1 to 25 of 31 Permanent ISO/IEC 27001 Jobs in Hertfordshire

drive strategic improvements in information security and health & safety systems. This is a pivotal role for an experienced professional who can manage ISO 27001 compliance across multiple regions and spearhead the development of health and safety frameworks aligned with ISO 45001 standards. You will … functional teams across the UK, EU, APAC, and the U.S, ensuring audit readiness, risk control documentation, and consistent compliance practices worldwide. Key Responsibilities ISO 27001 Leadership: Act as global administrator and audit lead for ISO 27001 compliance. Maintain documentation libraries, track ...

workload classification and frequent travel to all sites across the UK Security Clearance : British Citizen or a Dual UK national with British citizenship / Restrictions and / or limitations relating to nationality and / or rights to work may apply. As a minimum and after offer stage … network of Asset Owners and formally document the asset registers for their areas of operation. What we're looking for from you: CISSP, InfoSec / Cyber Degree or equivalent (Essential) Experience or relevant certifications in network security or industrial control system hardening (Essential) Knowledge of security surrounding systems enabling ...

workload classification and frequent travel to all sites across the UK Security Clearance : British Citizen or a Dual UK national with British citizenship / Restrictions and / or limitations relating to nationality and / or rights to work may apply. As a minimum and after offer stage … network of Asset Owners and formally document the asset registers for their areas of operation. What we're looking for from you: CISSP, InfoSec / Cyber Degree or equivalent (Essential) Experience or relevant certifications in network security or industrial control system hardening (Essential) Knowledge of security surrounding systems enabling ...

within an MSP, reseller, or channel partner. Framework Fluency: Proven knowledge of ISO 27001, NIST CSF, GDPR, and other regulatory / compliance standards. Cloud & Security Architecture: Deep expertise in multi vendor solutions Communication: Excellent at engaging both technical and executive audiences with clear, impactful reporting. … Certifications (preferred): CISSP, CISM, CCSP, ISO 27001 Implementer / Auditor, Microsoft SC-series. **Please note, due to the volume of applicants we cannot respond to individuals outside of the above requirements ...

/ procedures rather than being a SOC / Technical Security Analyst role. The client is looking for someone who is experienced with ISO27001 and NIST. It is likely that the role will grow and develop in the future, depending on organisational growth. In the clients' words, key elements … progress. What you'll need to succeed GRC skills and strong communication skills Strong understanding of risks associated with bad security processes. Experience implementing ISO27001 and NIST. CE+ would be advantageous. A solid understanding of the cyber security risks associated with various technologies and how to apply appropriate controls ...

/ procedures rather than being a SOC / Technical Security Analyst role. The client is looking for someone who is experienced with ISO27001 and NIST. It is likely that the role will grow and develop in the future, depending on organisational growth. In the clients' words, key elements … progress. What you'll need to succeed GRC skills and strong communication skills Strong understanding of risks associated with bad security processes. Experience implementing ISO27001 and NIST. CE+ would be advantageous. A solid understanding of the cyber security risks associated with various technologies and how to apply appropriate controls ...

needs and training and development opportunities. What you'll be doing: Implement ISMS strategy, policies and practices for assigned clients. Deliver services aligned with ISO27001 standards Provide regular reporting on ISMS effectiveness and operational performance. Manage security operations in line with organisational policy, standards and industry best practice. Conduct security … Maintain ISMS, Operational Security and Risk Assurance documentation. Lead monthly client Security Working Group meetings and stakeholder sessions. Ensure audit readiness and support internal / external audits. Drive continuous improvement initiatives within Sopra Sterias security function. What youll bring: GRC / Operational Security Manager experience with solid understanding ...

needs and training and development opportunities. What you'll be doing: Implement ISMS strategy, policies and practices for assigned clients. Deliver services aligned with ISO27001 standards Provide regular reporting on ISMS effectiveness and operational performance. Manage security operations in line with organisational policy, standards and industry best practice. Conduct security … Maintain ISMS, Operational Security and Risk Assurance documentation. Lead monthly client Security Working Group meetings and stakeholder sessions. Ensure audit readiness and support internal / external audits. Drive continuous improvement initiatives within Sopra Steria’s security function. What you’ll bring: GRC / Operational Security Manager experience with ...

