18 of 18 Permanent ISO 27001 Lead Implementer Jobs in England

ISO Consultant – SC Cleared - £50,000 to £60,000 per year – Remote with limited travel to Midlands area FryerMiles are delighted to be working with a leading Consultancy to assist with their recruitment of an ISO Consultant to join their team on a permanent basis working with a wide range of public and private … sector clients from all sectors on exciting projects. The successful candidate will have significant experience in Information Security and ISO 27001 and be willing to attain further qualifications and experience with other ISO Standards. Ideal candidates will also be able to ensure clients achieve and maintain certification to other ISO Standards such as ISO 27701, ISO 9001 and ISO 22301 Key Responsibilities: Develop and implement comprehensive management systems aligned with relevant standards – ISO 27001, ISO 27701, ISO 22301, ISO 9001. Conduct audits of More ❯

we recommend processes and procedures, which have an equally important role in limiting risk. We support our clients to achieve and maintain information security standards and frameworks, including ISO 27001, PCI DSS, NIST Cyber Security Framework (CSF), and data protection regulations. What you'll be doing: Engaging confidently with clients and colleagues, delivering consultative … of PGI's consultancy services in the UK and internationally in line with industry and globally recognised standards. Contribute towards the maintenance of PGI's own accreditations, including ISO 27001, ISO 9001 and business continuity as well as compliance with data protection regulations. Maintaining your own continuing professional development, keeping up … Qualified Security Assessor (QSA). PCI SSC Qualified Security Assessor expertise and experience. Experience in or knowledge of the PCI DSS standard, NIST CSF, DORA, GDPR / DPA. ISO 27001 Lead Auditor, ISO 27001 Lead Implementer, Cloud Security or More ❯

on governance, oversight, and assurance, ensuring Onsi operates in line with best practices and applicable laws, particularly within cybersecurity, data protection, and operational risk. What you will do: Lead and support the implementation of key compliance and cybersecurity frameworks (e.g. UK GDPR, ISO 27001, Cyber Essentials), while developing regulatory risk frameworks … management, information security, or cybersecurity governance - ideally within a regulated environment such as financial services or fintech. The ability to understand and apply regulatory frameworks (e.g. UK GDPR, ISO 27001) and translate them into business-friendly policies, controls, and processes. Confidence working with regulatory frameworks like UK GDPR, ISO 27001 … the discipline to manage your learning and growth. Desirable Qualifications and / or knowledge (any of the following): Certifications or practical experience as / in CISMP, CompTIA Security+, ISO 27001 Lead Implementer, CISM, CISSP, or PCI DSS QSA. Awareness of key regulations, including UK GDPR, Data Protection Act More ❯

Governance, Risk & Compliance (GRC) Lead Location: Fully Remote - UK Wide Department: Technology - IT Security and Service Management Contract Type: Permanent Salary: £55,000 - £65,000 About the Role We are seeking a highly experienced and motivated GRC Lead to join our Cyber Security team. This role is critical in shaping and delivering our information … assurance strategy, ensuring that cyber security risks are effectively managed across the organisation. As a senior member of the team, you will lead a small group of risk and security professionals, drive the implementation of Secure by Design principles, and oversee compliance with key frameworks such as DSPT , CAF , and DORA . You will also play a … is a unique opportunity to influence the future of cyber security governance in a regulated environment. Key Responsibilities Own and evolve the Information Security Assurance Framework and programme. Lead themed reviews to assess the effectiveness of security controls. Manage the organisation's technology risk management programme , ensuring risks are identified, assessed, and remediated within appetite. Oversee Secure More ❯

continual learning, collaboration, and innovation. We don't just support businesses - we shape how they stay secure, agile, and competitive. We are now looking for a talented Cybersecurity Lead / Specialist to join our growing team and take ownership of our cybersecurity offering. This is a hybrid, hands-on role that blends strategy with technical implementation - ideal … comprehensive security stack tailored for SME and hospitality clients Administer tools such as CrowdStrike Falcon, RoboShadow, Microsoft Defender, ThreatLocker Evaluate and onboard new security technologies; liaise with vendors Lead technical onboarding of cyber tools for both internal and client deployments Incident Response & Threat Management: Develop and own incident response playbooks Act as the lead … threat intelligence, and forensic data from platforms like CrowdStrike and RoboShadow Conduct root cause analysis and manage remediation Compliance, Risk & Certification Support: Guide clients through Cyber Essentials / CE+, ISO 27001, and PCI DSS frameworks Perform regular risk assessments, policy audits, and technical documentation Ensure evidence gathering, hardening practices, and governance alignments are audit More ❯

continual learning, collaboration, and innovation. We don't just support businesses - we shape how they stay secure, agile, and competitive. We are now looking for a talented Cybersecurity Lead / Specialist to join our growing team and take ownership of our cybersecurity offering. This is a hybrid, hands-on role that blends strategy with technical implementation - ideal … comprehensive security stack tailored for SME and hospitality clients Administer tools such as CrowdStrike Falcon, RoboShadow, Microsoft Defender, ThreatLocker Evaluate and onboard new security technologies; liaise with vendors Lead technical onboarding of cyber tools for both internal and client deployments Incident Response & Threat Management: Develop and own incident response playbooks Act as the lead … threat intelligence, and forensic data from platforms like CrowdStrike and RoboShadow Conduct root cause analysis and manage remediation Compliance, Risk & Certification Support: Guide clients through Cyber Essentials / CE+, ISO 27001, and PCI DSS frameworks Perform regular risk assessments, policy audits, and technical documentation Ensure evidence gathering, hardening practices, and governance alignments are audit More ❯

