1 to 25 of 55 Permanent ISO/IEC 27001 Jobs in the North West

Cyber Security Risk Manager Cyber Security Risk Manager - Cyber Security Risk Assessments, Audits, GRC, Information Security Management, CRISK, CISM, CompTIA Security+, NIS, NIST, ISO 27001 - Hybrid (Manchester) - to £61,500 + excellent bonus + bens This is an outstanding opportunity to become my clients primary Cyber Security Risk Advisor working within a high-profile and growing … business - Play a key role in the ongoing management of Cyber Security Risk boards and Risk Management platforms - Carrying out detailed assessments of the current threat landscape including risks / threats and supporting Cyber Security audits - Creating and presenting detailed Cyber Security reporting including the management of escalations - Contribute to Cyber Security testing, training and company-wide communication - Use … stakeholder management skills including the ability to write and present detailed reports - Certification in Information Security Management would be ideal (CRISK, CISM, COMPTIA Security+) - Cyber Security audit experience (NIS / NIST / ISO 27001) would be preferred, along with knowledge of vulnerability management platforms The role also involves consulting on ratings for IT / More ❯

nine out of ten days auditing. You'll need to be comfortable with interacting and speaking to different people in all capacities. To ensure you have a good work / life balance, we like to minimise the travel requirements on our Auditors wherever possible, which may also include some remote auditing. That means for this role, we're looking … audits for Qualified Trust Service Providers (QTSPs) under the eIDAS Regulation. Evaluating systems, policies, and processes for adherence to standards such as ETSI EN 319 401, 319 411-1 / -2, EN 319 421 and other relevant specifications. Producing and reviewing detailed audit reports with actionable recommendations. Staying updated on legislative changes and technical standards within the trust services … Required Skills & Experience Proven experience in digital trust services or information security. In-depth knowledge of eIDAS Regulation and related ETSI standards. Certifications such as CISA, ISO / IEC 27001 Lead Auditor, or equivalent (preferred). Strong understanding of cryptographic principles and Public Key Infrastructure (PKI). Excellent analytical skills and attention to More ❯

nine out of ten days auditing. You'll need to be comfortable with interacting and speaking to different people in all capacities. To ensure you have a good work / life balance, we like to minimise the travel requirements on our Auditors wherever possible, which may also include some remote auditing. That means for this role, we're looking … audits for Qualified Trust Service Providers (QTSPs) under the eIDAS Regulation. Evaluating systems, policies, and processes for adherence to standards such as ETSI EN 319 401, 319 411-1 / -2, EN 319 421 and other relevant specifications. Producing and reviewing detailed audit reports with actionable recommendations. Staying updated on legislative changes and technical standards within the trust services … Required Skills & Experience Proven experience in digital trust services or information security. In-depth knowledge of eIDAS Regulation and related ETSI standards. Certifications such as CISA, ISO / IEC 27001 Lead Auditor, or equivalent (preferred). Strong understanding of cryptographic principles and Public Key Infrastructure (PKI). Excellent analytical skills and attention to More ❯

nine out of ten days auditing. You'll need to be comfortable with interacting and speaking to different people in all capacities. To ensure you have a good work / life balance, we like to minimise the travel requirements on our Auditors wherever possible, which may also include some remote auditing. That means for this role, we're looking … audits for Qualified Trust Service Providers (QTSPs) under the eIDAS Regulation. Evaluating systems, policies, and processes for adherence to standards such as ETSI EN 319 401, 319 411-1 / -2, EN 319 421 and other relevant specifications. Producing and reviewing detailed audit reports with actionable recommendations. Staying updated on legislative changes and technical standards within the trust services … Required Skills & Experience Proven experience in digital trust services or information security. In-depth knowledge of eIDAS Regulation and related ETSI standards. Certifications such as CISA, ISO / IEC 27001 Lead Auditor, or equivalent (preferred). Strong understanding of cryptographic principles and Public Key Infrastructure (PKI). Excellent analytical skills and attention to More ❯

