1 to 25 of 252 Remote Permanent ISO/IEC 27001 Jobs

of cloud and on-premise environments, ideally Azure, including networking and firewalls Familiarity with incident response processes, playbooks, and tools Understanding of threat intelligence and vulnerability management Experience with ISO27001 and compliance frameworks Scripting and coding skills (e.g., Python, PowerShell, Bash) Exposure to CI / CD, Infrastructure as Code (IaC), and Azure DevOps pipelines Experience with SIEM platforms (ideally … Azure by deploying new tools and improving detection / response capabilities Collaborate with development teams to embed security practices into product development processes Support ongoing compliance needs, including ISO27001 accreditation Drive continuous improvements to security operations across cloud and internal infrastructure What the role offers: Hybrid working with flexibility to suit your lifestyle Competitive benefits including pension, health plan … / Azure DevOps / Infrastructure as Code / CI / CD / Network Security / Penetration Testing / Vulnerability Management / ISO27001 / Information Assurance / Computer Science / Cyber Security / Information Security / Security Compliance More ❯

ISO27001 Consultant Location: Hybrid (75% remote) with on-site presence as required Contract Type: Permanent & Full-time Salary: Competitive + Benefits About the Role As an ISO27001 Consultant, you will support client engagements to design, implement, and maintain ISO frameworks, supporting clients through gap analysis, remediation, certification readiness, and continual improvement. You'll input and collaborate with senior … clients through Stage 1 and Stage 2 certification audits Establish ISMS performance monitoring and reporting mechanisms Provide targeted training to embed a security-first culture Experience Required Experience in ISO27001 implementation and auditing Strong understanding of ISMS frameworks and private sector regulatory requirements Excellent communication and client-facing consultancy skills Relevant certifications such as ISO27001 Lead Auditor / Implementor … CISSP, CISM, CRISC, CISA Experience with additional standards (ISO / IEC27701, ISO / IEC29100, ISO / IEC42001, ISO / IEC22301) is a plus What's in it for You Flexible Working: Remote-first with travel as needed. Career Development: Continuous learning and professional growth. Benefits Package: Includes Private More ❯

What youll be doing Lead and deliver client engagements across governance, risk and compliance (GRC), including audits, assessments and improvement plans aligned to frameworks such as ISO / IEC 27001, NCSC CAF, and PCI DSS. Lead independent assurance , review and test security policies, procedures and controls; identify gaps; and recommend pragmatic remediation strategies. … the near term). Significant experience in cyber security consulting or assurance, ideally within the public sector. Deep knowledge of GRC frameworks and standards ( e.g. CAF, ISO / IEC 27001, PCI DSS). Strong client-facing skills , able to communicate complex issues clearly to technical and non-technical audiences. Proven track record of … on time and influencing decision-making. Excellent written and verbal communication, including the ability to produce polished consultancy reports. Desirable certifications: ISO 27001 Lead Auditor / Implementer, CISSP, CISM, CRISC, CCP (GRC), or equivalent. Driving license and willingness to travel to client sites across the UK as required . Why join 4C Strategies? Work with More ❯

the status of all mitigating controls to both Business and Technology risk committees as appropriate.The scope of this role covers all Technology Risks; IT Strategy and Architecture, Service Management / Stability, Capacity / Capability Management, Disaster Recovery and Crisis Management. This role will also integrate the output from the Information Security Risk and Transformation Risk teams into the … overall risk reporting for each Business Unit. You'll help us make health happen through: Interpreting and communicating to the Business Unit changes to Risk Polices, Business / IT Strategy, legislation that impact the existing Risk and Control Framework. Identifying and assessing Technology Management and Information Security issues so that control environments are properly defined and residual risk regularly … essential. Demonstrable experience in Information Technology audits or IT Assurance (e.g., CISSP, CISM, CISA, CRISC, CCAK) A sound understanding of British and International Security Standards (e.g., ISO / IEC 27001, ISO / IEC 27002, NIST, CIS-20, PCIDSS) and the UK regulatory environment (e.g., ICO, FCA, PRA and More ❯

