1 to 25 of 54 Permanent ISO/IEC 27001 Jobs in the Thames Valley

Head of Information Security required for online retail business. The role will initially be focused on ISO27001 & ISO9001 recertifications. Responsibilities Lead on information security strategy and implementation of security roadmap Develop security KPIs and track their progress Advise senior management on risk levels and any changes impacting security posture, including … Conduct risk assessments, maintain risk registers, and design risk treatment plans. Support oversight of vulnerability tooling & processes, assess risk and prioritise remediation. Lead internal / external audits (ISO 27001 and ISO 9001) and ensure compliance with regulations (GDPR). Support wider IT project … defined gates, provision of guidance and assessment of controls. As an ideal candidate, you will have a proven track record of bringing organisations through ISO27001 & ISO 9001 accreditations. ISO27001 lead implementer or auditor qualifications are essential. More ❯

Head of Information Security required for online retail business. The role will initially be focused on ISO27001 & ISO9001 recertifications. Responsibilities Lead on information security strategy and implementation of security roadmap Develop security KPIs and track their progress Advise senior management on risk levels and any changes impacting security posture, including … Conduct risk assessments, maintain risk registers, and design risk treatment plans. Support oversight of vulnerability tooling & processes, assess risk and prioritise remediation. Lead internal / external audits (ISO 27001 and ISO 9001) and ensure compliance with regulations (GDPR). Support wider IT project … defined gates, provision of guidance and assessment of controls. As an ideal candidate, you will have a proven track record of bringing organisations through ISO27001 & ISO 9001 accreditations. ISO27001 lead implementer or auditor qualifications are essential. More ❯

systems, frameworks, and processes to support the organisation in achieving multiple industry accreditations within defined industry standards (e.g., ISO 27001 / 27101, NIST, Cyber Essentials, GDPR, GXP, etc.). Key Responsibilities: Leadership & Strategy Build, mentor, and lead a high-performing, professional cybersecurity team. Develop and … their appropriate Risk Treatment Plans. Risk & Compliance Management Define and enforce IT security policies, standards, and procedures. Ensure compliance with industry accreditations (e.g., ISO 27001, NIST, GDPR), working closely with external auditors and regulatory bodies. Conduct regular risk assessments and vulnerability management, and penetration testing to … enterprise-sized organisations. Proven track record in Security Operations, Risk Management, IAM, and Compliance. Hands-on experience with security tools such as SIEM, EDR / XDR, Firewalls, IDS / IPS, DLP, and IAM solutions. Working knowledge of security frameworks: ISO 27001, NIST, CIS, SOC More ❯

with a specific focus on IT Security. Providing 2nd line support to all employees and companies that fall under a Managed Service Contract. Responsibilities / Tasks Interrogation of the Service Desk ticketing system throughout the day to provide effective responses and resolutions to queries or incidents. Ensuring that raised … Excellent oral and written communication skills. Good numeracy skills. Ability to prioritize work under pressure and strict deadlines. Ability to communicate and advise technical / service information to different levels. Good general overall technical understanding of all new security technologies. General Support and Operations and how security decisions impact … the business WAN / LAN / Networking skill sets Microsoft / VMWare / Cloud technologies Good understanding of PC hardware, Microsoft operating systems and networking. Proven experience in IT desktop, application and server support environment Uses information systems, technology functions and applications in line with IT More ❯

with a specific focus on IT Security. Providing 2nd line support to all employees and companies that fall under a Managed Service Contract. Responsibilities / Tasks Interrogation of the Service Desk ticketing system throughout the day to provide effective responses and resolutions to queries or incidents. Ensuring that raised … Excellent oral and written communication skills. Good numeracy skills. Ability to prioritize work under pressure and strict deadlines. Ability to communicate and advise technical / service information to different levels. Good general overall technical understanding of all new security technologies. General Support and Operations and how security decisions impact … the business WAN / LAN / Networking skill sets Microsoft / VMWare / Cloud technologies Good understanding of PC hardware, Microsoft operating systems and networking. Proven experience in IT desktop, application and server support environment Uses information systems, technology functions and applications in line with IT More ❯