nine out of ten days auditing. You'll need to be comfortable with interacting and speaking to different people in all capacities. To ensure you have a good work / life balance, we like to minimise the travel requirements on our Auditors wherever possible, which may also include some remote auditing. That means for this role, we're looking … audits for Qualified Trust Service Providers (QTSPs) under the eIDAS Regulation. Evaluating systems, policies, and processes for adherence to standards such as ETSI EN 319 401, 319 411-1 / -2, EN 319 421 and other relevant specifications. Producing and reviewing detailed audit reports with actionable recommendations. Staying updated on legislative changes and technical standards within the trust services … Required Skills & Experience Proven experience in digital trust services or information security. In-depth knowledge of eIDAS Regulation and related ETSI standards. Certifications such as CISA, ISO / IEC 27001 Lead Auditor, or equivalent (preferred). Strong understanding of cryptographic principles and Public Key Infrastructure (PKI). Excellent analytical skills and attention to More ❯

nine out of ten days auditing. You'll need to be comfortable with interacting and speaking to different people in all capacities. To ensure you have a good work / life balance, we like to minimise the travel requirements on our Auditors wherever possible, which may also include some remote auditing. That means for this role, we're looking … audits for Qualified Trust Service Providers (QTSPs) under the eIDAS Regulation. Evaluating systems, policies, and processes for adherence to standards such as ETSI EN 319 401, 319 411-1 / -2, EN 319 421 and other relevant specifications. Producing and reviewing detailed audit reports with actionable recommendations. Staying updated on legislative changes and technical standards within the trust services … Required Skills & Experience Proven experience in digital trust services or information security. In-depth knowledge of eIDAS Regulation and related ETSI standards. Certifications such as CISA, ISO / IEC 27001 Lead Auditor, or equivalent (preferred). Strong understanding of cryptographic principles and Public Key Infrastructure (PKI). Excellent analytical skills and attention to More ❯

nine out of ten days auditing. You'll need to be comfortable with interacting and speaking to different people in all capacities. To ensure you have a good work / life balance, we like to minimise the travel requirements on our Auditors wherever possible, which may also include some remote auditing. That means for this role, we're looking … audits for Qualified Trust Service Providers (QTSPs) under the eIDAS Regulation. Evaluating systems, policies, and processes for adherence to standards such as ETSI EN 319 401, 319 411-1 / -2, EN 319 421 and other relevant specifications. Producing and reviewing detailed audit reports with actionable recommendations. Staying updated on legislative changes and technical standards within the trust services … Required Skills & Experience Proven experience in digital trust services or information security. In-depth knowledge of eIDAS Regulation and related ETSI standards. Certifications such as CISA, ISO / IEC 27001 Lead Auditor, or equivalent (preferred). Strong understanding of cryptographic principles and Public Key Infrastructure (PKI). Excellent analytical skills and attention to More ❯

nine out of ten days auditing. You'll need to be comfortable with interacting and speaking to different people in all capacities. To ensure you have a good work / life balance, we like to minimise the travel requirements on our Auditors wherever possible, which may also include some remote auditing. That means for this role, we're looking … audits for Qualified Trust Service Providers (QTSPs) under the eIDAS Regulation. Evaluating systems, policies, and processes for adherence to standards such as ETSI EN 319 401, 319 411-1 / -2, EN 319 421 and other relevant specifications. Producing and reviewing detailed audit reports with actionable recommendations. Staying updated on legislative changes and technical standards within the trust services … Required Skills & Experience Proven experience in digital trust services or information security. In-depth knowledge of eIDAS Regulation and related ETSI standards. Certifications such as CISA, ISO / IEC 27001 Lead Auditor, or equivalent (preferred). Strong understanding of cryptographic principles and Public Key Infrastructure (PKI). Excellent analytical skills and attention to More ❯

