1 to 25 of 158 Permanent ISO/IEC 27001 Jobs in the South East

communication while driving compliance excellence, this opportunity is for you! What We're Looking For: Qualifications and Experience: Proven experience delivering and managing cybersecurity certifications (e.g., ISO / IEC 27001, SOC2 Type II, Cyber Essentials Plus, CREST). A strong understanding of SOC operations and security assurance frameworks. Experience engaging with customers during … audits and RFP / RFI processes, showcasing security-driven solutions. Familiarity with regulatory frameworks such as NIST CSF, GDPR, and UK NCSC guidance. Experience liaising with external auditors and certification bodies. Skills: Exceptional documentation and evidence collection capabilities. Strong communication skills to articulate technical assurance challenges to leadership and customers. Analytical and detail-oriented with a systematic approach to … Superb collaboration and stakeholder management abilities. Highly organised, able to manage multiple certifications and assurance projects simultaneously. Key Responsibilities Certification Leadership: Deliver and maintaincertifications such as ISO / IEC 27001, SOC 2 Type II, Cyber Essentials Plus, and CREST accreditation. Manage sector-specific frameworks, like PCI DSS for payment card data and NCSC More ❯

customer-facing assurance documentation demonstrating the organisation's security posture Lead the delivery and ongoing maintenance of SOC-related certifications (SOC 2 Type II, SOC 3, ISO / IEC 27001, Cyber Essentials Plus, CREST) Embed certification requirements into SOC governance, processes, and operational practices Ensure continuous monitoring, evidence collection, and audit readiness for … external assessments Monitor developments in global cybersecurity regulations and frameworks (NIST CSF, UK NCSC guidance, EU NIS2, GDPR) Oversee sector-specific assurance requirements, including PCI DSS and NCSC CIR / CHECK, where applicable Provide expert advice to leadership on regulatory changes impacting SOC assurance strategy Drive continuous improvement in assurance processes and evidence collection efficiency Produce regular reports and … audit outcomes, and assurance performance Collaborate with SOC operations, Information Security, Risk & Compliance, and Commercial teams Essential Qualifications & Requirements: Proven experience delivering and maintaining cybersecurity certifications (ISO / IEC 27001, SOC 2 Type II, Cyber Essentials Plus, CREST) Strong understanding of SOC operations and security assurance frameworks Experience in customer-facing assurance activities More ❯

standards, ensuring compliance with emerging global AI regulations, and building trust in our AI solutions. A primary focus will be leading the implementation and upkeep of ISO / IEC 42001 certification for AI Management Systems while embedding AI governance, risk management, and lifecycle processes into our wider assurance framework. You will act as the key … collaborate with product, customer, and technology teams to strengthen our compliance posture and enhance adoption. Required Qualifications & Experience Proven experience delivering ISO certifications (e.g., ISO / IEC 42001 , ISO 27001 , or similar standards). Strong knowledge of AI governance, risk management, and model lifecycle assurance frameworks. Familiarity with ISO … dependent upon your experience, qualifications and training. If you wish to apply, please read our Privacy Notice describing how we may process, disclose and store your personal data: roberthalf.com / gb / en / privacy-notice. More ❯

standards, ensuring compliance with emerging global AI regulations, and building trust in our AI solutions. A primary focus will be leading the implementation and upkeep of ISO / IEC 42001 certification for AI Management Systems while embedding AI governance, risk management, and lifecycle processes into our wider assurance framework. You will act as the key … collaborate with product, customer, and technology teams to strengthen our compliance posture and enhance adoption. Required Qualifications & Experience Proven experience delivering ISO certifications (e.g., ISO / IEC 42001 , ISO 27001 , or similar standards). Strong knowledge of AI governance, risk management, and model lifecycle assurance frameworks. Familiarity with ISO … dependent upon your experience, qualifications and training. If you wish to apply, please read our Privacy Notice describing how we may process, disclose and store your personal data: roberthalf.com / gb / en / privacy-notice. JBRP1_UKTJ More ❯

