1 to 25 of 56 Permanent ISO/IEC 27001 Jobs in the North West

closely with cloud, cyber, and engineering teams desirable Knowledge and experience in different security standards and frameworks with track record in leading ISO 27001 accreditation / re-accreditation projects Excellent Communication Skills About the role Continue review and improve the security policies Implement and maintain ISMS … Ensure compliance with relevant security standards and regulations (ISO 27001, SOC 2, Cyber Essentials, etc.) Experience of undergoing third-party assessments / audits (e.g. ISO27001, SOC 2, etc.) Work to acquire new accreditations in line with the business aspirations Review, implement, and test business continuity plan and policy Manage technical and business stakeholders to achieve … assessments and internal process audits Work with internal teams and stakeholders to manage risks, find solutions, and resolve issues Work with external auditor for the regular auditing activities Vendor / supplier reviews Participating in the sales process - security questionnaires for prospects and / or customers Maintain and / or improve information security awareness within the business Monitoring More ❯

fostering a culture of security awareness throughout the organisation. Security Strategy Development: Design and implement a comprehensive information security strategy that aligns with business objectives and complies with ISO 27001 standards. Microsoft 365 Expertise: Leverage Microsoft 365 tools to enhance security measures, ensuring optimal configuration and deployment to protect data and information assets. Data and Information … s security posture. Requirements Bachelor's degree in Information Security, Computer Science, or a related field. 5+ years of experience in information security management, with a focus on ISO 27001 and compliance. Strong expertise in Microsoft 365 security features and configurations. Proven background in cybersecurity, risk management, and data governance. Excellent analytical and problem-solving skills … with the ability to think strategically. Strong communication and interpersonal skills, with a focus on collaboration and teamwork. Relevant certifications (e.g., CISSP, CISM, ISO 27001 Lead Implementer) are highly desirable. Other information Your package and perks At M247, we go beyond the pay check to bring you a package of perks that truly enrich your journey More ❯

the organisation's security posture. You'll collaborate closely with infrastructure, development, and compliance teams to maintain high standards of cyber resilience and uphold key frameworks such as ISO 27001 and Cyber Essentials Plus . Key Responsibilities: * Lead threat detection, incident response, and vulnerability management activities * Strengthen cyber security posture across cloud, infrastructure, and applications * Provide … expert guidance to development teams on secure SDLC practices * Maintain compliance with ISO 27001 and Cyber Essentials Plus standards * Mentor junior … analysts and support SOC process development Key Skills & Experience: * Strong technical background in cyber security * Experience with application, cloud (AWS) , and infrastructure security * Proven hands-on experience with EDR / NDR tools , particularly CrowdStrike * Proficient with Linux and databases such as MySQL , PostgreSQL , Apache , and PHP * Knowledge of ISO 27001 , Cyber Essentials , and general security More ❯

QA / RA Assistant – £28,000 depending on experience + Benefits – Liverpool The Role Are you looking to kickstart your career in quality management and regulatory affairs within the medical device industry? MyCardium is offering an exciting opportunity for a QA / RA Assistant to join our team and play a key role in ensuring compliance with international … to the success of a leading medical device company, we want to hear from you! Key Responsibilities: Assist in maintaining compliance with certifications and regulatory approvals such as ISO 27001, ISO 9001, ISO 13485, UKCA, CE, and FDA 510(k). … Support the update and maintenance of QMS and ISMS documentation. Help coordinate and conduct internal audits, document findings, and ensure corrective actions are followed up on. Deliver basic QMS / ISMS training to staff, including during induction sessions. Assist in vendor approval processes and monitor adherence to MyCardium's quality standards. Support post-market surveillance activities in collaboration with More ❯

Governance, Risk & Compliance Specialist Location: Manchester, UK (on-site, full-time) Eligibility: Open only to UK citizens / residents with full work rights About the Role We’re seeking a Governance, Risk & Compliance (GRC) Specialist to strengthen our security, risk management, and compliance practices. This role ensures our organisation meets regulatory requirements, manages information security risks, and upholds governance … . Support audits, compliance reporting, and incident response activities. Assist in drafting and updating security policies and governance frameworks. Contribute to staff awareness and training initiatives. Assess vendor / third-party security risks and compliance. What You’ll Bring Knowledge of UK regulatory frameworks (GDPR, NIS, Data Protection Act). Understanding of risk management and IT security best practices. … Strong attention to detail and problem-solving ability. Familiarity with ISO 27001 and compliance processes. Desirable Skills AWS knowledge / certifications. Degree in Computer Science / IT. Experience with audits, penetration testing, or security frameworks (PCI, ISO). Networking knowledge (VPNs, VLANs, routing). More ❯

