1 to 25 of 32 DemandTrendPermanent ISO/IEC 27001 Jobs in the Thames Valley

Compliance Location: Mainly remote based working in the UK with travel to Oxford, Cowley (OX4 2GQ) occasionally Contract: Permanent Hours: Full time Salary: £70,000 per annum, plus car / car allowance Benefits: 33 days holiday, pension, life assurance, employee assistance programme, wellbeing support, and flexible benefits scheme About the Job As our Head of Cybersecurity Governance Risk and … but please apply if you think youd be able to perform well in this role! Excellent written and verbal communication skills Previous experience within a GRC function, IT Security / Cyber team, Internal Audit or an IT environment Hands on practical experience of ensuring full compliance with legal & regulatory frameworks including ISO 27001 Risk management … Cybersecurity Risk and Compliance Lead, Information Security Compliance Manager, Head of InfoSec Governance, ISO 27001 Compliance Lead, ISO 27001 Lead Implementer / Auditor, NIST Cybersecurity Framework, Risk management (cyber / information security), Information Security Management System (ISMS), Control assurance / control testing, Regulatory compliance (GDPR, UK Cyber Essentials), Security More ❯

be part of an experienced team, build your skills, and grow professionally. Dionach by Nomios holds impressive certifications, including CREST, Cyber Scheme, CHECK, PCI QSA, SWIFT CSCF and ISO 27001. With our focus on enhancing customers' security and fostering team development,be joining a company that prioritizes both your growth and the safety of our clients. We're … highly skilled Cyber Security Team you will be responsible for contributing to our information security consultancy, with opportunities to work on information security assessments within sizeable projects, conduct ISO 27001 audits, help implement aspects of ISO 27001, and engage in risk management. Furthermore, there is potential for growth into such diverse fields … as PCI DSS, privacy, and business continuity. Essential experience and skills: Recognized ISO 27001 Lead Auditor qualification. Significant experience in auditing ISO 27001 based Information Security Management Systems. Significant experience in consulting and implementing Information Security Management Systems. Strong knowledge of regulatory frameworks such as the GDPR. Significant previous IT experience. Ability More ❯

Information Security Specialist (ISO Certified) About the Role Our client, a leading organisation in Berkshire, is seeking an experienced Information Security Specialist with in-depth knowledge of ISO 9001, ISO 14001, ISO 22301, ISO 27001, and PCI-DSS compliance. This role will be central to designing, implementing, and … in-class security and compliance frameworks, ensuring that all information assets and operational processes are safeguarded to the highest standards. Key Responsibilities Develop, implement, and maintain compliance with ISO , and PCI-DSS standards. Conduct risk assessments, security audits, and vulnerability testing across systems and processes. Lead incident response activities, ensuring rapid and effective mitigation. Collaborate with internal stakeholders … and external auditors to achieve and maintain certifications. Deliver organisation-wide security and compliance awareness training. Monitor and report on security performance, providing actionable recommendations. Essential Skills & Qualifications ISO 27001 Lead Implementer or Lead Auditor certification (or equivalent). Demonstrable experience managing compliance for ISO , and PCI-DSS. Strong understanding of governance, risk management More ❯

Information Security Risk and Governance Lead Location: London or Lausanne Type: Full-time | Hybrid (3 days / week onsite) Company Overview Join a pioneering AI-first biotech company that’s redefining how we discover and develop medicines. This organisation leverages cutting-edge machine learning to unlock new possibilities in drug discovery, aiming to solve some of humanity’s most … drug design. You will play a pivotal role in aligning data governance, security operations, and compliance within an environment that spans regulated biopharma workflows, cloud-native infrastructure, and AI / ML experimentation at scale. Key Responsibilities Design and implement a unified compliance framework across AI, cyber, and life sciences regulatory domains. Own and drive the strategic programme for ISO … NIST, GDPR, HIPAA, GxP, and the EU AI Act. Demonstrated experience leading compliance certification programmes and external audits. Strong understanding of cybersecurity and IT infrastructure within ML / cloud environments. Proven track record managing risk end-to-end — from identification to mitigation and communication. Practical experience with privacy and data lifecycle controls, including audit trails, de-identification, and retention. More ❯

