Permanent ISO/IEC 27001 Jobs in the South West

1 to 25 of 54 Permanent ISO/IEC 27001 Jobs in the South West

Information Security Manager

Kemble, Gloucestershire, United Kingdom
ZeroAvia
Experience: Minimum 8 years of information security experience, with at least 3 years in aerospace, aviation, or highly regulated industries Proven experience implementing and managing ISMS frameworks, preferably ISO 27001 certification Deep understanding of aviation cybersecurity regulations, including EASA requirements, CAA frameworks, or similar aviation security standards Experience with industrial control systems security, particularly in safety … critical environments Demonstrated expertise in cybersecurity risk assessment and management methodologies specific to engineering and manufacturing environments Technical Expertise: Strong knowledge of cybersecurity frameworks (NIST, ISO 27001, aviation-specific standards) Experience with security architecture design for complex technical systems Understanding of aviation safety management systems and their integration with cybersecurity programmes Familiarity with certification processes and … for presenting security strategies to technical and executive audiences Experience building security teams and developing cybersecurity culture within engineering organisations Preferred Qualifications: Professional certifications such as CISSP, CISM, ISO 27001 Lead Auditor, or aviation security qualifications Experience with hydrogen infrastructure, electric propulsion systems, or clean energy technologies Knowledge of aviation certification processes (FAA, EASA, CAA) Background More ❯
Employment Type: Permanent
Salary: GBP Annual
Posted:

Senior Cloud Infrastructure Engineer

Bristol, Avon, South West, United Kingdom
Hybrid / WFH Options
Hargreaves Lansdown
build and operate the Azure-based Internal Developer Platform as a product, enabling self-service environment provisioning and repeatable golden paths. Develop and maintain Infrastructure as Code (Terraform and / or Bicep) modules and reusable templates for AKS, networking, storage, databases, and app runtimes. Implement and evolve CI / CD pipelines (HL version control set) with quality gates … testing, security scanning, and progressive delivery. Introduce and run GitOps for Kubernetes (AKS preferred), patterns and multi-environment promotions. Own platform observability: metrics, logs and traces using Azure Monitor / Log Analytics / Application Insights, plus Datadog / Grafana where appropriate. Embed security by design: Azure Policy, Defender for Cloud, secrets management with Key Vault, SBOM and … image scanning, policy-as-code and least privilege IAM. Drive reliability using SRE practices: define SLIs / SLOs, error budgets, capacity planning, chaos testing, incident response and blameless post-incident reviews. Partner with application squads to remove toil, improve developer experience (DX), and reduce lead time for changes through automation and platform enhancements. Implement cost visibility and optimisation (FinOps More ❯
Employment Type: Permanent, Part Time, Work From Home
Posted:

Principal Security Engineer

Stoke Gifford, Gloucestershire, United Kingdom
Synoptix
principles Experience in system security engineering, ideally in defence, space, or critical infrastructure Familiarity with MOD, NCSC, and ISO standards (e.g. ISO 27001 / 2, NIST 800-series, JSP 604) Competence in requirements engineering and systems thinking Practical experience with security in software and / or system development environments Effective communication and … space system architectures or satellite communications DevSecOps awareness or experience with security automation Benefits: Annual Company Bonus 25 Days holiday not including bank holidays with the option to buy / sell up to 5 days Competitive pension contribution Continuous professional development including incentives Access to online Udemy training facility Flexible working arrangements Bike to work scheme Electric car scheme More ❯
Employment Type: Permanent
Salary: GBP 70,000 - 85,000 Annual
Posted:

GRC Consultant (MOD / SC)

