1 to 25 of 504 Permanent ISO/IEC 27001 Jobs in the UK

powered OS for beauty, wellness and self-care / p h3 About the role / h3 p Reports to: VP of Security … Compliance / p p We’re looking for someone to own compliance end to end at Fresha. We’re already HIPAA and ISO27001 certified, we’re heading into a PCI DSS audit shortly, and later this year we’ll have GDPR and SOC 2 Type II coming up. ...

experience across information security governance, risk management, security compliance and assurance activities, with practical knowledge of frameworks and standards such as ISO / IEC 27001, NIST, Cyber Essentials, CIS Controls and the NCSC Cyber Assessment Framework (CAF). You will be expected … information security consultancy services within client-facing environments. Practical experience implementing, assessing, or managing security frameworks and standards such as ISO / IEC 27001, NIST, Cyber Essentials, CIS Controls, PCI DSS, and NCSC Cyber Assessment Framework (CAF). Strong understanding of information security ...

holidays with the option to buy more? Group Personal Pension Plan Car Allowance Career development & progression with the opportunity to earn professional qualifications 24 / 7 access to a virtual GP and Mental health support & counselling services Cycle to Work scheme Discount club - supermarkets, phone bills, gyms & more! Life … cybersecurity controls, policies and procedures remain aligned with regulatory and industry standards. You will work hands on with key frameworks including ISO / IEC 27001, the NIST Cybersecurity Framework and Cyber Essentials, helping to monitor, implement and improve compliance activities across the business. ...

holidays with the option to buy more? Group Personal Pension Plan Car Allowance Career development & progression with the opportunity to earn professional qualifications 24 / 7 access to a virtual GP and Mental health support & counselling services? Cycle to Work scheme? Discount club - supermarkets, phone bills, gyms & more!?? Life … cybersecurity controls, policies and procedures remain aligned with regulatory and industry standards. You will work hands on with key frameworks including ISO / IEC 27001, the NIST Cybersecurity Framework and Cyber Essentials, helping to monitor, implement and improve compliance activities across the business. ...

product assurance. You may also be required to support related priority work areas including insider risk and assurance of NHS England security controls / systems. Engage diverse stakeholders across NHS England on continual security assurance activities to drive timely security improvements and resilience. Support the development and management … legislation such as NCSC CAF, NIS Regulations, GovAssure, HMG Secure by Design, NIST Special Publication 800-53, ISO 27001 / 2 and the Data Security and Protection Toolkit. Collate, analyse and summarise intelligence on security maturity indicators, audit actions and assurance reporting. Undertake line management ...

. Lead ISO 27001 and SOC 2 Type II audits, ensuring controls remain effective. Drive readiness for ISO / IEC 42001 AI certification Apply prior experience successfully obtaining ISO and SOC certifications Manage customer due diligence requests … from design to release. Perform threat modelling, define non-functional security requirements, and review designs for security impact. Guide security considerations in our AI / LLM-enabled products. Risk & Incident Management Own the company-wide incident response plan and lead tabletop exercises. Perform ongoing risk assessments, vendor security reviews ...

heart of the regulated insurance world. About You: Fluent in German and English (written and spoken) Demonstrated experience in data protection and / or compliance in a regulated environment Legal background or strong legal exposure (a Law degree is advantageous) A holder or is actively working towards a recognised … qualification (e.g. CIPP / E, CIPM, BCS Practitioner Certificate in Data Protection) — must be in place within 3 months of joining, with 2 weeks of paid study leave provided Familiar with ISO 27001 and information security management — internal auditor qualification desirable, with training support available ...

policies and contribute to a safe working environment. To carry out any other tasks where reasonable and relevant, when required QUALIFICATIONS: ISO / IEC 27001 Foundation, Lead Implementer, Lead Auditor related certifications Cyber certifications such as CompTIA Security+ (desirable) IT certifications such … CompTIA A+, Network+ (desirable) ESSENTIALREQUIREMENTS: Hands-on experience managing or supporting compliance programmes, such as: ISO / IEC 27001,Cyber Essentials / Cyber Essentials Plus, NIST frameworks, EASA Part-IS (for aviation), GDPR / data protection compliance & DFARS / CMMC ...

