1 to 25 of 35 Permanent ISO/IEC 27001 Jobs in Reading

Head of Information Security required for online retail business. The role will initially be focused on ISO27001 & ISO9001 recertifications. Responsibilities Lead on information security strategy and implementation of security roadmap Develop security KPIs and track their progress Advise senior management on risk levels and any changes impacting security posture, including … Conduct risk assessments, maintain risk registers, and design risk treatment plans. Support oversight of vulnerability tooling & processes, assess risk and prioritise remediation. Lead internal / external audits (ISO 27001 and ISO 9001) and ensure compliance with regulations (GDPR). Support wider IT project … defined gates, provision of guidance and assessment of controls. As an ideal candidate, you will have a proven track record of bringing organisations through ISO27001 & ISO 9001 accreditations. ISO27001 lead implementer or auditor qualifications are essential. More ❯

Job Title: Security Consultant Intern Location: Berkshire / Hampshire / Surrey, UK (Hybrid Working) Type: Internship Travel: Occasional travel required Training: Comprehensive training and mentorship provided About ServQual Limited (https: / / srvql.com) is a UK-headquartered cybersecurity and privacy consulting firm with global operations in … join our growing UK team. This internship offers hands-on exposure to the world of cybersecurity consulting, risk assessments, compliance frameworks (such as ISO 27001, NIST, SOC2), and security operations. Ideal for a recent graduate or student from a technology or cybersecurity background, this role provides … independently and as part of a collaborative hybrid team Willingness to travel occasionally for client engagements or events Bonus: Familiarity with security standards (ISO 27001, NIST), cloud platforms (AWS, Azure), or basic scripting What You’ll Gain: Hands-on cybersecurity consulting experience Mentorship from industry-certified More ❯

Job Title: Security Consultant Intern Location: Berkshire / Hampshire / Surrey, UK (Hybrid Working) Type: Internship Travel: Occasional travel required Training: Comprehensive training and mentorship provided About ServQual Limited ( is a UK-headquartered cybersecurity and privacy consulting firm with global operations in the USA and India. We specialise … join our growing UK team. This internship offers hands-on exposure to the world of cybersecurity consulting, risk assessments, compliance frameworks (such as ISO 27001, NIST, SOC2), and security operations. Ideal for a recent graduate or student from a technology or cybersecurity background, this role provides … independently and as part of a collaborative hybrid team Willingness to travel occasionally for client engagements or events Bonus: Familiarity with security standards (ISO 27001, NIST), cloud platforms (AWS, Azure), or basic scripting What You’ll Gain: Hands-on cybersecurity consulting experience Mentorship from industry-certified More ❯

with a specific focus on IT Security. Providing 2nd line support to all employees and companies that fall under a Managed Service Contract. Responsibilities / Tasks Interrogation of the Service Desk ticketing system throughout the day to provide effective responses and resolutions to queries or incidents. Ensuring that raised … Excellent oral and written communication skills. Good numeracy skills. Ability to prioritize work under pressure and strict deadlines. Ability to communicate and advise technical / service information to different levels. Good general overall technical understanding of all new security technologies. General Support and Operations and how security decisions impact … the business WAN / LAN / Networking skill sets Microsoft / VMWare / Cloud technologies Good understanding of PC hardware, Microsoft operating systems and networking. Proven experience in IT desktop, application and server support environment Uses information systems, technology functions and applications in line with IT More ❯

with a specific focus on IT Security. Providing 2nd line support to all employees and companies that fall under a Managed Service Contract. Responsibilities / Tasks Interrogation of the Service Desk ticketing system throughout the day to provide effective responses and resolutions to queries or incidents. Ensuring that raised … Excellent oral and written communication skills. Good numeracy skills. Ability to prioritize work under pressure and strict deadlines. Ability to communicate and advise technical / service information to different levels. Good general overall technical understanding of all new security technologies. General Support and Operations and how security decisions impact … the business WAN / LAN / Networking skill sets Microsoft / VMWare / Cloud technologies Good understanding of PC hardware, Microsoft operating systems and networking. Proven experience in IT desktop, application and server support environment Uses information systems, technology functions and applications in line with IT More ❯

