26 to 50 of 364 Permanent ISO/IEC 27001 Jobs in the UK

As a pioneer of the sharing economy, Brambles / CHEP is one of the world’s most sustainable logistics businesses and our culture is reflective of our people, our purpose, the experience people bring, and the experiences they have. We operate in 60 countries, with over 12,000 people … and 123 different nationalities. As Brambles / CHEP continues its transformation journey into shaping the future of IAM capabilities, our next IAM Director will establish the foundation for which the company will operate from for Identity and Access Management in the future! * Flexible location * Position Purpose Responsible for the … teams, against various standards and approaches in which this leader will work to consolidate, update, and ensure best practices and standards are introduced and / or reinforced to drive the reduction in risk and improved operational excellence against these critical applications and processes for company operations. Provide technical insight more »

James are partnered with a multi-national consulting group to assist in the hiring of a Cyber Security Manager - with deep experience of ISO 27001 with multiple blue-chip FTSE-sized clients.The role can be based anywhere in the UK, on a hybrid basis, paying between … James are partnered with a multi-national consulting group to assist in the hiring of a Cyber Security Manager - with deep experience of ISO 27001 with multiple blue-chip FTSE-sized clients.The role can be based anywhere in the UK, on a hybrid basis, paying between … and mentoring junior consultants assigned as members of engagements * Contributing to the development of project management, quality assurance and professional consulting and auditing approaches / methodologies.Skill, Knowledge and Experience:- * Highly experienced and strong knowledge in cyber security advisory work * Relevant security qualifications are preferable (e.g. MSC Information Security, CISSP more »

background in information security, risk management, and compliance, as well as a minimum of 3 years experience in designing and delivering client-facing ISO 27001 related Information Security consultancy, DPIAs and other Data Protection related services.Develop a Virtual Information Security Advisor serviceDeveloping and ISO 27001 Implementation programmeManaging the existing Internal Audits Managed Service offeringYou will be responsible for carrying out Data Protection Impact Assessments for existing clients, and managing a dedicated Data Protection advisor (yet to be hired).Deliver DPIA’s for clientsYou will help clients design and implement a … DPIA questionnaires and processesPerforming DPIAsDesigning and implementing Performing Supplier due diligence processes.Oversee our organisation’s information security management system (ISMS) in accordance with ISO 27001 standardsConduct risk assessments, manage the company Risk Register and Risk Treatment Plan, and oversee the programme of in-house and customer more »

background in information security, risk management, and compliance, as well as a minimum of 3 years experience in designing and delivering client-facing ISO 27001 related Information Security consultancy, DPIAs and other Data Protection related services.Develop a Virtual Information Security Advisor serviceDeveloping and ISO 27001 Implementation programmeManaging the existing Internal Audits Managed Service offeringYou will be responsible for carrying out Data Protection Impact Assessments for existing clients, and managing a dedicated Data Protection advisor (yet to be hired).Deliver DPIA’s for clientsYou will help clients design and implement a … DPIA questionnaires and processesPerforming DPIAsDesigning and implementing Performing Supplier due diligence processes.Oversee our organisation’s information security management system (ISMS) in accordance with ISO 27001 standardsConduct risk assessments, manage the company Risk Register and Risk Treatment Plan, and oversee the programme of in-house and customer more »

This position supports our cyber security and ESG certification programme, and the successful candidate will need extensive experience in compliance activities associated with ISO 27001, ISO 9001 and SOC 2 as a minimum . The nature of this position requires contact with company employees … concurrent and dynamic work streams Good knowledge and practical experience of ISO 9001 Desirable... Understanding and experience with SASB, TCFD, CSRD and / or ISSB frameworks Has worked in an environment that has an external interface with customers or regulators Has worked in a GRC, technical audit … to our Global Talent Acquisition Team and be the first to receive new opportunities which may align with your skills and career aspirations. https: / / crm.mimecast.com / flows / talentcommunity We look forward to hearing from you! DEI Statement Cybersecurity is a community effort. That more »

desire to grow and develop the functions of the role. Roles and Responsibilities You will be expected to manage & own elements of Technical Publications / Authoring work / tasks and conform to challenging project timelines. Liaise with product suppliers to compile data and information and translate to a … variety of national / international / civil / military specifications and produce physical / electronic deliverables reflecting quality processes to a high standard of written and technical English compliant with Def Stan's and JSP's. Commission, coordinate or prepare illustrations and occasionally technical training packages … the business and align your colleagues to this activity Focus on continuous improvement - working with the engineering and production leadership teams to improve efficiency / quality during build. Experience Previous experience as a Technical Author or similar within an engineering function, preferably within the defence industry Extracting information from more »