As our Information Security Management Specialist (m / f / d) , you'llprovide experienced support in the implementation and management of the Information Security Management System (ISMS) framework in alignment of current ISO 27001 standard and guidelines. With a focus on cybersecurity, this role involves leading risk assessments, ensuring alignment with industry standards and … Collaborate with the IT department to set Information security standard for Cyber Security Support in preparing management Information Security reports and dashboards. Review and respond to customer Service Agreements / RFPs / RFIs with respect to Information Security related clauses / questionnaires. Actively participate in Information Security External certification audits, internal audits, and gap assessments. Perform other … looking for Bachelors degree or equivalent in Information Technology or Computer Science degree or related field. Information Security certifications such as ISO 27001 Lead Auditor / Implementer, CISM, CISA, CRISC, CISSP, CEH, COBIT or equivalent preferred. Fluent in English, Multilingual skills are an advantage. Skilled proficiency in conducting risk assessments, analyzing security controls, and policy More ❯

standards, ensuring compliance with emerging global AI regulations, and building trust in our AI solutions. A primary focus will be leading the implementation and upkeep of ISO / IEC 42001 certification for AI Management Systems while embedding AI governance, risk management, and lifecycle processes into our wider assurance framework. You will act as the key … collaborate with product, customer, and technology teams to strengthen our compliance posture and enhance adoption. Required Qualifications & Experience Proven experience delivering ISO certifications (e.g., ISO / IEC 42001 , ISO 27001 , or similar standards). Strong knowledge of AI governance, risk management, and model lifecycle assurance frameworks. Familiarity with ISO … dependent upon your experience, qualifications and training. If you wish to apply, please read our Privacy Notice describing how we may process, disclose and store your personal data: gb / en / privacy-notice. More ❯

operations program, organisational structures, and capabilities Possess a deep technical knowledge in Security Incident and Event Management (SIEM) platforms, Security Orchestration and Response (SOAR) technologies, Endpoint Protection and Response / Next Gen Protection and Response (EDR / XDR) tools, Next GenFirewalls, Threat Intelligence and Hunting platforms Defensive Security Skills (desired) Experience in security operations design, engineering and / … organisations security operations capabilities such as improvements in asset visibility, threat detection capabilities, automation techniques, case management, enablement of compliance and regulatory requirements Experience in conducting threat hunting and / or compromise assessments to identify active or dormant indicators of compromise (IoCs) or evidence of unknown threats within an organisations digital environment Relevant industry certifications including GIAC Defensible Security … Architect (GDSA), GIAC Intrusion Analyst (GCIA), GIAC Continuous Monitoring (GMON), CISSP Understanding of cyber risk frameworks or industry standards such as 800-53, ISO 27001 / 2, PCI, CIS 18, CMMC Principal Cloud Security 4+ years of experience performing cloud security advisement and risk assessments based upon industry-accepted standards Hands-on experience with a More ❯

operations program, organisational structures, and capabilities Possess a deep technical knowledge in Security Incident and Event Management (SIEM) platforms, Security Orchestration and Response (SOAR) technologies, Endpoint Protection and Response / Next Gen Protection and Response (EDR / XDR) tools, Next GenFirewalls, Threat Intelligence and Hunting platforms Defensive Security Skills (desired) Experience in security operations design, engineering and / … organisations security operations capabilities such as improvements in asset visibility, threat detection capabilities, automation techniques, case management, enablement of compliance and regulatory requirements Experience in conducting threat hunting and / or compromise assessments to identify active or dormant indicators of compromise (IoCs) or evidence of unknown threats within an organisations digital environment Relevant industry certifications including GIAC Defensible Security … Architect (GDSA), GIAC Intrusion Analyst (GCIA), GIAC Continuous Monitoring (GMON), CISSP Understanding of cyber risk frameworks or industry standards such as 800-53, ISO 27001 / 2, PCI, CIS 18, CMMC Principal Cloud Security 4+ years of experience performing cloud security advisement and risk assessments based upon industry-accepted standards Hands-on experience with a More ❯

