16 of 16 Permanent ISO/IEC 27001 Jobs in Slough

operations program, organisational structures, and capabilities Possess a deep technical knowledge in Security Incident and Event Management (SIEM) platforms, Security Orchestration and Response (SOAR) technologies, Endpoint Protection and Response / Next Gen Protection and Response (EDR / XDR) tools, Next GenFirewalls, Threat Intelligence and Hunting platforms Defensive Security Skills (desired) Experience in security operations design, engineering and / … organisations security operations capabilities such as improvements in asset visibility, threat detection capabilities, automation techniques, case management, enablement of compliance and regulatory requirements Experience in conducting threat hunting and / or compromise assessments to identify active or dormant indicators of compromise (IoCs) or evidence of unknown threats within an organisations digital environment Relevant industry certifications including GIAC Defensible Security … Architect (GDSA), GIAC Intrusion Analyst (GCIA), GIAC Continuous Monitoring (GMON), CISSP Understanding of cyber risk frameworks or industry standards such as 800-53, ISO 27001 / 2, PCI, CIS 18, CMMC Principal Cloud Security 4+ years of experience performing cloud security advisement and risk assessments based upon industry-accepted standards Hands-on experience with a More ❯

maintain relationships with senior stakeholders (CIO, CFO, COO, CISO, Head of Technology) Strong track record in business development and sales within cyber security Experience applying standards such as ISO 27001, IEC 62443, NIS regulations, and NIS CAF Relevant certifications preferred: CISSP, CISM, GISCP, ISA 62443 (or equivalent) Overview Cyber Security Director – Transport … Sector Location: London, Bristol, Birmingham, Manchester area Salary: Competitive, dependent on qualifications and experience Key Skills Cyber security strategy, stakeholder engagement, transport sector expertise, business development, ISO / NIS / IEC standards, leadership, mentoring, hybrid working Why Apply? This is your opportunity to help shape the future of transport by delivering innovative cyber solutions … you don't hear from us within 7 working days, please presume your application has been unsuccessful on this occasion. You are of course free to resubmit your CV / details in the future and we shall assess your suitability at that time. This role is a permanent position. More ❯

on key projects, but also play a big part in developing security strategy, mentoring junior colleagues, and driving the firm’s journey towards a zero-trust model and ISO 27001 certification . Why this role? Chance to build and shape a new function in a well-established law firm. High visibility role working closely with senior … Opportunity to lead major security initiatives and strengthen overall cyber resilience. Exposure to a wide range of security tools and technologies, from CrowdStrike and Palo Alto firewalls to email / web gateways and NAC solutions. Career growth - mentor others, lead projects, and become a go-to technical expert. What you’ll be doing: Taking ownership of CrowdStrike EDR , including … NAC, and firewall controls . Leading on incident response , root cause analysis, and runbook development. Managing and optimising a wide suite of tools: WAF, DDoS, VPN, perimeter firewalls, email / web security, MFA, SSO, PAM, MDM / MAM, and conditional access. Partnering with InfoSec to align platforms with overall security strategy. Supporting vulnerability scanning, remediation, and risk mitigation More ❯

. Expert-level knowledge in at least one security architecture domain, with demonstrable leadership of technical elements in transformation projects. Strong understanding of security capabilities such as firewalls, IDS / IPS, network segmentation, and access controls. Hands-on experience with operating systems (Windows, Linux, UNIX) and their security requirements. Proven experience with cloud security architecture; direct Azure expertise preferred … AWS and GCP experience beneficial. Strong knowledge of security frameworks and standards (e.g. NIST 800-53, ISO 27001 / 27002, CSA CCM / CIAQ, MITRE). Developed understanding of the cyber threat landscape and ability to apply threat modelling approaches. Experience working with Enterprise Risk Management frameworks, risk assessments, and standards compliance processes. More ❯