Governance, Risk & Compliance Specialist Location: Manchester, UK (on-site, full-time) Eligibility: Open only to UK citizens / residents with full work rights About the Role We’re seeking a Governance, Risk & Compliance (GRC) Specialist to strengthen our security, risk management, and compliance practices. This role ensures our organisation meets regulatory requirements, manages information security risks, and upholds governance … . Support audits, compliance reporting, and incident response activities. Assist in drafting and updating security policies and governance frameworks. Contribute to staff awareness and training initiatives. Assess vendor / third-party security risks and compliance. What You’ll Bring Knowledge of UK regulatory frameworks (GDPR, NIS, Data Protection Act). Understanding of risk management and IT security best practices. … Strong attention to detail and problem-solving ability. Familiarity with ISO 27001 and compliance processes. Desirable Skills AWS knowledge / certifications. Degree in Computer Science / IT. Experience with audits, penetration testing, or security frameworks (PCI, ISO). Networking knowledge (VPNs, VLANs, routing). More ❯

Governance, Risk & Compliance Specialist Location: Manchester, UK (on-site, full-time) Eligibility: Open only to UK citizens / residents with full work rights About the Role We’re seeking a Governance, Risk & Compliance (GRC) Specialist to strengthen our security, risk management, and compliance practices. This role ensures our organisation meets regulatory requirements, manages information security risks, and upholds governance … . Support audits, compliance reporting, and incident response activities. Assist in drafting and updating security policies and governance frameworks. Contribute to staff awareness and training initiatives. Assess vendor / third-party security risks and compliance. What You’ll Bring Knowledge of UK regulatory frameworks (GDPR, NIS, Data Protection Act). Understanding of risk management and IT security best practices. … Strong attention to detail and problem-solving ability. Familiarity with ISO 27001 and compliance processes. Desirable Skills AWS knowledge / certifications. Degree in Computer Science / IT. Experience with audits, penetration testing, or security frameworks (PCI, ISO). Networking knowledge (VPNs, VLANs, routing). More ❯

ensuring all customers benefit from foundational security controls. Develop optional upgrade paths for customers seeking formal certification or enhanced assurance—such as Cyber Essentials, Cyber Essentials Plus, or ISO 27001—using the same framework as a foundation. Conduct a gap analysis of Curveball’s current product and service portfolio to identify areas requiring enhancement to meet … IT security strategies that align with evolving business objectives. Draft, maintain, and implement information security policies and Standard Operating Procedures (SOPs). Configure and oversee mobile security—MDM (MAM / BYOD)—to protect business continuity. Lead vulnerability assessments, penetration tests, firewall policy enforcement, and remediation efforts. Author compelling tender responses, clearly demonstrating technical capability and strategic value. Enhance Microsoft … naturally aligned with MSP-style work, deeply familiar with security frameworks, and thrive at the intersection of strategy and execution. In addition to this, you must have experience in / exposure to: Background in MSP / MSSP environments. Proven history of facilitating workshops and supporting sales from warm leads through closure. Strong understanding of ITIL, CAB, and structured More ❯

protect company and customer data. You'll be a first point of contact for responding to security incidents. We regret that this position is only available for UK citizens / Residents with indefinite leave to remain in the UK, with current full time work rights for the United Kingdom, currently residing in the UK. The position is located in … be doing: Assess and evaluate the effectiveness of existing security controls. Design and implement security solutions to mitigate identified risks. Implement, and manage security systems, including firewalls, intrusion detection / prevention systems, DLP, endpoint protection, MDM, SIEM, IAM, vulnerability management etc. Respond to security events and incidents. Perform regular security audits and risk assessments. Maintain security controls, identify risks … in Information Security. Strong understanding of security principles, technologies, and best practices. Experience in networking, infrastructure (on-prem and in the cloud), vulnerability and incident management. Familiarity with application / device security monitoring (e.g. Firewalls, IDS / IPS, XDR etc.). Experience with SIEM / CNAPP / Log collection platforms (e.g. CrowdStrike, Lacework etc.) and capability More ❯