Risk & Compliance Specialist (ISO / Safety Support) Location: UK - Hybrid (predominantly remote with occasional travel to Hertfordshire HQ and limited global travel) Employment Type: Permanent, Full-time Salary: Negotiable depending on experience Start: Hiring immediately Overview My client is seeking a proactive Risk & Compliance Specialist to support … maintain ISO-aligned compliance and safety frameworks across a global organisation. This role is not responsible for leading ISO certifications end-to-end, but plays a critical operational role in keeping systems, documentation, and processes organised, audit-ready, and on track . This position suits someone ...

regulated environments; familiarity with AI and data frameworks (DAMA-DMBOK, NIST AI RMF, ISO 23894, ISO 27001, GDPR / DPA 2018); hands-on with platforms such as Microsoft Purview, Azure ML, Databricks, Power BI, Collibra, or Alation; exposure to MLOps practices. ...

Months, Remote U K Required Skills & Experie nceAdvanced Okta experience (configuration, troubleshooting, API integratio n).Kandji MDM administration experti se.Strong knowledge of SSO / SAML / OIDC protocols and implementati on.API integration and automation (REST, webhooks, MC P).Proficiency in Python or scripting for automati on.Excellent communication … maintain API integrations connecting identity, endpoint, and security tools.Develop automation workflows for provisioning, deprovisioning, and attribut e sync.Document integration architecture and maintain API credential / token rotation pro tocols.Support third-party integrations (e.g., CrowdStrike Falcon, Wiz, Abnormal Sec urity). Security & Co mplianceEnsure systems align with ISO ...

resilient and secure connectivity for the business. What you'll do: Design, implement, and lead secure cloud networking services across AWS and Azure (VPCs / VNets, subnets, routing, NAT, hybrid connectivity). Configure and operate Cloudflare services including WAF, DDoS protection, Zero Trust access, DNS, load balancing … protection. Engineer and support Fortinet security controls including firewall policies, VPNs, segmentation, and secure ingress / egress. Implement network security patterns such as Zero Trust networking, least privilege access, micro-segmentation, and private service access. Automate networking and security configuration using Infrastructure as Code (Terraform, ARM / Bicep ...

resilient and secure connectivity for the business. What you'll do: Design, implement, and lead secure cloud networking services across AWS and Azure (VPCs / VNets, subnets, routing, NAT, hybrid connectivity). Configure and operate Cloudflare services including WAF, DDoS protection, Zero Trust access, DNS, load balancing … protection. Engineer and support Fortinet security controls including firewall policies, VPNs, segmentation, and secure ingress / egress. Implement network security patterns such as Zero Trust networking, least privilege access, micro-segmentation, and private service access. Automate networking and security configuration using Infrastructure as Code (Terraform, ARM / Bicep ...

APAC, US and Canada. About The Job : CONTRACTOR MUST HOLD ACTIVE SC + NPPVL3 CLEARANCE Role Title: Cyber Security Architect Location: Remote Duration: 31 / 07 / 2026 Resources must be UK-based. Role Overview : We are looking for an experienced Cyber Security Architect to lead security reviews … anaad Expereience: Expertise: Strong knowledge of enterprise security architecture, cloud security (Azure, AWS), and multi-tenant environments. Frameworks: Familiarity with Zero Trust, NIST, ISO 27001, and CIS benchmarks. Technical Skills: Proficiency in identity management, network security, encryption, and secure onboarding processes. ...

APAC, US and Canada. About The Job : CONTRACTOR MUST HOLD ACTIVE SC + NPPVL3 CLEARANCE Role Title: Cyber Security Architect Location: Remote Duration: 31 / 07 / 2026 Resources must be UK-based. Role Overview : We are looking for an experienced Cyber Security Architect to lead security reviews … anaad Expereience: Expertise: Strong knowledge of enterprise security architecture, cloud security (Azure, AWS), and multi-tenant environments. Frameworks: Familiarity with Zero Trust, NIST, ISO 27001, and CIS benchmarks. Technical Skills: Proficiency in identity management, network security, encryption, and secure onboarding processes. ...

need: At least 3 years of directly related Security Third Party Risk Management experience. Strong understanding of security and technology controls. Knowledge of ISO 27001 and other relevant security standards. Strong problem-solving skills and attention to detail. Certified Information … Systems Security Professional (CISSP) Certified Information Systems Auditor (CISA) Certified in Risk and Information Systems Control (CRISC) UK Driving Licence. Advert Closing Date: 14 / 12 / 25 Benefits: £55,000 - £65,000 (salary dependant on skills and experience) Hours: 08:30am - 17:00pm (Mon - Thurs) 08:30am ...

cloud and Azure-based solutions. Translate customer requirements into secure, scalable technical architecture. Embed MDR and cyber resilience into solutions, working closely with SOC / security teams. Provide architectural guidance across pre-sales, delivery, and technical teams. Act as a technical authority in client meetings, proposals and reviews. Maintain … technologies to drive ongoing improvements. Solution Architect – Key Skills Required Essential Proven Solution Architect experience within an MSP environment. Strong Microsoft Azure expertise (IaaS / PaaS, governance, identity, networking, landing zones). Security experience across MDR, threat detection, SIEM / SOAR or security monitoring. Solid understanding of hybrid ...

