22 of 22 Permanent ISO 27001 Lead Auditor Jobs in the UK

all about? The Information Security Analyst is primarily responsible for ensuring compliance with information security frameworks such as Cyber Essentials, Cyber Essentials Plus, ISO 27001, ISO 27701, ISO 42001, GDPR, and DORA. This role focuses on internal audits … and preparing for external audits. Gap Assessments: Facilitate and / or conduct internal gap assessments and audit readiness evaluations for frameworks such as ISO 27001, GDPR, and DORA. Framework Tracking: Monitor updates to Cyber Essentials, ISO, and regulatory frameworks and ensure … vulnerabilities in coordination with IT and Security Operations teams. Have you got what it takes? Strong expertise in audit and compliance frameworks, including ISO 27001, ISO 27701, ISO 42001, GDPR, DORA, Cyber Essentials, and Cyber Essentials Plus. Familiarity More ❯

committed to delivering the highest standards of security and compliance. We are seeking a highly skilled and motivated Information Security Risk Manager to lead on A&M wide information security risk management program and join our dynamic and growing team based in either our London or Tampa … the Global Security Office Information Security Risk Register, its supporting processes, governance and reporting requirements. The successful candidate requires a strong understanding of ISO 27001 security controls, exposure to the OnSpring GRC Tool and can effectively assess and communicate technical security requirements to teams … across the firm. Key Responsibilities: Risk Management Leadership and Oversight: Working to A&M Policy and industry standards and lead the end-to-end information security risk management process, ensuring risks are proactively identified, assessed, recorded, and mitigated. Assess and prioritize security risks based on enterprise-wide More ❯

Quality Lead - Data Centre Relocation / Upgrade British Passport holders only 12 Month FTC, salary based Remote, adhoc travel when required The Company: At Amber Labs, we are a cutting-edge UK and European technology consultancy that prioritises empowering autonomy, promoting experimentation, and facilitating rapid learning to … delivery times. Our team consists of highly-skilled cross-functional consultants, analysts, and support staff. Role Overview: We are seeking an experienced Quality Lead to oversee and ensure the successful execution of a Data Centre Relocation and Upgrade project. The role involves defining, implementing, and maintaining quality … framework for the data centre migration / upgrade. Establish and enforce best practices for testing infrastructure, network, and application migration. Ensure compliance with ISO 27001, ITIL, and other relevant standards. Conduct risk assessments and impact analysis to mitigate potential failures. Define KPIs and metrics More ❯

or Compliance is a plus. Certifications (Highly Valued) CISSP (Certified Information Systems Security Professional) CISM (Certified Information Security Manager) CISA (Certified Information Systems Auditor) ISO 27001 Lead Auditor / Implementer CRISC (Certified in Risk and … years of experience in Information Security, Compliance, or IT Risk Management. Experience with regulatory frameworks in UK & EU : GDPR (General Data Protection Regulation) ISO 27001 (Information Security Management Systems) Cyber Essentials Plus (UK government-backed security framework) DORA (Digital Operational Resilience Act) - EU financial … understanding of data protection laws (UK GDPR, EU GDPR, DPA 2018) . Familiarity with risk management frameworks like NIST CSF, CIS Controls, and ISO 27005 . Experience with cyber security tools (e.g., SIEM, Malware Protection, Firewalls and others) is a plus. Strong reporting and communication skills-ability More ❯

in revenue, and supports more than 60,000 clients across a diverse range of sectors and markets. Role Purpose: An Information Security Officer (ISO) is required to support LRQA's global operations, to develop, improve and maintain the organisation's Information Security capability. Working closely with the … including Military, Defence and Critical National Infrastructure) whilst working with stakeholders across the globe to identify, manage and assess information security risks. The ISO will work proactively with Clients, IT Operations, Security Operations, Legal, Procurement, Learning and Delivery Teams to manage risk, increase awareness and champion adherence … continually improve LRQA's ISMS. Identifying areas for improvement within the ISMS and take ownership of developing and executing plans for their resolution. Lead and manage all certification activities related to ISO 27001:2022. Ensure that any business changes, acquisitions, or More ❯