Cyber & Technology Security Manager - Data Center Location: London / UK Salary: £85- £95k + Travel Allowance £5k / Anum , Bonus (2x salary), Pension, Life Assurance, Healthcare, Income Protection Contract: Permanent Reporting to: Senior European IT Director Are you ready to take full ownership of a high-profile cybersecurity function, shaping strategy across both IT and Operational Technology (OT … technology risk management. Key Responsibilities: Develop, implement, and maintain a robust cybersecurity strategy and governance framework aligned with business and regulatory requirements. Oversee technical security controls including firewalls, IDS / IPS, SIEM, IAM, endpoint protection, and cloud security (Azure, AWS). Lead threat detection, incident response, and recovery, ensuring minimal business disruption. Manage patching processes, AI-driven email intelligence … Strong knowledge of security frameworks (ISO 27001, NIST, CIS Controls) and regulatory compliance requirements (GDPR, NIS2). Hands-on expertise with firewalls, SIEM, IAM, IDS / IPS, and cloud security. Strong understanding of networking, infrastructure, and application security. Experience in OT security or within a data centre environment is advantageous. Why Join Us? This is More ❯

Head of Ops / Chief Operating Offer / Chief of Staff role. Career maker.** Claimer is looking for a talented startup operator / second in command to the CEO, to help run and scale the business in our next phase of growth. 🏛🚀 About Claimer We’re an AI-native product that augments corp tax advisors / … in the following 6 months. We’ve spent 6 years and 2 major pivots to get here, and we’re now at a tipping point in terms of product / market fit with the customer engagement and traction to prove it. We’re working closely with enterprise design partners to ensure what we’re building works very well, then … A problem-solver who takes initiative and can run with projects independently. Comfortable working with data and tools to track metrics and build reports. Familiarity with compliance frameworks (e.g. ISO27001, GDPR) is a strong plus. Excellent communication and people skills, with the ability to work across teams and with external partners. 🏖️ Why join us / Benefits Working closely with More ❯

desirable. Proven track record of security transformation and delivery of security projects, particularly within a federated organisation. Strong knowledge of Information Security and compliance frameworks, including NIST CSF, ISO 27001, Cyber Essentials, PCI DSS, and DORA, and the ability to design controls that align with these standards. Ability to analyse data and generate reports using tools … Bachelor’s degree in Information Security, Computer Science, or a related field. A Master’s degree is a plus. Relevant certifications such as CISSP, CCSP, CRISC, CISM, or ISO 27001 Lead Implementer are highly desirable. More ❯

now looking for an experienced and dynamic Senior Cyber Security Engineer to join our vibrant office with hybrid working. Senior Cyber Security Engineer - Responsibility: Carry out daily security engineering / operation tasks under an ITIL framework Develop an understanding of the threats, risks, vulnerabilities and evolving attack vectors facing the business. Using strong technical knowledge, continuously analyse and make … recommendations to implement effective security controls, system hardening and security improvement projects with a particular focus in application / web hosting security. Assist in the management of patching, vulnerability analysis and penetration testing to ensure recommendations are risk assessed and implemented in a timely manner Senior Cyber Security Engineer - Skills: Experience in Security Engineering, Network Security, and / … protocols such as networks, domain management, and virtualized environments. Holds or is working towards certifications like CISSP, SANS GCIA, CompTIA Security+, CCNA / CCNP, or similar. Knowledge of ISO27001, Cyber Essentials, and AAF frameworks is a plus. Due to the volume of applications received for positions, it will not be possible to respond to all applications and only applicants More ❯