and compliance experience Experience Required: At least 5 years in a Cyber security & GRC role, at Senior, lead or manager level. Be a PCI-DSS expert around payments ISO 27001and GDPR Knowledge of Risk Management, including risk identification, assessment, and mitigation techniques Good experience around Audits and compliance Any penetration testing experience would be a bonus You'll … work closely with both internal and external stakeholders across Legal, Risk & Audit, Procurement, and IT to embed strong governance and maintain alignment with leading standards such as ISO 27001, NIST CSF, and GDPR. The position combines both strategic oversight and hands-on delivery, providing clear visibility of risks and driving measurable improvements in security maturity. This … collaborative and forward-thinking environment, we'd love to hear from you. Press 'Apply Now', or send your CV directly to matthew. leach @ circlerecruitment . com Keywords: Cyber Security / GRC / PCI DSS / Governance Risk Compliance / Manchester Circle Recruitment is acting as an Employment Agency in relation to this vacancy. Earn yourself a More ❯

that is needed. Experience Required: At least 5 years in a Cyber security & GRC role, at Senior, lead or manager level. Be a PCI-DSS expert around payments ISO 27001and GDPR Knowledge of Risk Management, including risk identification, assessment, and mitigation techniques Good experience around Audits and compliance Any penetration testing experience would be a bonus You'll … work closely with both internal and external stakeholders across Legal, Risk & Audit, Procurement, and IT to embed strong governance and maintain alignment with leading standards such as ISO 27001, NIST CSF, and GDPR. The position combines both strategic oversight and hands-on delivery, providing clear visibility of risks and driving measurable improvements in security maturity. This … collaborative and forward-thinking environment, we'd love to hear from you. Press 'Apply Now', or send your CV directly to matthew. leach @ circlerecruitment . com Keywords: Cyber Security / GRC / PCI DSS / Governance Risk Compliance / Manchester Circle Recruitment is acting as an Employment Agency in relation to this vacancy. Earn yourself a More ❯

the organisation's security posture. You'll collaborate closely with infrastructure, development, and compliance teams to maintain high standards of cyber resilience and uphold key frameworks such as ISO 27001 and Cyber Essentials Plus . Key Responsibilities: * Lead threat detection, incident response, and vulnerability management activities * Strengthen cyber security posture across cloud, infrastructure, and applications * Provide … expert guidance to development teams on secure SDLC practices * Maintain compliance with ISO 27001 and Cyber Essentials Plus standards * Mentor junior … analysts and support SOC process development Key Skills & Experience: * Strong technical background in cyber security * Experience with application, cloud (AWS) , and infrastructure security * Proven hands-on experience with EDR / NDR tools , particularly CrowdStrike * Proficient with Linux and databases such as MySQL , PostgreSQL , Apache , and PHP * Knowledge of ISO 27001 , Cyber Essentials , and general security More ❯

Graduate Information Security Analyst - Stockport We are seeking an enthusiastic Junior Cyber / Information Security Graduate to join our client's information security team in Stockport. In this role, you will help monitor and defend the client's networks and infrastructure against emerging threats. We are looking for either recent graduates, or equivalent professional experience, with practical hands-on … self-learning and continual development outside of a university degree. Some professional cyber security work experience would be beneficial but not required. Any knowledge of various GRC frameworks (e.g. ISO27001, PCI DSS, Cyber Essentials +) would be useful Familiarity with monitoring tools such as SIEM, IDS / IPS, EDR, and threat intelligence platforms. Basic understanding of networking, operating systems … and core security technologies. Exposure to scripting / programming languages (e.g., Python, Bash, PowerShell). Strong analytical and problem-solving skills. Good communication and collaboration abilities. Relevant security certifications (e.g. CompTIA Security+, CompTIA Network+ ) would be beneficial but not required. You'll work as part of a small in-house team ensuring that appropriate cyber security measures are in More ❯

for a step up in their procurement career, applicants from a Buyer role will be considered depending on background. Ideally, your experience should include: Ideally, experience in IT hardware / software / electronic components procurement. Understanding of supplier risk management frameworks alongside proven ability to run effective tendering processes such as RFQs / RFIs / RFPs. … 27001 information security standards; awareness of SOC II requirements; knowledge of ISO 14001 sustainability principles. Exceptional negotiation skills supported by experience in contract drafting / review (with legal support) for both domestic and international suppliers. The Company: Employees benefit from 3 days in the office and 2 from home, with an accessible office just More ❯