Oracle ERP Financials (UK) Lead / Principal Consultant (including the Oracle Procurement Module(s)) THIS IS A PERMANENT / On-Staff role and it is anticipated that it will 'progress' into the Practice Lead / Practice Head role. UK BASED ROLE (typically Home / Hybrid with … needed). ELIGIBILITY for UK Government Security Clearance is required (see below). Introduction: Widely considered to be leading players in the Oracle ERP / Financials marketplace in the UK (along-with all our work in the Oracle HCM & Payroll space), we offer a warm, friendly atmosphere, interesting & challenging … help to move our customers from “adopting Cloud” to “embracing Cloud”. We are delighted to be able to say that we’re an ISO27001, BACS and Cyber Essentials accredited business but there are many reasons that we’re proud of what we’ve achieved over the years. more »

Based from Glasgow / Belfast / Manchester or Remote based on circumstance Founded in 2000, 3173 has a number of serviced offices spread across the UK, with offices in Belfast, Glasgow, London, Manchester, Birmingham, Bristol and Leeds. 3173 has several different companies within the group, including Dalriada Trustees … all Stakeholders in order to assess the suitability and resilience of our Key Suppliers. Contribute to the monitoring of an effective Business Continuity Plan / Disaster recovery plan by working with Stakeholders to update the plan and to ensure the plan is tested at least annually. Contribute to the … Required for the Role A strong quality management background obtained from significant and relevant experience in a similar role. Competence and experience in implementing / assessing / monitoring ISO management standards, ISO 9001:2015 and or ISO 27001. Experience in auditing and more »

AWS / Security / DevSecOps / Control Tower / IAM / CI / CD pipeline Are you an enthusiastic security specialist in AWS? A top-tier DevSecOps Engineer? Are you eager to take charge of the technical direction for one of the most rapidly … services and features, including IAM, VPC, EC2, S3, RDS, Lambda, and CloudFormation Strong understanding of security best practices, principles, and frameworks, such as ISO 27001 controls and NIST Guidelines Experience in implementing security automation using scripting languages e.g. Python and infrastructure-as-code (IaC) tools Ability more »

Based from Glasgow / Belfast / Manchester or Remote based on circumstance Founded in 2000, 3173 has a number of serviced offices spread across the UK, with offices in Belfast, Glasgow, London, Manchester, Birmingham, Bristol and Leeds. 3173 has several different companies within the group, including Dalriada Trustees … all Stakeholders in order to assess the suitability and resilience of our Key Suppliers. Contribute to the monitoring of an effective Business Continuity Plan / Disaster recovery plan by working with Stakeholders to update the plan and to ensure the plan is tested at least annually. Contribute to the … Required for the Role A strong quality management background obtained from significant and relevant experience in a similar role. Competence and experience in implementing / assessing / monitoring ISO management standards, ISO 9001:2015 and or ISO 27001. Experience in auditing and more »

Manchester, UKAssessment Services – AppDev / Finance / B2B / Regular Full Time / RemoteAbout CoalfireCoalfire is on a mission to make the world a safer place by solving our clients’ toughest cybersecurity challenges. We work at the cutting edge of technology to advise, assess, automate, and … against regulatory and industry requirements and standards, and against security best practice frameworks. You will have a strong understanding of framework requirements, perform audit / assessments, and develop reports for clients. You will also provide quality control and peer review to other members of the delivery staff. This role … integrity and effectiveness of security measures. You will test technical controls, policies and procedures, laws, regulations, and industry best practices.What You'll DoLead audits / assessments including audit plan preparation, review of documentation and evidence, evaluation of procedures, and client interviews. Prepare, review and approve assessment reports. Manage priorities more »

secure solutions What are we looking for? Broad understanding of technology and security controls Experience in supporting security control frameworks, such as NIST and ISO27001 / 2. Experience of ISO27001 / ISMS implementation or audit is highly desirable. Recognised industry qualification (CISSP, CISM, CEH, CISA) Preferable Able to … translate Information Security and IT risk language into business language. Risk Management methodologies, frameworks, and standards (ISO 27001, ISO31000, ITIL, COBIT) Able to build and maintain relationships and influence key stakeholders across the business. A creative and analytical mind with good stakeholder interfacing and excellent communications more »