Security: Manage security policies, lead ISO 27001 certification, embed data security practices, and oversee incident response. Digital Clinical Safety: Maintain digital clinical safety policies (DCB0129 / 0160), ensure training compliance, and support safety case documentation. Quality Management: Manage the Quality Management System (ISO 9001), coordinate audit programmes, and support executive-level decision-making … Security : Manage security policies, lead ISO 27001 certification, embed data security practices, and oversee incident response. Digital Clinical Safety : Maintain digital clinical safety policies (DCB0129 / 0160), ensure training compliance, and support safety case documentation. Quality Management : Manage the Quality Management System (ISO 9001), coordinate audit programmes, and support executive-level decision-making … Service (formerly known as CRB) to check for any previous criminal convictions. Employer details Employer name InHealth Group Address London End Beaconsfield Buckinghamshire HP9 2JH Employer's website https: / / www.inhealthgroup.com / More ❯

international clients. You will provide technical consultancy services in close alignment with client needs and will be leading WSP's cyber security deliverables through the lifecycle of an OT / IT development and Digital Transformation projects. You will also be providing strategic advice across our client spectrum as part of your delivery and growth role. You will have a … team will be involved in the following activities; Advising the client on Cyber Security compliance especially in regard to NIS-D, NIST, ISO 27001, ISA / IEC 62443 and other relevant industries standards and best practices Developing a framework for governance as well as developing Cyber Security and Information Security Management systems Analysing … support them with challenges in Digital Resilience What We Will Be Looking For You To Demonstrate Expertise in several of the following areas: Specifics of OT, IT and IoT / IIoT cyber security Industry specific experience of applied cyber security, ideally gained within the following sectors; Energy e.g. Nuclear, Oil / Gas, Electricity, Rail / Road, Healthcare More ❯

SDLC practices across product teams, from design to release. Perform threat modelling, define non-functional security requirements, and review designs for security impact. Guide security considerations in our AI / LLM-enabled products. Risk & Incident Management Own the company-wide incident response plan and lead tabletop exercises. Perform ongoing risk assessments, vendor security reviews, and DPIAs. Ensure strong access … you'll bring: Hands-on experience in information security, ideally within a SaaS or product-led environment. Proven success leading or supporting ISO 27001 and / or SOC 2 Type I / II compliance programs. Deep understanding of secure SDLC practices, including threat modelling and design reviews for security impact. Experience securing AI / … s Degree in Computer Science, Information Security, or a related field. Hands-on experience with IT operations in a scaling business (e.g., device management, MDM solutions, SaaS administration, SSO / identity tools). What We Offer: Competitive Compensation: A salary package aligned with your experience and impact. Meaningful Stock Options: Be rewarded for growing with the company Annual Bonus More ❯

audit training combined with on-site, technical auditing experience Good knowledge and practical experience of developing, implementing, maintaining and improving Quality Management Systems to the standard BS EN ISO 9001:2015. Experience in leading all the quality management aspects of a construction project, including independent verification processes. Managed quality system in large construction project Member of IRCA or … CQI Knowledge of other Management Systems (ISO 14001:2015, ISO 27001:2013, OHSAS 18001:2007, ISO 44001:2017 etc.) About the Company The role will work on the HS2 project. HS2 is the UK's new high speed rail network. It will be a catalyst for economic growth across Britain, freeing up … Quality Management System, ISO 14001:2015 Environmental Management System with guidance for use, OHSAS 18001:2017 Occupational Health and Safety Management Systems and ISO / IEC 27001:2013 Information Security Management System, Policies, Plans, Procedures and Processes, and statutory requirements as they affect the Joint Venture's operations and ensure that More ❯

due diligence programme, including onboarding and periodic reviews. Track and publish key security metrics such as risk severity, SLA adherence, and turnaround times. Provide audit artefacts and support internal / external audits. Contribute to broader security initiatives and continuous improvement within the organisation. About You 3+ years' experience in Information Security, GRC, or Vendor Risk Management. Strong experience issuing … or responding to security questionnaires. Knowledge of ISO 27001 Annex A, SOC 2, and GDPR / CCPA. Excellent communication skills, able to translate technical risk to non-technical stakeholders. Eligible to work in the UK and able to pass background checks. Desirable: Certifications such as CRISC, CISSP, CISA, or ISO 27001 … Lead Auditor. Familiarity with SaaS / cloud platforms (AWS, Azure, GCP). Understanding of secure software supply chains (SBOM, SLSA). What's on Offer £50,000 - £55,000 base salary 25 days annual leave + public holidays (increasing with service) Matched pension scheme Private medical insurance & life assurance Fitness allowance Paid study leave & volunteering days Flexible hybrid working More ❯

