1 to 25 of 29 Permanent ISO/IEC 27001 Jobs in the Thames Valley

Cyber Security Implement Cyber Security policies under the SIRO. Lead ISO 27001 recertification, internal audits, and remediation. Work with infrastructure / product teams on data security and incident handling. Oversee playbooks and ensure measurable risk reduction. Digital Clinical Safety Collaborate with IT, Clinical, Legal … SIRO, and Caldicott Guardian. Maintain the Digital Clinical Safety Policy with CMO / CTO. Lead biennial reviews for DCB0129 / 0160 and MDD compliance. Oversee training compliance and safety case documentation. Quality Management Lead the ISO 9001aligned Quality Management System. Manage ISO 9001 audits ...

Head of Internal Audit, you will build and lead a modern, insight-led assurance capability across IRISs multi-product SaaS portfolio, including accountancy, payroll / HCM, and education, as well as core group functions and processes. This role combines Third Line (Internal Audit) leadership with support from … Audit Charter, methodology , and quality framework in line with IIA Global Internal Audit Standards Lead end-to-end audits across operational, financial, compliance, product / technology, and change domains, directing co-sourced SMEs where required , and introducing agile, data-enabled auditing techniques to increase coverage and reduce cycle time ...

Information Security & Data Protection Manager Based: Remote (UK) / High Wycombe / London (N7) / Hybrid Term: Permanent, Full time Reporting to: Chief Information Officer (CIO) Salary: £60k - £85k pa + excellent benefits The Role We're looking for an Information Security Compliance Specialist to take ownership … business, own the incident management process (including phishing response and simulation exercises), and manage vulnerability scans and penetration testing (including external Red / Purple / Blue Team engagements) Risk & resilience: conduct risk assessments across products, systems, and processes; own the Information Security and Data Protection risk register, contributing ...

diligence, contractual security commitments and third‐party risk management Help define how security responsibilities and capabilities are allocated across Aurora’s technology, legal / compliance and business functions, ensuring clear accountability, effective challenge and strong delivery Drive security by design across Aurora’s products, platforms, systems and infrastructure, working … sufficient depth to guide strategy, challenge decisions and work effectively with specialist software engineering and IT teams Broad experience across areas such as product / application security, cloud / infrastructure security, identity and access management, incident response, vulnerability management and security governance Proven experience developing and delivering ...

enable global coverage Driving continuous improvement across security and network operations processes and performance Essential Experience Proven experience leading a Security Operations Centre (SOC / NSOC) or cyber security function within a complex organisation. Experience in security operations, incident response, risk management, and service delivery. Experience maintaining compliance with … response, and security monitoring. Good knowledge of network infrastructure, cloud technologies, and endpoint security. Experience with Microsoft Azure, Microsoft Sentinel, Microsoft Defender, and Windows / macOS environments. Understanding of security governance, compliance, and audit requirements. Leadership & Communication Strong leadership, people management, and team development skills. Ability to drive continuous ...

Design and evolve scalable backend services in Python using FastAPI for high-availability, high-throughput workloads. Build well-versioned RESTful APIs aligned to OpenAPI / Swagger, with strong conventions for consistency, idempotency, and backward compatibility. Implement authentication and authorization using OAuth2 / OIDC, session management, and fine-grained … meet performance budgets and latency goals. Integrate with AI pipelines and model-serving endpoints, including streaming responses, async inference jobs, and robust error / retry semantics. Palantir Foundry Integration Work with Palantir Foundry to build and maintain data pipelines, ontologies, and integrations that connect backend services to Foundry-based ...

public sector accounts. This is a remote, client-facing role for a highly technical and experienced presales professional with a strong MoD / Government / Public Sector background and current SC clearance. Key Requirements Essential skills and experience: 10+ years’ experience in IT, with at least 3 years … Government or public sector clients Ability to translate technical challenges into clear commercial value Strong expertise in: Cisco routing, switching, gateways, and applications TCP / IP, SNMP, Netflow, VoIP LAN / WAN topologies (MPLS, Frame Relay, ATM) Security concepts and network infrastructure design Network performance and fault / ...

delivery teams in remote environments Desirable Experience Experience supporting government or critical national infrastructure environments Knowledge of NCSC guidance, Secure by Design principles, ISO 27001, NIST or JSP standards Experience delivering maturity assessments or audit activities Professional certifications such as CISSP, CISM, ISO 27001 … progression pathway into our consultancy service, and we will passionately support professional growth to develop our employees. Flexible working is available, including part‐time / term‐time patterns. All suggestions are welcomed and will be discussed as part of a proposed employment package. Logiq is dedicated to fostering ...