Security Steering Committee where appropriate. Security Audits and Certifications: Coordinate regular internal and external audits and address any issues raised to maintain certifications (currently ISO27001 and Cyber Essentials Plus), which are essential in demonstrating our commitment to information security to our clients. Security Training: Deliver information security awareness training for … following qualifications SaaS Experience: 3 years+ working for SaaS provider (B2B or B2B2C), where you routinely interacted with product, engineering and commercial teams. ISO 27001 Implementation: 3 years+ in an information security role with direct responsibility for implementing and maintaining an ISO 27001 … comprehensive range of flexible benefits Normal Working Hours 37.5 per week Location: Leatherhead House, Station Road, Leatherhead, Surrey KT22 7FG Hybrid role with office / home working split. more »

technical IT support & telephone cover to all NHS Resolution employees and external stakeholders. The post holder will require an aptitude for working with applications / systems to undertake analysis, diagnosis and resolution of staff problems, explaining information in a clear and logical way. Provide / maintain an exceptional … To provide outstanding customer service as part of the Service desk team and in accordance with departmental KPIs. Providing day-to-day Service Desk / IT Technical support to NHS Resolution staff along with external stakeholders. Support carrying out the testing of systems / applications that are being … the creation of appropriate test scripts. Please see the attached Job description and Person specification for more information. Main duties of the job Provide / maintain an exceptional level of customer service with internal and external stakeholders. To help callers with a support issue in a calm, polite, courteous more »

to support company expansion. Communicate engineering strategy to stakeholders and the board. Oversee the AWS cloud infrastructure for development, testing, production, and continuous integration / deployment. Experience Requirements: Over 7 years experience in Leadership in Medical Imaging Deep understanding of one medical imaging modality; MRI, PET, Ultrasound, CT. Proven … software solutions for the medical imaging field. Built and led high-performing product development teams across the entire lifecycle. Experience managing software development, UI / UX / workflow design, testing, SaaS security, and PACS / EMR integration. Worked with Cloud based SaaS (ideally AWS) Ideally some familiarity … with Ai / ML for diagnosis Benefits Competitive salary, with share options and bonus potential 25 holidays per year plus bank holidays Private medical insurance, Life insurance Enhanced pension contribution Cycle-to-work scheme more »

solutions, and RFP documents Required skills and experience: Experience working as a Cyber security technical architect with proven experience working in commercial, public and / or industrial sectors Solid grasp of information security requirements and capabilities across different industries A depth of information technology and information security experience Experience … in design and deployment of several of the following technologies: Endpoint, network and infrastructure threat protection Cloud Security within Azure and / or AWS IAM Identity Access Management SIEM and MDR VA Vulnerability Analysis and mitigation DLP Data loss prevention PKI Public key infrastructure Ability to guide engineering teams … certification (e.g., MCSE, CCDP, CCIE, RHCA, etc.) Knowledge and understanding of UK government protective marking standards; industry standards, including PCI-DSS, ISO / IEC 27001, etc. Awareness of common exploits and vulnerabilities and how these may be prevented Strong network engineering and server more »

solutions, and RFP documents Required skills and experience: Experience working as a Cyber security technical architect with proven experience working in commercial, public and / or industrial sectors Solid grasp of information security requirements and capabilities across different industries A depth of information technology and information security experience Experience … in design and deployment of several of the following technologies: Endpoint, network and infrastructure threat protection Cloud Security within Azure and / or AWS IAM Identity Access Management SIEM and MDR VA Vulnerability Analysis and mitigation DLP Data loss prevention PKI Public key infrastructure Ability to guide engineering teams … certification (e.g., MCSE, CCDP, CCIE, RHCA, etc.) Knowledge and understanding of UK government protective marking standards; industry standards, including PCI-DSS, ISO / IEC 27001, etc. Awareness of common exploits and vulnerabilities and how these may be prevented Strong network engineering and server more »

solutions, and RFP documents Required skills and experience: Experience working as a Cyber security technical architect with proven experience working in commercial, public and / or industrial sectors Solid grasp of information security requirements and capabilities across different industries A depth of information technology and information security experience Experience … in design and deployment of several of the following technologies: Endpoint, network and infrastructure threat protection Cloud Security within Azure and / or AWS IAM Identity Access Management SIEM and MDR VA Vulnerability Analysis and mitigation DLP Data loss prevention PKI Public key infrastructure Ability to guide engineering teams … certification (e.g., MCSE, CCDP, CCIE, RHCA, etc.) Knowledge and understanding of UK government protective marking standards; industry standards, including PCI-DSS, ISO / IEC 27001, etc. Awareness of common exploits and vulnerabilities and how these may be prevented Strong network engineering and server more »