manage responses to customer security audits and assurance inquiries. Monitor regulatory changes and contribute to compliance initiatives such as DORA , NIS2 , and other applicable standards and frameworks (e.g., ISO 27001, SOC 2, GDPR). Assist in the development, maintenance, and improvement of internal GRC processes, policies, and documentation. Collaborate with cross-functional teams (Security … a related field. Experience supporting sales processes, including responding to RFx security assessments. Solid understanding of cybersecurity principles, information security best practices, and regulatory requirements (DORA, NIS2, GDPR, ISO 27001, SOC 2, etc.). Excellent written and verbal communication skills; able to translate technical concepts for non-technical audiences. Strong organizational skills with the … a proactive approach to problem-solving and attention to detail. Experience working in a SaaS, cloud, or technology-driven company is preferred. Professional certifications (such as CISM, CRISC, ISO 27001 Lead Implementer / Auditor, or similar) are a plus Additional Information We are proud to foster a diverse More ❯

dedicated Cyber Security? We have an exciting opportunity for an Information Security Consultant looking to elevate their career. We're looking for someone with hands-on experience in ISO 27001 implementation and auditing, and expertise in NIST to drive our Compliance Team's service offerings forward. Work with a innovative, industry-leading Cyber Security … to build relationships with internal and external stakeholders Hands-on experience in ISO27001 implementation and auditing Eligibility for Security Clearance Certifications Preferred: ISO / IEC 27001 Lead Implementer ISO / IEC 27001 Internal Auditor CISM / CISSP Salary & Benefits More ❯

Are you ready to lead the evolution of cyber defence at one of the UK's leading Universities? Your leadership will be instrumental as Man Met embarks on a major security and risk transformation programme-building a resilient, agile, and forward-looking security capability that supports innovation across the University. Manchester Metropolitan University is seeking an experienced … and motivated Head of Security Architecture and Compliance to lead and develop a new function. In this pivotal role, you'll guide a talented team to design and implement the protections required to counter threats across a diverse and complex digital estate. You'll shape the direction of our security framework, ensuring that guidance, policy and reference … also take ownership of our security assurance testing programme, working with internal and external partners to validate the security of our most critical systems and processes. You will lead on internal and supply chain compliance ensuring that university-wide processes, teams, and systems operate within defined security policies, standards, and procedures to meet internal requirements and partner More ❯

maintain an organization-wide security culture. Build and implement a company-wide communication strategy to promote information security, including application security, within the organization. Team Leadership and Development : Lead and develop the Information Security team. Recruit, retain, and develop talent and expertise, including application security specialists. Set and maintain the team's culture and tone. Business Continuity … including considerations for application security. Security Monitoring and Incident Response : Establish and maintain processes for continuous security monitoring and detection of security events, including application-specific security events. Lead the investigation and resolution of security incidents, including those related to application vulnerabilities, root cause analysis, and implementation of corrective actions. Reporting : Provide regular reports on the organization … . Stay abreast of and ensure adherence to regulations (e.g., GDPR, NIS2, DORA) and other relevant legal and contractual obligations, as well as application security standards. Risk Management : Lead the information security risk management process, including identification, assessment, treatment, and monitoring of risks, with a particular emphasis on application security risks. Conduct regular risk assessments and vulnerability More ❯

we looking for? Strong experience delivering end-to-end security assurance in complex, fast-paced environments Broad knowledge of IT and security frameworks, regulations, and best practices (e.g., ISO 27001, DPA, GDPR) Familiarity with security tools such as vulnerability scanners, SIEM, DDoS protection, remote access, authentication / authorisation technologies, and data loss prevention Understanding … risk to technical and non-technical stakeholders Self-driven, collaborative, and confident operating both independently and within teams Desirable Qualifications & Experience: Certifications such as CISSP, CISM, CISA, or ISO 27001 Lead Auditor / Implementer Knowledge of the NIST Cybersecurity Framework Experience with Smart Metering or highly regulated environments … and Public Key Infrastructure (PKI) Understanding of Hardware Security Modules (HSMs) About the DCC: At the DCC, we believe in making Britain more connected, so we can all lead smarter, greener lives. That desire to make a difference is what drives us every day and it wouldn't be possible without our people. Each person at the More ❯