We are searching for a Senior Software Security Architect / Senior Application Security Architect for a marketing leading and award-winning technology and data driven business. The position is offered on a remote basis. The role is hands-on and very software engineering focused - you will be responsible for … establishing a secure SDLC and 'Secure by Design' approach / practice to be used by all of the Architecture and Software development teams. The role will involve: Developing, implementing, and maintaining application security architecture across the organisation. Ensuring our systems are designed with objectives like speed, scalability, robustness, zero … Interfacing with customers to ensure that security obligations are managed and met appropriately. About You To be considered for this Senior Software Security Architect / Senior Application Security Architect role you will be able to demonstrate a successful track record and in-depth practical experience of the Software Development More ❯

operating an ongoing information security compliance programme that delivers assurance of control performance Ensuring the ongoing compliance of baseline industry security standards such as ISO27001 / 2 are met Providing effective assurance of MIB's controls and control frameworks Providing a focal point for information security expertise Key Outputs … with relevant Legislation, Regulations, Standards and Frameworks as they pertain to Information Security Ensure compliance is maintained with our critical security compliance certification of ISO27001 Measure the performance and compliance of key MIB controls which include (but are not limited to): MIB information security policies Delivery governance gateways Technical controls … and knowledge of leading information security risk assessments Proven experience in writing Information Security policies, procedures and standards Experience in maintaining all aspects of ISO27001 / 2 compliance Working knowledge of standard risk management / control frameworks such as ISF, NIST, ISO and ITIL. Demonstrable experience More ❯

Job title Senior Cyber Threat Intelligence Analyst Ref 40789 Division Digital Transformation Location Reading - Clearwater Court - RG1 8DB Contract type Permanent Full / Part-time Full-time Hours 36 Salary Offering up to £65,000 per annum depending on experience Job grade B Closing date 15 / 05 / 2025 As a Senior Cyber Threat Intelligence Analyst , you will play a key role in protecting Thames Water's digital infrastructure by researching, analysing, and communicating the latest cyber threats facing the organisation. You'll evaluate global risks, provide actionable intelligence to stakeholders, and support the … capabilities and the broader cyber security roadmap. Base Location: Hybrid - Flexible working with travel to Thames Water offices as required Working Pattern: Full Time / 36 Hours per week What you should bring to the role: Minimum of 3 years in a cyber threat intelligence environment Strong knowledge of More ❯

is responsible for developing, implementing and overseeing the organisation's IT compliance and risk management programmes, with a strong focus on maintaining the ISO 27001 and ISO 90001 certifications. The role ensures that IT security and operations align with global Pluxee policies & procedures as … stakeholders. Define an annual roadmap for IT risk management and mitigations aligned to UK Portfolio, Information Security and Business Risk Roadmaps. PLX UK holds ISO27001 (Information Security Management System) and 9001 (Quality Management System) certifications and already has a traditional framework for risk management. Globally as Pluxee expands its governance … management. CRISC (Certified in Risk and Information Systems Control) would be a distinct advantage. Strong organisation, administration and documentation skills. Experience and knowledge of ISO27001 (Information Security Management System) and ISO 9001 (Quality Management System), ideally to Management Representative level. Knowledge of GDPR (General Data Protection Regulation) rules More ❯

is responsible for developing, implementing and overseeing the organisation's IT compliance and risk management programmes, with a strong focus on maintaining the ISO 27001 and ISO 90001 certifications. The role ensures that IT security and operations align with global Pluxee policies & procedures as … stakeholders. Define an annual roadmap for IT risk management and mitigations aligned to UK Portfolio, Information Security and Business Risk Roadmaps. PLX UK holds ISO27001 (Information Security Management System) and 9001 (Quality Management System) certifications and already has a traditional framework for risk management. Globally as Pluxee expands its governance … management. CRISC (Certified in Risk and Information Systems Control) would be a distinct advantage. Strong organisation, administration and documentation skills. Experience and knowledge of ISO27001 (Information Security Management System) and ISO 9001 (Quality Management System), ideally to Management Representative level. Knowledge of GDPR (General Data Protection Regulation) rules More ❯