Operational Technology Information Security Analyst Operational Technology Information Security Analyst - Physical Security, Asset Security, Cyber Security Assessments, Cyber Threats, PSP, CRISK, CISSP, RSES, NIST, CAF, ISO 27001 - Hybrid (Preston) - to £61,500 + excellent bonus + bens My client has an urgent need for an Operational Technology Information Security Analyst with in-depth experience of ensuring … Security advisory service to the Physical Security function - Assist in creating and managing the Cyber Security compliance schedule - Carrying out detailed assessments of the current threat landscape including risks / threats and supporting Cyber Security audits - Creating and presenting detailed Cyber Security reporting including the management of escalations - Contribute to Cyber Security testing, training and company-wide communication - Use … and present detailed reports - Thorough understanding of Physical Security and information security law including GDPR and NIS - Exposure to Cyber Security frameworks, standards and certifications: NCSC CAF, NIST, ISO 27000 series, CIS, PSP, CRISK, RSES The role will also involve taking responsibility for reviewing Cyber Security policies, assisting with incident and security reviews and ensuring that business processes More ❯

with IT, product, and development teams. Conduct risk assessments and threat modeling, proactively identifying vulnerabilities and mitigation strategies. Develop and maintain security policies and frameworks aligned with NIST, ISO 27001, and CIS Controls. Lead PCI-DSS architecture and compliance, ensuring both front- and back-office systems meet standards. Guide and mentor teams in best-practice security … as NIST, ISO 27001, OWASP, and CIS. Experience designing and implementing secure, compliant PCI-DSS solutions. Solid grounding in tools and technologies like SIEM, IDS / IPS, DLP, endpoint protection, IAM, and encryption. Ability to communicate complex concepts clearly and influence at all levels. Certifications such as CISSP, CCSP, CISM, or TOGAF are a plus. … Add your resume and anything else to showcase why you would be a great addition to our team. We regret that this position is only available for UK citizens / Residents with indefinite leave to remain in the UK. No recruitment agencies, please We won't accept any introductions. Vix Technology is an Equal Opportunity Employer and prohibits discrimination More ❯

systems, and cloud services run securely and seamlessly - delivering critical insights that improve environmental outcomes and operational efficiency. Key Responsibilities Infrastructure & Automation • Design, implement, and maintain cloud infrastructure (AWS / Azure / GCP) • Automate provisioning using Infrastructure-as-Code (IaC) tools (Terraform, CloudFormation, or similar) • Manage container orchestration (Kubernetes, ECS, or Docker) • Build CI / CD pipelines … SLIs, SLOs, and SLAs for platform components • Troubleshoot production issues and coordinate incident response Collaboration • Work with data engineers and developers to optimise pipelines and APIs • Collaborate with firmware / IoT teams on secure device integration and telemetry ingestion • Contribute to architectural reviews and platform evolution planning • Support onboarding of new systems, environments, and services Skills & Experience Required Technical … Skills • 3+ years of experience in cloud platform or DevOps engineering • Strong proficiency with: • AWS (preferred) or Azure / GCP • Terraform , Ansible , or other IaC tools • Docker / Kubernetes (ECS, EKS, AKS, etc.) • CI / CD tools (GitHub Actions, Jenkins, GitLab CI) • Knowledge of Linux administration and networking fundamentals • Familiarity with scripting (Python, Bash, or PowerShell) Soft More ❯