Data / Information Manager - Manchester (Hybrid) Robert Half has been retained by a leading infrastructure consulting business to recruit a Data Manager. This is an exciting opportunity for to work for an organisation that is supporting with the design and construction of a high profile, £3bn infrastructure project in Manchester. About the Role The Data Manager will be responsible … working with sensitive data have valid DBS certifications. Maintain an up-to-date log of certifications and renewal dates. Qualifications and Experience Circa 5 years of experience in data / information management. Proficiency in managing Common Data Environments (CDEs) and implementing robust data security protocols. Degree in Information Management, IT, Engineering, or a related field. Relevant certification, such as … dependent upon your experience, qualifications and training. If you wish to apply, please read our Privacy Notice describing how we may process, disclose and store your personal data: roberthalf.com / gb / en / privacy-notice. More ❯

investigation of incidents, root cause analysis, and coordination of response actions. Implement and administrate security operational controls across AWS, Azure, and on-prem environments, ensuring consistent alignment with ISO 27001, PCI-DSS, CIS and internal governance requirements. Deliver clear, actionable security reporting and dashboards for both technical and executive audiences, covering vulnerabilities, threats, control coverage, and … schemes. Contributory workplace pension scheme. Additionally, you'll get an extra day to celebrate your birthday. Opportunities to grow : You'll receive training and coaching for your personal development / progression, and employee recognition programmes to help you grow in your career. Health : You'll have access to private medical insurance, life assurance, and more. Wellbeing : You'll enjoy … discounts on gym memberships, cycle to work schemes, and a 24 / 7 employee assistance programme. You'll also have sociable working hours and breakfast / snacks provided in the office. Supportive, open, and value-driven culture : Ethics. Dedication. Solutions. Empathy. Our values aren't just words hanging in the reception. They guide us all daily. It's More ❯

the first point of contact for security incidents, your expertise will be essential in keeping our systems secure. We regret that this position is only available for UK citizens / Residents with indefinite leave to remain in the UK, with current full time work rights for the United Kingdom, currently residing in the UK. The position is located in … premises environments. Strong understanding of security principles, technologies, and industry best practices , including vulnerability and incident management. Practical experience with security monitoring and protection tools such as Firewalls, IDS / IPS, XDR, SIEM, CNAPP, and log collection platforms (e.g., CrowdStrike, Lacework). Experience in designing and implementing Identity and Access Management (IAM) solutions and maintaining secure authentication practices. Proficiency … Add your resume and anything else to showcase why you would be a great addition to our team. We regret that this position is only available for UK citizens / Residents with indefinite leave to remain in the UK. No recruitment agencies, please! We won't accept any introductions. Vix Technology is an Equal Opportunity Employer and prohibits discrimination More ❯

them effectively Solid knowledge of network architecture and protocols, including the OSI model, and how to apply layered security Experience with vulnerability management, security assessments, and working within ITSM / ITIL frameworks A proactive mindset - you're always looking for ways to improve, automate, and enhance how security is delivered Strong communication skills - you're confident translating technical risks … schemes. Contributory workplace pension scheme. Additionally, you'll get an extra day to celebrate your birthday. Opportunities to grow : You'll receive training and coaching for your personal development / progression, and employee recognition programmes to help you grow in your career. Health : You'll have access to private medical insurance, life assurance, and more. Wellbeing : You'll enjoy … discounts on gym memberships, cycle to work schemes, and a 24 / 7 employee assistance programme. You'll also have sociable working hours and breakfast snacks provided in the office. Supportive, open, and value-driven culture : Ethics. Dedication. Solutions. Empathy. Our values aren't just words hanging in the reception. They guide us all daily. It's what makes More ❯