We are searching for a Senior Software Security Architect / Senior Application Security Architect for a marketing leading and award-winning technology and data driven business. The position is offered on a remote basis. The role is hands-on and very software engineering focused - you will be responsible for … establishing a secure SDLC and 'Secure by Design' approach / practice to be used by all of the Architecture and Software development teams. The role will involve: Developing, implementing, and maintaining application security architecture across the organisation. Ensuring our systems are designed with objectives like speed, scalability, robustness, zero … Interfacing with customers to ensure that security obligations are managed and met appropriately. About You To be considered for this Senior Software Security Architect / Senior Application Security Architect role you will be able to demonstrate a successful track record and in-depth practical experience of the Software Development More ❯

Job title Senior Cyber Threat Intelligence Analyst Ref 40789 Division Digital Transformation Location Reading - Clearwater Court - RG1 8DB Contract type Permanent Full / Part-time Full-time Hours 36 Salary Offering up to £65,000 per annum depending on experience Job grade B Closing date 15 / 05 / 2025 As a Senior Cyber Threat Intelligence Analyst , you will play a key role in protecting Thames Water's digital infrastructure by researching, analysing, and communicating the latest cyber threats facing the organisation. You'll evaluate global risks, provide actionable intelligence to stakeholders, and support the … capabilities and the broader cyber security roadmap. Base Location: Hybrid - Flexible working with travel to Thames Water offices as required Working Pattern: Full Time / 36 Hours per week What you should bring to the role: Minimum of 3 years in a cyber threat intelligence environment Strong knowledge of More ❯

27001, Cyber Essentials , and internal policies. ✔ User Support : Resolve 2nd-line issues for workstations, networks, and peripherals. ✔ Disaster Recovery : Execute backup / recovery plans and respond to outages. ✔ Security Patching : Manage updates for endpoints, firewalls, and EDR tools (e.g., CrowdStrike, Microsoft Defender ). ✔ Account Management : Administer … user access rights in line with security policies. Skills & Experience ✅ 5+ years in desktop / server support, networking, or security operations. ✅ Technical Proficiency : Microsoft / VMware / Cloud technologies. Firewalls, SIEM (e.g., Microsoft Sentinel ), and EDR tools. WAN / LAN and endpoint security (patch management, AV More ❯

27001, Cyber Essentials , and internal policies. ✔ User Support : Resolve 2nd-line issues for workstations, networks, and peripherals. ✔ Disaster Recovery : Execute backup / recovery plans and respond to outages. ✔ Security Patching : Manage updates for endpoints, firewalls, and EDR tools (e.g., CrowdStrike, Microsoft Defender ). ✔ Account Management : Administer … user access rights in line with security policies. Skills & Experience ✅ 5+ years in desktop / server support, networking, or security operations. ✅ Technical Proficiency : Microsoft / VMware / Cloud technologies. Firewalls, SIEM (e.g., Microsoft Sentinel ), and EDR tools. WAN / LAN and endpoint security (patch management, AV More ❯

Intelligence Gap Analysis: Identify and address intelligence coverage gaps and contribute to strategic security capability development. Compliance & Documentation: Support compliance with GDPR, NIS, ISO 27001, and document threat intelligence processes and outputs. Strategic Capability Growth: Contribute to long-term improvement of threat and vulnerability management (TVM … broader cyber security roadmap. Base Location: Hybrid - Flexible working with travel to Reading offices as required - 2 days a week. Working Pattern: Full Time / 36 Hours per week What you should bring to the role: Essential Experience: Minimum of 3 years in a cyber threat intelligence environment Strong … vulnerabilities and OT risk management Experience managing technical intelligence feeds and platform integration Additional certifications such as OSCP, OSWP, CVA, or CHECK Team Member / Leader (CTM / CTL) Previous experience contributing to cyber risk discussions with business stakeholders What's in it for you? Annual Leave More ❯