the firm's control framework relating to these speciality areas. As the Information Security Manager you will design, implement & maintain the Information Security Management System (ISMS) in accordance with ISO27001, Cyber Essential Plus & SOC2 and other relevant standards. In a travel risk management environment this role is critical for safeguarding sensitive traveller data, real-time location tracking and operational systems … We are looking for someone who brings both technical expertise and a collaborative mindset: Professional certifications such as CISM, CISSP , or ISO 27001 Lead Implementer / Auditor (or equivalent). Hands-on experience with ISO 27001:2022 , Cyber Essentials Plus , and enterprise risk management. Strong background in information security governance, compliance … individual training and development plans. About the company All around the world, Healix safeguards people's health and wellbeing. Required Criteria Excellent communication skills both verbal and written CISM / CISSP, a certified ISO 27001 Lead Implementer / Auditor or equivalent Experience implementing or working towards ISO 27001 - 2022 & Cyber More ❯

maintain relationships with senior stakeholders (CIO, CFO, COO, CISO, Head of Technology) Strong track record in business development and sales within cyber security Experience applying standards such as ISO 27001, IEC 62443, NIS regulations, and NIS CAF Relevant certifications preferred: CISSP, CISM, GISCP, ISA 62443 (or equivalent) Overview Cyber Security Director – Transport … Sector Location: London, Bristol, Birmingham, Manchester area Salary: Competitive, dependent on qualifications and experience Key Skills Cyber security strategy, stakeholder engagement, transport sector expertise, business development, ISO / NIS / IEC standards, leadership, mentoring, hybrid working Why Apply? This is your opportunity to help shape the future of transport by delivering innovative cyber solutions … you don't hear from us within 7 working days, please presume your application has been unsuccessful on this occasion. You are of course free to resubmit your CV / details in the future and we shall assess your suitability at that time. This role is a permanent position. More ❯

maintain relationships with senior stakeholders (CIO, CFO, COO, CISO, Head of Technology) Strong track record in business development and sales within cyber security Experience applying standards such as ISO 27001, IEC 62443, NIS regulations, and NIS CAF Relevant certifications preferred: CISSP, CISM, GISCP, ISA 62443 (or equivalent) Overview Cyber Security Director – Transport … Sector Location: London, Bristol, Birmingham, Manchester area Salary: Competitive, dependent on qualifications and experience Key Skills Cyber security strategy, stakeholder engagement, transport sector expertise, business development, ISO / NIS / IEC standards, leadership, mentoring, hybrid working Why Apply? This is your opportunity to help shape the future of transport by delivering innovative cyber solutions … you don't hear from us within 7 working days, please presume your application has been unsuccessful on this occasion. You are of course free to resubmit your CV / details in the future and we shall assess your suitability at that time. This role is a permanent position. More ❯

maintain relationships with senior stakeholders (CIO, CFO, COO, CISO, Head of Technology) Strong track record in business development and sales within cyber security Experience applying standards such as ISO 27001, IEC 62443, NIS regulations, and NIS CAF Relevant certifications preferred: CISSP, CISM, GISCP, ISA 62443 (or equivalent) Overview Cyber Security Director – Transport … Sector Location: London, Bristol, Birmingham, Manchester area Salary: Competitive, dependent on qualifications and experience Key Skills Cyber security strategy, stakeholder engagement, transport sector expertise, business development, ISO / NIS / IEC standards, leadership, mentoring, hybrid working Why Apply? This is your opportunity to help shape the future of transport by delivering innovative cyber solutions … you don't hear from us within 7 working days, please presume your application has been unsuccessful on this occasion. You are of course free to resubmit your CV / details in the future and we shall assess your suitability at that time. This role is a permanent position. More ❯