27001, Cyber Essentials , and internal policies. ✔ User Support : Resolve 2nd-line issues for workstations, networks, and peripherals. ✔ Disaster Recovery : Execute backup / recovery plans and respond to outages. ✔ Security Patching : Manage updates for endpoints, firewalls, and EDR tools (e.g., CrowdStrike, Microsoft Defender ). ✔ Account Management : Administer … user access rights in line with security policies. Skills & Experience ✅ 5+ years in desktop / server support, networking, or security operations. ✅ Technical Proficiency : Microsoft / VMware / Cloud technologies. Firewalls, SIEM (e.g., Microsoft Sentinel ), and EDR tools. WAN / LAN and endpoint security (patch management, AV More ❯

27001, Cyber Essentials , and internal policies. ✔ User Support : Resolve 2nd-line issues for workstations, networks, and peripherals. ✔ Disaster Recovery : Execute backup / recovery plans and respond to outages. ✔ Security Patching : Manage updates for endpoints, firewalls, and EDR tools (e.g., CrowdStrike, Microsoft Defender ). ✔ Account Management : Administer … user access rights in line with security policies. Skills & Experience ✅ 5+ years in desktop / server support, networking, or security operations. ✅ Technical Proficiency : Microsoft / VMware / Cloud technologies. Firewalls, SIEM (e.g., Microsoft Sentinel ), and EDR tools. WAN / LAN and endpoint security (patch management, AV More ❯

Historian, Reimagination of Operator Console, Simulators, CIM, GIS and other Situational Awareness applications etc. Oversee the use of OT communication protocols such as IEC 61850, DNP3, ICCP, IEC104, IEC101. Security and Compliance: Ensure OT solutions adhere to cybersecurity best practices and comply with relevant standards (e.g., NIS-D … NERC CIP, ISO 27001). Conduct risk assessments and implement mitigation strategies to protect OT systems from potential threat. Further Responsibilities Include: Engage with stakeholders at all levels to gather requirements, create the design, and assist dev team to execute on deliverables. Work closely with Solution … conceptual and logical solution architecture by collaborating with Networks, Security, Infra and Data architecture teams in same and other domains Your Profile Key skills / knowledge / experience: Working experience in Operations Technology based applications like Data Historian, RTU, SCADA, Wide Area Management, Frequency Response etc Experience in More ❯

Historian, Reimagination of Operator Console, Simulators, CIM, GIS and other Situational Awareness applications etc. Oversee the use of OT communication protocols such as IEC 61850, DNP3, ICCP, IEC104, IEC101. Security and Compliance: Ensure OT solutions adhere to cybersecurity best practices and comply with relevant standards (e.g., NIS-D … NERC CIP, ISO 27001). Conduct risk assessments and implement mitigation strategies to protect OT systems from potential threat. Further Responsibilities Include: Engage with stakeholders at all levels to gather requirements, create the design, and assist dev team to execute on deliverables. Work closely with Solution … conceptual and logical solution architecture by collaborating with Networks, Security, Infra and Data architecture teams in same and other domains Your Profile Key skills / knowledge / experience: Working experience in Operations Technology based applications like Data Historian, RTU, SCADA, Wide Area Management, Frequency Response etc Experience in More ❯

across the project lifecycle. Provide regular, accurate status updates and reporting on ongoing activities. Attend and contribute to workshops, project meetings, and external customer / supplier interactions. About us InHealth is the UKs largest specialist provider of diagnostic and healthcare solutions. Our aim is to make healthcare better for … across the project lifecycle. Provide regular, accurate status updates and reporting on ongoing activities. Attend and contribute to workshops, project meetings, and external customer / supplier interactions. About You Youll be an experienced and analytical Business Analyst, passionate about process improvement and stakeholder engagement. With over 5 years of … various sites. Desirable qualifications and experience: Experience in the healthcare sector. Knowledge of Information Governance standards such as ISO27001. Qualifications such as IIBA CBAP / CCBA, BCS Diploma in Business Analysis, or a degree in a relevant field. Exposure to requirements management software. Core competencies: Analytical thinking and attention More ❯

security services to protect critical digital infrastructures. By combining advanced technology and expert human insight, we provide a portfolio of comprehensive services, including 24 / 7 Managed Security Operations Centre (SOC), Incident Response, Penetration Testing, Cyber Risk Assessments, CISO / CIO as a service, and Training. Our certified … integrating both off-the-shelf and custom-developed tools. • Regulatory Compliance: Assist in ensuring compliance with industry and regulatory standards such as GDPR, ISO 27001, NIST, Cyber Essentials and NIS Directive. Offer guidance on data protection and cybersecurity practices in line with local and international standards. More ❯

