1 to 25 of 30 Permanent ISO/IEC 27001 Jobs in Watford

the EMEA EIT department to all relevant legislation and regulations, including but not limited to Health and Safety, Financial and Privacy laws. Main duties / responsibilities: Conduct information security, information system, and compliance-based risk assessments, evaluate responses and recommend risk treatment actions Develop and execute risk mitigation plans … in conjunction with relevant internal and external stakeholders / groups and to agreed timescales, following through to completion Support the creation, implementation and maintenance of information security policies and standards, in accordance with ISO 27001 other relevant frameworks and standards (NIST CSF, IEC … relevant Support information security and compliance audits conducted in the department Qualifications and Experience required: Degree level qualified or equivalent - highly desirable. CISM and / or CRISC or other relevant certification is highly desirable ISO 27001:2022 Lead Implementer / Auditor certification is essential. More ❯

in security audits, identifying vulnerabilities, and ensuring adherence to security policies. • Develop and enforce GCP security hardening measures (network segmentation, access controls, encryption, GDPR / ISO 27001 compliance). • Design and implement ETL pipelines for marketing data into BigQuery for Looker. • Optimise BigQuery data models … as a Cloud Engineer, specialising in GCP. • Proven background in marketing data environments, understanding infrastructure needs for marketing analytics and CDPs. • Demonstrable experience leading / contributing to security audits, vulnerability assessments, and compliance initiatives (GDPR, ISO 27001) within GCP. • Expertise in IaC with a strong … Terraform. • Profound understanding of GCP networking, security services, and IAM. • Proficiency in scripting (Python, Bash, Go). • Experience with containerisation (Docker) and orchestration (Kubernetes / GKE) is desirable. • Strong understanding of monitoring and logging tools. • Excellent problem-solving and communication skills. • Relevant GCP certifications are highly advantageous. Infrastructure Engineer More ❯

and influence. What You'll Be Working On: You’ll support key client projects across a diverse and exciting portfolio, including: Framework Compliance : ISO 27001, NIST, PCI-DSS Security Assurance : Audit, controls assessment, reporting Third-Party Risk Assurance : Vendor risk reviews, supply chain assessments Cloud Security … to finish. You’ll Need: Proven experience in a security consulting role (client-facing or internal consulting) Strong understanding of Information Security frameworks (ISO 27001, NIST, PCI-DSS) Hands-on experience delivering security assessments, audits, or assurance reviews Awareness or experience with cloud platforms (Azure, AWS … personal development, mentoring, and continuous learning Growth Journey: Join at an exciting time — with plans to double headcount and expand services Certifications (Required): ISO 27001 Lead Auditor CISSP or CISM More ❯

controls, and preparing for audits while also providing consultation on PCI requirements to Engineering, SecOps, and Architecture teams. Additionally, the role will support ISO 27001, SOC 2 Type 2, and other certification audits, assist with security assurance activities such as design reviews and client security questions … identify areas of improvement. Stay up to date with PCI DSS standard updates and ensure timely adaptation of new requirements. Manage and support ISO 27001 and SOC 2 Type 2 certification processes, ensuring evidence gathering, control validation, and audit preparation. Assist in responding to client security … Strong understanding of PCI DSS requirements, controls, and assessment processes. Hands-on experience with security controls, cloud environments, and security architecture. Experience with ISO 27001, SOC 2 Type 2, or other security frameworks. Proven ability to work effectively with senior leadership, auditors, external partners, and cross More ❯

craft paired with a strategic, consultative mindset Ability to take a project from a brief, translating problems into practical solutions Proficient at creating UX / CX deliverables such as wireframes, prototypes, journey / experience maps, user flows, personas, information architecture etc You must have a strong UX process … with an ability to create high level concepts through to prototypes, testing and UI handover You must be comfortable engaging senior client stakeholders, leading / facilitating client workshops & co-design sessions to get buy in and progressing through to the final product Ability to conduct primary and / … range of social events on offer across our three offices – and we’re a certified Great Place to Work, too. We’re also ISO 27001, ISO 9001, and Cyber Essentials Plus certified, and hold ISO 14001 & Green Mark certifications. Our commitment to More ❯