time. Responsibilities Implement security protocols and manage information security programs Report performance, exceptions, and outages to all audiences transparently. Align disaster recovery with business continuity plans. Ensure compliance with ISO27001, NIST CFS 2.0, and maintain ISMS. Identify risks, develop a comprehensive security plan. Test cyber-attacks regularly to address vulnerabilities. Monitor security trends, adapt strategies. Oversee incident monitoring, detection, response … capable of working effectively with diverse teams and stakeholders. Ability to stay current with security trends, emerging threats, and best practices in the cybersecurity landscape. Experience of manufacturing and / or supply chain industry is preferred. Able to operate in a multinational corporation with several locations. Competencies You have expertise within Customer / Relationship Management. You have excellent … or belief, or sexual orientation. With both customers and employees around the world, we are committed to ensuring our team reflects the unique communities around us. External recruitment services / agencies will not be used for this position. More ❯

management framework, ensuring effective identification, assessment, and remediation of risks. Conduct detailed risk and control assessments across business units, projects, vendors, and IT systems, aligning with standards like ISO 27001, NIST CSF, and CIS Controls. Manage and enhance Third-Party Risk Management, including cybersecurity assessments of external partners and suppliers. Collaborate with stakeholders to develop and … practices, while fostering strong relationships to embed a risk-aware culture across the organisation. Experience you will have: Expertise in cybersecurity risk frameworks and compliance, including CIS Controls, ISO 27001, NIST CSF, GDPR, SOX, and PCI. Strong technical and analytical skills, with the ability to assess risks, identify gaps, and propose mitigation strategies across IT systems More ❯

. ✔️ Strong experience drafting & negotiating commercial contracts. ✔️ Knowledge of data protection, commercial & contract law. ✔️ Pragmatic, proactive, and solutions-focused. ✔️ Excellent communicator & relationship-builder. 💡 Bonus points if you have: SaaS / fintech / tech sector experience. Knowledge of ISO 27001, SOC 2, payroll or financial services frameworks. Exposure to disputes, M&A, or advising professional More ❯

problem-solving mindset, with a desire to understand how systems and processes work – and how they can fail. Interest in cloud computing (e.g. AWS, Azure), data pipelines, and AI / ML technologies. Confident communicator, able to work collaboratively and adapt in a fast-paced environment. Comfortable working with data – familiarity with Python, SQL, or data tools is a plus. … Bonus: Knowledge of AI ethics, data privacy, cybersecurity, or relevant industry frameworks (e.g. ISO 27001, NIST, etc.). Location: London Should you not be contacted within five working days of submitting your application, then unfortunately you have not been shortlisted for the opportunity. We will, however, be in touch should there be any other opportunities of More ❯

with stakeholder management, presentations, and client workshops. Experience Required 1–3 years of experience in cyber security, consulting, or risk management. Awareness of cyber frameworks such as NIST, ISO 27001, or CIS Controls. Strong analytical, research, and problem-solving skills. Ability to work in hybrid client-facing environments and contribute as part of a high-performing More ❯

spanning consulting, risk, and technology. Experience Required 3–5 years of experience in cyber security, risk, or consulting. Strong working knowledge of cyber frameworks such as NIST CSF, ISO 27001, or CIS Controls. Demonstrable experience delivering on transformation or strategy projects. Strong communication skills, with the ability to influence and engage senior stakeholders. Experience mentoring or More ❯

Looking For: Experience in cyber security, cyber strategy, or cyber risk management—ideally in a consulting or advisory environment. Strong understanding of cyber frameworks and standards (e.g., NIST CSF, ISO27001, GDPR, NIS2). Ability to operate in fast-paced, client-facing environments and manage multiple stakeholders. Relevant certifications (CISSP, CISM, CISA, MSc Cyber Security, etc.) are a plus. Project management … experience (agile and / or waterfall) and a track record of delivering results. What’s on Offer: £55,000–£80,000 base salary (Senior Consultant & Manager levels) Bonus scheme Pension and private medical cover Ongoing professional development and world-class training If you’re looking to accelerate your career in cyber strategy and transformation, and want to make a More ❯