support new opportunities Provide technical leadership across problem management and complex change activities What We’re Looking For Essential Skills & Experience Strong 3rd Line / Infrastructure experience (3–5 years minimum) Experience in a Managed Services environment Expertise in networking technologies including: Juniper (Mist), Aruba, or Cisco (switching, routing … wireless) VLANs, DNS, DHCP, and certificate services Firewalls (Fortinet, Cisco, Palo Alto, Check Point) ESX / virtualisation experience Network Access Control (Cisco ISE / Aruba ClearPass) Familiarity with ITSM tools (e.g. ServiceNow) Confident working directly with customers and senior stakeholders Desirable Cisco CCNP (or equivalent) ITIL v4 Foundation ...

with technical teams across the domain & drive the security solution deployment.Should have experience in configuring and managing security products such as firewalls, intrusion detection / prevention systems (IDS / IPS), SIEM (Security Information and Event Management) systems, Log Collector and Identity Management solution.Should have customer facing skills … least in one of the following solutions: Logging, PKI Infrastructure, Identity, and access management, Security testing in telecom networks.Experience with 3GPP 5G Release 15 / 16 will be a plus.Security certifications (e.g., CISSP, CISA, CCIE, CISM) or knowledge of security frameworks and best practices (e.g., NIST, ISO ...

Cyber Security ConsultantMainly remote with occasional UK office / site visits£55,000-£65,000 depending on experience, + Benefits An established and expanding information security consultancy is looking to appoint a Cyber Security Consultant to support a growing portfolio of client engagements across the UK. This … governance documentation Experience required: 2+ years experience in information or cyber security Previous consultancy experience with the ability to engage effectively with clients / customers and understand their requirements Ability to simplify complex topics and offer practical, grounded advice An understanding of ISO 27001, GDPR ...

full network cycle services for fixed, private and mobile operators. Private networks- We find the best technology, manage assets and refresh systems. With 24 / 7 network operations, we keep things running smoothly, while operating comprehensive network repair and maintenance to keep everything in top shape. Want to come … customer-facing roles; strong knowledge of vulnerability management, PEN testing, and risk mitigation; expertise in network security, device management, and governance; familiarity with PUAM / UAM tools and practices; excellent communication, reporting, and stakeholder management. Desirable: Certifications such as CISSP, CISM, or CEH; knowledge of CAF, ISO ...

Policy & Governance Lead / GRC Analyst Active SC Clearance – required to work on‐site MOD / aerospace programmes. Aerospace and Defence Experience – demonstrable background delivering architecture within MOD, Defence Digital, or UK aerospace environments. This role will be based in Reading with hybrid / custom working options … where appropriate. Area: Policy & Governance, GRC / Assurance Purpose of the Role Define, maintain, govern, and assure compliance with the organisation’s ISMS policy framework, standards, and procedures, while supporting audit readiness and control assurance. Key Responsibilities Own and maintain all policies, standards, procedures, and guidelines aligned to ISO ...

expert knowledge of KPMG's technology ecosystem, incl. the main applications and technologies that interact with integration technologies If required, provide advice to and / or seek to learn from other Member Firms, client teams and / or clients that are seeking to implement or improve their … Management, Logic Apps, Event Grid, Service Bus, Key Vault, and Blob Storage. Demonstrable knowledge of DevOps & IaC, including Azure DevOps, GitHub, Terraform, Azure Bicep / ARM, and Azure Policy. Knowledge of other leading Cloud-based integration platforms, e.g., AWS Integration Services, MuleSoft, Dell Boomi, Informatica Knowledge of security aspects ...

transport protocols (TCP, UDP, ICMP, ARP), infrastructure protocols (DNS, DHCP, BGP, SNMP), common application protocols (SMB, RDP, HTTP, FTP etc) and security protocols (TLS / SSL, IPSec, SSH, SAML, OAuth etc) Proven history of identifying, assessing and remediating network related security risks / misconfigurations Strong technical knowledge … projects spanning multiple countries and cultures Background of defining security standards and processes in large corporate IT environments Working knowledge of Cyber Security frameworks / methodologies (such as NIST, ISO 27001, MITRE ATT&CK, Lockheed Martin Kill Chain etc) Network Security Architect ...

/ 4 HANA Finance Enterprise Architect The role of the SAP S / 4 HANA Finance Enterprise Architect is to develop the UK Firm’s technology strategy for Finance and Engagement Management domain and translate this into a roadmap that determines our investment priorities and transformation portfolio. … solutions; and govern relevant technology choices within the Firm. In addition to the FEM domain, you will be expected to cover other business and / or technology domains as and when required. Core knowledge Maintain a high level of technical knowledge incl. current, emerging and future technology market trends ...