Robert Half have partnered on an exclsuive basis with a growing Pharmaceutical / MedTech organisation in the Greater Manchester area to recruit and IT Manager on a permanent basis.As the IT Manager, you will lead the planning, implementation, maintenance, and security of IT systems, ensuring seamless day-to-day operations. You will work closely with cross-functional teams and … technical research and implementation. Provide technical support, training and communications to end-users as part of the wider change projects. Monitor system performance and implement improvements as needed. Experience / Skills required: Proven experience in an IT Manager or similar leadership role, preferably within healthcare, life sciences, or medical communications. Strong knowledge of cloud-based platforms (especially Microsoft … SharePoint, Azure). Excellent understanding of cybersecurity frameworks and data protection regulations (e.g. GDPR, ISO 27001). Experience supporting hybrid / remote teams using collaboration tools such as Teams, Zoom, and project management systems. Salary / logistics: £60,000-£70,000 + additional benefits Hybrid working - 2 / 3 days a week on More ❯

and assist with the implementation of a Daisy standalone IT infrastructure. Design, support & optimise physical, virtual and cloud infrastructure. Work with external networking, infrastructure and support teams. Install new / rebuild existing servers and configure hardware, services, settings, directories, storage, etc. in accordance with standards and project / operational requirements. Research and recommend innovative, and where possible automated … the deskside support team. Mentor the junior members of the IT team Be able to act on Cyber Security Alerts Qualifications Project work involvement\implementation\planning Microsoft Dynamics VMware / Hyper-V implementation\administration\troubleshooting General System Administration skills (Operating systems, hardware, virtualization) Infrastructure security (Firewalls\AV) Advanced working knowledge of Active Directory / DHCP / DNS … Meraki / Cisco Linux experience\skills CyberArk Privileged Access Management solutions Five9, Microsoft Contact Centre and Gamma Contact Telephony Platforms Infrastructure as a Code DevOps Cyber Essentials Plus ISO27001:2022 Additional Information What Are the Benefits of Working at Daisy? Our ethos is simple: the more you put in, the more you get out. Here's what we offer More ❯

architecture and secure design Strong knowledge of security frameworks (ISO 27001, NIST, GDPR, OWASP, PCI) Experience in application, infrastructure, or enterprise architecture Familiarity with CI / CD and Continuous Security practices Solid understanding of network, web app, and cryptographic security Proven ability to coach and develop others Excellent communication and stakeholder engagement skills Eligibility Requirement … right next step for you, we'd love to hear from you. Please reach out to discuss the role in more detail or to express your interest. Reference: AMC / CLI / SARC #coli More ❯

architecture and secure design Strong knowledge of security frameworks (ISO 27001, NIST, GDPR, OWASP, PCI) Experience in application, infrastructure, or enterprise architecture Familiarity with CI / CD and Continuous Security practices Solid understanding of network, web app, and cryptographic security Proven ability to coach and develop others Excellent communication and stakeholder engagement skills Eligibility Requirement … right next step for you, we'd love to hear from you. Please reach out to discuss the role in more detail or to express your interest. Reference: AMC / CLI / SARC #coli JBRP1_UKTJ More ❯

Develop the support model and service offering to improve the service to customers and stakeholders. Execution of preventative maintenance tasks on hardware and software and utilisation of monitoring tools / metrics to identify, prevent and address potential issues and ensure optimal performance. Maintenance of a knowledge base containing detailed documentation of resolved cases for future reference, self-service opportunities … known when they occur. Assistant Vice President Expectations To advise and influence decision making, contribute to policy development and take responsibility for operational effectiveness. Collaborate closely with other functions / business divisions. Lead a team performing complex tasks, using well developed professional knowledge and skills to deliver on work that impacts the whole business function. Set objectives and coach … and guide team members through structured assignments, identify the need for the inclusion of other areas of specialisation to complete assignments. They will identify new directions for assignments and / or projects, identifying a combination of cross functional methodologies or practices to meet required outcomes. Consult on complex issues; providing advice to People Leaders to support the resolution of More ❯