and others), report issues, and ensure compliance with governance and legislation. Own your automations, code, databases, and lists. Ensure adherence to ISO 27001, DCB 0129 / 0160, and Trust policies. Complete governance documentation to required standards and stay updated on changes. Participate in internal and external audits. Understand stakeholder needs and support them during automation … design and build. Help identify new automation opportunities across the Trust. Action break / fix requests within agreed timelines. Attend IA team and project meetings. Maintain strong knowledge of Intelligent Automation and Power Platform technologies to support evolving business priorities. About us Berkshire Healthcare NHS Foundation Trust is a specialist mental health and community health services trust. Rated 'outstanding … receive a high number of applications, we may close this role earlier than the advertised closing date, so please submit your application as soon as possible. Person Specification Education / Qualifications / Training Essential Educated to degree level in a subject relevant to the post or with relevant experience working within an automation or citizen developer environment. Desirable More ❯

with 2-4 days per week on-site. You will assist the Cyber & Information Security Specialist in ensuring our firm adheres to governance and assurance obligations, such as ISO 27001:22. You will also collaborate closely with the Information Security Technology Manager to safeguard the company using the latest and most advanced security tools. This multifaceted … Key Skills: Highly experienced in information security governance, risk management, and compliance. Demonstrated experience with developing and implementing information security policies, procedures, and standards. Experience with SOC 2, ISO 27001, NIST 800-53 and GDPR compliance frameworks is highly preferred. Strong understanding of security risk management principles and methodologies. Excellent communication, collaboration, and interpersonal skills. Ability … personal data very seriously. Any information provided to us will be processed as detailed in our Privacy Notice, a copy of which can be found on our website http: / / proactive.it / privacy-notice / More ❯

Your new company A specialist organisation in the Health / Medical sector offers hybrid working in this role based … in North Surrey area. Your new role You will be working in the Risk team and will design, implement & maintain the Information Security Management System (ISMS) in accordance with ISO27001 in a company that manages highly sensitive data. You will support the firm's governance, addressing areas of risk and supporting plans to address these risks, including the compilation of … System Assurance. What you'll need to succeed You will ideally have the following experience and qualifications:Professional certifications such as ISO 27001 Lead Implementer / Auditor as well as hands-on experience with auditing and maintaining accreditation for ISO 27001:2022 You will have a strong background in enterprise risk More ❯

on key projects, but also play a big part in developing security strategy, mentoring junior colleagues, and driving the firm’s journey towards a zero-trust model and ISO 27001 certification . Why this role? Chance to build and shape a new function in a well-established law firm. High visibility role working closely with senior … Opportunity to lead major security initiatives and strengthen overall cyber resilience. Exposure to a wide range of security tools and technologies, from CrowdStrike and Palo Alto firewalls to email / web gateways and NAC solutions. Career growth - mentor others, lead projects, and become a go-to technical expert. What you’ll be doing: Taking ownership of CrowdStrike EDR , including … NAC, and firewall controls . Leading on incident response , root cause analysis, and runbook development. Managing and optimising a wide suite of tools: WAF, DDoS, VPN, perimeter firewalls, email / web security, MFA, SSO, PAM, MDM / MAM, and conditional access. Partnering with InfoSec to align platforms with overall security strategy. Supporting vulnerability scanning, remediation, and risk mitigation More ❯

on key projects, but also play a big part in developing security strategy, mentoring junior colleagues, and driving the firm’s journey towards a zero-trust model and ISO 27001 certification . Why this role? Chance to build and shape a new function in a well-established law firm. High visibility role working closely with senior … Opportunity to lead major security initiatives and strengthen overall cyber resilience. Exposure to a wide range of security tools and technologies, from CrowdStrike and Palo Alto firewalls to email / web gateways and NAC solutions. Career growth - mentor others, lead projects, and become a go-to technical expert. What you’ll be doing: Taking ownership of CrowdStrike EDR , including … NAC, and firewall controls . Leading on incident response , root cause analysis, and runbook development. Managing and optimising a wide suite of tools: WAF, DDoS, VPN, perimeter firewalls, email / web security, MFA, SSO, PAM, MDM / MAM, and conditional access. Partnering with InfoSec to align platforms with overall security strategy. Supporting vulnerability scanning, remediation, and risk mitigation More ❯