cloud and Azure-based solutions. Translate customer requirements into secure, scalable technical architecture. Embed MDR and cyber resilience into solutions, working closely with SOC / security teams. Provide architectural guidance across pre-sales, delivery, and technical teams. Act as a technical authority in client meetings, proposals and reviews. Maintain … technologies to drive ongoing improvements. Solution Architect – Key Skills Required Essential Proven Solution Architect experience within an MSP environment. Strong Microsoft Azure expertise (IaaS / PaaS, governance, identity, networking, landing zones). Security experience across MDR, threat detection, SIEM / SOAR or security monitoring. Solid understanding of hybrid ...

cloud security architecture across AWS, Azure, and GCP, with expertise in IAM, key management, data encryption, and network segmentation Skilled in securing AI / ML workloads and data pipelines, ensuring the AI systems have controlled, auditable, and principle-based access to sensitive information Experienced with hybrid architectures integrating … security and data governance principles, including data minimisation, secure model access, and AI transparency requirements Experienced in intrusion detection and prevention systems (IDS / IPS), vulnerability scanning, endpoint protection, and security incident management Skilled in designing network and application security controls, including WAFs, firewalls, zero-trust models, and identity ...

week on-site due to workload classification and dependant on business need. Security Clearance : British Citizen This role will require DV Clearance. Restrictions and / or limitations relating to nationality and / or rights to work may apply. As a minimum and after offer stage, all successful candidates … DHCP, Sites and Services and Replication Proven experience managing AD within multi-forest, air-gapped or secure enclave environments. Experience with Azure AD / Entra ID, ADFS, and hybrid identity solutions under strict compliance controls Proficiency in PowerShell for automation, auditing and reporting Identity and Access Management service support ...

week on-site due to workload classification and dependant on business need. Security Clearance : British Citizen This role will require DV Clearance. Restrictions and / or limitations relating to nationality and / or rights to work may apply. As a minimum and after offer stage, all successful candidates … DHCP, Sites and Services and Replication Proven experience managing AD within multi-forest, air-gapped or secure enclave environments. Experience with Azure AD / Entra ID, ADFS, and hybrid identity solutions under strict compliance controls Proficiency in PowerShell for automation, auditing and reporting Identity and Access Management service support ...

pension, loads of other benefits to choose from. The job: You will be responsible for Information Security framework and work closely with other departments / 3rd parties to make surethey are fully operational / implemented and effective. This will include accountability for all Information Security risks and control … etc. About you. One or more of CISA, CISSP or CRISC Good working knowledge of NIST and COBIT frameworks Deep understanding of data centre / network and workplace architectures and operations both within the insurance industry and market generally Good understanding of security design, including cryptography, within infrastructure, application ...

enterprise customers. Translating requirements, leading impact assessments, generating actionable mitigations and advising on implementation. What You'll Bring Strong background in Azure security engineering / architecture, ideally in a consulting or professional services capacity. Practical knowledge of cloud security frameworks such as CAF, Well-Architected, CIS, NIST etc. Hands … beneficial. Key Responsibilities Domain Knowledge. Expertise in designing, implementing, and maintaining secure architectures, with a deep understanding of industry-standard frameworks such as ISO 27001, NIST, and CIS Controls. Knowledge of threat modelling, risk assessments, and mitigation strategies tailored to various technical and business environments. Stay ...

Cyber Security Manager Local Authority Location: London, Hybrid (3 days onsite / 2 days WFH) Contract: Permanent Our client, a major UK local authority, is seeking an experienced Cyber Security Manager to lead its cyber-resilience strategy and protect the systems and data that support essential public services. This … Security Excellent communication, stakeholder management, and analytical skills Ability to work collaboratively in a complex, high-demand organisation Professional cybersecurity qualifications (CISM, CISSP, ISO27001 etc.) are desirable but not essential. Why apply? Youll take a pivotal role in strengthening cyber resilience for a large, diverse public-sector organisation with hybrid ...

SQL. Solid understanding of data warehousing and modelling techniques (Star Schema, Snowflake Schema). Familiarity with security frameworks such as GDPR, HIPAA, ISO 27001, NIST, SOX, and PII, as well as AWS security features including IAM, KMS, and RBAC. Ability to identify and resolve data quality … Modis Europe Ltd are Equal Opportunities Employers. By applying for this role your details will be submitted to Modis International Ltd and / or Modis Europe Ltd. Our Candidate Privacy Information Statement which explains how we will use your information is available on the Modis website. ...