16 of 16 Permanent ISO/IEC 27001 Jobs in Wales

d like to discuss the role further, please contact Dennis Jones, Principal Data Security Specialist: dennis.jones2@wales.nhs.uk The ability to speak Welsh is desirable for this post; Welsh and / or English speakers are equally welcome to apply. You will be able to find a full Job description and Person Specification attached within the supporting documents or please click … are supportive of flexible working arrangements, including part time roles and job sharing. To find out more about working for us and the benefits we offer please visit https: / / phw.nhs.wales / careers / For guidance on the application process, please visithttps: / / phw.nhs.wales / working-for-us / applicant … information-and-guidance / Job description Job responsibilities The Senior Cyber Security Engineer at Public Health Wales is primarily responsible for protecting the organisations digital infrastructure, systems and sensitive data by implementing and enhancing cyber security measures across all IT systems. This includes designing and documenting secure cyber infrastructure, including network architectures and communication systems, as well as ensuring More ❯

to incidents. The specialist is responsible for developing, maintaining, and supporting cyber security systems in line with Public Health Wales' operational requirements. They are expected to participate in early / late shift rotations and the on-call rota. A crucial part of the role includes staying current with emerging security technologies and threats, conducting research, and evaluating how to … are supportive of flexible working arrangements, including part time roles and job sharing. To find out more about working for us and the benefits we offer please visit https: / / phw.nhs.wales / careers / For guidance on the application process, please visithttps: / / phw.nhs.wales / working-for-us / applicant … information-and-guidance / Job description Job responsibilities You will be able to find a full Job description and Person Specification attached within the supporting documents or please click "Apply now" to view on Trac. The ability to speak Welsh is desirable for this post; Welsh and / or English speakers are equally welcome to apply. Person Specification More ❯

will be directly responsible for continued success of the entire Aforza product suite. As such, the ideal candidate must be hands-on, flexible, and used to working in startup / scale up environments, where every employee has a direct impact on the company's success. All of Aforza's cloud applications, microservice and websites are hosted on Google Cloud … with IaC tools such as Terraform Strong understanding of authentication and authorization protocols such as OAuth 2.0, OIDC, SAML etc Experience with SQL and NoSQL databases Experience with Docker / Kubernetes Knowledge of security and IAM best practices You might not have all of the above, but don't let that stop you. We're excited to hear from … benefits, including: Work on cutting edge technologies with world leading customers Stock options 25 days PTO & bank holiday Pension Private health cover & income protection Flexible hours and hybrid remote / office working Fantastic, brand new office space in the heart of Cardiff city centre Our Interview Process Director, Cloud Infrastructure Cardiff / Remote (UK only) About Aforza Aforza More ❯

3+ years of hands-on Azure engineering experience (IaaS ? PaaS), including Infra as Code. Strong SQL skills and proficiency in Python or PySpark . Built or maintained data lakes / warehouses using Synapse , Fabric , Databricks , Snowflake , or Redshift . Experience hardening cloud environments (NSGs, identity, Defender). Demonstrated automation of backups, CI / CD deployments, or DR workflows. … work effectively across time zones and teams. Thrives in a small, high-trust, high-autonomy team culture. Day-to-Day Responsibilities Infrastructure & Automation: Deploy and manage infrastructure using Bicep / Terraform , GitHub Actions , and PowerShell / DSC . Data Engineering: Architect and implement scalable ETL / ELT solutions; model schemas, optimize performance, and apply lakehouse best practices. … Security & Resilience: Implement best-practice cloud security (NSGs, Defender, Conditional Access), automate DR / backups, and run quarterly restore drills. Collaboration: Partner with AI Product Owners, Business Performance, and Data Analysts to translate business needs into robust data solutions. Mentorship & Knowledge Sharing: Act as a data SMEguiding system administrators and upskilling junior technical team members. What You'll Achieve More ❯