building out new creative, strategic and experience capabilities to complement our industry-leading Drupal design and build offering. We are looking for seasoned UX / CX and strategy practitioners to join the team and help us realise our vision and shape the future of experience design at a vibrant … application will be disregarded. Must-have skills and experience: Minimum of 5 years’ agency experience, you’ll currently be in a senior UX design / consultancy role and looking for your next step up Exceptional UX design craft paired with a strategic, consultative mindset Passionate about all things UX … studies Solid proficiency of analysing and interpreting data (e.g. GA4, Hotjar) and experience of conversion rate optimisation approaches and tools Significant experience creating UX / CX deliverables such as wireframes, prototypes, journey / experience maps, user flows, personas, information architecture etc. Experienced creating user stories and product backlogs More ❯

baselines in line with industry standards (e.g., NIST, CIS, ISO 27001). Configure and manage Microsoft Defender for Office 365 / Cloud / Endpoint / Servers, Purview (Information Protection, Data Loss Prevention), and Microsoft Entra (Azure AD) security features. Experience of integrating with … Entra ID. Strong understanding of identity, access management, and conditional access controls. Familiarity with regulatory and compliance frameworks such as GDPR, HIPAA, and ISO 27001. Proficient with Microsoft security and compliance portals, PowerShell scripting, and automation tools. Relevant Microsoft certifications (e.g., SC-100, SC-300, MS-500, AZ More ❯

s been through this before and knows what it takes. Familiarity with ISO 27001, IT GRC, GxP compliance, and SaaS / cloud environments is also important, but SOC 2 is the headline act here. You’ll collaborate closely with teams across the company, from InfoSec … SOC 2 and ISO 27001 implementation efforts. Strong knowledge of the AICPA Trust Services Criteria and the kinds of IT / security controls that support them. A background in InfoSec, IT, Life Sciences, or something similar — a degree in one of these areas is a More ❯

My client a leading cybersecurity business is seeking a Pre-Sales Director (Cyberdefense) based from offices in London and / or Kent. My client is a leading cybersecurity business who are part of larger reputable group who have a portfolio of clients within the financial services, utilities, legal and … manufacturing verticals. As Pre-Sales Director (Cyberdefense) based in London and / or Kent, reporting to the UK MD you will be responsible for: Digital transition / transformation and cloud first strategy and Cyber Security … within the organisation Strategic roadmap implementation of IS / IT security restructure programmes and projects of a technical nature including frameworks such as ISO27001 / 2:2005 / 13 &DORA Ownership of Strategic, Operational and Tactical IT Security and Risk Management, technical and legislative mandates Programme / More ❯

Head of Engineering / System Development Manager - up to £70k base with great benefits Remote working with an office Glasgow We are looking for a strategic, hands-on Head of Engineering to lead and scale our software engineering function. This senior leadership role will focus heavily on software engineering … RESTful services, rate limiting, versioning, monitoring, etc.). Ensure high data consistency, operational integrity, and well-documented interface contracts between services. Software Delivery, CI / CD & DevOps Define and implement scalable CI / CD pipelines using modern DevOps tooling, including automated build, test, deploy, and rollback strategies. Champion … with security engineers to integrate security throughout the software lifecycle (shift-left security, secure coding, threat modelling). Own the implementation of secure authentication / authorization practices, audit logging, encryption at rest / in transit, and other application security standards. Ensure software and infrastructure meet organizational security and More ❯