due diligence programme, including onboarding and periodic reviews. Track and publish key security metrics such as risk severity, SLA adherence, and turnaround times. Provide audit artefacts and support internal / external audits. Contribute to broader security initiatives and continuous improvement within the organisation. About You 3+ years’ experience in Information Security, GRC, or Vendor Risk Management. Strong experience issuing … or responding to security questionnaires. Knowledge of ISO 27001 Annex A, SOC 2, and GDPR / CCPA. Excellent communication skills, able to translate technical risk to non-technical stakeholders. Eligible to work in the UK and able to pass background checks. Desirable: Certifications such as CRISC, CISSP, CISA, or ISO 27001 … Lead Auditor. Familiarity with SaaS / cloud platforms (AWS, Azure, GCP). Understanding of secure software supply chains (SBOM, SLSA). What’s on Offer £50,000 – £55,000 base salary 25 days annual leave + public holidays (increasing with service) Matched pension scheme Private medical insurance & life assurance Fitness allowance Paid study leave & volunteering days Flexible hybrid working More ❯

due diligence programme, including onboarding and periodic reviews. Track and publish key security metrics such as risk severity, SLA adherence, and turnaround times. Provide audit artefacts and support internal / external audits. Contribute to broader security initiatives and continuous improvement within the organisation. About You 3+ years' experience in Information Security, GRC, or Vendor Risk Management. Strong experience issuing … or responding to security questionnaires. Knowledge of ISO 27001 Annex A, SOC 2, and GDPR / CCPA. Excellent communication skills, able to translate technical risk to non-technical stakeholders. Eligible to work in the UK and able to pass background checks. Desirable: Certifications such as CRISC, CISSP, CISA, or ISO 27001 … Lead Auditor. Familiarity with SaaS / cloud platforms (AWS, Azure, GCP). Understanding of secure software supply chains (SBOM, SLSA). What's on Offer 50,000 - 55,000 base salary 25 days annual leave + public holidays (increasing with service) Matched pension scheme Private medical insurance & life assurance Fitness allowance Paid study leave & volunteering days Flexible hybrid working More ❯

due diligence programme, including onboarding and periodic reviews. Track and publish key security metrics such as risk severity, SLA adherence, and turnaround times. Provide audit artefacts and support internal / external audits. Contribute to broader security initiatives and continuous improvement within the organisation. About You 3+ years' experience in Information Security, GRC, or Vendor Risk Management. Strong experience issuing … or responding to security questionnaires. Knowledge of ISO 27001 Annex A, SOC 2, and GDPR / CCPA. Excellent communication skills, able to translate technical risk to non-technical stakeholders. Eligible to work in the UK and able to pass background checks. Desirable: Certifications such as CRISC, CISSP, CISA, or ISO 27001 … Lead Auditor. Familiarity with SaaS / cloud platforms (AWS, Azure, GCP). Understanding of secure software supply chains (SBOM, SLSA). What's on Offer £50,000 - £55,000 base salary 25 days annual leave + public holidays (increasing with service) Matched pension scheme Private medical insurance & life assurance Fitness allowance Paid study leave & volunteering days Flexible hybrid working More ❯