Cloud, and M365. Familiarity with security frameworks and standards (e.g., ISO 27001, NIST, CIS). Experience with security tools and technologies, including firewalls, intrusion detection / prevention systems, and encryption. Excellent problem-solving skills and the ability to think critically and strategically. Strong communication and interpersonal skills, with the ability to engage effectively with clients … Experience with DevSecOps practices and tools. Knowledge of container security and microservices architecture. Understanding of Zero Trust security models. High-level and low-level designs, assurance on large projects / programmes, self-motivated, customer-facing, and the ability to translate technical concepts for non-technical stakeholders. Benefits Why people choose to grow their careers at UBDS Group Professionals choose … it is technical led, business acumen or methodologies. We want you to grow with us and to help us achieve more Private medical cover for you and your spouse / partner, offered via Vitality Discretionary bonus based on a blend of personal and company performance Holiday – You will receive 25 Days holiday, plus 1 day for Birthday and More ❯

Information Security Officer Warrington / Hybrid £40 -£45K + Benefits An experienced Information Security Officer (ISO) is required for our client to lead and enhance the security posture across cloud-hosted SaaS products and internal systems. This is a key role within the organisation's technical and governance team, ensuring the confidentiality, integrity, and availability of solutions … the transport sector. Key Responsibilities- Develop and implement the company's information security strategy, policies, and standards. Conduct risk assessments, manage audits, and ensure compliance with GDPR and ISO 27001. Oversee security operations, including monitoring, threat detection, and incident response. Manage security tools and processes: SIEM (Azure Sentinel), firewalls, endpoint protection, and identity management. Ensure secure configuration, patch … incident response and recovery, including investigations and post-incident reviews. Deliver security training and awareness programs across the business. Assess and monitor vendor and third-party security compliance. Skills / Technologies- 3-7+ years in cybersecurity, IT security, or risk management. Strong knowledge of cybersecurity frameworks (Cyber Essentials, ISO 27001). Hands-on experience More ❯

is a hands-on role with significant influence: you will design systems, implement tooling, measure productivity gaps, and drive adoption of better practices across the engineering organisation. Requirements CI / CD Infrastructure & Tooling Own and operate CI / CD systems (GitHub Actions, runners, caching, artifact storage). Maintain stability, scalability, and cost-effectiveness of pipelines. Build and maintain … systems for our monorepo. Ensure CI / CD observability, with metrics flowing into Datadog / Slack. Pipeline Instrumentation & Optimisation Analyse pipelines for inefficiencies (e.g., flaky tests, redundant steps, lack of caching). Recommend and implement optimisations (parallelisation, test selection, caching strategies). Define benchmarks and KPIs (e.g., build times, flakiness %, cost per run). Measure and report on … productivity gaps (e.g., time lost to flaky tests, slow builds, manual release steps). Onboarding & Documentation Maintain up-to-date documentation on SDLC processes, CI / CD, release flows, and GitHub usage. Provide templates, playbooks, and starter kits. Automate repetitive onboarding processes. GitHub & SDLC Guardrails Own GitHub governance (branch protections, repo standards, integrations). Implement base SDLC guardrails (PR More ❯

is a hands-on role with significant influence: you will design systems, implement tooling, measure productivity gaps, and drive adoption of better practices across the engineering organisation. Requirements CI / CD Infrastructure & Tooling Own and operate CI / CD systems (GitHub Actions, runners, caching, artifact storage). Maintain stability, scalability, and cost-effectiveness of pipelines. Build and maintain … systems for our monorepo. Ensure CI / CD observability, with metrics flowing into Datadog / Slack. Pipeline Instrumentation & Optimisation Analyse pipelines for inefficiencies (e.g., flaky tests, redundant steps, lack of caching). Recommend and implement optimisations (parallelisation, test selection, caching strategies). Define benchmarks and KPIs (e.g., build times, flakiness %, cost per run). Measure and report on … productivity gaps (e.g., time lost to flaky tests, slow builds, manual release steps). Onboarding & Documentation Maintain up-to-date documentation on SDLC processes, CI / CD, release flows, and GitHub usage. Provide templates, playbooks, and starter kits. Automate repetitive onboarding processes. GitHub & SDLC Guardrails Own GitHub governance (branch protections, repo standards, integrations). Implement base SDLC guardrails (PR More ❯