will be recognised and valued. To be considered for this role you will Have in-depth knowledge of security frameworks, such as NIST, ISO 27001, and PCI DSS Possess proven experience in security risk management & compliance in ISO 27001, GDPR, PCI DSS … security functions, ensuring compliance, and fostering strong technical partnerships. To excel in this role, a comprehensive understanding of security frameworks such as NIST, ISO 27001, and PCI DSS is essential. Your background should reflect a proven track record in security risk management and compliance, with a more »

regular risk assessments and vulnerability scans to identify potential security weaknesses and prioritize remediation efforts. Implement and manage security controls, including firewalls, intrusion detection / prevention systems, endpoint protection, and encryption technologies. Develop and deliver cyber security awareness training and education programs for employees. Qualifications / Skills: Bachelor … network security, endpoint security, identity and access management, and encryption. Experience with cyber security frameworks and standards (e.g., NIST Cybersecurity Framework, ISO / IEC 27001, CIS Controls). Relevant certifications (e.g., CISSP, CISM, CISA) preferred. If your interested and have prior experience working more »

through our risk management framework and ensuring key risks are reported to the CISO. Performing regular internal security audits aligned to ISO / IEC 27001 and SOC2 controls. Developing our security awareness training programme aligned with internal security policies. Comfortable engaging with customers … NCSC CAF), supporting processes and toolsets. Ability to breakdown and solve complex problems across multiple domains and successfully lead the recovery of major and / or complex security incidents. Knowledge and experience of threat hunting and problem-solving through reviewing logs and identifying anomalous activities (Desirable). For any more »

so we are seeking a Senior PCI QSA who has a broad range of skills across Cyber Risk, Governance, and Compliance (GRC), NIST, ISO 27001, Risk Assessments, supplier risk assessments, cyber maturity models, and third-party risk management. What sets our client apart: This opportunity is … business and the threats they face. Your role encompasses conducting gap analysis and risk assessments across various information security frameworks like PCI DSS, ISO 27001, and NIST. Ensuring information risks are addressed with stakeholders at all levels is crucial. Additionally, you'll implement compliance and audit … Cyber Risk Advisory Services - Conducting gap analysis, supplier audits, third party assessments and risk assessments related to multiple information security frameworks such as ISO 27001 and GDPR and ensuring information risks are adequately addressed with stakeholders (internal and external) at all levels, as required. Collaborating with more »

managing Incidents and problems Experience in a senior technical ICT Security role Working experience with Industry renowned standard practice and policies [CE+ / ISO27001] Extensive experience completing ICT Security Risk assessment and managing risk mitigations Extensive experience producing ICT Security Policies and managing the policy life cycle Significant experience … issues where material is conflicting and drawn from multiple sources Numerate and able to understand complex financial issues combined with deep analytical skills Intermediate / advanced Keyboard skill - intermediate / advance ability to use Microsoft Office package Comprehensive knowledge of project principles, techniques and tools, such as Prince … A / I Ability to prepare and produce concise communications for dissemination to a broad range of stakeholders as required; ? A / I Demonstrated capability to plan over short, medium and long -term timeframes and adjust plans and resource requirements accordingly Ability to prepare and produce concise communications more »

annual leave plus public holidays, increasing to 29 days after 3 years service - Pension scheme (3% employee contribution; up to 10% employer contribution) - Hybrid / agile working options - Private medical insurance and healthcare cash plan - Employee assistance programme and access to mental health first aiders - Learning and development opportunities … Extensive knowledge and experience of managing a Windows environment - Experience with systems planning, security principles, network capacity planning and other best practices - Excellent software / hardware troubleshooting experience - Strong team management skills - The ability to conduct research into systems issues and products as required - The ability to communicate ideas … Any one of the following qualifications would be beneficial: Microsoft Certified Solutions Expert, MS Azure Administrator Associate, VMware Certified Professional, Data Protection Certification (EU / GDPR / P, CIPP / E) and / or Security / Compliance Auditing (ISO 27001). more »

annual leave plus public holidays, increasing to 29 days after 3 years’ service - Pension scheme (3% employee contribution; up to 10% employer contribution) - Hybrid / agile working options - Private medical insurance and healthcare cash plan - Employee assistance programme and access to mental health first aiders - Learning and development opportunities … Extensive knowledge and experience of managing a Windows environment - Experience with systems planning, security principles, network capacity planning and other best practices - Excellent software / hardware troubleshooting experience - Strong team management skills - The ability to conduct research into systems issues and products as required - The ability to communicate ideas … Any one of the following qualifications would be beneficial: Microsoft Certified Solutions Expert, MS Azure Administrator Associate, VMware Certified Professional, Data Protection Certification (EU / GDPR / P, CIPP / E) and / or Security / Compliance Auditing (ISO 27001). more »