We are searching for a Senior Software Security Architect / Senior Application Security Architect for a marketing leading and award-winning technology and data driven business. The position is offered on a remote basis. The role is hands-on and very software engineering focused - you will be responsible for … establishing a secure SDLC and 'Secure by Design' approach / practice to be used by all of the Architecture and Software development teams. Responsibilities: Developing, implementing, and maintaining application security architecture across the organisation. Ensuring our systems are designed with objectives like speed, scalability, robustness, zero-trust, automation and … of authority inside the organisation. Interfacing with customers to ensure that security obligations are managed and met appropriately. About You: You will also have / be: Experience in creating application security strategies, standards, best practices, and providing direct input to project teams and business stakeholders is essential. Experience working More ❯

diagrams, and technical artifacts related to IAM and access control solutions. Support audit, compliance, and governance initiatives, ensuring adherence to standards such as ISO 27001, NIST, CIS, and SOC 2. Requirements Requirements Good hands-on experience with IAM tools such as Entra ID (Azure AD), Okta More ❯

the microsoft Security stack as well as a diverse range of hands-on ability. What You’ll Be Doing: Lead the technical implementation of ISO27001 and Cyber Essentials+ (CE+) Manage and enhance the Security Operations Center (SOC) , with one analyst reporting to you Oversee incident response , manage security incidents from More ❯

the microsoft Security stack as well as a diverse range of hands-on ability. What You’ll Be Doing: Lead the technical implementation of ISO27001 and Cyber Essentials+ (CE+) Manage and enhance the Security Operations Center (SOC) , with one analyst reporting to you Oversee incident response , manage security incidents from More ❯

SOWs) in collaboration with Cyber Security and Network Security delivery teams. Clearly articulate and position Bytes' cybersecurity services, including Network Security, Compliance & Assurance (ISO 27001, PCI DSS), penetration testing, and vulnerability assessments. Provide thought leadership, offering expert guidance to customers, ensuring Bytes remains aligned with customer … threats, technologies, and compliance standards. Collaborate across internal teams to enhance service offerings and customer engagement effectiveness. To participate and be a creative lead / presenter in Bytes Cyber Brand extension activities. Key Requirements Required Skills Minimum of 5 years' experience in Cyber Security, preferably within a pre-sales More ❯

SOWs) in collaboration with Cyber Security and Network Security delivery teams. Clearly articulate and position Bytes' cybersecurity services, including Network Security, Compliance & Assurance (ISO 27001, PCI DSS), penetration testing, and vulnerability assessments. Provide thought leadership, offering expert guidance to customers, ensuring Bytes remains aligned with customer … threats, technologies, and compliance standards. Collaborate across internal teams to enhance service offerings and customer engagement effectiveness. To participate and be a creative lead / presenter in Bytes Cyber Brand extension activities. Key Requirements Required Skills Minimum of 5 years' experience in Cyber Security, preferably within a pre-sales More ❯

Security Incident Response. Expert in cyber incident investigations, e-Discovery, network forensics, and cyber breach inquiries Proficiency in SIEM, SEM, and log monitoring. Scripting / programming skills. Knowledge of operating systems, hardware, software platforms, and protocols. Familiarity with security best practices and regulations (ISO 27001 More ❯

winning workplace, recognized by Best Companies as Best Company To Work For in the UK, Tech, and the South East in 2023. We are ISO27001 and ISO9001 certified by UKAS, a CREST approved penetration testing and SOC company, and hold IASME Cyber Essentials Certification and Cyber Essentials Plus certification. Learn More ❯

part of an experienced team, build your skills, and grow professionally. Dionach by Nomios holds impressive certifications, including CREST, CHECK, PCI QSA, and ISO 27001. With our focus on enhancing customers' security and fostering team development, you will be joining a company that prioritizes both your growth and More ❯