due diligence programme, including onboarding and periodic reviews. Track and publish key security metrics such as risk severity, SLA adherence, and turnaround times. Provide audit artefacts and support internal / external audits. Contribute to broader security initiatives and continuous improvement within the organisation. About You 3+ years' experience in Information Security, GRC, or Vendor Risk Management. Strong experience issuing … or responding to security questionnaires. Knowledge of ISO 27001 Annex A, SOC 2, and GDPR / CCPA. Excellent communication skills, able to translate technical risk to non-technical stakeholders. Eligible to work in the UK and able to pass background checks. Desirable: Certifications such as CRISC, CISSP, CISA, or ISO 27001 … Lead Auditor. Familiarity with SaaS / cloud platforms (AWS, Azure, GCP). Understanding of secure software supply chains (SBOM, SLSA). What's on Offer 50,000 - 55,000 base salary 25 days annual leave + public holidays (increasing with service) Matched pension scheme Private medical insurance & life assurance Fitness allowance Paid study leave & volunteering days Flexible hybrid working More ❯

due diligence programme, including onboarding and periodic reviews. Track and publish key security metrics such as risk severity, SLA adherence, and turnaround times. Provide audit artefacts and support internal / external audits. Contribute to broader security initiatives and continuous improvement within the organisation. About You 3+ years’ experience in Information Security, GRC, or Vendor Risk Management. Strong experience issuing … or responding to security questionnaires. Knowledge of ISO 27001 Annex A, SOC 2, and GDPR / CCPA. Excellent communication skills, able to translate technical risk to non-technical stakeholders. Eligible to work in the UK and able to pass background checks. Desirable: Certifications such as CRISC, CISSP, CISA, or ISO 27001 … Lead Auditor. Familiarity with SaaS / cloud platforms (AWS, Azure, GCP). Understanding of secure software supply chains (SBOM, SLSA). What’s on Offer £50,000 – £55,000 base salary 25 days annual leave + public holidays (increasing with service) Matched pension scheme Private medical insurance & life assurance Fitness allowance Paid study leave & volunteering days Flexible hybrid working More ❯

Person Specification Qualifications Essential Education to a minimum of Masters Degree level or equivalent post graduate qualification or equivalent senior level experience Formal certification (CISSP, CISM or CRISC) and / or formal training in information security standards and best practice (e.g.: ISO 27001 / 2, COBIT, Cyber Essentials) Advanced level of IT literacy with … experience of using a range of IT applications Significant evidence of continued professional development Desirable ITIL Qualification COBIT Knowledge and Experience Essential Proven and significant leadership experience and / or formal management qualification Demonstrated expertise in an IT Security environment Direct experience of strategic and budgetary planning and financial management and controls Previously worked within the NHS A good … practical knowledge of security technologies and wider business solutions including Firewalls, IDS / IPS, Identity and access management, SIEM, remote working and cloud technologies Proven experience of working at a senior level leading and delivering IT Security in a sensitive and complex environment which is undergoing significant change Experience of delivering presentations to large groups of stakeholders Demonstrable commitment More ❯

Data Subject Access Requests, oversee DPIAs, Privacy Notices, and Information Sharing Agreements, and lead IG-related incident reporting and resolution. Strengthen Cyber Security resilience Create cyber playbooks, support ISO 27001 alignment, analyse incidents, and deliver tailored cyber threat training across the business, including at board level. Enhance Digital Clinical Safety Deliver training on DCB standards, publish … solutions. You will have: Essential qualifications: Postgraduate qualification in a relevant field (e.g., Law, Corporate Governance, Data Protection). A current Data Protection or Information Governance qualification (e.g., CIPP / E, BCS Practitioner Certificate, Level 4 Data Protection and IG Practitioner). Essential skills and experience: In-depth knowledge of data protection laws, cybersecurity frameworks, DCB safety standards, and … Service (formerly known as CRB) to check for any previous criminal convictions. Employer details Employer name InHealth Group Address London End Beaconsfield Buckinghamshire HP9 2JH Employer's website https: / / www.inhealthgroup.com / More ❯

and successful candidates will be considered temporary contingent employees. Duration of projects vary, and details will be communicated upon an offer of employment. Project details Desired Skills : qualified lawyer / paralegal Desired Language - Native / Fluent in : Korean Anticipated Start Date: (to be confirmed) Estimated Duration : TBC (possible extension) Required Hours : 40 hours a week, Monday – Friday ( possible … overtime) Assignment rate: 40 £ / h Location: Remote Work No concurrent document review permitted for the duration of this project Qualifications & Requirements Bar Admission / active Attorney’s License in the UK Experience in electronically reviewing documents in complex litigation matters using our various review platforms including KLDiscovery, Nebula, EDR, and Relativity is preferred but not required Assist … a 2014 Ernst & Young Entrepreneur of the YearTM. Additionally, KLDiscovery is an Orange-level Relativity Best in Service Partner, a Relativity Premium Hosting Partner and maintains ISO / IEC 27001 Certified data centers. KLDiscovery is an Equal Opportunity Employer. More ❯