be part of an experienced team, build your skills, and grow professionally. Dionach by Nomios holds impressive certifications, including CREST, Cyber Scheme, CHECK, PCI QSA, SWIFT CSCF and ISO 27001. With our focus on enhancing customers' security and fostering team development,be joining a company that prioritizes both your growth and the safety of our clients. We're … the secure and ethical use of AI. While the primary focus is on AI, you will also apply your expertise to broader GRC projects, including information security assessments, ISO 27001 audits, and general information security consulting. The ability to be adaptable and work on a variety of projects is essential. Essential experience and skills: A strong … foundation in traditional GRC, demonstrated by significant experience in auditing and implementing Information Security Management Systems. A recognised ISO 27001 qualification (e.g., Lead Auditor or Lead Implementer) is essential. You must be able to apply this rigorous mindset to new challenges. Demonstrable, hands-on experience applying AI governance principles. This must include practical work such as More ❯

strategic and operational decisions, supporting the business in managing risk appropriately. Maintain legal risk register and contribute to companywide risk review. Policy Oversight and Monitoring Where relevant implement and / or maintain key corporate policies owned by the legal team, including but not limited to anti-bribery and corruption, competition, whistleblowing, data protection and ethical conduct. Monitor adherence and … in or leading the design and implementation of compliance frameworks, policies, and legal risk controls across multiple jurisdictions. Familiarity with international compliance standards and regulations. Working knowledge of ISO standards such as ISO 27001 (information security), ISO … compliance management), or ISO 9001 (quality management), and their practical application within business operations. Understanding of internal control design, maintenance of compliance registers, and participation in internal / external audits. Proficient in using legal research tools, compliance management platforms, and document control systems. Skilled in drafting and managing corporate policies and procedures to support legal, regulatory, and More ❯

Job title Control Testing Lead - Cyber Security Ref 42015 Division Digital Location Hybrid - Clearwater Court - RG1 8DB Contract type Permanent Full / Part-time Full-time Hours 36 Salary A salary up to £78,000 per annum, depending on experience Job grade B Closing date 03 / 09 / 2025 As a Control Testing Lead , you will … Intelligence, Vulnerability Management, Security Testing, Security Architecture, Infrastructure Protection, Application Security, Identity and Access Management, Incident Investigation & Response and Cryptography. Additional skills and experiences would be great to have / bring: Experience working in a regulated environment. Experience within the water utility industry or large, complex critical national infrastructure. Experience in internal audit, external audit, or assurance functions related … to IT or cybersecurity. Professional certifications such as CISA, CISSP, CRISC, or ISO 27001 Lead Auditor are advantageous. What's in it for you? Competitive salary: up to £78,000 per annum depending on experience Annual Leave - 26 days holiday per year, increasing to 30 with the length of service (plus bank holidays) Performance-related pay More ❯

. ✔️ Strong experience drafting & negotiating commercial contracts. ✔️ Knowledge of data protection, commercial & contract law. ✔️ Pragmatic, proactive, and solutions-focused. ✔️ Excellent communicator & relationship-builder. 💡 Bonus points if you have: SaaS / fintech / tech sector experience. Knowledge of ISO 27001, SOC 2, payroll or financial services frameworks. Exposure to disputes, M&A, or advising professional More ❯

. ✔️ Strong experience drafting & negotiating commercial contracts. ✔️ Knowledge of data protection, commercial & contract law. ✔️ Pragmatic, proactive, and solutions-focused. ✔️ Excellent communicator & relationship-builder. 💡 Bonus points if you have: SaaS / fintech / tech sector experience. Knowledge of ISO 27001, SOC 2, payroll or financial services frameworks. Exposure to disputes, M&A, or advising professional More ❯

threat detection, vulnerability management, and incident response Lead threat modelling and risk assessments for critical systems and services Collaborate with engineering teams to integrate security best practices into CI / CD pipelines Monitor and respond to security incidents, coordinating investigation and remediation efforts Drive security automation and infrastructure-as-code initiatives Support compliance efforts (ISO 27001 … understanding of networking, identity & access management, and encryption technologies Hands-on experience with tools like Terraform, Kubernetes, SIEM platforms, and security scanners Familiarity with DevSecOps practices and modern CI / CD pipelines Strong scripting or coding skills (e.g., Python, Bash, or PowerShell) Excellent problem-solving, communication, and stakeholder engagement skills Nice to Have Security certifications (e.g., CISSP, AWS Security More ❯

