126 to 150 of 665 Permanent ISO/IEC 27001 Jobs

with senior stakeholders to deliver cyber risk solutions that protect operations, support compliance, and enable strategic growth. Key Responsibilities Lead cyber strategy and maturity assessments aligned to frameworks like ISO27001, NIST CSF, GDPR, and CAF Deliver cyber risk roadmaps and business-aligned security recommendations Translate technical insights into executive-level communications Mentor junior consultants and contribute to proposal or bid … looking to deepen their advisory experience while working in a collaborative, expert-led environment. Apply now or contact Declan Bryson at Anson McCade on 07529 161950 quoting ref AMC / DB / CSSC / 59 . Reference: AMC / DB / CSSC / 59 #debr More ❯

and team size, the role requires the functional capability and proficiency to technically augment the team capabilities (when required) and have a detailed knowledge of technical IT support roles / services as a requirement, across multiple technical areas. Security, Compliance & Risk Management • Define and enforce cloud security policies, identity management, and access controls to protect systems, networks, and data. … Lead threat monitoring, detection, and response using cloud-native security solutions such as Microsoft Defender, Sentinel, and SIEM platforms. • Ensure compliance with cloud security frameworks and regulatory requirements (ISO 27001, NIST, GDPR, SOC2, FCA). • Conduct regular security risk assessments, penetration tests, and vulnerability management across cloud services. • Oversee endpoint security, cloud network and API security … Azure: Strong experience managing Microsoft 365 (Exchange, SharePoint, Teams), Azure cloud infrastructure, and security tools such as Microsoft Defender and Sentinel. • Security & Compliance: Deep knowledge of security frameworks (ISO 27001, NIST, CIS), compliance requirements (GDPR, SOC2), and risk management best practices. • Identity & Access Management (IAM): Expertise in Azure AD, MFA, Conditional Access, Single Sign-On (SSO More ❯

to join AppCheck in a new role focused on developing our Asset Management product offering, which brings together existing capabilities as well as developing substantially new features and UX / UI. We’re looking for an experienced Product Manager who can liaise with commercial leadership, customers and technical teams, while building the product roadmap and driving progress towards and … PM) role will be responsible for the end-to-end lifecycle of this capability, leading on the discovery, development, launch, and post-launch of the product and new features / enhancements post-launch. Key Accountabilities: Realising Customer Needs. The PM will be accountable for developing insights into our customers, the risks that they manage, and discover new opportunities to … of working in an organisation using Agile Software Development practices such as XP and Continuous Delivery. Experience of managing and prioritising effort across multiple deliverables that are in scoping / development. Knowledge & Skills: Strong communication skills with the ability to use data and narrative to drive action and decision with both internal / external stakeholders and delivery teams. More ❯

the effectiveness of cyber governance. Lead continuous improvement initiatives and mentor key personnel within governance functions. Ensure all policies, procedures, and controls are compliant with regulatory standards (NCSC, ISO 27001, NIST, CIS Controls). Identify, assess, and manage risks to project or organisational goals. Build alignment with executive stakeholders … board members, and external partners to ensure accountability and clear decision-making processes. Qualifications A proven track record in leading cybersecurity risk and governance transformations in complex or government / defence environments. Deep knowledge of cybersecurity frameworks (e.g., NIST, ISO 27001, CIS Controls) and regulatory obligations. Experience designing and implementing cybersecurity governance structures from the … field. Professional certifications: CISSP, CISM, CRISC (or equivalent experience). Minimum 10 years' experience in cybersecurity transformation, ideally in a defence or maritime context. UK Government security clearance (DV / SC) Why Nortal We live by our values: commit to delivering value and results, take ownership, empower yourself and others, and own your future and growth A collaborative and More ❯