Bristol, Avon, South West, United Kingdom
Hybrid / WFH Options
Sanderson Government and Defence
Cyber Consultant - Governance, Risk & Compliance (MOD / Defence - SC) Location: Remote / Southwest on-site presence Contract Type: Permanent & Full-time Salary: Competitive + Benefits About the Role As a Cyber Security Consultant, you will play a pivotal role in delivering Secure by Design risk and security assurance services within MOD and Public Sector environments. You'll collaborate … part of a knowledge-sharing culture, working alongside expert peers in Secure Architecture and Risk Planning. Key Responsibilities Deliver Secure by Design risk and security assurance functions within MOD / Public Sector. Lead and advise on risk management frameworks, ISMS, and Enterprise Security Risk Management. Facilitate security and risk workshops with Authority departments. Produce clear reporting on vulnerabilities, risks … of CIISEC and UK Cyber Security Council professional registration at either Chartered or Principal for Risk Management. Hold an active and transferable SC clearance Willingness to undergo DV clearance / UK Citizen / residing in UK Strong working knowledge of: Security Assurance Coordinator or Delivery Team Security Lead roles JSP440, JSP604 / 453 & JSP490 Working with system More ❯
Employment Type: Permanent
Posted:

Security Consultant

Wiltshire, United Kingdom
Hybrid / WFH Options
Experis
relationships. As a Security Consultant , you will work on a variety of Defence and Public Sector assignments, requiring current SC clearance. Projects will range from risk assessments and ISO 27001 implementations to developing full ISMS frameworks and supporting clients through accreditation. You'll provide expert guidance across standards such as NIST, CAF, and Secure by Design. … solutions. We are looking for a Security Consultant with experience in security assurance, accreditation, secure by design, and risk management, alongside recognised qualifications such as CISSP, CISM, or ISO 27001 Lead Implementer. Ideally you will be familiar with GRC practices in similar environments also. In return, you'll enjoy a competitive salary … remote working, training budget, private healthcare, bonus scheme, and a culture that values collaboration, growth, and well-being. Take the next step in your career as a GRC Specialist / Security Consultant - apply today. People Source Consulting Ltd is acting as an Employment Agency in relation to this vacancy. People Source specialise in technology recruitment across niche markets including More ❯
Employment Type: Permanent
Salary: GBP 45,000 - 60,000 Annual
Posted:

Senior Information Security Analyst

Bristol, Avon, South West, United Kingdom
Hybrid / WFH Options
Hargreaves Lansdown
high performing Security team Leading by example to create a culture of continuous service improvements About you Experience in a regulated environment, preferably Financial Services. Previous experience in Information / Cyber Security, with demonstrable experience of Cloud Security tooling, to reduce risks and maintain strong controls in a DevSecOps cloud context Highly organised with the ability to prioritise workload … for example CCSK, CCSP, CISSP, CRISC Hands on demonstratable experience and knowledge of: Carrying out security reviews against recognised security control frameworks such as CSA Cloud Control Matrix, ISO27017 / 27001, NIST CSF, PCI-DSS, SWIFT, AWS CAF Atlassian, IAAC Terraform, Merge Requests, GIT Ops, Git Hub, Workflow, Wiz, Security Hub, Macie, Audit Manager, Microsoft Compliance Portal … / Purview, Microsoft Information Protection (AIP), Azure Security Centre. Strong experience with DevOps practices, continuous integration / continuous deployment (CI / CD) pipelines, and related tools Ability to evaluate the adequacy of cloud security controls, and how they are applied in a business context. Interview process The interview process for this role will be in two stages. More ❯
Employment Type: Permanent, Part Time
Posted:

Head of Cyber Security

South West London, London, England, United Kingdom
Robert Half
GDPR, ISO 27001, PCI DSS if applicable). Manage and continuously improve the firm's security architecture and controls across all domains: network, cloud (SaaS / IaaS), endpoints, and applications. Lead the Incident Response and Disaster Recovery programs, ensuring capabilities are tested, effective, and ready to mitigate the impact of security breaches. Drive security awareness … dependent upon your experience, qualifications and training. If you wish to apply, please read our Privacy Notice describing how we may process, disclose and store your personal data: gb / en / privacy-notice. More ❯
Employment Type: Full-Time
Salary: £115,000 - £125,000 per annum
Posted:

Cloud Architect

Warminster, Wiltshire, South West, United Kingdom
Ncounter LTD
modelling. Advise on compliance (GDPR, NCSC Principles, ISO 27001). Configure cloud-native security tools & integrate with SIEM (Splunk, Chronicle). Embed security in CI / CD pipelines with DevOps teams. Support incident response & recovery for cloud-native environments. What You Bring Strong cloud architecture background. Knowledge of UK regulatory frameworks. IaC experience (Terraform / Deployment Manager). Understanding of monitoring, logging & network security. Consulting mindset with clear communication. Bonus: Cloud security certs, defence / public sector experience, Kubernetes / container security, Python / Bash scripting. Why Apply? This is your chance to apply DV-cleared cloud expertise where it matters most defence, security, and national resilience. Competitive salary, strong benefits More ❯
Employment Type: Permanent
Salary: £90,000
Posted:

Cloud Architect

swindon, wiltshire, south west england, united kingdom
Ncounter LTD
modelling. Advise on compliance (GDPR, NCSC Principles, ISO 27001). Configure cloud-native security tools & integrate with SIEM (Splunk, Chronicle). Embed security in CI / CD pipelines with DevOps teams. Support incident response & recovery for cloud-native environments. What You Bring Strong cloud architecture background. Knowledge of UK regulatory frameworks. IaC experience (Terraform / Deployment Manager). Understanding of monitoring, logging & network security. Consulting mindset with clear communication. Bonus: Cloud security certs, defence / public sector experience, Kubernetes / container security, Python / Bash scripting. Why Apply? This is your chance to apply DV-cleared cloud expertise where it matters most defence, security, and national resilience. Competitive salary, strong benefits More ❯
Posted:

Security Architect

Gloucestershire, United Kingdom
Hybrid / WFH Options
SSR General & Management
security breaches. Provide security guidance and training to teams across the organization. Key Skills & Experience: Strong knowledge of security frameworks (ISO 27001, NIST 800-30 / 53, OWASP) . Experience with risk management methodologies and compliance with MOD and HMG security standards (JSP, Def Stan 05-138 / 139). Proficiency in security threat More ❯
Employment Type: Permanent
Salary: GBP 85,000 Annual
Posted:

Security Architect

Bristol, Kendleshire, Gloucestershire, United Kingdom
Hybrid / WFH Options
SSR General & Management
security breaches. Provide security guidance and training to teams across the organization. Key Skills & Experience: Strong knowledge of security frameworks (ISO 27001, NIST 800-30 / 53, OWASP) . Experience with risk management methodologies and compliance with MOD and HMG security standards (JSP, Def Stan 05-138 / 139). Proficiency in security threat More ❯
Employment Type: Permanent
Salary: £85000/annum
Posted:

Infrastructure Engineer

Bristol, Avon, South West, United Kingdom
Hybrid / WFH Options
NCC
providing advice & guidance on a wide range of projects and BAU work. Primarily working on IT projects & programmes across IT Defence Portfolio, youll take responsibility for the installation and / or decommissioning of products and services. Responsible for delivering multiple IT platforms across both hybrid and on-premises environments. These platforms combine traditional virtualised infrastructure with cloud-based services. … secure, resilient, and supportable infrastructure components that align with architectural standards and project timelines. Specifically: Builds and configures on-premises infrastructure Deploys and integrates cloud-based services (e.g. IaaS / PaaS / SaaS, virtual machines, storage, networking, identity). Ensures systems are built in line with approved high-level and low-level designs Collaborates with solution architects, programme … and compliance frameworks (e.g. ISO 27001, Cyber Essentials Plus). Understanding of data classification, encryption standards (e.g. at rest and in transit), and secure storage / access principles. Experience supporting and configuring enterprise server platforms. Familiarity with virtualisation technologies used in production environments. Exposure to public cloud platforms and integration with on-premises systems. General More ❯
Employment Type: Permanent, Work From Home
Posted:

Cloud Architect (GCP, AWS or Azure) - MOD DV - Perm

Corsham, Wiltshire, South West, United Kingdom
Sanderson Government and Defence
work in the UK Defence sector, utilising cutting edge Cloud technologies. The role suits a Cloud Architect with a defence background that has an interest in utilising their AWS / Azure experience and up-skilling with GCP certifications and a training programme. As well as applying any existing GCP experience. About the role As a Cloud Architect you will … management, encryption, and network security. Conduct cloud security assessments and gap analyses for UK-based organisations. Advise on compliance with UK regulations (e.g. GDPR, NCSC Cloud Security Principles, ISO 27001). Develop and enforce cloud security policies, procedures, and governance models. Lead threat modelling, risk assessments, and vulnerability management initiatives. Configure … and manage security tools such as Google SecOps tooling, Security Command Center, Cloud Armour, and VPC Service Controls. Collaborate with engineering and DevOps teams to embed security into CI / CD pipelines. Support incident response planning and cloud-specific disaster recovery strategies. Stay up to date with GCP security features, UK regulatory changes, and emerging threats. Requirements What You More ❯
Employment Type: Permanent
Salary: £95,000
Posted:

Senior TechOps Engineer

Swindon, Wiltshire, England, United Kingdom
Hybrid / WFH Options
tmGroup (UK) Ltd
Senior TechOps Engineer Location: Remote / Swindon (Mostly home-based, with travel to group offices as required) Package: Competitive salary + full benefits At tmGroup , we’re taking conveyancing into a brighter, smarter, and simpler future with our award-winning technology. From instant quote tools and seamless client onboarding to comprehensive searches and robust risk management, we use our … legacy applications and workloads into AWS, and oversee datacentre decommissioning. Champion the adoption of AWS-native and PaaS services to modernise our production environment. Implement mechanisms to support CI / CD and modern DevOps practices. Manage and improve cloud-based production environments, ensuring high availability, performance, and security. Deliver Infrastructure as Code (IaC) solutions for repeatable and auditable deployments. … of leading strategies and delivering business-impacting projects across on-premise, hybrid, and cloud environments (AWS and Azure). Strong AWS expertise (EC2, RDS, S3, VPC, IAM, MSK, CloudFormation / Terraform, CloudWatch) and proven migration experience. Solid knowledge of PaaS services such as Lambda, ECS / EKS, MSK, API Gateway, and DynamoDB. Background in Windows server administration, Azure More ❯
Employment Type: Full-Time
Salary: Salary negotiable
Posted:

Senior Marketing Executive - Hybrid

South West London, London, United Kingdom
Hybrid / WFH Options
Exposed Solutions
staff globally and offices in the UK, Sweden, Canada, and Australia, they are an IT company operating in 19 countries and listed on Nasdaq Stockholm. They are ISO 9001 and ISO 27001 certified, reflecting their commitment to quality and information security. Salary: £35,000£38,000 (dependent on experience) Bonus: Discretionary, based on company More ❯
Employment Type: Permanent
Salary: £35,000
Posted:

GCP Architect

Wiltshire, South West, United Kingdom
Electus Recruitment
Code. Youre a strategic thinker with strong communication skills and a consulting mindset. Overview Job Title: GCP Security Consultant Main Skill: Cloud Security Location: Corsham area onsite 5 days / week Salary: Competitive, dependent on qualifications and relevant experience Key Skills Secure GCP architecture design (IAM, encryption, VPC Service Controls) Cloud security assessments and gap analyses Compliance with GDPR … NCSC Cloud Security Principles, ISO 27001 Threat modelling, risk assessments, and vulnerability management GCP security tooling (Security Command Center, Cloud Armor, etc.) CI / CD pipeline security integration Infrastructure as Code (Terraform, Deployment Manager) Experience with SIEM tools (Splunk, Chronicle) Desirable: GCP Security Engineer certification, MOD experience, scripting (Python / Bash), container security (GKE … you don't hear from us within 7 working days, please presume your application has been unsuccessful on this occasion. You are of course free to resubmit your CV / details in the future and we shall assess your suitability at that time. This role is a permanent position . More ❯
Employment Type: Permanent
Posted:

Head of IT

Tidworth, Hampshire, England, United Kingdom
Hays Specialist Recruitment Limited
need to succeed You will need to demonstrate IT leadership experience, with a proven track record in IT service delivery management. Experience managing within IT security frameworks such as ISO27001 or NIST is essential. You should have a strong understanding of data protection regulations and standards, including GDPR, and experience ensuring organisational compliance. The role requires the ability to identify More ❯
Employment Type: Full-Time
Salary: Salary negotiable
Posted:

Cyber Security Engineer

Bristol, Avon, South West, United Kingdom
Hybrid / WFH Options
NCC
access. Knowledge of identity and access management (IAM), including multi-factor authentication (MFA), RBAC, and conditional access policies. Familiarity with common regulatory and compliance frameworks (e.g.NIST, CIS Controls, ISO 27001, Cyber Essentials Plus). Experience aligning infrastructure builds with cyber security standards such as … NCSC guidance, CIS benchmarks, or Microsoft Security Baselines. Experience implementing monitoring, logging, and alerting toolsets including SIEM and threat detection platforms. Understanding of data classification, encryption, and secure storage / access principles. Familiarity with endpoint protection platforms and vulnerability management tools. Experience securing hybrid identity solutions and federated authentication models Understanding of security automation concepts, including security orchestration and More ❯
Employment Type: Permanent, Work From Home
Posted:

Senior Security Consultant - DV Cleared - up to £75,000 + bonus - Corsham - On-Site 2 days per week

Corsham, Wiltshire, South West, United Kingdom
FryerMiles Recruitment
above, I'd be especially interested in individuals who are Chartered Cyber Security Professionals and who hold CISSP and CISM qualifications. Experience required: Security assurance, working with JSP440, JSP604 / 453. Security accreditation. Implementation of Secure by Design. Implementing security standards and frameworks, such as ISO 27001, NIST 800 and CAF. Conducting Cyber Security risk … SaaS. Working as a Security Assurance Co-Ordinator Working with various technical teams. Conducting Cyber Security assessments and gap analysis against various frameworks. Qualifications they look For: NIST Foundation / Practitioner CISM CRISC CISSP CISMP Senior Security Consultant – DV Cleared – up to £75,000 + bonus - Corsham - On-Site 2 days per week More ❯
Employment Type: Permanent
Salary: £75,000
Posted:

Senior Security Consultant - DV Cleared - up to £75,000 + bonus - Corsham - On-Site 2 days per week

swindon, wiltshire, south west england, united kingdom
FryerMiles Recruitment
above, I'd be especially interested in individuals who are Chartered Cyber Security Professionals and who hold CISSP and CISM qualifications. Experience required: Security assurance, working with JSP440, JSP604 / 453. Security accreditation. Implementation of Secure by Design. Implementing security standards and frameworks, such as ISO 27001, NIST 800 and CAF. Conducting Cyber Security risk … SaaS. Working as a Security Assurance Co-Ordinator Working with various technical teams. Conducting Cyber Security assessments and gap analysis against various frameworks. Qualifications they look For: NIST Foundation / Practitioner CISM CRISC CISSP CISMP Senior Security Consultant – DV Cleared – up to £75,000 + bonus - Corsham - On-Site 2 days per week JBRP1_UKTJ More ❯
Posted:

Technical Analyst – Data & Tenant Discovery (Applications, Identity & Unstructured Data)

Yeovil, England, United Kingdom
Hybrid / WFH Options
Synergize Consulting
capable and versatile Technical Analyst (Contractor) to support enterprise-scale migration and transformation programs. This role will involve leading and contributing to discovery and analysis activities across applications, identity / authentication, unstructured data, users, devices, and organizational structures. The ideal candidate will have hands-on experience in application and data discovery, file server and unstructured data analysis, identity and … and migration readiness. Authentication & Identity Analysis: Assess authentication methods (AD, LDAP, Kerberos, OAuth, SAML, OpenID Connect). Identify Legacy barriers and recommend remediation for modern identity platforms (Azure AD / Entra ID). User, Device & Mailbox Discovery: Map accounts, groups, roles, and devices for compliance and migration readiness. Perform Exchange mailbox and shared mailbox analysis. Organisational & Governance Discovery: Analyse … expertise in: Application & Data Discovery (legacy, web, SaaS, file servers, unstructured data). Identity & Authentication Protocols (AD, LDAP, Kerberos, SAML, OAuth, OpenID Connect). User & Device Analysis (Azure AD / Entra ID, Intune, SCCM, hybrid AD environments). M365 Services (Exchange Online, SharePoint Online, Teams). Permissions & Security (NTFS, ACLs, governance, compliance frameworks). Experience with data discovery / More ❯
Posted:

Technical Analyst – Data & Tenant Discovery (Applications, Identity & Unstructured Data)

bath, south west england, united kingdom
Hybrid / WFH Options
Synergize Consulting
capable and versatile Technical Analyst (Contractor) to support enterprise-scale migration and transformation programs. This role will involve leading and contributing to discovery and analysis activities across applications, identity / authentication, unstructured data, users, devices, and organizational structures. The ideal candidate will have hands-on experience in application and data discovery, file server and unstructured data analysis, identity and … and migration readiness. Authentication & Identity Analysis: Assess authentication methods (AD, LDAP, Kerberos, OAuth, SAML, OpenID Connect). Identify Legacy barriers and recommend remediation for modern identity platforms (Azure AD / Entra ID). User, Device & Mailbox Discovery: Map accounts, groups, roles, and devices for compliance and migration readiness. Perform Exchange mailbox and shared mailbox analysis. Organisational & Governance Discovery: Analyse … expertise in: Application & Data Discovery (legacy, web, SaaS, file servers, unstructured data). Identity & Authentication Protocols (AD, LDAP, Kerberos, SAML, OAuth, OpenID Connect). User & Device Analysis (Azure AD / Entra ID, Intune, SCCM, hybrid AD environments). M365 Services (Exchange Online, SharePoint Online, Teams). Permissions & Security (NTFS, ACLs, governance, compliance frameworks). Experience with data discovery / More ❯
Posted:

Security Lead

Dorset, England, United Kingdom
X-Net (Services) Ltd
experience in both cyber and physical security environments. Strong track record engaging with senior stakeholders across public and private sectors. In-depth knowledge of security standards and legislation (ISO 27001 … NIST, UK GDPR, DPA 2018). A recognised security credential (CISSP, CISM, CCSP, or equivalent). High levels of integrity, judgement, and delivery focus. Desirable: Defence, and / or central government experience, UK Government vetting, and advanced security qualifications. If you are motivated by protecting complex, high-stakes environments and influencing at the highest levels, we would like to More ❯
Posted:

Senior IT Technician

Bournemouth, Dorset, United Kingdom
SoCode Limited
maintenance to ensure system stability, security, and compliance. Assist with IT projects, implementing work packages independently or under guidance. Support a broad range of Microsoft platforms, including Windows 10 / 11, Office 365, Microsoft Server technologies, and core infrastructure systems (AD, DHCP, DNS). Mentor junior IT staff to maintain high service delivery standards. Engage with technology groups to … MDM solutions (e.g., Intune) and network troubleshooting (LAN, Wi-Fi, VLANs, DNS, DHCP). Experience with safeguarding and compliance technologies. Knowledge of hybrid cloud environments and compliance frameworks (ISO 27001, Cyber Essentials Plus). If you want to be part of a global team focused on teaching, learning, and student development than this could be a More ❯
Employment Type: Permanent
Salary: £30000 - £35000/annum 25 days + 8 bank holidays
Posted:

Infrastructure Engineer eDV Cleared

Cheltenham, Gloucestershire, England, United Kingdom
Oscar Technology
not limited to requirements such as GDPR & ISO 27001. Collaborating with other areas within the company such as the Infrastructure & DevOps teams to integrate virtualisation with CI / CD pipelines and other automation frameworks. Skills: VMWare - vSphere Hyper-V Strong knowledge with automation and scripting technologies such as Python, PowerShell or Ansible. Cloud-based virtualisation (e.g., Azure … GCP, AWS) Knowledge around relevant industry standards such as ISO 27001 & GDPR. Benefits Healthcare package Life Works Gym Allowance Cycle to Work Long-Term Sickness Insurance Employee Assistance Programme Discretionary Bonus Infrastructure Engineer (eDV Cleared) | £70,000-£100,000 | VMware | Hyper-V Oscar Associates (UK) Limited is acting as an Employment Agency in relation to this More ❯
Employment Type: Full-Time
Salary: £65,000 - £100,000 per annum
Posted:
ISO/IEC 27001
the South West
10th Percentile
£30,250
25th Percentile
£47,500
Median
£50,000
75th Percentile
£63,438
90th Percentile
£85,000