enforce security policies, standards, and procedures Work with IT and development teams to implement secure system designs and configurations Support compliance initiatives (e.g., ISO 27001, NIST, GDPR, PCI-DSS) by assisting with audits and documentation Conduct security awareness training and phishing simulations for employees Keep up … security or cybersecurity role Strong understanding of security principles, frameworks, and practices (e.g., CIA triad, defense in depth) Experience with SIEM tools, intrusion detection / prevention systems (IDS / IPS), firewalls, and endpoint protection Familiarity with vulnerability scanning tools (e.g., Nessus, Qualys) and remediation processes Knowledge of networking More ❯

streams. Report progress to initiative leaders and BU sponsors; adapt plans as needed. Ensure adherence to quality standards, validation processes (e.g., Part 11, ISO 17025, ISO 27001), and Element’s compliance framework. Align deliverables to business priorities and ensure high adoption … rates in target labs. Support onboarding, training, and change management initiatives in close partnership with the business units. Occasional travel to European labs Skills / Qualifications Essential: Several years of experience as a Project Manager in IT or equivalent, ideally with exposure to LIMS or regulated lab environments. Demonstrated More ❯

problem-solving and troubleshooting skills. Preferred: Experience with cloud platforms (e.g., AWS, Azure, GCP) and their integration with CyberArk. Knowledge of DevOps and CI / CD pipelines for secrets management. Familiarity with other PAM tools (e.g., BeyondTrust, Thycotic) is a plus. Strong understanding of cybersecurity frameworks (e.g., NIST, ISO 27001). Soft Skills: Strong communication and interpersonal skills. Ability to work independently and as part of a team. Detail-oriented with a focus on delivering high-quality results. Proactive and self-motivated with a passion for cybersecurity. Education and Certifications: Bachelor’s degree in Computer More ❯

transformation. Prior experience with Data warehousing and Data modelling (Star Schema or Snowflake Schema). Skilled in security frameworks such as GDPR, HIPAA, ISO 27001, NIST, SOX, and PII, with expertise in IAM, KMS, and RBAC implementation. Cloud automation and orchestration tools like Terraform and Airflow. More ❯

including authentication, authorization, role-based access control (RBAC), and identity governance. Experience in system security, risk management, and compliance frameworks (e.g., GDPR, NIST, ISO 27001). Excellent problem-solving skills and the ability to manage complex technical issues under pressure. Strong communication skills, with the ability More ❯

with client stakeholders to effectively scope, plan, and carry out assessments. Examine the provided proof and offer unambiguous, practical comments. Conduct on-site and / or remote technical evaluations consistent with CE+ criteria. Keep current knowledge of IASME scheme changes and cyber risk best practices. Maintain objectivity and rigour … checks, config reviews, endpoint assessments). Capacity to handle several evaluations simultaneously and work alone. Knowledge of penetration testing, cyber risk frameworks, or ISO 27001. Extra credentials, for instance, ISO 27001 Lead Auditor, CompTIA Security+, and CISMP. Why Join? Join a developing cyber Security More ❯

and deployment pipelines in a cloud-first environment. Key Responsibilities: Manage and automate AWS cloud services and VMware vSphere infrastructure Build and maintain CI / CD pipelines (GitHub Actions, TeamCity) Implement monitoring, backup, and recovery strategies Contribute to secure, high-availability architecture in line with ISO 27001 More ❯

Experience: Proven experience as a Network Architect or Senior Network Engineer in enterprise or MSP settings. Strong knowledge of Border Gateway Protocol (BGP), LAN / WAN, SD-WAN, Wi-Fi and cloud networking (especially Azure). Deep expertise with Cisco, Fortinet, Meraki and ideally some Palo Alto and Aruba. … Understanding of network security frameworks (ISO 27001, NIST and PCI-DSS). Industry certifications like CCNP, CCIE or PCNSE is preferred Please call Edward here at ISR on 07436 071 872 to learn more about our client based in Devon and how they are leading the More ❯