and management response is well defined. Engage risk review and assurance activities across existing suppliers. Provide IT and business advice on aspects of security standards and regulations such as ISO27001, NIST CSF, PCI DSS, NISD and NIS2. Engage with I&T system owners to provide training in relation to information security, cyber resilience, phishing, and facilitation of cyber scenario desktop … standards, controls and consequences across both IT and manufacturing environments in manufacturing or similar industries. Experience working with information security standards and frameworks such as and regulations such as ISO27001, NIST CSF, PCI DSS, NISD and NIS2. Proven analytical, problem-solving, planning, project delivery and supplier work packages management skills. Demonstrable experience of engaging across all levels of a company … in relation to information and cyber security risks. Working towards or achieved professional certifications (ISO27001 lead, ISC2, CISM or CRISC) advantageous. Benefits Competitive salary Company bonus Pension scheme Life assurance Income protection 25 days holiday plus bank holidays Electric Car / Bike to Work schemes More ❯

role, and you’ll have a knowledge of security standards and processes such as ISO 27001 standards, (NCSC) CAF, Cyber Essentials, NIST and Cyber Essentials / Plus. We’ll also look for your experience in: Developing cyber policy and procedures Data protection and privacy Security change management Understanding business continuity resilience and incidence response Networks More ❯

security, endpoint protection, email security, and other key cybersecurity tools. Manage incident response plans and investigations, coordinating with internal teams and external partners. Ensure compliance with standards like ISO 27001, GDPR, and NIST frameworks. Promote security awareness and training across departments. Requirements: Degree in Cybersecurity, Information Security, or related field. Proven experience … in manufacturing, energy, chemicals, or similar sectors. 15 years of experience in a deeply-technical hands on role, and high level stakeholder engagement. Strong knowledge of cybersecurity frameworks, ICS / OT security, and risk management. Hands-on experience with Microsoft 365 security tools, EDR, and related technologies. Demonstrated leadership in incident response and cross-functional security initiatives. More ❯

an incredible opportunity to be part of an experienced team, build your skills, and grow professionally. Dionach by Nomios holds impressive certifications, including CREST, CHECK, PCI QSA, and ISO 27001. With our focus on enhancing customers' security and fostering team development, you will be joining a company that prioritizes both your growth and the safety of our clients. More ❯

aligning data solutions with strategic business goals. Own delivery and integration of enterprise data pipelines and platforms, ensuring stability and scalability. Maintain rock-solid operational standards, aligned with ITIL, ISO27001, and internal security policies. Shape and influence data architecture, process standards, and reusable frameworks including AI and RPA capabilities. Oversee vendor management and service contracts, ensuring SLA performance and ongoing More ❯

analytical skills. Ability to communicate effectively with diverse stakeholders. Experience in creating and implementing accreditation policies and procedures. A proactive approach to problem-solving and attention to detail. Desirable: ISO27001 Lead Auditor is highly desirable Experience in ISO17065 Holder of security certifications like CISM, CISA Job Offer Remote role with occasionally travel Annual bonus scheme Private Medical Insurance More ❯

and maintain secure, well-documented financial and third-party integrations. Enhance the integration framework for scalability, performance, and industry alignment. Assist customers and partners in integration setup and API / gateway usage. Support and expand integrations for features like event tracking and CO2 reporting. Ensure integration development aligns with modern security and GDPR standards. Implement structured logging, monitoring, and … documentation. Contribute to internal knowledge bases and explore automation tools (Power Automate, Zapier). Essential Experience: Extensive experience with C# / .NET (Core or Framework) in integration-heavy environments Understanding of REST, WebAPI, event-driven architectures, and asynchronous messaging Hands-on experience in building resilient, fault-tolerant systems using retry patterns, queues, and circuit breakers Proficiency in integration security … spoken and written) as this role is working with colleagues and clients to understand requirements, explain solutions and document clearly. Desired: Experience integrating with financial or ERP systems Swagger / OpenAPI documentation for Open APIs Familiarity with Azure services and automation tools like Power Automate or Zapier Exposure to IoT or Telematics platforms Awareness of ISO 27001 More ❯