Job summary We are seeking a skilled and motivated Information Security Lead to support the strategic and operational delivery of information security and infrastructure controls across our digital estate. Reporting to the Head of Information Security and Enterprise Architecture, this role is responsible for driving compliance with cyber and data protection standards (including DSPT, CE+, and CAF … robust security practices across business-as-usual operations and new service transitions. Working within the Information Security and Architecture team, the postholder will serve as a senior technical lead across key domains, including cyber assurance, infrastructure security, policy development, and risk mitigation. You will collaborate with technical teams, service management, suppliers, and transformation programmes to deliver a … vulnerability management. Practical experience supporting compliance with regulatory and best practice frameworks, including: Data Security and Protection Toolkit (DSPT) Cyber Essentials Plus (CE+) Cyber Assessment Framework (CAF)orISO 27001 Ability to assess security risks, develop mitigation plans, and communicate recommendations to technical and non-technical audiences. Familiarity with NHS and public sector data protection responsibilities (e.g. NHS More ❯

and the ability to work across departments. Desirable (but not essential) Experience with tools like OneTrust , Varonis , or similar platforms. Certifications such as CIPP / E , CIPM , or ISO 27001 Lead Implementer . Exposure to security projects or risk management frameworks Benefits: Competitive salary and performance bonuses. Comprehensive More ❯

ll be responsible for developing and implementing Cancer Research UK's information security strategy, ensuring the protection of sensitive data, and maintaining compliance with relevant regulations. You'll lead a team of security professionals, manage security incidents, and foster a culture of security across the organisation, working very closely with CRUK's Cyber programme. In a supportive … Development: Develop and maintain information security policies, procedures, and guidance. Stakeholder Engagement: Communicate effectively with C-suite, trustees, regulators, and technical teams. Represent CRUK in external security networks. Lead and develop a growing team of information security specialists (7+ FTE). What skills are we looking for? Significant experience of senior information security leadership in a multisite … and a willingness to challenge conventional thinking by the development of alternative solutions. Highly organised with excellent project, service and supplier management skills. Certifications: CISSP, CISM, CCSP, or ISO 27001 Lead Auditor / Implementer. What will I gain? Each and every one of our employees contributes to our progress and is More ❯

Central Bristol Job Type: Full-time, Hybrid (2 days per week in-office) Salary: £60,000 - £70,000 + Benefits We are recruiting an Information Security Manager to lead the operational and strategic security programme for a respected organisation headquartered in central Bristol. This hybrid role offers the opportunity to shape the company's approach to information … risk reduction across the business. You'll be responsible for maintaining ISO27001 compliance, overseeing risk assessment and mitigation, and supporting incident management across multi-entity operations. Key Accountabilities: Lead and manage a team of three security professionals , supporting their development and day-to-day delivery. Ensure ongoing ISO27001 accreditation and alignment with broader assurance frameworks (e.g. NIST … cloud services (AWS, SaaS, IaaS) . Strong communication skills and stakeholder management abilities. Experience in incident response and enterprise risk reporting. Professional certifications such as CISSP or ISO27001 Lead Implementer / Auditor (desirable). Benefits: Hybrid working (2 days per week in-office) Generous annual leave & pension contributions Life assurance and private health options More ❯

Central Bristol Job Type: Full-time, Hybrid (2 days per week in-office) Salary: 60,000 - 70,000 + Benefits We are recruiting an Information Security Manager to lead the operational and strategic security programme for a respected organisation headquartered in central Bristol. This hybrid role offers the opportunity to shape the company's approach to information … risk reduction across the business. You'll be responsible for maintaining ISO27001 compliance, overseeing risk assessment and mitigation, and supporting incident management across multi-entity operations. Key Accountabilities: Lead and manage a team of three security professionals , supporting their development and day-to-day delivery. Ensure ongoing ISO27001 accreditation and alignment with broader assurance frameworks (e.g. NIST … cloud services (AWS, SaaS, IaaS) . Strong communication skills and stakeholder management abilities. Experience in incident response and enterprise risk reporting. Professional certifications such as CISSP or ISO27001 Lead Implementer / Auditor (desirable). Benefits: Hybrid working (2 days per week in-office) Generous annual leave & pension contributions Life assurance and private health options More ❯

Central Bristol Job Type: Full-time, Hybrid (2 days per week in-office) Salary: £60,000 - £70,000 + Benefits We are recruiting an Information Security Manager to lead the operational and strategic security programme for a respected organisation headquartered in central Bristol. This hybrid role offers the opportunity to shape the company's approach to information … risk reduction across the business. You'll be responsible for maintaining ISO27001 compliance, overseeing risk assessment and mitigation, and supporting incident management across multi-entity operations. Key Accountabilities: Lead and manage a team of three security professionals , supporting their development and day-to-day delivery. Ensure ongoing ISO27001 accreditation and alignment with broader assurance frameworks (e.g. NIST … cloud services (AWS, SaaS, IaaS) . Strong communication skills and stakeholder management abilities. Experience in incident response and enterprise risk reporting. Professional certifications such as CISSP or ISO27001 Lead Implementer / Auditor (desirable). Benefits: Hybrid working (2 days per week in-office) Generous annual leave & pension contributions Life assurance and private health options More ❯

ability to implement solutions yourself Knowledge & experience working with ISO27001 and other relevant frameworks Organising and communicating, hit the ground running independent Desired Relevant certifications e.g. CISM, ISO27001 Lead Auditor / Implementer Benefits Join a company thriving in the media industry Have the freedom to shape your position as you see fit Work with More ❯