Role Title: AWS IAM / PingID Specialist Duration: contract to run until 30 / 10 / 2025 Location: Remote Rate: up to £690 p / d Umbrella inside IR35 Clearance required: Active Security Clearance is essential Key Skills / requirements Has designed, architecture and deployed … the Ping One and AWS Identity and integrated the 2. Familiar to SAML and OAUTH / OIDC Competent in the logical configuration of Ping One and AWS Identity cloud services. Technical Proficiency in IAM Tools: Expertise in using and configuring IAM tools such Ping Identity, and AWS Identity to … and manages multi-factor authentication (MFA), single sign-on (SSO), and other authentication methods to secure user access. Ensures compliance with regulatory requirements (e.g., ISO27001, Cyber Essentials) by helping to complete compliance trackers Defines and manages roles and permissions to streamline access control and ensure users have the minimum necessary More ❯

ll Bring Bachelor’s degree in computer science, Engineering, or a related field (or equivalent work experience). 5+ years of experience in software / platform development / engineering from front end (web), mobile, back end, ad tech, or analytics dataflows backgrounds. Extensive experience in dataflows, or similar … practices for compliance, data privacy, and protection, while integrating tools and frameworks to assess APIs against OWASP and other relevant security standards (NIST, ISO-27001, PCI-DSS, HIPAA, FedRAMP) Automate security and compliance controls into the platform for continuous monitoring and reporting. Execute MySQL queries to ensure data More ❯

you will help safeguard and manage data assets, supporting the development, documentation, and implementation of robust data protection policies and procedures in line with ISO27001 standards. Your core responsibilities will include monitoring compliance, delivering training, and driving continuous improvement in information security practices. Key Responsibilities: Implementing, documenting and maintaining ISO27001 … are clearly documented, trained on, and routinely monitored. Drafting responses to tender / customer / supplier survey requests relating to data protection, ISO27001 and GDPR. Ensuring any contractual negotiations and agreements align with our ISO and other security policies and procedures. What you'll need to … strong focus on Governance, Risk, and Compliance (GRC), ideally with 3 to 5 years in a similar role Strong understanding and practical experience with ISO27001 implementation. Basic understanding of IT networks and software development. Strong background / knowledge of Cloud-based environments - Essential Understanding of system hardening methods and More ❯

and protects the digital employee experience. Trusted by thousands of enterprises managing millions of endpoints globally, Action1 is certified for SOC 2 and ISO 27001. The company is founder-led by industry veterans Alex Vovk and Mike Walters, American entrepreneurs who founded Netwrix, which has grown into a More ❯

ll Bring Bachelor’s degree in computer science, Engineering, or a related field (or equivalent work experience). 5+ years of experience in software / platform development / engineering from front end (web), mobile, back end, ad tech, or analytics dataflows backgrounds. Extensive experience in dataflows, or similar … practices for compliance, data privacy, and protection, while integrating tools and frameworks to assess APIs against OWASP and other relevant security standards (NIST, ISO-27001, PCI-DSS, HIPAA, FedRAMP) Automate security and compliance controls into the platform for continuous monitoring and reporting. Execute MySQL queries to ensure data More ❯

a leader in document automation within the Salesforce ecosystem. Our solutions help enterprises manage document workflows, enabling seamless collaboration, automation, and compliance. With ISO 27001 and TISAX certifications, we ensure the highest standards in data security and operational integrity. As part of Ascendx, we are positioned More ❯

offering a fully remote opportunity with the occasional team meet-ups in London. Key Skills: Lead and maintain compliance frameworks (UK GDPR, DPA 2018, ISO27001, FCA AISP), ensuring up-to-date policies, procedures, and controls across data protection, information security, and regulatory risk. Act as Data Protection Officer (DPO), managing … automation-friendly compliance and security practices, and communicate risks clearly to leadership. Proven experience in compliance and infosec, with strong regulatory knowledge (UK GDPR, ISO27001), excellent communication skills, and ideally relevant certifications (e.g. CIPP / E, CISSP). If you are interested in the open role please come back More ❯