Active Directory, and Azure AD Ability to understand and articulate interoperability between technologies and design pragmatic security solutions for the bank Effective collaboration with internal and external SMEs / partner organizations Experience with frameworks such as ISO 27001 / 2, SOC, NIST, or COBIT About You Skills Recognized leading security qualification or working towards More ❯

to understand client needs and position appropriate cybersecurity services Deliver technical presentations and demos that communicate the value and scope of our services (e.g., penetration testing, red teaming, DORA / ISO compliance, etc.) Support the preparation of proposals, statements of work (SOWs), and RFP / RFI responses Scope and define technical requirements and resource estimates for … role within cybersecurity or IT services Understanding of the cyber threat landscape Familiarity with AWS, Azure, or Google Cloud. Understanding of Cyber Services markets e.g. Penetration Testing, Red Team / Purple Team, Adversary Simulation, risk and compliance frameworks ISO 27001, NIST, DORA, CREST. TIBER etc.) Willingness to travel to regular F2F end user meetings Familiarity More ❯

capability growth What We're Looking For 5+ years in cybersecurity or cyber advisory Experience leading cyber transformation in a consulting or enterprise environment Deep understanding of frameworks: NIST, ISO27001, GDPR, NIS2, CAF Track record managing teams and complex project delivery Executive-level stakeholder management and influencing skills Certifications (CISSP, CISM, CISA, M.Inst.ISP) highly desirable This is a chance to … security strategy and join a team that's influencing cybersecurity at the highest levels. Apply now or contact Declan Bryson at Anson McCade on 07529 161950 quoting ref AMC / DB / CSM / 83 . Reference: AMC / DB / CSM / 83 #debr More ❯

workforce solutions - from recruitment and technology to workforce supply, management, and training - tailored for the infrastructure, construction, and civil engineering sectors. Key Responsibilities: • Manage full lifecycle for 6+ IT / telecoms vendors, including contracts, renewals, and performance reviews • Oversee daily / weekly SLAs, drive service improvements, and align to ITIL metrics • Lead IT governance board; maintain risk register … and support ISO / cybersecurity compliance • Control £700k IT OPEX budget; track costs and manage asset register • Sponsor supplier-led projects (e.g., ERP, M365); build cases and track benefits • Communicate clearly with execs; use NPS / CSAT to improve supplier service What You ll Bring to the Team: • Managed multi-supplier, outsourced IT & telecoms contracts end … Understanding Microsoft Cloud environment • Run IT Teams across Microsoft stack • Led RFPs, contract negotiations, and vendor performance reviews • Tracked SLAs and supported supplier-led change projects • Familiar with ISO 27001, GDPR, and risk reporting • Clear communicator with execs, users, and vendors • Data-driven; focused on cost, service, and risk improvement Certifications & Education: • ITIL v4 Managing Professional More ❯

workforce solutions - from recruitment and technology to workforce supply, management, and training - tailored for the infrastructure, construction, and civil engineering sectors. Key Responsibilities: • Manage full lifecycle for 6+ IT / telecoms vendors, including contracts, renewals, and performance reviews • Oversee daily / weekly SLAs, drive service improvements, and align to ITIL metrics • Lead IT governance board; maintain risk register … and support ISO / cybersecurity compliance • Control £700k IT OPEX budget; track costs and manage asset register • Sponsor supplier-led projects (e.g., ERP, M365); build cases and track benefits • Communicate clearly with execs; use NPS / CSAT to improve supplier service What You’ll Bring to the Team: • Managed multi-supplier, outsourced IT & telecoms contracts end … Understanding Microsoft Cloud environment • Run IT Teams across Microsoft stack • Led RFPs, contract negotiations, and vendor performance reviews • Tracked SLAs and supported supplier-led change projects • Familiar with ISO 27001, GDPR, and risk reporting • Clear communicator with execs, users, and vendors • Data-driven; focused on cost, service, and risk improvement Certifications & Education: • ITIL v4 Managing Professional More ❯

tight SLA’s and KPI’s for our customers leveraging vulnerability and assessment tools such as Qualys and Microsoft’s EDR offering. Analyse vulnerability test reports and provide remediation / mitigation plans to the team. Integrate with our vendors and security providers to identify the most up-to-date information on the latest vulnerabilities and deliver key awareness and … LIMA’s Operation team to plan and implement internal security adoption across all our platforms including our hosted cloud platform, aligning to CE+, ISO 27001 / 27002 and ITIL. With the Technical Services Manager, identify and implement the best practice security posture for LIMA’s Managed Services Engineers when working with customers and vendors. Produce … experience with technical accreditations or demonstrable experience in security and vulnerability remediation technologies: Security Tooling: OWASP ZAP, Nmap, Wireshark Assessment Tooling: Nessus, Qualys, etc Remediation Tooling: Microsoft Endpoint Management / Intune Microsoft Security / Compliance: MFA,?Conditional Access, SSPR, DLP, IPM, IRM, DKIM, MCAS Application packaging for automated deployment Intermediate scripting experience utilising PowerShell or Python You should More ❯

