22 of 22 Permanent ISO 27001 Lead Implementer Jobs

committed to delivering the highest standards of security and compliance. We are seeking a highly skilled and motivated Information Security Risk Manager to lead on A&M wide information security risk management program and join our dynamic and growing team based in either our London or Tampa … the Global Security Office Information Security Risk Register, its supporting processes, governance and reporting requirements. The successful candidate requires a strong understanding of ISO 27001 security controls, exposure to the OnSpring GRC Tool and can effectively assess and communicate technical security requirements to teams … across the firm. Key Responsibilities: Risk Management Leadership and Oversight: Working to A&M Policy and industry standards and lead the end-to-end information security risk management process, ensuring risks are proactively identified, assessed, recorded, and mitigated. Assess and prioritize security risks based on enterprise-wide More ❯

team at Prevail Partners. The ideal candidate will bring deep technical knowledge of information security risks, controls and frameworks - with practical experience managing ISO 27001-compliant systems and embedding secure practices across dynamic operational environments. You will work closely with the Counter Intelligence and … Security Lead, Compliance Manager, IT department, and project teams to ensure robust, proportionate, and forward-looking protection of our people, data and systems. This is a key role for a pragmatic and security-minded individual who can operate at both strategic and operational levels, supporting the business … as it expands its global footprint and develops sensitive technology solutions. Key Responsibilities Security Strategy & Governance Lead the continued development of Prevail's Information Security Management System (ISMS) in alignment with ISO 27001, driving forward maturity and integration with wider business More ❯

UK. The Information Security Manager Role: As Information Security Manager, you’ll be the go-to expert for all things security, steering our ISO 27001 compliance and leading security strategy across the business. From protecting internal operations to aligning with defence frameworks, your work … operations and ensure our team stays at the cutting edge of cybersecurity excellence. Key Responsibilities of the Information Security Manager: Maintain and enhance ISO 27001, Cyber Essentials / Cyber Essentials+, and DCPP compliance Lead policy development and risk mitigation across the … Own security controls for our North Bristol site Support the creation of project-specific security documentation and assurance strategies Skills & Experience: Experience leading ISO 27001 and cybersecurity governance Strong knowledge of NIST CSF, ISO 27005, and DCPP frameworks Confident communicator with More ❯

for personal finances, business operations, or global investments. What you will do: Drive the company's information security strategy, ensuring alignment with GDPR, ISO 27001, DORA, PSD2 / 3, and other relevant regulations Identify and address local and entity-specific security requirements to maintain … processes, and vendors Develop and maintain security policies, standards, and incident response protocols Support business continuity and disaster recovery planning for seamless resilience Lead and oversee internal / external security audits to ensure transparency and accountability Partner with engineering and ICT teams to embed secure-by-design … fintech), with proven Second Line of Defense responsibilities in InfoSec and IT Compliance & Frameworks : Demonstrated success meeting GDPR, EU NIS2, and familiarity with ISO 27001, NIST, and cybersecurity best practices Risk & Governance : Skilled in conducting risk assessments, defining mitigation strategies, and creating / enforcing More ❯

work will drive real, measurable progress in cybersecurity resilience. As a Cybersecurity Consultant, you will: Perform in-depth risk and vulnerability assessments (NIST, ISO 27001, CIS20, etc.) Advise clients on regulatory and compliance needs (e.g. GDPR, NIS2, DORA, ISO 27001 … Qualys, Splunk, CrowdStrike, Palo Alto, Fortinet Understanding of security frameworks and regulations relevant in Belgium and the EU Relevant certifications (e.g. CISSP, CISM, ISO 27001 Lead Implementer / Auditor, CEH, OSCP More ❯