secure cloud infrastructure using Oracle Cloud Infrastructure (OCI). Develop and manage Infrastructure as Code (IaC) with tools like Terraform to enable secure, repeatable deployments. Implement and manage CI / CD pipelines, focusing on automated security testing, deployment, and monitoring. Ensure all aspects of the data platform OCI infrastructure, data ingest pipelines, tool deployments, access controls, and monitoring are … Hands-on experience with cloud infrastructure, ideally Oracle Cloud (OCI), including provisioning, configuration, and service management. Proficient with Terraform or similar IaC tools. Skilled in implementing and maintaining CI / CD pipelines (e.g., GitHub Actions), especially with automated security testing. Strong knowledge of containerisation (e.g., Docker) and orchestration (e.g., Kubernetes). Deep understanding of cloud security principles: IAM, network … security, encryption. Experience with monitoring / alerting tools (e.g., Prometheus, Grafana, ELK stack). Proficient in Git or other version control systems. Desirable Knowledge, Skills and Experience: Certifications in OCI or other cloud platforms (AWS, GCP). Experience with security tools like OWASP ZAP, Burp Suite, etc. Familiarity with Jira, Confluence, or similar tools. Knowledge of compliance frameworks (e.g. More ❯

Compliance Coordiantor ISO Standards, H&S, and Data Protection Location - Beaconsfield (Hybrid) Part time (15-20hrs a week which can be structured however best suits the succesful candidate, perfect for candidates returning to work with childcare or similar responsibilities) About the Company A long-established technology services provider with more than 20 years experience, delivering managed and … to take ownership of compliance across quality, environmental, health & safety, information security, and data protection standards. This role will be central in achieving and maintaining certifications such as ISO 9001, ISO 14001, ISO 45001, ISO 27001 , as well as SafeContractor, Constructionline, and Avetta accreditations. The Compliance Manager will also support … Health & Safety and HR functions, oversee GDPR and data protection obligations, and manage client pre-qualification documentation for tenders. Key Responsibilities Lead the implementation and maintenance of ISO 9001, 14001, 45001, and 27001 standards. Manage renewals and audits for SafeContractor, Constructionline, and Avetta. Develop and maintain Integrated Management System (IMS) documentation. Complete Pre-Qualification Questionnaires (PQQs More ❯

summaries Coordinate secure changes and maintenance windows with engineering teams Respond to security incidents and support root cause analysis and reporting Participate in the deployment of new applications and / or changes, ensuring that all service components are documented and monitored and integrated into the company’s operational processes. Work with stakeholders across the solutions lifecycle to ensure that … with technical stakeholders (including customers) on the delivery of hosted solutions. Experience & Qualifications Good experience in a hosting provider or managed service provider environment Strong working knowledge of ISO 27001, ISO 27017, ISO 27018, and ISO 22301 Hands-on experience with scanning and vulnerability detection applications Hands-on experience of … domain and AD management experience Strong troubleshooting skills Strong scripting skills Enthusiasm and talent for acquiring complex technical skills Good customer service attitude Knowledge of configuration management (Puppet and / or Red Hat Satellite preferred) Scripting for automation using technologies (e.g. Powershell, Puppet, Ansible, Python) ITIL knowledge – principles and application Ability to support and develop junior colleagues More ❯