Intelligence Gap Analysis: Identify and address intelligence coverage gaps and contribute to strategic security capability development. Compliance & Documentation: Support compliance with GDPR, NIS, ISO 27001, and document threat intelligence processes and outputs. Strategic Capability Growth: Contribute to long-term improvement of threat and vulnerability management (TVM … broader cyber security roadmap. Base Location: Hybrid - Flexible working with travel to Reading offices as required - 2 days a week. Working Pattern: Full Time / 36 Hours per week What you should bring to the role: Essential Experience: Minimum of 3 years in a cyber threat intelligence environment Strong … vulnerabilities and OT risk management Experience managing technical intelligence feeds and platform integration Additional certifications such as OSCP, OSWP, CVA, or CHECK Team Member / Leader (CTM / CTL) Previous experience contributing to cyber risk discussions with business stakeholders What's in it for you? Annual Leave More ❯

We are searching for a Senior Software Security Architect / Senior Application Security Architect for a marketing leading and award-winning technology and data driven business. The position is offered on a remote basis. The role is hands-on and very software engineering focused - you will be responsible for … establishing a secure SDLC and 'Secure by Design' approach / practice to be used by all of the Architecture and Software development teams. Responsibilities: Developing, implementing, and maintaining application security architecture across the organisation. Ensuring our systems are designed with objectives like speed, scalability, robustness, zero-trust, automation and … of authority inside the organisation. Interfacing with customers to ensure that security obligations are managed and met appropriately. About You: You will also have / be: Experience in creating application security strategies, standards, best practices, and providing direct input to project teams and business stakeholders is essential. Experience working More ❯

charges for non-standard items, complaints, changes to service System changes (software upgrades, introduction of new systems Non-standard requests (new software requests, different / more powerful laptops, etc) Acquisitions of businesses - guidance on how to absorb people and systems Security system monitoring - interpreting and managing output from the … Change management (internal authorisation for significant system changes) Assistance to senior management in relation to IT issues (for example, integration with a new time / billing system) Response to technological change (e.g. major updates to Microsoft software, introduction of AI-based systems) Accreditation for security certificates (Cyber Essentials Plus … possibly ISO 27001) Assistance with AAF and other audits Management of joiner / leaver process Business continuity plan & disaster recovery This is a hybrid position with 2 to 3 days in the office at the offices in Reading. The salary for this position is circa More ❯

IT services organizations, and architecture methods, tools, and frameworks. Expertise in cloud-based solutions, biometric processing systems, and compliance standards (GDPR, HIPAA, SOC2, ISO 27001). Preferred Extras: Experience with large-scale distributed systems and various architectural disciplines (business, data, performance, infrastructure, security). Proven success More ❯

IT services organizations, and architecture methods, tools, and frameworks. Expertise in cloud-based solutions, biometric processing systems, and compliance standards (GDPR, HIPAA, SOC2, ISO 27001). Preferred Extras: Experience with large-scale distributed systems and various architectural disciplines (business, data, performance, infrastructure, security). Proven success More ❯

winning workplace, recognized by Best Companies as Best Company To Work For in the UK, Tech, and the South East in 2023. We are ISO27001 and ISO9001 certified by UKAS, a CREST approved penetration testing and SOC company, and hold IASME Cyber Essentials Certification and Cyber Essentials Plus certification. Learn More ❯

most notably recognised by Best Companies as Best Company To Work For in the UK, Tech and the South East in 2023. We are ISO27001 and ISO9001 Certified by UKAS. We are also a CREST approved penetration testing and SOC company, IASME Cyber Essentials Certification body and Cyber Essentials Plus More ❯

Familiarity with VMware, Hyper-V, or Docker. Knowledge of databases such as MS SQL Server, MySQL, or MariaDB. Hands-on experience with Microsoft Entra / Azure and Intune. Excellent communication, attention to detail, and multitasking abilities. Desirable: Experience with Microsoft Exchange, iMail, and cloud platforms like AWS or Azure. … Knowledge of cybersecurity frameworks (e.g. ISO 27001, Zero Trust). Exposure to hardware for drone detection (radars, RF sensors, etc.). This is an urgent role, if you match the skill set, please email your CV to or call me on More ❯

Familiarity with VMware, Hyper-V, or Docker. Knowledge of databases such as MS SQL Server, MySQL, or MariaDB. Hands-on experience with Microsoft Entra / Azure and Intune. Excellent communication, attention to detail, and multitasking abilities. Desirable: Experience with Microsoft Exchange, iMail, and cloud platforms like AWS or Azure. … Knowledge of cybersecurity frameworks (e.g. ISO 27001, Zero Trust). Exposure to hardware for drone detection (radars, RF sensors, etc.). This is an urgent role, if you match the skill set, please email your CV to abbey.mcdonnell@maxwellbond.co.uk or call me on More ❯