in revenue, and supports more than 60,000 clients across a diverse range of sectors and markets. Role Purpose: An Information Security Officer (ISO) is required to support LRQA's global operations, to develop, improve and maintain the organisation's Information Security capability. Working closely with the … including Military, Defence and Critical National Infrastructure) whilst working with stakeholders across the globe to identify, manage and assess information security risks. The ISO will work proactively with Clients, IT Operations, Security Operations, Legal, Procurement, Learning and Delivery Teams to reduce and manage risk, increase awareness and … continually improve LRQA's ISMS. Identifying areas for improvement within the ISMS and take ownership of developing and executing plans for their resolution. Lead and manage all certification activities related to ISO 27001:2022. Ensure that any business changes, acquisitions, or More ❯

solvers who are hungry to learn, grow, and make a difference. Position Summary This is a great opportunity to grow your career and lead enterprise engagements as a Senior Consultant! In this position, you will assess the security and compliance of client firms against regulatory and industry … members to effectively manage project timelines and deliverables. As a Senior Consultant, you will regularly interact with peers and clients as both an auditor and assessor, depending on the engagement. This role will audit information systems with confidence and accuracy to ensure the integrity and effectiveness of … security measures. You will test technical controls, policies and procedures, laws, regulations, and industry best practices. What You'll Do Lead audits / assessments including audit plan preparation, review of documentation and evidence, evaluation of procedures, and client interviews. Prepare, review and approve assessment reports. Manage priorities More ❯

assurance, and oversight Ability to influence stakeholders and communicate effectively at all levels, including non-technical audiences Knowledge of security frameworks such as ISO 27001, NIST, or similar Experience identifying control gaps and working across functions to address them Comfortable working in a collaborative … solutions-focused environment Sector background is flexible – consulting, commercial, or industry experience welcome Relevant certifications (CISM, CISSP, CRISC, ISO 27001 Lead Auditor) are a plus, but not required This role it's a great fit for someone who More ❯

other IT services). Collaborate with client teams to develop, document, and implement security policies, standards, and guidelines aligned with industry standards (e.g., ISO 27001, NIST). Assist in the deployment, configuration, and management of security infrastructure and technologies, including firewalls, intrusion detection / … off. CERTIFICATIONS: CCNP / CCNA is nice to have. CREST / OSCP is nice to have. Microsoft and / or other cloud providers. ISO 27001 Lead auditor is a nice to have. SKILLS: Working knowledge of cloud security More ❯

other IT services). Collaborate with client teams to develop, document, and implement security policies, standards, and guidelines aligned with industry standards (e.g., ISO 27001, NIST). Assist in the deployment, configuration, and management of security infrastructure and technologies, including firewalls, intrusion detection / … off. CERTIFICATIONS: CCNP / CCNA is nice to have. CREST / OSCP is nice to have. Microsoft and / or other cloud providers. ISO 27001 Lead auditor is a nice to have. SKILLS: Working knowledge of cloud security More ❯

control, and compliance effectiveness, you'll work across functions to support operational resilience and maintain alignment with global security and regulatory frameworks including: - ISO / IEC 27001:2022 - NIST Cybersecurity Framework - PCI-DSS 4.0.1 - UK GDPR, NIS2 Directive, CAP1753, and related sector obligations … to relevant stakeholders Colloborate with procurement and key suppliers to ensure their ongoing security posture meets Virgin Atlantic requirements Conduct internal reviews against ISO, NIST, PCI, UK GDPR, and emerging requirements Support internal / external audits, evidence readiness, and corrective action tracking Maintain the policy and control … networks and systems is incorporated in project design. About you CRISC / CISA / CISM certification through ISACA or an equivalent professional body. ISO 27001 Lead Implementer / Auditor certification Sound knowledge of information security governance practices, working More ❯

checks, config reviews, endpoint assessments). Capacity to handle several evaluations simultaneously and work alone. Knowledge of penetration testing, cyber risk frameworks, or ISO 27001. Extra credentials, for instance, ISO 27001 Lead Auditor, CompTIA Security+ More ❯

and cybersecurity stakeholders to ensure that security requirements are appropriately defined, evidenced, and governed in alignment with relevant defence and maritime standards. Responsibilities Lead or support integrating cybersecurity assurance activities into engineering and programme delivery for marine and defence projects. Develop, review, and maintain cybersecurity assurance artefacts … equivalent experience) in Cybersecurity, Information Assurance, Systems Engineering, or a related technical or defence-focused discipline. Recognised cybersecurity certifications: CompTIA, CISSP, CISM, CRISC, ISO 27001 Lead Auditor / Implementer, or equivalent. Familiarity with MOD, maritime, or defence-specific … frameworks: JSPs, DEFSTAN, NIST, IEC 62443, IMO or ISO / IEC 27001. SC clearance (or eligibility to obtain SC as a minimum) is required; DV clearance is desirable depending on the programme needs. Essential skills Strong understanding of cybersecurity assurance principles, risk management, and regulatory More ❯