IT Security Manager | Zero Trust, Azure Security, ISO27001 | Global Payments Company £70–80k base + 10% bonus Hybrid in London Join a growing InfoSec team at a pivotal time for a global financial institution. This is an IT Security Manager role with governance oversight, guiding InfoSec operations, mentoring analysts, and translating security frameworks into practical, actionable steps. You’ll influence … What you’ll bring: 5+ years’ experience in InfoSec, IT Security, or operational security in a regulated environment Certifications: CISSP or SSCP (or equivalent) required Hands-on knowledge of ISO27001 and supporting an ISMS (audit experience useful but not central) Familiarity with security tools: Azure security, cloud IAM, Defender, web proxy, endpoint detection (CrowdStrike or equivalents) Understanding of zero trust … Microsoft Purview Third-party risk: Support supplier security assessments and guide analysts’ work (tools like Panorays) Cloud & architecture: Advise on Azure security, shared responsibility models, and zero trust principles ISO27001 support: Maintain ISMS controls and governance, assist with policy implementation Mentoring & guidance: Support analysts with technical and governance expertise, acting as deputy for Head of InfoSec when needed Project involvement More ❯

a bonus Strong understanding of global compliance regulations, certification requirements, and privacy laws across various regions. Familiarity with internet business processes (e.g., development, product, marketing) and experience in compliance / product workflow design; experience in the internet / gaming industry is a plus. Expertise in global privacy regulations, including privacy principles, operational legal security frameworks, and compliance … solutions. Proficient in IT audit, information security management, and IT / technology risk management, with the ability to resolve compliance risks effectively. Knowledge of security control frameworks (e.g., ISO27001, ISO20000, ITIL, COBIT) and experience collaborating with information security teams to implement compliance requirements. Strong problem-solving skills, proactive work ethic, flexible thinking, and the ability to thrive under pressure. More ❯

Cyber Security Consultant – Technical & GRC Focus Salary - £55 - £75 UK-Based | Hybrid | SC Clearance (or Eligible) Are you equally comfortable configuring secure cloud infrastructure and explaining ISO27001 controls to stakeholders? If you thrive at the intersection of technical cyber delivery and security governance , this role is for you. Join a fast-paced team working with UK government and public sector … to help shape secure solutions from the ground up. What You'll Do Lead or support the delivery of secure systems, cloud configurations, or network designs. Apply security frameworks (ISO27001, NIST CSF, NCSC CAF) in real-world projects. Conduct threat modelling and recommend proportionate controls. Translate technical risk into clear business language for stakeholders. Deliver high-quality outputs and support More ❯

Data and Analytics Manager Location: London Hybrid: 2 / 3 days per week onsite Reporting To: Deputy CEO Salary: £100,000 – £110,000 + Bonus + Benefits A forward-thinking, employee-owned business based in London is entering a significant growth phase supported by external capital investment. We’re seeking a strategic and hands-on Data and Analytics Manager … wide data and analytics strategy aligned to business objectives. Own reporting and business intelligence, focusing on Power BI and SQL. Implement and oversee data governance, ensuring compliance with GDPR, ISO27001, FCA, MAS, and other relevant regulations. Serve as the primary liaison between business units and technology teams on data initiatives. Engage senior stakeholders, including C-suite, to champion data adoption … a scalable roadmap for data capabilities, identifying opportunities for innovation and growth. What We’re Looking For Strong Power BI and SQL skills with hands-on experience in BI / reporting. Proven track record in shaping and delivering data strategy and governance, ideally within the insurance sector (Lloyd’s or company market experience preferred). Experience building or leading More ❯

Service Designer – Transformation – IT / BSS Reading – Hybrid working 06 months Contract role We’re hiring a Contract Operations Service Designer to lead the definition and delivery of robust, scalable operational services across IT and BSS environments. You’ll work with both internal teams and strategic partners to ensure services are designed for effective operational performance, meeting key readiness … term customer experience goals. ✅ What We're Looking For: Proven experience in Service Design across IT and Business Support Systems (BSS) . Strong knowledge of Service Management frameworks (ITIL, ISO27001). Experience with OSS / BSS tooling , Configuration Management, and service monitoring. Previous work in multi-supplier managed service environments . Ability to work collaboratively across internal and partner More ❯