1 to 25 of 436 Remote Permanent ISO/IEC 27001 Jobs

GRC / Governance / Risk / Compliance / Information Security / Infosec / ISO GRC / Governance / Risk / Compliance / Information Security / Infosec / ISO Information Security Analyst Liverpool City Centre … keen eye for detail. A proactive mindset and willingness to learn and grow in the role. Benefits: 25 days holiday + BH Enhanced maternity / paternity packages Employee wellbeing support including counselling sessions and CBT programmes Company pension and life assurance Recognition and reward platform, regular socials, and long … service awards Important Notes: Sponsorship isn’t available GRC / Governance / Risk / Compliance / Information Security / Infosec / ISO GRC / Governance / Risk / Compliance / Information Security / Infosec / ISO More ❯

one of the largest key players and providers of security solutions and SSL certificates for their clients. There is a new role of ISO 27001 Consultant open due to growth of the business. Your new role The work of ISO 27001 Consultant … 27001 certification. What you'll need to succeed: 2 years of experience with implementation of ISO 27001 / ISO 9001 / ISO 14001; Knowledge of laws and regulations; Being able to carry out internal audits; Communicative skills More ❯

You can find out more about us at www.nettitude.com. If you want to review our research and tooling, then head on over to https: / / labs.nettitude.com The role We are looking for a QSA to join our GRC team in the UK. This role is home-based … and NIST CSF ISO 27001 gap analyses Helping our clients to implement Information Security Management Systems and achieve and maintain ISO27001 certification Conducting risk assessments Creating or supporting third-party risk management and audit programmes Essential skills and experience: Be a current QSA who has completed … Cyber Essentials Perform ISO 27001 gap analyses Help our clients to implement Information Security Management Systems and achieve and maintain ISO27001 certification PCI DSS consultancy and gap analyses Assistance in implementing PCI DSS requirements such as policy writing Complete on-site assessments and reports on compliance More ❯

and direct the establishment and implementation of policies and procedures. The CISO is also usually responsible for information-related compliance (e.g. ISO / IEC 27001 and SOC 2 certification). What you'll be doing Develop, implement and monitor a strategic, comprehensive enterprise … a combination of risk management, information security and IT jobs. Knowledge of common regulatory and information security management frameworks, such as ISO / IEC 27001, NIST, SOC 2 and GDPR. Excellent written and verbal communication skills and high level of personal integrity. Innovative More ❯

a regulated industry. Experience of producing written commentaries and materials for different audiences. Good communication and advocacy skills. Essential technical knowledge Knowledge of ISO 27001 & ISO 27031 and equivalent standards and how they are applied to Disaster Recovery and IT Resilience processes. Understanding of … on your application form: Communicating and Influencing Technical skills We'll assess you against these technical skills during the selection process: Knowledge of ISO 27001 & ISO 27031 and equivalent standards and how they are applied to Disaster Recovery and IT Resilience processes. Understanding of … the Person Specification. We would recommend using the STAR method. A 250 word statement for each of the selected technical skills: Knowledge of ISO 27001 & ISO 27031 and equivalent standards and how they are applied to Disaster Recovery and IT Resilience processes. Understanding of More ❯

a regulated industry. Experience of producing written commentaries and materials for different audiences. Good communication and advocacy skills. Essential technical knowledge Knowledge of ISO 27001 & ISO 27031 and equivalent standards and how they are applied to Disaster Recovery and IT Resilience processes. Understanding of … on your application form: Communicating and Influencing Technical skills We'll assess you against these technical skills during the selection process: Knowledge of ISO 27001 & ISO 27031 and equivalent standards and how they are applied to Disaster Recovery and IT Resilience processes. Understanding of … the Person Specification. We would recommend using the STAR method. A 250 word statement for each of the selected technical skills: Knowledge of ISO 27001 & ISO 27031 and equivalent standards and how they are applied to Disaster Recovery and IT Resilience processes. Understanding of More ❯

code reviews, provide guidance on secure libraries and frameworks. Standards & Compliance Ensure products meet regulatory and defence standards (ISO 27001 / 27005, NIST 800-30 / 53, JSP 440 / 604, Def Stan 05-series). Lead the creation and maintenance of security … execute penetration tests and automated vulnerability scans; validate fixes. Oversee third-party security assessments as required. Continuous Improvement Drive security tooling and automation (CI / CD integration, SAST / DAST). Stay ahead of emerging threats and security technologies; evangelise best practices across teams. Qualifications & Experience Proven experience … in product or application security within defence, government, or security-cleared environments. Deep knowledge of risk management frameworks (ISO 27001 / 2 / 5 / 31000, NIST 800-series) and Defence Standards (JSPs, Def Stan 05-138 / 139). Hands-on More ❯