Head of Information Security required for online retail business. The role will initially be focused on ISO27001 & ISO9001 recertifications. Responsibilities Lead on information security strategy and implementation of security roadmap Develop security KPIs and track their progress Advise senior management on risk levels and any changes impacting … posture, including emerging threats Create, maintain, and implement information security policies Continuously validate the firm against policies and procedures to ensure compliance against ISO 27001, ISO 9001, Cyber Essentials+, and GDPR Manage and continuously improve of the firms Information Security Management … System Oversee the information security training and awareness program Lead on internal and external audits and track audit findings through to mitigation Identify and communicate emerging security threats with relevant stakeholders Provide security due diligence in procurement processes and oversee continuous supplier assurance Manage security incidents and More ❯

IT infrastructure from cyberattacks. Implement and manage security policies. Risk analysis and incident management. Real-time threat monitoring and response. Compliance with standards (ISO 27001, NIST, etc.). User training on cybersecurity best practices. Adhere to NIS2 directive. Specific Technical Skills Administer and secure … business continuity plans (PRA / PCA). Threat detection with Threat Intelligence and SOC. Compliance and Governance Implement and manage IT security policies (ISO 27001, NIST, CIS, GDPR). Conduct security audits and infrastructure controls. Implement identity and access management policies (IAM, PAM).Certifications … CEH (Certified Ethical Hacker) CISSP (Certified Information Systems Security Professional) CISM (Certified Information Security Manager) CompTIA Security+ ISO 27001 Lead Implementer OSCP (Offensive Security Certified Professional More ❯

Compliance is a plus. Certifications (Highly Valued) CISSP (Certified Information Systems Security Professional) CISM (Certified Information Security Manager) CISA (Certified Information Systems Auditor) ISO 27001 Lead Auditor / Implementer CRISC (Certified in Risk and Information Systems Control) GDPR … years of experience in Information Security, Compliance, or IT Risk Management. Experience with regulatory frameworks in UK & EU : GDPR (General Data Protection Regulation) ISO 27001 (Information Security Management Systems) Cyber Essentials Plus (UK government-backed security framework) DORA (Digital Operational Resilience Act) - EU financial … understanding of data protection laws (UK GDPR, EU GDPR, DPA 2018) . Familiarity with risk management frameworks like NIST CSF, CIS Controls, and ISO 27005 . Experience with cyber security tools (e.g., SIEM, Malware Protection, Firewalls and others) is a plus. Strong reporting and communication skills-ability More ❯

solvers who are hungry to learn, grow, and make a difference. Position Summary This is a great opportunity to grow your career and lead enterprise engagements as a Senior Consultant! In this position, you will assess the security and compliance of client firms against regulatory and industry … and effectiveness of security measures. You will test technical controls, policies and procedures, laws, regulations, and industry best practices. What You'll Do Lead audits / assessments including audit plan preparation, review of documentation and evidence, evaluation of procedures, and client interviews. Prepare, review and approve assessment … ll Bring Current PCI-QSA certification preferred (will consider former QSA). One of the following Information Security certifications required: CISSP, CISM or ISO 27001 Lead Implementer. One of the following Audit certifications required: CISA, GSNA, CIA, IRCA ISMS Auditor or More ❯

Implementing and monitoring risk mitigation plans Carrying out impact analyses and proposing solutions to strengthen IT resilience Ensuring compliance with standards such as ISO 27001, RGPD, PCI-DSS and other applicable regulations Organising and supervising internal and external IT audits Maintaining complete and up … profile Studies / training Master's degree in computer science, information systems management or equivalent Relevant certifications, such as CISM, CISA, CRISC, or ISO 27001 Lead Implementer / Auditor Experience Minimum 5 years' experience in a similar role More ❯

reliable, automated software deployments while reducing operational overhead. Set standards for Infrastructure as Code (IaC) governance, ensuring consistency and compliance. Cloud & Infrastructure Leadership Lead the transformation from traditional infrastructure to cloud-native, platform-driven operations. Provide strategic direction for hybrid, multi-cloud architecture (AWS, Azure, on-premises … . Security, Compliance & Risk Management Ensure platform security aligns with ISO 27001, NIST, and GDPR compliance. Embed security-first principles into platform governance and DevOps processes. Leadership, Collaboration & Stakeholder Management Lead and mentor a team of Platform Engineers, DevOps Engineers, and … field. Azure Solutions Architect Expert / AWS Certified Solutions Architect (Professional) Desirable. Certified Kubernetes Administrator (CKA) or equivalent (Desirable). ITIL, CISSP, or ISO 27001 Lead Implementer (Desirable). If you think you have what it takes, apply More ❯