+ Bonus + Benefits Zachary Daniels are delighted to be working with a global business during an exciting period of transformation, to recruit a Network Architect / Specialist. This is a strategic and hands-on role, responsible for shaping and evolving enterprise network architecture across the UK and Europe. With a remit covering multiple sites in London, Belgium, and … and resilient network solutions tailored to business needs.· Manage Cisco Meraki and Fortinet solutions across design, deployment, monitoring, and troubleshooting.· Lead on network security, including firewalls, segmentation, and IT / OT integration.· Collaborate with and manage outsourced network providers.· Provide input on Wi-Fi, industrial site networks, and connectivity projects.· Ensure compliance with NIS2, ISO 27001 … with wider business strategy. About You: · Experienced as a Network Architect, Senior Network Engineer, or similar in a multi-site environment.· Strong hands-on expertise in Cisco Meraki and / or Fortinet technologies.· Proven track record in network security, firewalls, segmentation, and IT / OT integration.· Experience within manufacturing, industrial, or warehousing settings.· Strong stakeholder management skills with More ❯

. Expert-level knowledge in at least one security architecture domain, with demonstrable leadership of technical elements in transformation projects. Strong understanding of security capabilities such as firewalls, IDS / IPS, network segmentation, and access controls. Hands-on experience with operating systems (Windows, Linux, UNIX) and their security requirements. Proven experience with cloud security architecture; direct Azure expertise preferred … AWS and GCP experience beneficial. Strong knowledge of security frameworks and standards (e.g. NIST 800-53, ISO 27001 / 27002, CSA CCM / CIAQ, MITRE). Developed understanding of the cyber threat landscape and ability to apply threat modelling approaches. Experience working with Enterprise Risk Management frameworks, risk assessments, and standards compliance processes. More ❯

. Expert-level knowledge in at least one security architecture domain, with demonstrable leadership of technical elements in transformation projects. Strong understanding of security capabilities such as firewalls, IDS / IPS, network segmentation, and access controls. Hands-on experience with operating systems (Windows, Linux, UNIX) and their security requirements. Proven experience with cloud security architecture; direct Azure expertise preferred … AWS and GCP experience beneficial. Strong knowledge of security frameworks and standards (e.g. NIST 800-53, ISO 27001 / 27002, CSA CCM / CIAQ, MITRE). Developed understanding of the cyber threat landscape and ability to apply threat modelling approaches. Experience working with Enterprise Risk Management frameworks, risk assessments, and standards compliance processes. More ❯

. Expert-level knowledge in at least one security architecture domain, with demonstrable leadership of technical elements in transformation projects. Strong understanding of security capabilities such as firewalls, IDS / IPS, network segmentation, and access controls. Hands-on experience with operating systems (Windows, Linux, UNIX) and their security requirements. Proven experience with cloud security architecture; direct Azure expertise preferred … AWS and GCP experience beneficial. Strong knowledge of security frameworks and standards (e.g. NIST 800-53, ISO 27001 / 27002, CSA CCM / CIAQ, MITRE). Developed understanding of the cyber threat landscape and ability to apply threat modelling approaches. Experience working with Enterprise Risk Management frameworks, risk assessments, and standards compliance processes. More ❯

time. Responsibilities Implement security protocols and manage information security programs Report performance, exceptions, and outages to all audiences transparently. Align disaster recovery with business continuity plans. Ensure compliance with ISO27001, NIST CFS 2.0, and maintain ISMS. Identify risks, develop a comprehensive security plan. Test cyber-attacks regularly to address vulnerabilities. Monitor security trends, adapt strategies. Oversee incident monitoring, detection, response … capable of working effectively with diverse teams and stakeholders. Ability to stay current with security trends, emerging threats, and best practices in the cybersecurity landscape. Experience of manufacturing and / or supply chain industry is preferred. Able to operate in a multinational corporation with several locations. Competencies You have expertise within Customer / Relationship Management. You have excellent … or belief, or sexual orientation. With both customers and employees around the world, we are committed to ensuring our team reflects the unique communities around us. External recruitment services / agencies will not be used for this position. More ❯