Centre Manager, you will be the single point of accountability for the day-to-day operations and performance of the Slough facility. You will be responsible for ensuring 24 / 7 uptime, managing a high-performing team, and maintaining a secure, efficient, and compliant environment for our clients' critical data. This is a hands-on leadership role that requires … agreements (SLAs) are met or exceeded. Manage relationships with key vendors and contractors. Compliance & Audits: Ensure the facility operates in strict adherence to industry standards and regulations (e.g., ISO 27001, SOC 2, etc.). Prepare for and lead internal and external audits. Health & Safety: Be the on-site safety champion, enforcing strict health and safety protocols … at least 2-3 years in a lead, management or supervisory role. Technical Expertise: Strong understanding of data centre infrastructure, including high-voltage power distribution, UPS systems, generators, CRAC / CRAH units, and fire suppression systems. Leadership Skills: Demonstrated ability to lead, motivate, and manage a technical team in a mission-critical environment. Problem-Solving: Excellent diagnostic and problem More ❯

Centre Manager, you will be the single point of accountability for the day-to-day operations and performance of the Slough facility. You will be responsible for ensuring 24 / 7 uptime, managing a high-performing team, and maintaining a secure, efficient, and compliant environment for our clients' critical data. This is a hands-on leadership role that requires … agreements (SLAs) are met or exceeded. Manage relationships with key vendors and contractors. Compliance & Audits: Ensure the facility operates in strict adherence to industry standards and regulations (e.g., ISO 27001, SOC 2, etc.). Prepare for and lead internal and external audits. Health & Safety: Be the on-site safety champion, enforcing strict health and safety protocols … at least 2-3 years in a lead, management or supervisory role. Technical Expertise: Strong understanding of data centre infrastructure, including high-voltage power distribution, UPS systems, generators, CRAC / CRAH units, and fire suppression systems. Leadership Skills: Demonstrated ability to lead, motivate, and manage a technical team in a mission-critical environment. Problem-Solving: Excellent diagnostic and problem More ❯

multiple stakeholders with competing priorities. High standard of written and spoken business English. Desirable Skills & Experience Experience working alongside SEO teams, digital consultants, or technical specialists. Familiarity with ISO 27001 or other frameworks involving documentation, accountability, and quality controls. Understanding of agile or hybrid delivery methodologies. Benefits Merj is a welcoming, collaborative, and rewarding workspace. In More ❯

Role: Senior Cyber Security Engineer (Cyber SME) Salary: Up to £70,000 Location: Reading / Birmingham - Hybrid (1 day / week in office) Be the Cyber Security Subject Matter Expert protecting the backbone of our business.Are you a highly skilled cyber security professional ready to take ownership of security engineering and infrastructure hardening? We're looking for a … SASE, and Zero Trust. What We're Looking For Essential: Proven experience in cyber security engineering, including vulnerability management, SIEM, WAFs, and secure infrastructure design. Strong knowledge of TCP / IP, firewalls, routing, access controls, and threat-based security approaches. Excellent communication skills with the ability to create and maintain technical documentation. Background in infrastructure / networks and … CCNA / CCNP, or similar certifications. Familiar with ITIL-based service delivery, security hardening, and working cross-functionally. Desirable: Degree in Computer Science or equivalent experience. Understanding of ISO27001, Cyber Essentials, and AAF frameworks. If you would like to be considered for this role, please apply with an up-to-date CV to be considered. More ❯