Cyber Risk Assessment Analyst Up to £62,000 + bonus South Wales / Hybrid Permanent I'm looking for a cyber risk assessment specialist to identify and assess cyber risks across our client's IT and OT environments. The successful candidate will also be recommending mitigation strategies to strengthen cyber resilience and meet regulatory requirements. The ideal candidate will … with risk insights Staying current with cyber threats and best practices Continuously improving risk assessment methodologies What I'm Looking For: Strong understanding of security frameworks (e.g., NIST, ISO 27001). Strong understanding of cyber risk management and threat actors Knowledge of technical security controls Experience in cyber risk assessment and technical IT or OT roles More ❯

Cyber Risk Assessment Analyst Up to 62,000 + bonus South Wales / Hybrid Permanent I'm looking for a cyber risk assessment specialist to identify and assess cyber risks across our client's IT and OT environments. The successful candidate will also be recommending mitigation strategies to strengthen cyber resilience and meet regulatory requirements. The ideal candidate will … with risk insights Staying current with cyber threats and best practices Continuously improving risk assessment methodologies What I'm Looking For: Strong understanding of security frameworks (e.g., NIST, ISO 27001). Strong understanding of cyber risk management and threat actors Knowledge of technical security controls Experience in cyber risk assessment and technical IT or OT roles More ❯

understanding of the plugins including those in the XrmToolBox. Understanding of PCF Controls and how they can be used to extend Dynamics functionality Design configurations and customisation of Dataverse / Dynamics entities and forms Design of PowerApps integrations with other Azure components such as Logic Apps, Azure Service Bus and Azure Functions Consult on API designs for purposes such … apply HMG IA technical security controls according to ISO 27001 & the Security Policy Framework (SPF) Person specification Essential Criteria Design configurations and customisation of Dataverse / Dynamics entities and forms Understanding of PCF Controls and how they can be used to extend Dynamics functionality Good understanding of the plugins including those in the XrmToolBox Design … elements: Experience Your CV will be used to assess your suitability for the role and your 750 word Personal statement will demonstrate your Experience against the listed person specification / essential criteria. Stage 2 - Interviews If invited to interview Behaviours , Experience and Technical based questioning will be used. Please note candidates that proceed to the interview stage will be More ❯

GRC Manager Up to £78,000 + bonus South Wales / Hybrid I'm looking for a GRC Manager to oversee the identification, evaluation and management of risks from a cyber security perspective for a client based in South Wales. The ideal candidate will have experience of leading a GRC team and a firm grasp of experience of commonplace … Manager * Supporting incident response planning with risk insights * Continuously improving risk assessment methodologies What I'm Looking For: * GRC leadership experience * Strong understanding of security frameworks (e.g., NIST, ISO 27001). * Proven experience completing internal and external cyber risk assessments * CNI experience would be very useful What's in it for you: * Up to More ❯

GRC Manager Up to 78,000 + bonus South Wales / Hybrid I'm looking for a GRC Manager to oversee the identification, evaluation and management of risks from a cyber security perspective for a client based in South Wales. The ideal candidate will have experience of leading a GRC team and a firm grasp of experience of commonplace … Manager Supporting incident response planning with risk insights Continuously improving risk assessment methodologies What I'm Looking For: GRC leadership experience Strong understanding of security frameworks (e.g., NIST, ISO 27001). Proven experience completing internal and external cyber risk assessments CNI experience would be very useful What's in it for you: Up to More ❯

clearly to non-technical stakeholders Work closely with teams to support data-driven decisions Compliance & Lifecycle Support GDPR compliance and Data Lifecycle Management Contribute to maintaining Cyber Essentials and ISO27001 standards Training & Culture Promote data literacy across teams Deliver internal training on Power BI, Excel and other data tools Embed data metrics into team performance tracking What You’ll Need More ❯

clearly to non-technical stakeholders Work closely with teams to support data-driven decisions Compliance & Lifecycle Support GDPR compliance and Data Lifecycle Management Contribute to maintaining Cyber Essentials and ISO27001 standards Training & Culture Promote data literacy across teams Deliver internal training on Power BI, Excel and other data tools Embed data metrics into team performance tracking What You ll Need More ❯