and team size, the role requires the functional capability and proficiency to technically augment the team capabilities (when required) and have a detailed knowledge of technical IT support roles / services as a requirement, across multiple technical areas. The role requires the ability to "lead by example" and perform line management for direct reports and manage service partners reporting … On-prem and Virtual product) Solution Life Cycle Management and removal (via decommissioning and succession planning) of technical debt. Drive a document first culture to new and legacy platforms / solutions. Oversee management of the End User Compute estate via Intune Act upon and proactively manage all estate patch management requirements (on-prem, virtual, & physical) for software, hardware, and … optimal service delivery and value for investment. Negotiate cloud service agreements, monitor SLAs, and ensure vendor compliance with security and data protection policies. Monitor, forecast and efficiency manage vendor / solution spend against defined budget. Oversee third-party SaaS solutions, ensuring they align with the organisation's cloud-first strategy and security requirements. Refine and develop external and internal More ❯

Assurance and Certification Manager Location: Portsmouth, Hybrid (2 days p / week) Employment Type: Permanent Salary: £65,000 - £75,000 Are you passionate about driving compliance, risk management, and organisational excellence in a dynamic, collaborative environment? Robert Half we are seeking an experienced Assurance and Certification Manager to work with their leading MSP client Responsibilities: Lead the development, implementation … and continuous improvement of assurance, compliance, and certification frameworks. Manage and sustain ISO accreditations (e.g., ISO 9001, 14001, 27001, and others) and integrate emerging AI standards into organisational processes. Conduct comprehensive internal and external audits, risk assessments, and compliance gap analyses across multiple regions. Collaborate with cross-functional teams to align certification objectives with … dependent upon your experience, qualifications and training. If you wish to apply, please read our Privacy Notice describing how we may process, disclose and store your personal data: roberthalf.com / gb / en / privacy-notice. More ❯

and investment priorities to support long-term growth. Governance & Compliance Own company-wide security governance, including data protection, access control, and insider risk. Ensure compliance with SOC 2, ISO 27001, GDPR, and other relevant frameworks. Oversee security audits and third-party risk programs. Risk Management & Threat Intelligence Lead threat modelling, risk assessments, and security reviews of … with engineering to embed security in the SDLC and infrastructure. Guide secure design for cryptographic systems, transaction flows, and the Energy Network. Ensure resilience across distributed devices and on / off-chain systems. Security Culture & Collaboration Promote a security-first culture across product, data, legal, and compliance. Represent Fuse externally in customer, regulatory, and industry engagements. 5+ years in … incident response, and risk management. Excellent leadership, communication, and stakeholder skills. Bachelor's or advanced degree in Computer Science, Information Security, or related field. Bonus: Experience with CTFs, red / blue team exercises, or offensive security. Competitive salary and a stock options sign-on bonus Biannual bonus scheme Fully expensed tech to match your needs! Paid annual leave Breakfast More ❯

vulnerability management policies, scan configurations, and best practices, aligned to frameworks such as ISO 27001, NIST, and CIS. Integrate vulnerability scanning and remediation into CI / CD pipelines and development workflows to ensure security at speed. Automate data collection, triage, reporting, and ticketing processes using scripting languages such as Python, Bash, PowerShell, or Go. Collaborate … and remediation practices. Person Specification Proven experience in vulnerability management across hybrid (on-prem and cloud) infrastructure. Hands-on experience with Tenable and integration of VM tools into CI / CD pipelines. Strong scripting skills using languages such as Python, Bash, PowerShell, or Go. Familiarity with APIs, automation workflows, and integrating with platforms like Jira, ServiceNow, or Slack. Ability … to scope penetration tests and manage findings through to remediation. Strong understanding of security frameworks and standards such as ISO 27001, NIST, and CIS. Excellent communication, presentation, and influencing skills, with the ability to explain complex technical issues to non-technical stakeholders. Analytical and solution-oriented mindset with the ability to drive improvements independently and as More ❯