code reviews, provide guidance on secure libraries and frameworks. Standards & Compliance Ensure products meet regulatory and defence standards (ISO 27001 / 27005, NIST 800-30 / 53, JSP 440 / 604, Def Stan 05-series). Lead the creation and maintenance of security … execute penetration tests and automated vulnerability scans; validate fixes. Oversee third-party security assessments as required. Continuous Improvement Drive security tooling and automation (CI / CD integration, SAST / DAST). Stay ahead of emerging threats and security technologies; evangelise best practices across teams. Qualifications & Experience Proven experience … in product or application security within defence, government, or security-cleared environments. Deep knowledge of risk management frameworks (ISO 27001 / 2 / 5 / 31000, NIST 800-series) and Defence Standards (JSPs, Def Stan 05-138 / 139). Hands-on More ❯

and Experience Required Knowledge of HMG standards (including MOD-specific JSP, Def Stan 05-138, Def Stan ). An understanding of MOD ISN 23 / 09 Secure by Design. Knowledge of security frameworks, such as ISO / IEC 27001, NIST … NIST 800-53 or OWASP. Experience of working with risk management frameworks and methodologies (e.g., ISO 27001 / 2, ISO27005 / 31000, NIST 800-30, NIST 800-53) Why Join? You'll gain exposure to cutting-edge defence technology and intelligence insights, alongside good … salary & benefits . The client offers flexible working options, with some hybrid / remote working. Apply now to be immediately considered for this fantastic opportunity. More ❯

Required Knowledge of HMG standards (including MOD-specific JSP, Def Stan 05-138, Def Stan 05 139). An understanding of MOD ISN 23 / 09 Secure by Design. Knowledge of security frameworks, such as ISO / IEC 27001, NIST … NIST 800-53 or OWASP. Experience of working with risk management frameworks and methodologies (e.g., ISO 27001 / 2, ISO27005 / 31000, NIST 800-30, NIST 800-53) Why Join? You'll gain exposure to cutting-edge defence technology and intelligence insights, alongside good … salary & benefits . The client offers flexible working options, with some hybrid / remote working. Apply now to be immediately considered for this fantastic opportunity. More ❯

Information Security Engineer Hybrid: Remote / Bristol Reporting to: Joe Mathews - VP of Technology Salary: £45,000 - £50,000 About Us Duel is a SaaS company on a mission to make Brand Advocacy the industry standard playbook for building brilliant retail brands. It was founded by world record breaking … a timely manner. Learn and implement security monitoring and automation solutions to detect and respond to threats. Help manage security tooling, including SIEM, IDS / IPS, and vulnerability scanning solutions. Work closely with engineers to support secure coding practices and help embed security considerations early in the development process. … as Secureframe, Drata, or Vanta. Experience working with pen testing and bug bounties a plus. Basic understanding of security tools such as SIEM, IDS / IPS, and vulnerability management solutions. Experience or knowledge of cloud security (AWS, GCP, or Azure). Awareness of security best practices in application and More ❯

About the Role We are seeking an experienced SOC 2 / IT GRC Specialist Contractor to support and guide our SOC 2 Type II accreditation program. This is a critical role in a fast-moving, regulated environment, requiring hands-on experience with SOC 2 frameworks, ISO 27001 … guidance to internal teams to embed a culture of compliance and readiness. Support the development, implementation, and continuous improvement of the ISO / IEC 27001-aligned ISMS Required Skills & Experience Demonstrable experience leading or supporting a successful SOC 2 and ISO 27001 implementations. Solid understanding of the AICPA Trust Services Criteria and related IT / security controls. Experience working within GxP environments, particularly in relation to SaaS applications or hosted infrastructure. Proven ability to design and document policies and procedures that satisfy both SOC 2 and More ❯

posture. You’ll work with industry-leading frameworks like Cyber Essentials (CE), Cyber Essentials Plus (CE+), NIST 2, ISO 27001 / 223001, DORA , and more. This is the perfect opportunity if you’re looking for more autonomy, rapid career growth, and a dynamic environment —far … and principal consultants as needed. Lead and contribute to diverse security projects, including third-party risk management, mergers and acquisitions, security policy development, ISO 27001 implementation, audits and compliance (NIS 2, DORA), risk assessments, remediation programs, and more. Lead, manage, and deliver full cyber security engagements … Bring as a Senior Cyber Security Consultant: 2+ years of information security consulting Experience of Governance, Risk, and Compliance (GRC) frameworks such as ISO 27001, ISO 223001, NIST, DORA and other regulatory standards. Experience conducting Cyber Essentials and Cyber Essentials Plus assessments and guiding More ❯