What you'll do: Lead threat detection, incident response & vulnerability management Strengthen cyber security posture across cloud, infrastructure & applications Advise development teams on security best practice (SDLC) Maintain ISO 27001 & Cyber Essentials Plus standards Mentor junior analysts & develop SOC processes What we're looking for: Strong technical cyber security background Application, cloud (AWS) & infrastructure security knowledge … Experience with EDR & NDR tools specifically CrowdStrike. Linux & database skills (MySQL, PostgreSQL, Apache, PHP) Knowledge of ISO 27001, Cyber Essentials & security frameworks. Apply now or get in touch with the DCS Technology to discuss further DCS Recruitment and all associated companies are committed to creating a working environment where diversity is celebrated and everyone is treated More ❯

maintained across the business. Duties & Responsibilities Develop, implement, and maintain compliance policies and frameworks in line with industry standards. Conduct regular internal audits and support external audits for ISO 27001 and SOC 2 compliance. Monitor and report on organisational risk posture, providing regular updates to senior management. Oversee data protection, physical security, and vendor compliance activities. … departments through training and guidance. What Experience is Required Proven experience in a compliance, risk, or audit-focused role within a technology or regulated environment. Strong understanding of ISO 27001, SOC 2, and data protection regulations (e.g., GDPR). Excellent communication and stakeholder engagement skills, with the ability to influence across teams. Salary & Benefits Salary More ❯

Data / Information Manager - Manchester (Hybrid) Robert Half has been retained by a leading infrastructure consulting business to recruit a Data Manager. This is an exciting opportunity for to work for an organisation that is supporting with the design and construction of a high profile, £3bn infrastructure project in Manchester. About the Role The Data Manager will be responsible … working with sensitive data have valid DBS certifications. Maintain an up-to-date log of certifications and renewal dates. Qualifications and Experience Circa 5 years of experience in data / information management. Proficiency in managing Common Data Environments (CDEs) and implementing robust data security protocols. Degree in Information Management, IT, Engineering, or a related field. Relevant certification, such as … dependent upon your experience, qualifications and training. If you wish to apply, please read our Privacy Notice describing how we may process, disclose and store your personal data: gb / en / privacy-notice. More ❯

a project, system or equipment, are delivered and managed using recognised techniques and in accordance with the Submarines Product Security Management System (PsecMS) Provide regular updates on assurance status / progress in accordance with programme / project specific reporting cycles Your skills and experiences: Essential: Degree (or equivalent experience) in a relevant STEM subject or Information Security related. … Professional certification such as CISSP, CISM or CCP SIRA status (or able to achieve) Desirable: Experience in Cyber Security in relation to DEFCON 658, DEFSTAN 05-138, MOD Accreditation / Secure by Design ISO 27001 Lead Auditor or Implementer Benefits: As well as a competitive pension scheme, BAE Systems also offers employee share plans, an More ❯

a project, system or equipment, are delivered and managed using recognised techniques and in accordance with the Submarines Product Security Management System (PsecMS) Provide regular updates on assurance status / progress in accordance with programme / project specific reporting cycles Your skills and experiences: Essential: Degree (or equivalent experience) in a relevant STEM subject or Information Security related. … Professional certification such as CISSP, CISM or CCP SIRA status (or able to achieve) Desirable: Experience in Cyber Security in relation to DEFCON 658, DEFSTAN 05-138, MOD Accreditation / Secure by Design ISO 27001 Lead Auditor or Implementer Benefits: As well as a competitive pension scheme, BAE Systems also offers employee share plans, an More ❯

a project, system or equipment, are delivered and managed using recognised techniques and in accordance with the Submarines Product Security Management System (PsecMS) Provide regular updates on assurance status / progress in accordance with programme / project specific reporting cycles Your skills and experiences: Essential: Degree (or equivalent experience) in a relevant STEM subject or Information Security related. … Professional certification such as CISSP, CISM or CCP SIRA status (or able to achieve) Desirable: Experience in Cyber Security in relation to DEFCON 658, DEFSTAN 05-138, MOD Accreditation / Secure by Design ISO 27001 Lead Auditor or Implementer Benefits: As well as a competitive pension scheme, BAE Systems also offers employee share plans, an More ❯