and cybersecurity stakeholders to ensure that security requirements are appropriately defined, evidenced, and governed in alignment with relevant defence and maritime standards. Responsibilities Lead or support integrating cybersecurity assurance activities into engineering and programme delivery for marine and defence projects. Develop, review, and maintain cybersecurity assurance artefacts … equivalent experience) in Cybersecurity, Information Assurance, Systems Engineering, or a related technical or defence-focused discipline. Recognised cybersecurity certifications: CompTIA, CISSP, CISM, CRISC, ISO 27001 Lead Auditor / Implementer, or equivalent. Familiarity with MOD, maritime, or defence-specific … frameworks: JSPs, DEFSTAN, NIST, IEC 62443, IMO or ISO / IEC 27001. SC clearance (or eligibility to obtain SC as a minimum) is required; DV clearance is desirable depending on the programme needs. Essential skills Strong understanding of cybersecurity assurance principles, risk management, and regulatory More ❯

or IA Architect (or similar). Eligibility to obtain and maintain high-level UK security clearance . Desirable: Senior CESG certification (SCCP). ISO 27001 Lead Auditor or Implementer. Membership with a relevant professional body such as MInstISP. More ❯

experienced and proactive QSA Consultant with: Essential: PCI QSA certification, supported by one or more of the following: CISSP, CISA, CISM, or ISO27001 Lead Auditor + Lead Implementer certifications. Experience: Minimum 2 years in cybersecurity, with strong technical knowledge to conduct … training on PCI DSS and / or ISO27001. Knowledge of multiple information security frameworks with the expertise to conduct gap analysis and assessments (ISO 27001, SOC2, SWIFT CSCF). Why Join Us? Competitive Salary: £60,000 to £70,000 per annum, depending on experience. More ❯

take overall responsibility for execution of that strategy and maintain oversight over the protection of all Metro Bank's information and IT assets. Lead the design of Metro Bank's information security strategy and data governance strategy, develop the business case for change to achieve the strategy … and engage with colleagues to implement these changes. Lead the definition of policies, standards and procedures for information security and data governance, moving Metro Bank towards alignment with industry good practice standards (e.g. ISO 27001, ITIL). Direct day-to-day … to build, inspire, direct, motivate and performance-manage a multi-disciplinary team. MSc Information Security / MCIISec / CISSP / CISM / ISO27001 Lead Auditor or equivalent. Our promise to you We will make sure that you are well-rewarded by providing you with More ❯

Minimum of 3 years' experience in an Information Security role handling ISO27001. Qualifications that would be advantageous for this role would include: ISO27001 Lead Implementor, ISO27001 Lead Auditor The candidate should have a project management qualification or extensive project management experience. More ❯

environments. Desirable Certifications CompTIA Security+, CISSP, CISM, CCSP, TOGAF, SABSA SCF. CESG Certified Cyber Professional (CCP) in Security Architecture or Risk Management. ISO27001 Lead Auditor. Why Join DXC Technology? At DXC, you will work on high-profile security projects, collaborating with some of the industry's top More ❯

role in multiple certification projects. You have worked independently, are friendly, and possess charisma. Desired You hold relevant certifications such as CISA, ISO27001 Lead Auditor, CISSP, etc. You have experience working with ISO9001, DORA, NIST, and other relevant regulations. You have experience in Data More ❯

improvements Strong working knowledge of MS Office programmes , including Excel Understanding of information and cyber security principles Desirable: Previous use of SAP ISO27001 Lead Auditor Experience of working with commercial or legal documents Experience of producing reports / formal documents Benefits: You'll receive More ❯

in "Big 4" consultancy firms will be of particular interest. Key Responsibilities: Development of the assurance process and framework. Obtaining and maintaining ISO27001 Lead Auditor certification. Performing control testing, control walkthroughs, and gathering evidence from the 1st Line Business team. Conducting internal risk and … testing. Supporting the creation of a control library and reviewing controls to ensure alignment with internal policies and external frameworks such as CRI, ISO, NIST, ISAE. Performing internal control assessments / audits for SWIFT CSCF, LINK CSB, ISO27001, and ISO22301. Developing internal assurance documentation. Preparing submissions for More ❯