurity legislation, regulations, and industry standards, including PCI DSS, the UK Data Protection Act 2018 (DPA 2018), GDPR, and ISO/IEC More ❯
policies, standards, and recognised best practices Identify principal InformationSecurity risks and issues across group Collaborate closely with Group CISO Assist in administering the Group's InfoSec ManagementSystem (ISMS) Manage ISO 27001 certification and associated compliance activities Engage with IT SecOps teams Participate in security-related exercises Oversee audit processes and client management responsibilities Analyse pertinent security metrics What More ❯
Birmingham, West Midlands, England, United Kingdom
Robert Walters
policies, standards, and recognised best practices Identify principal InformationSecurity risks and issues across group Collaborate closely with Group CISO Assist in administering the Group's InfoSec ManagementSystem (ISMS) Manage ISO 27001 certification and associated compliance activities Engage with IT SecOps teams Participate in security-related exercises Oversee audit processes and client management responsibilities Analyse pertinent security metrics What More ❯
their accounts. Work with the Director of Sales Ops & Customer Success to maintain and optimise the tech stack. Compliance & Security Maintain a solid understanding of InformationSecurityManagement Systems (ISMS) and ensure compliance with data protection policies and regulations. About you: Experience: Proven experience as a strategic IT advisor to senior clients, ideally as a TAM, Solutions Consultant, or Engineer. More ❯
their accounts. Work with the Director of Sales Ops & Customer Success to maintain and optimise the tech stack. Compliance & Security Maintain a solid understanding of InformationSecurityManagement Systems (ISMS) and ensure compliance with data protection policies and regulations. About you: Experience: Proven experience as a strategic IT advisor to senior clients, ideally as a TAM, Solutions Consultant, or Engineer. More ❯
their accounts. Work with the Director of Sales Ops & Customer Success to maintain and optimise the tech stack. Compliance & Security Maintain a solid understanding of InformationSecurityManagement Systems (ISMS) and ensure compliance with data protection policies and regulations. About you: Experience: Proven experience as a strategic IT advisor to senior clients, ideally as a TAM, Solutions Consultant, or Engineer. More ❯
development of service features and the Framework used by thousands of organisations, including developing a relationship between the controls framework and contemporary contextual cybersecurity risks. Developing and operating our ISMS, and all that this entails: You will also be responsible for maintaining our ISO 27001 and Cyber Essentials certificationsand other security-related compliance accreditations as may be required. We are More ❯
ensure appropriate controls, contingencies and DR solutions are in place Formulate and drive IT modernisation and continuous improvement initiatives Overall responsibility for the ISO 27001 InformationManagementSecuritySystem (ISMS) and ISO 22301 Business Continuity ManagementSystem (BSMS) Lead the design and delivery of future technical solutions, integrating strategic planning, design, and implementation to help the business and colleagues excel More ❯
City of London, London, England, United Kingdom Hybrid / WFH Options
Carrington Recruitment Solutions Ltd
and help safeguard our firm’s data and systems. Key responsibilities Support the delivery of robust informationsecurity and privacy policies Conduct risk assessments, manage incidents, and maintain our ISMS & BCMS Provide expert guidance on security compliance and data privacy (including DPIAs) Collaborate across teams to embed security into business operations Key skills Solid knowledge of ISO 27001, Cyber Essentials More ❯
London, South East, England, United Kingdom Hybrid / WFH Options
Picture More
robust informationsecurity and privacy practices across global operations. Conduct security risk assessments, support incident response, and contribute to audits and compliance initiatives. Maintain and enhance the firm’s ISMS and Business Continuity frameworks. Complete client cyber due diligence and collaborate closely with internal stakeholders. What You'll Bring: Proven experience in informationsecurity and risk management. Strong working knowledge More ❯
bring to us. Extensive experience in the field of InformationSecurity, preferably in a senior or advanced analyst role. Proven experience in managing and auditing InformationSecurityManagement Systems (ISMS) aligned with ISO 27001 standards. Strong skills in risk assessment, vulnerability identification, and development of practical security solutions for complex IT environments. Experience with penetration testing and vulnerability assessments; certifications More ❯
Greater Bristol Area, United Kingdom Hybrid / WFH Options
Advance TRS
ways to resolve. Essential- What you can bring: Experience of delivering technical Cyber Security consultancy in multi-disciplined environments. Experience of Information Assurance, and developing InformationSecurityManagement Systems (ISMS), including risk assessments/management and the deployment of appropriate controls. An excellent communicator, verbal (active listener) and written (able to write concisely). Ability to articulate and pitch Cyber More ❯
Northwich, Cheshire, England, United Kingdom Hybrid / WFH Options
Teemz Ltd
detection and diagnosis using industry standard network monitoring and management tools, such as Logic Monitor. Ensure that you are familiar with the Company's Business ManagementSystem and InformationSecurityManagementSystem and comply with the requirements of those frameworks. Ensure that the area of control remains ISO9001 and GDPR compliant and drive awareness and compliance through the entire span More ❯
Bristol, Avon, South West, United Kingdom Hybrid / WFH Options
Alexander Mae (Bristol) Ltd