CD governance, ensuring reliable, automated software deployments while reducing operational overhead. Set standards for Infrastructure as Code (IaC) governance, ensuring consistency and compliance. Lead the transformation from traditional infrastructure to cloud-native, platform-driven operations. Provide strategic direction for hybrid, multi-cloud architecture (AWS, Azure, on-premises … . Security, Compliance & Risk Management Ensure platform security aligns with ISO 27001, NIST, and GDPR compliance. Embed security-first principles into platform governance and DevOps processes. Leadership, Collaboration & Stakeholder Management Lead and mentor a team of Platform Engineers, DevOps Engineers, and … field. Azure Solutions Architect Expert / AWS Certified Solutions Architect (Professional) Desirable. Certified Kubernetes Administrator (CKA) or equivalent (Desirable). ITIL, CISSP, or ISO 27001 Lead Implementer (Desirable). If you think you have what it takes, apply More ❯

work across functions to support operational resilience and maintain alignment with global security and regulatory frameworks including: ISO / IEC 27001:2022 NIST Cybersecurity Framework PCI-DSS 4.0.1 UK GDPR, NIS2 Directive, CAP1753, and related sector obligations This makes it a great development … to relevant stakeholders. Collaborates with procurement and key suppliers to ensure their ongoing security posture meets Virgin Atlantic requirements. Conducts internal reviews against ISO, NIST, PCI, UK GDPR, and emerging requirements. Supports internal / external audits, evidence readiness, and corrective action tracking. Maintains the policy and control … Implementer / Auditor certification. Sound knowledge of information security governance practices, working knowledge of ISO / IEC 27001:2022, NIST CSF, PCI-DSS, UK GDPR, and NIS2, and other aviation-related legislation. Awareness of Business Continuity, IT Service Continuity, and More ❯

work across functions to support operational resilience and maintain alignment with global security and regulatory frameworks including: - ISO / IEC 27001:2022 - NIST Cybersecurity Framework - PCI-DSS 4.0.1 - UK GDPR, NIS2 Directive, CAP1753, and related sector obligations . This makes it a great … to relevant stakeholders Colloborate with procurement and key suppliers to ensure their ongoing security posture meets Virgin Atlantic requirements Conduct internal reviews against ISO, NIST, PCI, UK GDPR, and emerging requirements Support internal / external audits, evidence readiness, and corrective action tracking Maintain the policy and control … Implementer / Auditor certification Sound knowledge of information security governance practices, working knowledge of ISO / IEC 27001:2022, NIST CSF, PCI-DSS, UK GDPR, and NIS2 and other aviation related legislation.Awareness of Business Continuity, IT Service Continuity and IT More ❯

hands-on Chief Information Security Officer (CISO) for a freelance assignment with one of our global clients in Brussels. The ideal candidate will lead the organization's cybersecurity and IT risk management strategy, ensuring the protection of critical systems and data while aligning with regulatory and business … and manage vulnerabilities. Track remediation plans and report progress to the CIO and second-line risk functions. Monitor third-party security posture and lead associated risk mitigation efforts. Respond to audit findings and regulatory queries on IT security. Security Operations & Incident Response Oversee daily security monitoring across … of cyber incident responses and crisis management plans. Ensure business continuity through well-defined incident response procedures. Cybersecurity Projects & Expertise Sharing (DORA Focus) Lead information security and third-party risk management within DORA initiatives. Advise business and IT stakeholders on security topics during project planning and testing More ❯

retail-sector clients, acting as a trusted advisor across longer-term engagements - shaping security strategy, influencing stakeholders, and driving real change. The Role: Lead and deliver complex GRC engagements, operating at both a strategic and tactical level Build trust with clients, challenge assumptions diplomatically, and influence senior … auditor!) A background in Cyber, Cloud or Networking is useful - even if not current / up to date. Certifications such as CISSP, CISM, ISO 27001 Lead Implementer, PCI etc. are great - but your professionalism and confidence matter most More ❯