failure. Essential Skills & Experience: At least 2 years of hands-on experience in information security or IT infrastructure within an enterprise environment. Familiarity with security standards such as ISO 27001, Cyber Essentials, GDPR, and Data Protection Act. Experience with Microsoft O365 Security solutions and network security operations. Understanding of security testing principles, including vulnerability scanning, risk … apply now. Keywords: Information Security Consultant, IT Security Consultant, Cybersecurity Specialist, Microsoft O365 Security, Enterprise Security Jobs, Information Security Leeds, IT Risk Management, Security Incident Response, Vulnerability Management, ISO 27001, GDPR Compliance, Security Awareness, Disaster Recovery and Business Continuity. More ❯

thorough evaluations of supplier policies and procedures, current security controls, third party pen testing reports, vulnerability management reports, and information security reports such as SOC2 Reports, NIST or ISO 27001 reports, PCI DSS etc). Manage relationships with large third-party suppliers involved in transformative, high-impact projects and Business as usual activities. This included facilitating … these vulnerabilities Work with internal stakeholders (procurement, legal, IT, compliance) to integrate third-party risk considerations into vendor selection and contract management processes. Responsible for confirming the Inherent Risks / Residual Risks and the effectiveness of Supplier security measures and controls. Reviewing and analysing the daily vulnerability reports generated by the third party risk management tool. Confirm reported vulnerabilities … stakeholder management skills. Experience with risk assessment tools and methodologies. Ability to work independently and manage multiple priorities You'll have the right to work in Ireland (EU Citizen / Stamp 4 Visa) Happy to work in a hybrid model and be on-site for meetings as required Salary Starting salary is €81,000 with a leading benefits package More ❯

driven, no-nonsense approach to delivery Technically fluent and able to identify and resolve delivery risks through direct engagement with engineers Familiar with governance and compliance frameworks (e.g. ISO 27001) while keeping delivery lean and pragmatic Clear and confident communicator across technical and executive levels Detail-oriented with a sharp eye for spotting risks and weaknesses … Effective in using streamlined processes and high-impact reporting tools (e.g. RAID logs, 1-page dashboards) Preferred Certifications: PRINCE2 Practitioner ITIL AWS or Azure Cisco (desirable) Awareness of ISO control frameworks such as ISO 27001 More ❯

driven, no-nonsense approach to delivery Technically fluent and able to identify and resolve delivery risks through direct engagement with engineers Familiar with governance and compliance frameworks (e.g. ISO 27001) while keeping delivery lean and pragmatic Clear and confident communicator across technical and executive levels Detail-oriented with a sharp eye for spotting risks and weaknesses … Effective in using streamlined processes and high-impact reporting tools (e.g. RAID logs, 1-page dashboards) Preferred Certifications: PRINCE2 Practitioner ITIL AWS or Azure Cisco (desirable) Awareness of ISO control frameworks such as ISO 27001 More ❯

driven, no-nonsense approach to delivery Technically fluent and able to identify and resolve delivery risks through direct engagement with engineers Familiar with governance and compliance frameworks (e.g. ISO 27001) while keeping delivery lean and pragmatic Clear and confident communicator across technical and executive levels Detail-oriented with a sharp eye for spotting risks and weaknesses … Effective in using streamlined processes and high-impact reporting tools (e.g. RAID logs, 1-page dashboards) Preferred Certifications: PRINCE2 Practitioner ITIL AWS or Azure Cisco (desirable) Awareness of ISO control frameworks such as ISO 27001 More ❯

driven, no-nonsense approach to delivery Technically fluent and able to identify and resolve delivery risks through direct engagement with engineers Familiar with governance and compliance frameworks (e.g. ISO 27001) while keeping delivery lean and pragmatic Clear and confident communicator across technical and executive levels Detail-oriented with a sharp eye for spotting risks and weaknesses … Effective in using streamlined processes and high-impact reporting tools (e.g. RAID logs, 1-page dashboards) Preferred Certifications: PRINCE2 Practitioner ITIL AWS or Azure Cisco (desirable) Awareness of ISO control frameworks such as ISO 27001 More ❯

now looking for an experienced and dynamic Senior Cyber Security Engineer to join our vibrant office with hybrid working. Senior Cyber Security Engineer – Responsibility: Carry out daily security engineering / operation tasks under an ITIL framework Develop an understanding of the threats, risks, vulnerabilities and evolving attack vectors facing the business. Using strong technical knowledge, continuously analyse and make … recommendations to implement effective security controls, system hardening and security improvement projects with a particular focus in application / web hosting security. Assist in the management of patching, vulnerability analysis and penetration testing to ensure recommendations are risk assessed and implemented in a timely manner Senior Cyber Security Engineer – Skills: Experience in Security Engineering, Network Security, and / … protocols such as networks, domain management, and virtualized environments. Holds or is working towards certifications like CISSP, SANS GCIA, CompTIA Security+, CCNA / CCNP, or similar. Knowledge of ISO27001, Cyber Essentials, and AAF frameworks is a plus. Due to the volume of applications received for positions, it will not be possible to respond to all applications and only applicants More ❯

