Join a fast-growing, inclusive, and collaborative cybersecurity consulting firm where your expertise is valued and your career can thrive! Our client, a specialised Cyber Security Consulting firm, is expanding rapidly. They’re looking for an ambitious and driven Senior Cyber Security Consultant to join their Cyber GRC Risk Advisory team. About the role: As a Senior Cyber Security Consultant , you’ll play a key role in Governance, Risk, and Compliance (GRC) , helping clients across a number of sectors strengthen their security posture. You’ll work with industry-leading frameworks like CyberEssentials (CE), CyberEssentialsPlus (CE+), NIST 2, ISO 27001/223001, DORA , and more. This is the perfect opportunity if you’re looking for more autonomy, rapid career growth, and a dynamic environment —far from the rigid structures of large corporate consultancies. As a Senior CyberMore ❯
robust governance, and enjoying the freedom to design impactful processes across our global operations. As the sole expert in this position, you'll spearhead Cyber projects with plans to build your own team in 2025 The role combines two dynamic elements: Core IT Security: Leverage your deep technical expertise … to maintain the security of our infrastructure, servers, and systems. From leading our Managed Security Service Providers (MSSPs), building a best-in-class Cyber training and awareness programme, and performing security audits on critical systems. Cybersecurity Governance: Implement governance and frameworks to embed security across the business, across IT … Mission As our Cybersecurity Lead, you will: Build and implement a DevSecOps framework to ensure our digital products are secure and meet the highest Cyber assurance standards. Lead the Cybersecurity function, managing people, processes, and tools while ensuring the business is "Secure by Design." Identify and remediate CyberMore ❯
decisions in the absence of the Head of InfoSec, and help steer the team day to day. You’ll also manage compliance responsibilities, including CyberEssentialsPlus, risk assessments, and tender security reviews. Key Responsibilities Day-to-day team coordination and management of 1–2 team members … maker when the Head of InfoSec is unavailable Conduct risk assessments and complete IT security questionnaires for tenders and supplier reviews Manage and maintain CyberEssentialsPlus and related audit work Support compliance initiatives aligned to ISO 27001 , GDPR , and internal policies What We’re Looking For … line management or team leadership experience (even in a small team) Confidence managing internal blockers and escalating where needed Familiarity with frameworks such as CyberEssentialsPlus , ISO 27001 , and GDPR Able to work independently and proactively in a remote setup Contract Details Rate: ~£260/day More ❯
work with central government agencies and adhere to the Government Digital Service standard. We take security seriously, and are certified to ISO 27001 and CyberEssentialsPlus, demonstrating our commitment to robust information security practices. To support our continued growth, we are seeking an experienced Information Security … Manager. In this role, you will be responsible for ensuring our ongoing compliance with ISO27001 and CyberEssentialsPlus, including the management of quarterly external audits and the facilitation of Integrated Management System (IMS) meetings. You will also oversee our adherence to ISO 9001 and ISO … support. Compliance and Security Management: Develop, implement, and maintain comprehensive compliance programs, including integrated management systems for ISO 27001, ISO 9001, ISO 14001, and CyberEssentials Plus. Oversee security operations, managing internal security tools and processes to ensure optimal protection of company assets. Lead IT Support management, including More ❯
Security, Compliance, or IT Risk Management. Experience with regulatory frameworks in UK & EU : GDPR (General Data Protection Regulation) ISO 27001 (Information Security Management Systems) CyberEssentialsPlus (UK government-backed security framework) DORA (Digital Operational Resilience Act) - EU financial sector PCI-DSS (if handling payment data) Experience … laws (UK GDPR, EU GDPR, DPA 2018) . Familiarity with risk management frameworks like NIST CSF, CIS Controls, and ISO 27005 . Experience with cyber security tools (e.g., SIEM, Malware Protection, Firewalls and others) is a plus. Strong reporting and communication skills-ability to brief executives and regulators. Ability … to design, implement, and enforce security policies . Key Responsibilities: Ensure compliance with GDPR, CyberEssentialsPlus, PCI-DSS, and other applicable standards. Align ISMS activities with ISO 27001 framework. Develop and implement security policies, controls, and procedures. Conduct security risk assessments & compliance audits. Manage incident response More ❯
/Purview Work closely with the existing IT Infrastructure Manager to ensure security for office based & remote workers. As an ISO27001, BS10012, ISO22301 and CyberEssentialsPlus accredited business you must always carry out your role according to company IT policies. Assist with the handling of confidential More ❯