and successful candidates will be considered temporary contingent employees. Duration of projects vary, and details will be communicated upon an offer of employment. Project details Desired Skills : qualified lawyer / paralegal Desired Language - Native / Fluent in : Chinese Anticipated Start Date: (to be confirmed) Estimated Duration : TBC (possible extension) Required Hours : 40 hours a week, Monday – Friday ( possible … overtime) Assignment rate: 40 £ / h Location: Remote Work No concurrent document review permitted for the duration of this project Qualifications & Requirements Bar Admission / active Attorney’s License in the UK Experience in electronically reviewing documents in complex litigation matters using our various review platforms including KLDiscovery, Nebula, EDR, and Relativity is preferred but not required Assist … a 2014 Ernst & Young Entrepreneur of the YearTM. Additionally, KLDiscovery is an Orange-level Relativity Best in Service Partner, a Relativity Premium Hosting Partner and maintains ISO / IEC 27001 Certified data centers. KLDiscovery is an Equal Opportunity Employer. More ❯

which is responsible for delivering secure IT services in an international context. This role supports various ongoing security operations and new initiatives, with a strong focus on administering the ISO27001-certified Information Security Management System (ISMS). You will also contribute to the design and execution of future security programs as a member of the Global IT Security Team. Location … e.g., CISM, CISSP) and have knowledge of ISO 27001 and ISAE 3402; You are familiar with security technologies such as XDR, EDR, SIEM, NAC, IDS / IPS, and SASE; You have experience with incident response, risk assessment, and security policy development; You have excellent command of both Dutch and English, in spoken and written communication. … which is responsible for delivering secure IT services in an international context. This role supports various ongoing security operations and new initiatives, with a strong focus on administering the ISO27001-certified Information Security Management System (ISMS). You will also contribute to the design and execution of future security programs as a member of the Global IT Security Team. Location More ❯

clients that are growing ahead of the market. The company specializes in providing solutions across Application Services and Consulting, Digital Product Engineering, Digital Workplace Services, Private Cloud Services, AI / Automation, and ServiceNow. Milestone culture is built to provide a collaborative, inclusive environment that supports employees and empowers them to reach their full potential. Our seasoned professionals deliver services … experience in an IR team, preferably in global enterprise environment Proven experience leading and managing technical teams. Strong understanding of cybersecurity frameworks and standards (e.g., NIST, ISO / IEC 27001, IAM). Proficiency with cybersecurity tools and platforms (e.g., SIEM, SOAR, SAS, Sandboxes, EDR solutions and cloud technologies). Working of knowledge of … access control principles, cloud technologies (CNAPP, CSPM), data retention, and encryption methodologies. Excellent problem-solving, investigative mindset, and communication skills. Experience presenting at a program level for clients and / or cross functional partners Demonstrated ability to work under pressure Preferred, active participation in cybersecurity communities or forums. Preferred, knowledge of programming languages (including database queries) Preferred, forensic investigation More ❯

Company Description MAGNUS Management Group LLC is a Woman Owned Small Business consulting firm located in Washington DC. We are ISO 9001, ISO 27001, ISO 20000, ISO 56002 & CMMI L3 SVC + SSD certified, and we provide expert consulting services in areas such as Information Technology, Management Consulting, Cyber Security … technical solutions to support customer requirements and technical requirements based upon analysis of user, policy, technology, regulatory, and resource demands; recommends cloud-specific solutions for customer requirements; directs and / or supports design of solutions for enterprise cloud environments; has specific knowledge and experience developing or engineering cloud service provider solutions; and possesses expert knowledge in one or more … such as Docker and Kubernetes Bachelor's degree in Computer Science or related field Strong communication and problem-solving skills Experience with DevOps methodology Certifications in AWS, Azure, and / or Google Cloud Platform are a plus MAGNUS Management Group offers a competitive, comprehensive benefits package, which includes: 3 Weeks Paid Time Off 10 Federal Holidays Medical, Dental, and More ❯

