9 of 9 Remote Permanent ISO 27001 Lead Auditor Jobs

local, growing and forward thinking organising in Bristol. This role will be tolead their information security compliance efforts, specifically in line with ISO / IEC 27001 , ISO / IEC 42001 and Cyber Essentials PLUS standards. In this role you will be responsible for maintaining, auditing, and continuously improving their … of a new Team to deliver CaaS and supporting services. Develop, implement, and maintain the Information Security Management System (ISMS) aligned with ISO / IEC 27001 and Cyber Essentials PLUS standards. Lead internal audits, gap assessments, and risk assessments for ISO 27001 and Cyber … organisation and are keen to progress your career. The following experience is also key in order to be successful in this role. ISO / IEC 27001 Lead Auditor or Lead Implementer certification. Familiarity with GDPR, NIS2, ISO / IEC 42001or More ❯

So, what's the role all about? The Information Security Analyst is primarily responsible for ensuring compliance with information security frameworks such as Cyber Essentials, Cyber Essentials Plus, ISO 27001, ISO 27701, ISO 42001, GDPR, and DORA. This role focuses on internal audits, regulatory compliance, and readiness for … owners in scoping appropriate evidence and preparing for external audits. Gap Assessments: Facilitate and / or conduct internal gap assessments and audit readiness evaluations for frameworks such as ISO 27001, GDPR, and DORA. Framework Tracking: Monitor updates to Cyber Essentials, ISO, and regulatory frameworks and ensure internal alignment. Control Documentation: Develop … the tracking and remediation of vulnerabilities in coordination with IT and Security Operations teams. Have you got what it takes? Strong expertise in audit and compliance frameworks, including ISO 27001, ISO 27701, ISO 42001, GDPR, DORA, Cyber Essentials, and Cyber Essentials Plus. Familiarity with CSOC tools such as More ❯

we looking for? Strong experience delivering end-to-end security assurance in complex, fast-paced environments Broad knowledge of IT and security frameworks, regulations, and best practices (e.g., ISO 27001, DPA, GDPR) Familiarity with security tools such as vulnerability scanners, SIEM, DDoS protection, remote access, authentication / authorisation technologies, and data loss prevention Understanding … risk to technical and non-technical stakeholders Self-driven, collaborative, and confident operating both independently and within teams Desirable Qualifications & Experience: Certifications such as CISSP, CISM, CISA, or ISO 27001 Lead Auditor / Implementer Knowledge of the NIST Cybersecurity Framework Experience with Smart Metering or highly regulated environments … and Public Key Infrastructure (PKI) Understanding of Hardware Security Modules (HSMs) About the DCC: At the DCC, we believe in making Britain more connected, so we can all lead smarter, greener lives. That desire to make a difference is what drives us every day and it wouldn't be possible without our people. Each person at the More ❯

performing IT Audit or security control testing. Knowledge of internal audit methodologies, including risk assessment, execution, and reporting. Proficiency in industry standards and frameworks (e.g., NIST 800-53, ISO 27001 / 27002). Familiarity with privacy regulations (e.g., GDPR, CCPA) and breach notification laws. Experience with sector-specific frameworks (e.g., HIPAA, PCI). Technical … analysis, and interpretation. Experience Researching and applying latest technologies. Experience with Agile methodology. Big 4 accounting experience. Hold a professional certification such as CISA, CISM, CISSP, PCI QSA, ISO 27001 Lead Auditor, or equivalent. Additional Information This is a permanent hybrid role in Costa Rica. No relocation available. More ❯

performing IT Audit or security control testing. Knowledge of internal audit methodologies, including risk assessment, execution, and reporting. Proficiency in industry standards and frameworks (e.g., NIST 800-53, ISO 27001 / 27002). Familiarity with privacy regulations (e.g., GDPR, CCPA) and breach notification laws. Experience with sector-specific frameworks (e.g., HIPAA, PCI). Technical … analysis, and interpretation. Experience Researching and applying latest technologies. Experience with Agile methodology. Big 4 accounting experience. Hold a professional certification such as CISA, CISM, CISSP, PCI QSA, ISO 27001 Lead Auditor, or equivalent. Additional Information This is a permanent hybrid role in Costa Rica. No relocation available. More ❯

compliance , and remediation activities Background in regulated environments, preferably with experience in law enforcement , MOD , or Home Office programmes Desirable: Certifications such as CISSP , CISA , CISM , or ISO27001 Lead Auditor Experience engaging with senior stakeholders in public sector cyber or protective security roles More ❯

Central Bristol Job Type: Full-time, Hybrid (2 days per week in-office) Salary: £60,000 - £70,000 + Benefits We are recruiting an Information Security Manager to lead the operational and strategic security programme for a respected organisation headquartered in central Bristol. This hybrid role offers the opportunity to shape the company's approach to information … risk reduction across the business. You'll be responsible for maintaining ISO27001 compliance, overseeing risk assessment and mitigation, and supporting incident management across multi-entity operations. Key Accountabilities: Lead and manage a team of three security professionals , supporting their development and day-to-day delivery. Ensure ongoing ISO27001 accreditation and alignment with broader assurance frameworks (e.g. NIST … cloud services (AWS, SaaS, IaaS) . Strong communication skills and stakeholder management abilities. Experience in incident response and enterprise risk reporting. Professional certifications such as CISSP or ISO27001 Lead Implementer / Auditor (desirable). Benefits: Hybrid working (2 days per week in-office) Generous annual leave & pension contributions Life assurance and private health options More ❯

Central Bristol Job Type: Full-time, Hybrid (2 days per week in-office) Salary: 60,000 - 70,000 + Benefits We are recruiting an Information Security Manager to lead the operational and strategic security programme for a respected organisation headquartered in central Bristol. This hybrid role offers the opportunity to shape the company's approach to information … risk reduction across the business. You'll be responsible for maintaining ISO27001 compliance, overseeing risk assessment and mitigation, and supporting incident management across multi-entity operations. Key Accountabilities: Lead and manage a team of three security professionals , supporting their development and day-to-day delivery. Ensure ongoing ISO27001 accreditation and alignment with broader assurance frameworks (e.g. NIST … cloud services (AWS, SaaS, IaaS) . Strong communication skills and stakeholder management abilities. Experience in incident response and enterprise risk reporting. Professional certifications such as CISSP or ISO27001 Lead Implementer / Auditor (desirable). Benefits: Hybrid working (2 days per week in-office) Generous annual leave & pension contributions Life assurance and private health options More ❯

Central Bristol Job Type: Full-time, Hybrid (2 days per week in-office) Salary: £60,000 - £70,000 + Benefits We are recruiting an Information Security Manager to lead the operational and strategic security programme for a respected organisation headquartered in central Bristol. This hybrid role offers the opportunity to shape the company's approach to information … risk reduction across the business. You'll be responsible for maintaining ISO27001 compliance, overseeing risk assessment and mitigation, and supporting incident management across multi-entity operations. Key Accountabilities: Lead and manage a team of three security professionals , supporting their development and day-to-day delivery. Ensure ongoing ISO27001 accreditation and alignment with broader assurance frameworks (e.g. NIST … cloud services (AWS, SaaS, IaaS) . Strong communication skills and stakeholder management abilities. Experience in incident response and enterprise risk reporting. Professional certifications such as CISSP or ISO27001 Lead Implementer / Auditor (desirable). Benefits: Hybrid working (2 days per week in-office) Generous annual leave & pension contributions Life assurance and private health options More ❯