posture. You’ll work with industry-leading frameworks like Cyber Essentials (CE), Cyber Essentials Plus (CE+), NIST 2, ISO 27001 / 223001, DORA , and more. This is the perfect opportunity if you’re looking for more autonomy, rapid career growth, and a dynamic environment —far … and principal consultants as needed. Lead and contribute to diverse security projects, including third-party risk management, mergers and acquisitions, security policy development, ISO 27001 implementation, audits and compliance (NIS 2, DORA), risk assessments, remediation programs, and more. Lead, manage, and deliver full cyber security engagements … Bring as a Senior Cyber Security Consultant: 2+ years of information security consulting Experience of Governance, Risk, and Compliance (GRC) frameworks such as ISO 27001, ISO 223001, NIST, DORA and other regulatory standards. Experience conducting Cyber Essentials and Cyber Essentials Plus assessments and guiding More ❯

network telemetry technologies. Providing support to members of the wider Operations team as required. Support & maintain the company objectives of ISO 9001 / 18001 / 27001 accreditation. Key Skills and Experience: 3 - 5 years of experience on a service provider network in Operations, Engineering … operational experience with carrier-class routers, console servers & switches, (experience with Juniper and Cisco required). Excellent knowledge of L2 & L3 routing protocols, (IPv4+IPv6 / BGP / ISIS / VPLS / IP VPN / MPLS / QinQ / ELINE) and good understanding of … culture. Our employees are driven and committed, with many options to connect and engage in our inclusive environment. Zayo Europe is an Equal Opportunity / Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to age, race, colour, religion, sex, sexual orientation, gender identity, national More ❯

Monitoring and maintaining SIEM • Managing Zero trust privilege management • 365 Security and best practice • Assisting with endpoint security • ISO 27001 / CE+ Audits Requirements : The ideal candidate will have experience in a similar role with strong technical, analytical, interpersonal, problem solving and communication skills. Minimum … technical skills required: • Windows, Linux, Vmware hardening and patching • Nessus reporting • ISO 27001 / CE+ audits • Email security • Endpoint security • SIEM management • 365 administration / best practice Desirable • Hardware Firewalls • HPE / Lenovo Servers and Sans • Network design and configuration • AWS / IBM cloud / Azure Due to the volume of applications received for positions, it will not be possible to respond to all applications and only applicants who are considered suitable for interview will be contacted. Proactive Appointments Limited operates as an employment agency and employment business and is More ❯

Select how often (in days) to receive an alert: Group Process & Assurance Manager (Fixed-term contract) Country / Region: GB Connect with Eutelsat Group Be part of a new era in communications, transforming connectivity with Eutelsat Group - the world's first GEO-LEO integrated global satellite operator. As a … and crush deadlines. What You'll Do: Reporting to the Head of Group Quality, lead and manage the cross-functional PMO portfolio of programs / projects. As a program manager, deploy the necessary methodology expertise to successful execution. Manage and support key cross-organization programs with ISO … strategy to support Quality, process assurance, and continuous improvement. Manage and build relationships with key functional stakeholders. Lead on the preparation of and execution / governance scorecards and reporting. Develop PMO support to key programs with respect to reporting and data analysis. Support executive leadership in the implementation of More ❯

knowledge sharing across teams. What We’re Looking For Technical Experience & Knowledge Experience with risk management frameworks and methodologies such as ISO / IEC 27001 / 2, ISO27005 / 31000, NIST 800-30, NIST 800-53. Strong understanding of security … standards and frameworks including OWASP, Secure by Design principles, and MOD-specific guidelines (e.g., JSP, Def Stan 05-138 / 139). Familiarity with HMG security principles and assurance frameworks is advantageous. Comfortable using threat modelling tools and implementing mitigation strategies. Experience with NIST standards. (this is an absolute More ❯

be part of the leadership team responsible for protecting a rapidly expanding global enterprise. The OT Manager, Cybersecurity, will audit the Industrial Control System / Operational Technology (ICS / OT) environment and perform risk / vulnerability assessments leading to the development of an enterprise strategy / design plan. The OT Manager, Cybersecurity, will lead the team on implementation (hands-on configuration) of the enterprise ICS / OT systems Additional responsibilities include research, classification, and root cause analysis of security events that occur within the environment. The ideal candidate will have security industry knowledge that … performing security assessments in an OT environment. Excellent leadership skills as this is a people manager role. Strong understanding of cybersecurity frameworks for ICS / OT environments Strong understanding of OT network communication protocols and industrial networking topologies. Familiarity with NIST (National Institute of Standards and Technology) Special Publication More ❯