a project, system or equipment, are delivered and managed using recognised techniques and in accordance with the Submarines Product Security Management System (PsecMS) Provide regular updates on assurance status / progress in accordance with programme / project specific reporting cycles Your skills and experiences: Essential: Degree (or equivalent experience) in a relevant STEM subject or Information Security related. … Professional certification such as CISSP, CISM or CCP SIRA status (or able to achieve) Desirable: Experience in Cyber Security in relation to DEFCON 658, DEFSTAN 05-138, MOD Accreditation / Secure by Design ISO 27001 Lead Auditor or Implementer Benefits: As well as a competitive pension scheme, BAE Systems also offers employee share plans, an More ❯

a project, system or equipment, are delivered and managed using recognised techniques and in accordance with the Submarines Product Security Management System (PsecMS) Provide regular updates on assurance status / progress in accordance with programme / project specific reporting cycles Your skills and experiences: Essential: Degree (or equivalent experience) in a relevant STEM subject or Information Security related. … Professional certification such as CISSP, CISM or CCP SIRA status (or able to achieve) Desirable: Experience in Cyber Security in relation to DEFCON 658, DEFSTAN 05-138, MOD Accreditation / Secure by Design ISO 27001 Lead Auditor or Implementer Benefits: As well as a competitive pension scheme, BAE Systems also offers employee share plans, an More ❯

a project, system or equipment, are delivered and managed using recognised techniques and in accordance with the Submarines Product Security Management System (PsecMS) Provide regular updates on assurance status / progress in accordance with programme / project specific reporting cycles Your skills and experiences: Essential: Degree (or equivalent experience) in a relevant STEM subject or Information Security related. … Professional certification such as CISSP, CISM or CCP SIRA status (or able to achieve) Desirable: Experience in Cyber Security in relation to DEFCON 658, DEFSTAN 05-138, MOD Accreditation / Secure by Design ISO 27001 Lead Auditor or Implementer Benefits: As well as a competitive pension scheme, BAE Systems also offers employee share plans, an More ❯

a project, system or equipment, are delivered and managed using recognised techniques and in accordance with the Submarines Product Security Management System (PsecMS) Provide regular updates on assurance status / progress in accordance with programme / project specific reporting cycles Your skills and experiences: Essential: Degree (or equivalent experience) in a relevant STEM subject or Information Security related. … Professional certification such as CISSP, CISM or CCP SIRA status (or able to achieve) Desirable: Experience in Cyber Security in relation to DEFCON 658, DEFSTAN 05-138, MOD Accreditation / Secure by Design ISO 27001 Lead Auditor or Implementer Benefits: As well as a competitive pension scheme, BAE Systems also offers employee share plans, an More ❯

a project, system or equipment, are delivered and managed using recognised techniques and in accordance with the Submarines Product Security Management System (PsecMS) Provide regular updates on assurance status / progress in accordance with programme / project specific reporting cycles Your skills and experiences: Essential: Degree (or equivalent experience) in a relevant STEM subject or Information Security related. … Professional certification such as CISSP, CISM or CCP SIRA status (or able to achieve) Desirable: Experience in Cyber Security in relation to DEFCON 658, DEFSTAN 05-138, MOD Accreditation / Secure by Design ISO 27001 Lead Auditor or Implementer Benefits: As well as a competitive pension scheme, BAE Systems also offers employee share plans, an More ❯

as an ambassador both internally and externally. Requirements What you'll need to succeed Education: Preferably an Advanced degree (Ph.D. or Masters) in Cybersecurity, or a related field and / or equivalent industry experience. However, if you tick most of the experience requirement boxes please apply. Experience: 7+ years' senior leadership experience in cybersecurity, with demonstrable depth across several … own budgets; vendor selection, RFPs, contract negotiation, and value realisation. Programme & project delivery: lead multi-workstream security transformations; portfolio governance, KPIs, and benefits tracking. Governance, Risk & Compliance (GRC): design / run frameworks (e.g., ISO 27001, NIST CSF, PCI DSS), define risk appetite, and report to audit / board. Communication & business storytelling: translate technical risk … into business impact; clear board-level updates and incident communications. Building and leading high-performing teams: org design, hiring, coaching, supplier / partner management, and succession planning. Strategic leadership & corporate governance: executive / board engagement, policy setting, crisis management, and resilience planning. Skills: Strong communication and collaboration skills. Ability to translate complex technical concepts into understandable and actionable More ❯