P2PE, PCI SSF audits Incident response readiness and planning Card production and PIN audits Cyber maturity assessments Incident response planning Gold / Silver / Bronze tabletops We have a fantastic new opportunity to join our UK Consulting and Implementation division for a Senior Consultant operating as a Qualified … Industry. Excellent communication and presentation skills. Desired Skills and Qualifications Demonstrable capability and qualifications across multiple of the following technical areas is advantageous. SOC / SIEM assessments and tooling Identity and Zero trust Security design and architecture GovAssure Operational Technology (OT) ISA 62443 Artificial Intelligence SWIFT CSP Cloud related ...

threat assessments Produce and maintain accreditation documentation including RMADS, SyOps, security cases and risk registers Apply and advise on frameworks including ISO / IEC 27001, NIST SP 800-53 and JSP 440 / JSP 604 Engage confidently with programme teams, risk owners … experience in information assurance, security assurance or GRC Proven delivery in defence or central government environments Strong working knowledge of ISO / IEC 27001, NIST SP 800-53 and the Cyber Assessment Framework Practical experience with defence accreditation frameworks ...

assurance stakeholders across the organisation Required Experience Proven experience within Cyber Governance, Risk & Compliance (GRC) Strong experience supporting ISO 27001 / ISMS initiatives Experience developing and maintaining security policies, standards, and governance frameworks Experience within enterprise cyber risk management and assurance functions Strong governance, reporting … exposure Experience defining KPIs, SLAs, or service governance models Certifications such as CISSP, CISM, CRISC, or ISO 27001 Lead Implementer / Auditor Key Skills Cyber Governance, Cyber Risk Management, Cyber Assurance, ISO 27001, ISMS, Policy & Standards Development, Governance Risk & Compliance ...

this role. You must have full unrestricted right to work in the UK in order to be considered for this position. Keywords: Security / GRC / ISO 27001 / Governance / Risk / Compliance / Audit / Consultant / Birmingham / Hybrid Circle Recruitment is acting as an Employment Agency in relation to this vacancy. Earn yourself a referral bonus if you refer somebody else who fills the role! We also offer an iPad if you refer a new client to us and we recruit for them. ...

primary liaison between client quality representatives and internal ALTEN teams for all quality-related issues Participate in meetings with client and ALTEN representatives (PRM / CRM) and actively contribute with presentations Organize quality reviews with client representatives (if applicable) and provide reporting on performance and ongoing actions according … propose adaptations to processes, methods, tools, and indicators used for project monitoring Use structured methods (8D, 5M, FMEA, 5S, Six Sigma, 5WHY’s, Ishikawa / fishbone) to analyze problems and propose solutions Project Management: Define, plan and monitor corrective and preventative action plans. Further engage internal and external stakeholders ...

objectives and KPI reporting frameworks Maintain document control processes across the organisation Ensure version control and audit traceability of all controlled documents 2. ISO & Accreditation Management Full ownership and management responsibility for all company certifications and accreditations, including but not limited to: ISO 9001 ISO … Ability to challenge operational practices constructively Experience managing corrective and preventive actions Strong communication and stakeholder management skills Desirable Experience with NSI Gold and / or BAFE environments Knowledge of cybersecurity governance frameworks Experience building integrated management systems from fragmented environments Internal or Lead Auditor qualifications Personal Characteristics Highly ...

security and compliance requirements and work closely with Engineering and IT teams to ensure they are implemented effectively Maintain existing compliance across PCI DSS, ISO27001, SOC2 and Cyber Essentials, and lead new compliance initiatives across additional standards such as ISO 27017 and ISO 27018 Manage audits … worked in security and compliance within a payments, fintech or PCI-regulated environment You have strong, hands-on experience with PCI DSS, ISO27001 and SOC2, including preparing for and delivering audits You've personally owned and delivered compliance programmes, not just overseen them You understand how security and compliance connect ...

behaviours with confidence Partner with Security, Compliance & Assurance on AI governance obligations, including emerging requirements under ISO 27001 / 42001, NIS2, and future SOC 2 scope – ensuring AI platform practices meet and anticipate regulatory expectations Make model selection and build‐vs‐buy decisions based … understanding of what they require and what preparation looks like, even without direct certification experience Exposure to AI governance frameworks, including ISO / IEC 42001, or an active interest in developing that knowledge as Infinity’s AI capability grows Experience working within a cloud‐native ...