be part of the leadership team responsible for protecting a rapidly expanding global enterprise. The OT Manager, Cybersecurity, will audit the Industrial Control System / Operational Technology (ICS / OT) environment and perform risk / vulnerability assessments leading to the development of an enterprise strategy / design plan. The OT Manager, Cybersecurity, will lead the team on implementation (hands-on configuration) of the enterprise ICS / OT systems Additional responsibilities include research, classification, and root cause analysis of security events that occur within the environment. The ideal candidate will have security industry knowledge that … performing security assessments in an OT environment. Excellent leadership skills as this is a people manager role. Strong understanding of cybersecurity frameworks for ICS / OT environments Strong understanding of OT network communication protocols and industrial networking topologies. Familiarity with NIST (National Institute of Standards and Technology) Special Publication More ❯

email, calls, support tickets) Contextual Understanding: Understand the customer's business context and how their compliance questions relate to their use of our products / services or their broader GRC strategy Information Dissemination: Clearly articulate complex compliance concepts to both technical and non-technical customer stakeholders Relationship Building: Build … assessment process, and Annex A controls accurately Strong familiarity and understanding of ISO 42001 (Artificial Intelligence Management Systems) and its core principles / requirements. Must be able to discuss its objectives and key components Exceptional communication skills (written and verbal), with a proven ability to explain complex … a sense of belonging for future and current Mironeers around the world, and foster an environment where everyone can collaborate and embrace differences. Resume / CV Resume / CV Attach File types: pdf, doc, docx, txt, rtf File size: max 2MB Cover Letter Attach File types: pdf, doc More ❯

developing mitigation strategies. Conducting security code reviews and offering guidance to ensure a secure-by-design approach. Ensuring products meet key regulatory standards (ISO 27001, NIST 800 series, JSPs, Def Stans). Authoring vital security documentation, including RMADS and Security Assurance Documents. … Performing penetration testing and coordinating remediation efforts. What You Bring: A solid understanding of security frameworks such as ISO 27001 / 2, ISO 31000, NIST 800-30 / 37 / 53. Hands-on experience with Defence Standards (JSPs, HMG, Def Stan … / 139). Strong knowledge of security testing tools and techniques. Excellent communication skills — able to explain complex risks and solutions clearly. A proactive, problem-solving mindset with a high level of personal integrity and professional ethics. Experience with NIST standards. (this is an absolute must) You'll Succeed More ❯

for the better. The role is hybrid and will require 2 days a week on site in London. As the Group Information Security Analyst / Officer, you will: Lead and maintain security accreditations: Successfully manage Cyber Essentials, Cyber Essentials Plus, and ISO 27001 certifications. Deliver … comprehensive training: Develop and deliver engaging training on ISO 27001, cybersecurity awareness, AI, and data protection. Stay ahead of threats: Continuously monitor and adapt to emerging cybersecurity threats, ensuring robust governance and safeguarding measures. Manage business continuity: Oversee Business Continuity Planning (BCP) and Disaster Recovery Plans. … and maintain a strong security posture. ISMS management: Coordinate the improvement and maintenance of the Information Security Management System (ISMS) in line with ISO 27001 and Cyber Essentials. Experience Required: Information Security Management: Extensive experience in implementing and maintaining ISMS and achieving ISO 27001 More ❯

Role: Security Architect (Cloud) Location: Edinburgh / Glasgow / Sheffield / Manchester / Birmingham Working Pattern: 3 days on-site, 2 days WFH Summary Oscar are kicking off the search for an experienced Security Architect contractor to work with a well-known, high end consultancy. The … CNAPP platforms such as Wiz, Prisma Cloud, Orca or Aqua. Strong knowledge of public cloud platforms. Familiar with compliance frameworks such as NIST, ISO 27001 and how they apply to cloud applications. The ability to run risk assessments and threat … modelling for cloud-native applications. Excellent communication skills with the ability to translate technical concepts to business stakeholders. Role: Security Analyst (Cloud) Location: Edinburgh / Glasgow / Sheffield / Manchester / Birmingham Working Pattern: 3 days on-site, 2 days WFH Apply now More ❯

our continued growth, we are seeking an experienced Information Security Manager. In this role, you will be responsible for ensuring our ongoing compliance with ISO27001 and Cyber Essentials Plus, including the management of quarterly external audits and the facilitation of Integrated Management System (IMS) meetings. You will also oversee our … functionally across multiple teams. You can influence people of all grades to deliver the right outcomes. Security Management. IT management (ITILv4). Continuous Monitoring / Threat Alerts. Managing security incidents and non-conformances. Experience with Data protection duties and GDPR. Desirable (CISM) certification or CISSP desirable to have. We … Vitality medical insurance. Workplace Pension 5% employer contribution. Group Life Assurance. Cycle scheme. 5 days a year for approved Training. WFH equipment allowance. Buy / Sell Holiday. 2 days paid volunteering days. Other benefits: Flexible working. Work on exciting projects - make a difference. Empowered to make decisions. Encouraged to More ❯