IT Service Desk Oversight Compliance and Governance Vendor Management Disaster Recovery and Business Continuity 1. Compliance and Governance: a. Oversee, and maintain compliance with CyberEssentialsPlus and ISO27001 requirements and other international standards as part of business as usual (BAU) to ensure periodic recertification. b. Conduct … monthly testing of Cyber and IT controls. c. Monitor and manage audit and risk remediation actions. d. Ensure all IT documentation, policies, and Standard Operating Procedures (SOP) are up to date and adhered to. 2. Vendor Management a. Ensure vendor compliance with SLAs and conduct regular vendor due diligence. More ❯
with 3 days in the office and 2 days working from home. Key Responsibilities: 1. Compliance and Governance: a. Oversee, and maintain compliance with CyberEssentialsPlus and ISO27001 requirements and other international standards as part of business as usual (BAU) to ensure periodic recertification. b. Conduct … monthly testing of Cyber and IT controls. c. Monitor and manage audit and risk remediation actions. d. Ensure all IT documentation, policies, and Standard Operating Procedures (SOP) are up to date and adhered to. 2. Vendor Management a. Ensure vendor compliance with SLAs and conduct regular vendor due diligence. More ❯
Hands-on experience with Microsoft Sentinel, Azure Security Center, and conditional access policies Solid understanding of compliance frameworks such as ISO 27001, NIST, and CyberEssentialsPlus Strong written and verbal communication skills Ability to manage tasks and priorities independently in a remote working environment Benefits of More ❯
our policies and adhered to Understands and delivers best practice security standards as part of the IT Security standards delivered under ISO 27001, GDPR, CyberEssentialsPlus and NIST Work closely with the software vendor, building a strong working relationship to maximise our use of the product More ❯
and software infrastructure across Restrata's estate. Work with compliance stakeholders to ensure we are meeting and maintaining technical compliance standards, including ISO27001, ISO9001, CyberEssentialsPlus and DSP Toolkit. Report on capacity levels and the state of infrastructure; escalate to the CTO when necessary. Provide emergency More ❯
and integration, including handling authentication, pagination, and rate limits. Knowledge of machine learning and AI integration within Microsoft Fabric. Experience of working in a CyberEssentialsPlus and ISO27001 accredited organisation. Experience with Microsoft SharePoint and Teams More ❯
London, England, United Kingdom Hybrid / WFH Options
The Curve Group
IT Service Desk Oversight Compliance and Governance Vendor Management Disaster Recovery and Business Continuity 1. Compliance and Governance: a. Oversee, and maintain compliance with CyberEssentialsPlus and ISO27001 requirements and other international standards as part of business as usual (BAU) to ensure periodic recertification. b. Conduct … monthly testing of Cyber and IT controls. c. Monitor and manage audit and risk remediation actions. d. Ensure all IT documentation, policies, and Standard Operating Procedures (SOP) are up to date and adhered to. 2. Vendor Management ... More ❯
London, England, United Kingdom Hybrid / WFH Options
Creatify
decisions in the absence of the Head of InfoSec, and help steer the team day to day. You’ll also manage compliance responsibilities, including CyberEssentialsPlus, risk assessments, and tender security reviews. Key Responsibilities Day-to-day team coordination and management of 1–2 team members More ❯
Key Responsibilities: Team Leadership and Management: Lead, mentor, and manage a diverse team of IT professionals including an Application Support Specialist, Technical Project Manager, Cyber Security and Compliance Analyst, and End-to-End QA Specialist. Allocate resources efficiently to ensure timely and successful project delivery. Conduct regular performance reviews … the Technical Project Manager to ensure projects are completed on time, within scope, and budget. Facilitate communication and collaboration between project teams and stakeholders. Cyber Security and Compliance: Ensure the implementation and adherence to cyber security policies and procedures. Collaborate with the Cyber Security and Compliance resources … to conduct regular security assessments and audits. Manage compliance with relevant regulations and standards, such as GDPR and CyberEssentials Plus. Quality Assurance: Oversee the end-to-end quality assurance process for all digital products and services. Work with the End-to-End QA Specialist to develop comprehensive More ❯
implement a comprehensive security strategy aligned with business goals. Lead risk assessments, incident response, and mitigation planning. Maintain compliance with ISO 27001, GDPR, CyberEssentials Plus, and other standards. Administer firewalls, IDS/IPS, antivirus, and endpoint protection tools. Foster security awareness through training and internal communications. Strategic Collaboration Collaborate More ❯