CISM), Certified Information Systems Auditor (CISA), CompTia Security +, Certified in Risk and Information Systems Control (CRISC), ISO / IEC 27001 Lead Implementer or Lead Auditor, Certified Ethical Hacker (CEH). More ❯

CISM) Certified Information Systems Auditor (CISA) CompTia Security + Certified in Risk and Information Systems Control (CRISC) ISO / IEC 27001 Lead Implementer or Lead Auditor Certified Ethical Hacker (CEH) About the Organization Established More ❯

and cybersecurity stakeholders to ensure that security requirements are appropriately defined, evidenced, and governed in alignment with relevant defence and maritime standards. Responsibilities Lead or support integrating cybersecurity assurance activities into engineering and programme delivery for marine and defence projects. Develop, review, and maintain cybersecurity assurance artefacts … equivalent experience) in Cybersecurity, Information Assurance, Systems Engineering, or a related technical or defence-focused discipline. Recognised cybersecurity certifications: CompTIA, CISSP, CISM, CRISC, ISO 27001 Lead Auditor / Implementer, or equivalent. Familiarity with MOD, maritime, or defence-specific … frameworks: JSPs, DEFSTAN, NIST, IEC 62443, IMO or ISO / IEC 27001. SC clearance (or eligibility to obtain SC as a minimum) is required; DV clearance is desirable depending on the programme needs. Essential skills Strong understanding of cybersecurity assurance principles, risk management, and regulatory More ❯

and cybersecurity stakeholders to ensure that security requirements are appropriately defined, evidenced, and governed in alignment with relevant defence and maritime standards. Responsibilities Lead or support integrating cybersecurity assurance activities into engineering and programme delivery for marine and defence projects. Develop, review, and maintain cybersecurity assurance artefacts … equivalent experience) in Cybersecurity, Information Assurance, Systems Engineering, or a related technical or defence-focused discipline. Recognised cybersecurity certifications: CompTIA, CISSP, CISM, CRISC, ISO 27001 Lead Auditor / Implementer, or equivalent. Familiarity with MOD, maritime, or defence-specific … frameworks: JSPs, DEFSTAN, NIST, IEC 62443, IMO or ISO / IEC 27001. SC clearance (or eligibility to obtain SC as a minimum) is required; DV clearance is desirable depending on the programme needs. Essential skills Strong understanding of cybersecurity assurance principles, risk management, and regulatory More ❯

Lead Security Architect (Cyber) 9-Month Contract Inside IR35 £650 This role requires SC Clearance The successful applicant will be responsible for: Analyse and assess cyber vulnerabilities at scale for their potential business impact, using your own skill and experience, and in consultation with business owners and … Cyber Professional (CCP), CREST Registered Technical Security Architect, BCS Practitioner Certificate in Information Assurance Architecture, ISC(2) Information Systems Security Architecture Professional, ISO27001 Lead Implementer. More ❯

Lead Security Architect (Cyber) 9-Month Contract Inside IR35 £650 This role requires SC Clearance The successful applicant will be responsible for: Analyse and assess cyber vulnerabilities at scale for their potential business impact, using your own skill and experience, and in consultation with business owners and … Cyber Professional (CCP), CREST Registered Technical Security Architect, BCS Practitioner Certificate in Information Assurance Architecture, ISC(2) Information Systems Security Architecture Professional, ISO27001 Lead Implementer. More ❯