IEC 27001 , ISO/IEC 42001 and Cyber Essentials PLUS standards. In this role you will be responsible for maintaining, auditing, and continuously improving their InformationSecurityManagementSystem (ISMS), overseeing compliance initiatives, coordinating with internal teams, and ensuring the organization remains audit-ready. Additionally you will be implementing (alongside the technical and sales team) a Compliance as a Service … maintain their ISO Certifications. Key Responsibilities: Instrumental in the building of a new Team to deliver CaaS and supporting services. Develop, implement, and maintain the InformationSecurityManagementSystem (ISMS) aligned with ISO/IEC 27001 and Cyber Essentials PLUS standards. Lead internal audits, gap assessments, and risk assessments for ISO 27001 and Cyber Essentials PLUS. Coordinate and manage external … Statement of Applicability (SoA) , Risk Treatment Plans , and supporting documentation. Identify compliance gaps and lead remediation activities. Oversee incident management, business continuity, and data protection processes as part of ISMS requirements. Stay current on changes to ISO 27001 and Cyber Essentials PLUS frameworks, regulatory expectations, and cybersecurity threats. Develop and deliver security and compliance awareness training across the organisation. Collaborate More ❯
Milton Keynes, England, United Kingdom Hybrid / WFH Options
MHA
Security to interpret cyber risk assessments, maintain the risk register, and shape training content that addresses emerging threats and control gaps. Process & Reporting Oversight Maintain IT SecurityManagementSystem (ISMS) documentation, support the upkeep of standard operating procedures, and generate data-driven training dashboards for senior stakeholders, focusing on completion rates, behavioural impact, and ROI. Cross-Functional Enablement Work with More ❯
for the maintenance of a variety of ISO standards. Responsible for the adherence to and continued certification of the following standards: ISO 9001 Quality ManagementSystem ISO 27001 InformationSecurityManagementSystem PCI-DSS Payment Card Industry Data Security Standard ISO 22301 Business Continuity GDPR and Data Protection Laws Conduct regular internal audits in line with the requirements of the More ❯
be familiar with issues related to handling and disseminating sensitive data. We are especially interested in applicants with experience in areas such as ISO27001 certification, InformationSecurityManagement Systems (ISMS), Trusted Research Environments (TRE), Secure Data Environments (SDE), Data Safe Havens (DSH), the Five Safes model, healthcare data processing, NHS Data Security and Protection Toolkit, anonymising personal data, data protection More ❯
Milton Keynes, Buckinghamshire, England, United Kingdom Hybrid / WFH Options
MHA
Security to interpret cyber risk assessments, maintain the risk register, and shape training content that addresses emerging threats and control gaps. Process & Reporting Oversight Maintain IT SecurityManagementSystem (ISMS) documentation, support the upkeep of standard operating procedures, and generate data-driven training dashboards for senior stakeholders, focusing on completion rates, behavioural impact, and ROI. Cross-Functional Enablement Work with More ❯
Quality ManagementSystem, ISO 14001:2015 Environmental ManagementSystem with guidance for use", OHSAS 18001:2017 Occupational Health and Safety Management Systems and ISO/IEC 27001:2013 InformationSecurityManagementSystem, Policies, Plans, Procedures and Processes, and statutory requirements as they affect the Joint Venture 's operations and ensure that the requirements, as applicable within their discipline, are effectively More ❯
internal sub-Boards, and relevant stakeholders. Compliance and Assurance: Ensure ongoing compliance with ISO27001 certification requirements, including managing audits, reviews, and continual improvement of the InformationSecurityManagementSystem (ISMS). Stay abreast of and ensure adherence to regulations (e.g., GDPR, NIS2, DORA) and other relevant legal and contractual obligations, as well as application security standards. Risk Management: Lead the … Required Qualifications and Skills: Proven experience in a senior informationsecurity role, preferably within the financial services or a similarly regulated industry. Demonstrable experience in implementing and managing an ISMS aligned with ISO27001, including successful participation in certification audits. Strong understanding of financial services regulations and their impact on information security. In-depth knowledge of informationsecurity frameworks, standards, and More ❯
engagements and delivering valuable services to clients Skills/Must have: Extensive experience in InformationSecurity Governance, Risk, and Compliance (GRC) Experience contributing to an InformationSecurityManagementSystem (ISMS) certified to ISO27001 standards Knowledge of the Cyber Essentials Plus Scheme, GDPR, and Data Protection Act (2018) Strong communication skills and the ability to build relationships with internal and external More ❯
organization's informationsecurity policies, standards, and procedures in alignment with business objectives, while considering operational needs. Direct the management and continuous improvement of the InformationSecurityManagementSystem (ISMS). Oversee and manage Ravelin's PCI DSS and PCI 3DS compliance program, ensuring requirements are fulfilled, maintained, and areas for enhancement are identified. Conduct routine risk assessments to determine More ❯
Stockport, Lancashire, United Kingdom Hybrid / WFH Options
zyncgroup.io
that align with clients unique goals and requirements. In this role you will be responsible for: Developing and formulatingsecurity concepts Establishment, development and implementation of informationsecuritymanagement systems (ISMS) Coordinatingthe deployment of protective measures Conducting risk analyses This role is remote from anywhere in Germany with travel to client site. Essential: Several years experience workingwithISMS - including developing from scratch More ❯
Kettering, Northamptonshire, East Midlands, United Kingdom
E.surv Limited
to date at all times Highlight to the line manager any concerns regarding conflicting duties or areas of responsibility. Operate within the processes, policies and standards of e.Surv informationsecuritymanagementsystem, aligned to ISO27001 Adhere to all policies and operating procedures of the IT department. Being an active member of the team. Knowledge and Expertise Essential: Extensive experience gained More ❯