Network Infrastructure Security Manager - HYBRID WORKING Position Summary: We are seeking an experienced Infrastructure / Security Manager to lead our IT operations and cybersecurity initiatives. The ideal candidate will have a strong technical background, with the ability to combine hands-on technical expertise with leadership capabilities. Responsible for driving company IT security, and stability of all IT systems and … SIEM, MFA, PKI, DLP). Nessus VAPT reporting and remediation Strong expertise in: Microsoft technologies (Windows Server, Azure Active Directory) Virtualization platforms (VMware ESXi, Proxmox) Networking including Layer 2 / 3 switching, routing, VLANs, VPNs. Cloud environments (IBM Cloud,AWS, Azure) – deployments and architecture. Proficient in backup and disaster recovery technologies. Supporting end users Certifications (Preferred): Microsoft Certified Professional … AWS Certified Solutions Architect – Associate / Professional VMware Certified Professional (VCP) Due to the volume of applications received for positions, it will not be possible to respond to all applications and only applicants who are considered suitable for interview will be contacted. Proactive Appointments Limited operates as an employment agency and employment business and is an equal opportunities organisation More ❯

assessments and supporting testing activities. Working closely with Security Architects to ensure alignment with security policies and standards. Articulating risk clearly for both technical and non-technical stakeholders. Skills / Experience: Strong background in information security project assurance. Knowledge of frameworks and standards such as ISO 27001, GDPR / DPA, and risk management methodologies. … Experience with a broad range of security tools and technologies (vulnerability scanning, SIEM, authentication / authorisation, firewalls, DLP, cloud, networking etc). Excellent communication skills – able to present findings and influence stakeholders. Security qualifications such as CISSP, CISM or ISO 27001 Lead Auditor are desirable but not essential. More ❯

means. Keep informed on the latest research, trends, and developments in all regulatory compliance areas. Serve as a trusted advisor to business functional areas (e.g., Finance, HR, Engineering) and / or internal IT resources (such as infrastructure, apps, IT services.). Ensure that business and technical requirements are aligned to policy and are implemented within regulatory and contractual compliance. … to maintain a continuing external working relationship with individuals, or organizations. Communication Skills: Read, write, and comprehend simple instructions, short correspondence and memos; Read and interpret safety rules, operating / maintenance instructions and procedure manuals; Write routine reports, correspondence and speak effectively before both internal and external groups; Read, analyze and interpret business manuals, technical procedures and / … of alternatives or precedents. Complexity, Judgment and Problem Solving: Typically difficult or complex work. Generally governed by broad instructions and objectives usually involving frequently changing conditions and problems. Supervisory / Managerial: General instructing, scheduling, and reviewing the work of others performing the same or directly related work. Acts as "lead worker". Job functional supervision only. WORKING CONDITIONS: Physical More ❯

DACH . Activities Own the sales motion end-to-end for France: from net-new prospection chasse to closing seven-figure deals with grands comptes industriels (OEMs & Tier-1 / 2). Build strategic account plans for Automotive, Defence, Manufacturing & Aerospace, mapping comités de décision , directions Ingénierie / R&D / Qualité / Programme / Architecture Système , Procurement, and IT / OT stakeholders. Expand relationships and NRR via multi-site, multi-BU expansion, aligning to roadmaps and feuilles de route . Engage at the top level and position SPREAD as partenaire de confiance with a clear business case . Tailor value narratives & demos to French industrial contexts, addressing real pain with crisp use … quota. 5+ years full-cycle enterprise SaaS sales, ideally into Automotive, A&D, Defence, Machinery (France focus). Skilled in account planning , opportunity strategy , and frameworks such as SPIN / MEDDICC ; comfortable navigating complex comités d'achat and public-sector style RFPs / AOs when needed. Confident with C-suite and technical audiences. Experienced selling complex platforms and More ❯