Familiarity with VMware, Hyper-V, or Docker. Knowledge of databases such as MS SQL Server, MySQL, or MariaDB. Hands-on experience with Microsoft Entra / Azure and Intune. Excellent communication, attention to detail, and multitasking abilities. Desirable: Experience with Microsoft Exchange, iMail, and cloud platforms like AWS or Azure. … Knowledge of cybersecurity frameworks (e.g. ISO 27001, Zero Trust). Exposure to hardware for drone detection (radars, RF sensors, etc.). This is an urgent role, if you match the skill set, please email your CV to abbey.mcdonnell@maxwellbond.co.uk or call me on More ❯

or IA Architect (or similar). Eligibility to obtain and maintain high-level UK security clearance . Desirable: Senior CESG certification (SCCP). ISO 27001 Lead Auditor or Implementer. Membership with a relevant professional body such as MInstISP. Strong experience with HMG, MoD, or other regulated More ❯

maintenance for Identity & Access Management, Privileged Access Management, Endpoint Security, and Network Security. Support compliance with standards and regulations, including GDPR, NIS, and ISO 27001. Monitor and optimise security engineering tool performance, implementing proactive solutions. Stay current on cybersecurity trends, emerging threats, and new technologies. Base location - Hybrid … of operating systems and security considerations across SaaS, IaaS, end-user computing, and server estate. Sound knowledge of network security technologies, including firewalls, IDS / IPS, and NAC. Strong analytical, planning, and organisational skills. Ability to communicate technical issues clearly to non-technical stakeholders. Degree in Cyber Security, Computer … also had Previous experience working in a large, complex infrastructure-based or water utility organisation. Experience in systems or network administration in IT and / or OT environments. Experience leading or mentoring others in delivering cybersecurity outcomes. Security engineering vendor or product certifications such as CVA, Microsoft Certified: Azure More ❯

technical audiences, ideally within large organisations or regulated sectors. Familiarity with multi-platform environments and awareness of key Information Security frameworks such as ISO 27001, COBIT, and NIST. To apply, please send your CV using the link or contact Kevin Robson on . More ❯

Leadership: Mentor and guide architecture and development teams through complex challenges. Security & Compliance: Ensure cloud architectures comply with industry regulations and security policies. CI / CD & Automation: Champion CI / CD pipelines and infrastructure as code for reliable cloud service delivery. Performance & Cost Optimisation: Drive performance tuning and … systems. Client facing experience: Experience working with clients, strong stakeholder engagement experience. Ideally some Government or Defence experience is beneficial (Not essential). CI / CD & Automation: In-depth understanding of CI / CD pipelines and infrastructure as code. Leadership Skills: Excellent communication and leadership abilities, with experience … Cloud Experience: Familiarity with Azure and GCP. Serverless Architectures: Experience with AWS Lambda and serverless design. Compliance Standards: Expertise in GDPR, HIPAA, SOC2, ISO 27001. Advanced Security Practices: Knowledge of zero-trust architecture and security incident response. Why Apply? Influence: Leadership role with the power to shape key More ❯

Leadership: Mentor and guide architecture and development teams through complex challenges. Security & Compliance: Ensure cloud architectures comply with industry regulations and security policies. CI / CD & Automation: Champion CI / CD pipelines and infrastructure as code for reliable cloud service delivery. Performance & Cost Optimisation: Drive performance tuning and … systems. Client facing experience: Experience working with clients, strong stakeholder engagement experience. Ideally some Government or Defence experience is beneficial (Not essential). CI / CD & Automation: In-depth understanding of CI / CD pipelines and infrastructure as code. Leadership Skills: Excellent communication and leadership abilities, with experience … Cloud Experience: Familiarity with Azure and GCP. Serverless Architectures: Experience with AWS Lambda and serverless design. Compliance Standards: Expertise in GDPR, HIPAA, SOC2, ISO 27001. Advanced Security Practices: Knowledge of zero-trust architecture and security incident response. Why Apply? Influence: Leadership role with the power to shape key More ❯