About Engineering at Engine by Starling - https: / / www.enginebystarling.com / At Engine by Starling, we don't do "checkbox security". We treat security as a first-class engineering discipline. As a Cloud Security Engineer, you will be a hands-on builder responsible for the security … systems that check them for you. Security as Code: Design and maintain custom security tooling in Go to automate evidence collection for SOC2 / ISO 27001 and remediation of security alerts. Infrastructure & IAM: Write and peer-review Terraform to manage identity and core infrastructure across ...

ensure the product privacy and security posture. This role is a trusted collaborator of the Project Teams and work closely with Engineering and Quality / Regulatory functions. This role includes managing. Responsibilities: Represent the Spacelabs Cybersecurity and Privacy Team Responsible for leading Product cross functional team members to complete … Special Publications) Knowledgeable and experience with laws and regulations on cyber security, privacy, data protection and breach notification (e.g.: FDA cyber security guidelines, 95 / 46 / ED, HIPAA, GDPR, ISO 13485, ISO 14971. ISO 27001 / 27017 / ...

ensure the product privacy and security posture. This role is a trusted collaborator of the Project Teams and work closely with Engineering and Quality / Regulatory functions. This role includes managing. Responsibilities: Represent the Spacelabs Cybersecurity and Privacy Team Responsible for leading Product cross functional team members to complete … Special Publications) Knowledgeable and experience with laws and regulations on cyber security, privacy, data protection and breach notification (e.g.: FDA cyber security guidelines, 95 / 46 / ED, HIPAA, GDPR, ISO 13485, ISO 14971. ISO 27001 / 27017 / ...

ensure the product privacy and security posture. This role is a trusted collaborator of the Project Teams and work closely with Engineering and Quality / Regulatory functions. This role includes managing. Responsibilities Represent the Spacelabs Cybersecurity and Privacy Team Responsible for leading Product cross functional team members to complete … Special Publications) Knowledgeable and experience with laws and regulations on cyber security, privacy, data protection and breach notification (e.g. FDA cyber security guidelines, 95 / 46 / ED, HIPAA, GDPR, ISO 13485, ISO 14971. ISO 27001 / 27017 / ...

ensure product privacy and security posture. This role is a trusted collaborator of the Project Teams and works closely with Engineering and Quality / Regulatory functions. This role includes managing Cybersecurity Team members. About the Role As Senior Cybersecurity Manager , you’ll be the guardian of our products’ security … Special Publications) Knowledgeable and experience with laws and regulations on cyber security, privacy, data protection and breach notification (e.g.: FDA cyber security guidelines, 95 / 46 / ED, HIPAA, GDPR, ISO 13485, ISO 14971. ISO 27001 / 27017 / ...

security requirements for Business Continuity and Disaster Recovery Work with data owners and engineering teams to embed a culture of data literacy Ensure CAB / change includes security readiness criteria Maintain evidence packs and ISO / QMS artefacts with the Business Management Unit Maintain visibility … aligning to ISO 27001 in a complex, multi-supplier environment Establishing policies, MSBs, risk registers, DPIAs, and supplier security CISSP / CISM or ISO 27001 Lead Implementer / Lead Auditor (or equivalent) Training or certification in data governance, data quality ...

implementing cutting‐edge security and compliance programs. As a fast‐growing startup, we specialize in a wide range of frameworks—including SOC 2, ISO 27001, GDPR, CMMC, NIST 800-171, NIST 800-53, and FedRAMP—empowering companies to meet regulatory requirements and enhance their cybersecurity posture … trust, navigate complex accounts, and deliver an outstanding client experience — while also bringing deep expertise in cybersecurity compliance frameworks such as SOC 2, ISO 27001, and NIST CSF. The successful candidate will be able to come up to speed quickly, integrate into the organization, and take ...

with strong DORA experience to lead operational resilience, major incident management and recovery planning within a regulated financial services environment. Key experience: * MUST DORA / Operational Resilience * Major Incident Management * Business Continuity & Disaster Recovery * Financial Services / FinTech * ISO 22301 / ISO 27001 … / NIST * Stakeholder & Regulatory Management This role will lead DORA implementation, resilience testing, ICT incident response, third-party risk and enterprise recovery planning across the business. High-impact role with strong visibility and ownership. Apply now for immediate consideration. #DORA #OperationalResilience #BusinessContinuity #FinTech #RiskManagement Robert Half Ltd acts ...

Role: Cyber Security Consultant Location: Leeds or Manchester (Hybrid, 1 day on site / week) Salary: £60,000 Type: Permanent, Full-Time Summary: We are working with a UK cyber security consultancy to bring in Cyber Risk & Compliance Consultants into their advisory practice. The team supports a varied client … information security, compliance or audit. Working knowledge of ISO 27001, NIST, GDPR. Certifications: ISO 27001 LI / LA, CISA, CRISC, CISM, CISSP. Cloud security review experience (AWS, Azure, M365). Strong written and verbal communication across technical and executive audiences. Benefits ...