Azure Cloud principles Microsoft 365, AD, Entra, Intune, Defender, and cloud services. Strong PowerShell and automation skills. Good understanding of ITIL, ISO / IEC27001, Cyber Essentials Plus, and security best practice. Excellent troubleshooting, communication, and customer service skills. What you'll do Support and maintain secure infrastructure ...

Microsoft Hyper-V environments. Supporting core data centre infrastructure, including physical servers, storage, backup and disaster recovery solutions. Ensuring compliance with security frameworks including ISO27001, Cyber Essentials Plus and NCSC guidance. You will have - Strong hands-on experience with Microsoft Azure, including administration, security and identity services. Proven expertise ...

Microsoft Security Elite Partner MISA member [Microsoft Intelligence Security Association] – of only 300 worldwide Copilot Jumpstart Partner (AI) FastTrack partner Accreditations and Memberships ISO27001 certified Cyber Essential Plus and Cybersecurity Made in Europe accredited Samsung Knox Managed Service Provider Founding member of the Enterprise Mobility Experts Alliance (EMEA) Deloitte Best ...

teams to ensure controls are implemented according to agreed baselines. Align control design with industry standards, regulations, and best practices. (e.g. NIS, ISO27001, GDPR). Support audits, reviews, and assessments of security controls. Identify and implement improvements to control coverage and resilience. Proactively advise on technology, best practices, and delivery … also had Previous experience working in a large, complex infrastructure-based or water utility organisation. Experience in systems or network administration in IT and / or OT environments. Experience leading or mentoring others in delivering cybersecurity outcomes. Security engineering vendor or product certifications such as Microsoft Certified: Azure Security ...

Policy & Governance Lead Reading 6-Month Contract Paying up to £88p / h (Inside IR35) Please note that due to the nature of the work, you’ll need to hold a high level of UK security clearance Overview: As the Policy & Governance Lead, you’ll be required to define … standards, and procedures, while supporting audit readiness and control assurance. Key Responsibilities Own and maintain all policies, standards, procedures, and guidelines aligned to ISO 27001. Manage updates, reviews, version control, and stakeholder approvals. Operate the evidence room, ensuring evidence is correctly catalogued, tagged, and mapped. Track control implementation ...

Coordinator – Key Skills: 1–3 years of experience in IT governance, cybersecurity, or compliance roles Familiarity with GRC and SIEM tools Familiarity with ISO 27001 and SOX frameworks Expertise in Excel and Word Governance and Cyber Security Coordinator Due to the volume of applications received ...

work and risk assessments Maintain security documentation, policies and audit evidence Provide user guidance and training on secure technology use Support Cyber Essentials and ISO27001 activities Act as senior escalation point for the Helpdesk team Coach Helpdesk staff on infrastructure and security best practice Work with third-party suppliers … Able to work unsupervised while maintaining confidentiality Full clean UK driving licence Desirable Experience in professional services or legal environments Exposure to Cyber Essentials, ISO27001 or similar frameworks Basic scripting / automation (e.g., PowerShell) Familiarity with disaster recovery testing and monitoring tools Experience supporting cloud optimisation or infrastructure modernisation ...

overseeing security architecture across cloud, on-prem and hybrid environments developing, implementing and maintaining cyber security strategy and governance (aligned to various frameworks e.g. ISO27001, NIST, Cyber Essentials) overseeing security operations (SOC, threat detection, vulnerability management etc.), and incident response plans risk management and compliance, ensuring compliance with various standards … CISA etc. have broad technical expertise / knowledge across cloud security (AWS, Azure, GCP), IAM, and security platforms knowledge of security frameworks e.g. ISO27001, NIST, Cyber Essentials etc. On offer Competitive salary and benefits package, including hybrid working. This is an exciting opportunity to grow with the business ...

business requirements. Collaborate with internal and third-party development teams to support smooth deployment and operation of cloud-hosted applications. Implement and manage CI / CD pipelines to automate software releases in line with operational best practices. Lead the design and build of resilient production and non-production environments … equivalent Desirable Skills & Experience Experience migrating legacy on-premise applications and infrastructure to cloud platforms. Familiarity with ISO27001 and NIST 800-171 frameworks. Experience using the full Azure DevOps suite. Knowledge of: Azure Databricks Azure Front Door Azure Function Apps Microsoft Cloud Data Gateways Understanding of event-driven and RESTful ...