DevOps engineers. Core Skills Deep technical experience in infrastructure design, build, and deployment, including private and public cloud, networking, connectivity, storage, and virtualization Strong technical experience of the Microsoft / Azure ecosystem (Networking / solutions, Monitor, Licensing / Cost Management, IaaS / PaaS services) and Infrastructure as Code Experience working with Azure technologies such as virtual … machines, Cloud Services, web apps, function apps, Azure Active Directory, Virtual Networks, etc. Creating and managing CI / CD pipelines using tools such as Azure DevOps, Octopus Deploy, and Terraform to deploy both infrastructure and applications Experience in managing both project and operational change; including estimating, resource allocation, status reporting, and cost management Experience in modernizing / migrating … existing systems to cloud-based serverless architecture Well-versed in Windows Operating Systems and Active Directory domain services Experienced in the use of Azure platform services, PowerShell / Azure PowerShell, and the Azure Portal Experience with configuration management and automation technologies Proficiency in cloud cost optimization strategies Knowledge of security compliance standards (e.g., ISO 27001 More ❯

Shared responsibility for operating the Change Management process, including ensuring stakeholders are following the correct process at all times Adhere to the Request For Change process for all application / Workflow changes Ensuring the support ticketing system is kept up to date at all times … Highlight to the line manager any concerns regarding conflicting duties or areas of responsibility. Operate within the processes, policies and standards of e.Surv information security management system, aligned to ISO27001 Adhere to all policies and operating procedures of the IT department. Being an active member of the team. Knowledge and Expertise Essential: Extensive experience gained in supporting critical business applications … a confidential discussion on the full details of this role please contact Alka Tarafdar In your Application, please feel free to note which pronouns you use (for example, she / her / hers, he / him / his, they / them / theirs) e.surv is an equal opportunity and Disability Confident employer, dedicated to More ❯

governance, risk, and assurance. Key Responsibilities: 1. Governance, Risk & Compliance (GRC) Management Develop, implement, and maintain GRC policies, frameworks, and procedures aligned with industry standards and regulatory requirements (ISO 27001, NIST, SOC 2, GDPR, HIPAA, PCI DSS). Conduct … workshops to gather requirements for risk assessments and security reviews, ensuring risk mitigation strategies are in place. Maintain a risk register and track risk management initiatives. Lead third-party / vendor risk assessments requirement gathering, ensuring supplier security and compliance. Collaborate with leadership to align GRC practices with business objectives. 2. Compliance & Assurance Ensure the organization meets regulatory requirements … and industry best practices. Manage compliance audits (ISO 27001, SOC 2, PCI DSS, GDPR, HIPAA) and coordinate with internal / external auditors. Conduct compliance monitoring and provide periodic reports on adherence to policies. Develop and implement assurance programs to validate control effectiveness. Stay updated on changing regulations and emerging compliance risks. 3. Business Analysis & Process More ❯

including fintech and e-commerce. About the Role As an IT Auditor, you'll play a central role in delivering Kula's "smart auditing" approach-merging IT assurance (ISO 27001, ISAE, SOC) with financial audits. You'll work with clients that rely heavily on IT for internal controls and compliance. Your role will span IT audits … part of a skilled and collaborative team. You'll also contribute to internal innovation and the growth of our assurance services. Key Responsibilities Conduct IT audits aligned with ISO 27001, ISAE, and SOC standards Support financial statement audits by testing general IT controls (GITCs) Provide guidance on IT risk, cybersecurity, and regulatory compliance Advise clients on … Are The ideal candidate: Holds a university-level degree and a RE designation Has 3-5 years of relevant experience in IT audit, financial audit, internal audit, or risk / compliance Has working knowledge of assurance engagements (SOC / ISAE) and financial audits Is analytically sharp, communicative, and adaptable Enjoys a mix of IT audit, compliance work, and More ❯