understanding of the plugins including those in the XrmToolBox. Understanding of PCF Controls and how they can be used to extend Dynamics functionality Design configurations and customisation of Dataverse / Dynamics entities and forms Design of PowerApps integrations with other Azure components such as Logic Apps, Azure Service Bus and Azure Functions Consult on API designs for purposes such … IPO. Proactively apply HMG IA technical security controls according to ISO 27001 & the Security Policy Framework (SPF) Person specification Design configurations and customisation of Dataverse / Dynamics entities and forms Understanding of PCF Controls and how they can be used to extend Dynamics functionality Good understanding of the plugins including those in the XrmToolBox Design More ❯

innovative projects involving AI and ML which provides a dynamic and stimulating work environment. Key Responsibilities Architect and document solutions in a cloud-first environment. Design and configure Dataverse / Dynamics entities and forms. Develop Power Apps (Model and Canvas), integrating with Azure services like Logic Apps, Service Bus, and Azure Functions. Extend Dynamics functionality using PCF controls, XrmToolBox … and internal teams, presenting at architecture boards and guiding strategic decisions. Stay informed on emerging technologies, particularly across the Microsoft ecosystem. Apply government security controls in line with ISO 27001 and the Security Policy Framework (SPF). Essential Skills & Experience Expert in Power Platform and Dynamics 365 architecture. Hands-on experience with Dataverse customisation, PCF controls More ❯

innovative projects involving AI and ML which provides a dynamic and stimulating work environment. Key Responsibilities Architect and document solutions in a cloud-first environment. Design and configure Dataverse / Dynamics entities and forms. Develop Power Apps (Model and Canvas), integrating with Azure services like Logic Apps, Service Bus, and Azure Functions. Extend Dynamics functionality using PCF controls, XrmToolBox … and internal teams, presenting at architecture boards and guiding strategic decisions. Stay informed on emerging technologies, particularly across the Microsoft ecosystem. Apply government security controls in line with ISO 27001 and the Security Policy Framework (SPF). Essential Skills & Experience Expert in Power Platform and Dynamics 365 architecture. Hands-on experience with Dataverse customisation, PCF controls More ❯

Job Title: Cyber Security Architect Location: South Wales / Remote Employment Type: Permanent, Full-Time Salary: £69,000 - £78,850 + excellent Benefits About the Role We're working with a well-established organisation in South Wales looking for a Cyber Security Architect to help shape and implement enterprise-wide security architecture. Reporting to the Senior Cyber Security Architect … role is key to developing the organisation's long-term Cyber Security Strategy and improving resilience across IT and OT environments. You'll lead on the design of robust, ISO27001-compliant frameworks, contribute to strategic security planning, and work closely with internal teams to embed best practice across systems and services. This is a great opportunity for someone ready to … a high-impact role that combines technical depth with strategic influence. Key Responsibilities Define and embed Security Architecture Principles to guide all programmes, projects, and changes Develop and maintain ISO27001-compliant security policies and an ISMS framework Create reference architectures for Identity and Privileged Access Management Provide architecture reviews for all new systems and major changes to existing ones Support More ❯

closely with the Data Insights team to deliver integrated, forward-thinking solutions. Oversee the design, implementation, and optimisation of IT infrastructure to meet evolving business needs. Champion cybersecurity and ISO27001 compliance in collaboration with our compliance team. Lead the development and implementation of our AI strategy to support efficiency and innovation. Manage budgets, suppliers, and resources to drive value and … preferred). Proven senior leadership experience in IT, ideally within the FM sector. Strong understanding of CAFM systems (Maximo experience preferred). Expertise in cybersecurity, governance, and compliance (including ISO27001). A collaborative, solutions-focused approach to leading high-performing, cross-functional teams. Experience in vendor and budget management. Confident presentation skills to support client engagement and business development. A … s upport from Atlas. Wagestream - our financial wellbeing and benefits platform which provides you with real-time access to earned wages, information to improve your financial health, and discounts / savings at leading retailers and supermarkets. Cycle to work scheme . Workplace pension scheme. Staff recognition scheme (Stars of Atlas). Staff engagement portal. The ability to progress your More ❯