3 of 3 Part-Time ISO/IEC 27001 Jobs in the UK excluding London

Information Security Manager (3 days / week, permanent pro-rata) Location: Leeds-hybrid (on-site 1-2 day / week, typically Mon / Tue) Reports to: VP, Information Security Team: 5 in security (within a wider UK tech org of ~25, multi-region) We’re looking for a hands-on InfoSec Manager to take pressure off the … shape the control environment, and keep the security operations and compliance moving at speed. You’ll blend GRC and technical oversight , working closely with two security engineers (vuln scanning / IDS, external pen-test liaison) and two GRC specialists. What you’ll do Drive and extend ISO 27001 implementation / maintenance (UK certified; expanding … to Madrid and Manila ). Support SOC 2 Type 2 maintenance (already accredited)—expert level not required. Oversee SIEM operations with the tech team: ensure log ingestion / coverage , daily monitoring, and follow-up. Guide vulnerability management, alert triage (Alert Logic), and external pen-test cycles. Keep evidence flows tight: client questionnaires, audit responses, security awareness, and user access More ❯

build and operate the Azure-based Internal Developer Platform as a product, enabling self-service environment provisioning and repeatable golden paths. Develop and maintain Infrastructure as Code (Terraform and / or Bicep) modules and reusable templates for AKS, networking, storage, databases, and app runtimes. Implement and evolve CI / CD pipelines (HL version control set) with quality gates … testing, security scanning, and progressive delivery. Introduce and run GitOps for Kubernetes (AKS preferred), patterns and multi-environment promotions. Own platform observability: metrics, logs and traces using Azure Monitor / Log Analytics / Application Insights, plus Datadog / Grafana where appropriate. Embed security by design: Azure Policy, Defender for Cloud, secrets management with Key Vault, SBOM and … image scanning, policy-as-code and least privilege IAM. Drive reliability using SRE practices: define SLIs / SLOs, error budgets, capacity planning, chaos testing, incident response and blameless post-incident reviews. Partner with application squads to remove toil, improve developer experience (DX), and reduce lead time for changes through automation and platform enhancements. Implement cost visibility and optimisation (FinOps More ❯

PLEASE NOTE THIS ROLE SITS WITHIN IR35***PLEASE NOTE THIS ROLE SITS WITHIN IR35*** IT Service Analyst / IT Vendor Management Analyst A fantastic opportunity has arisen for a IT Service Analyst / IT Vendor Management Analyst to join our Guildford based client on initial 6 month contract. IT Service Analyst / IT Vendor Management Analyst Key … cybersecurity, data protection, and infrastructure standards. * Day to day troubleshooting of tenant and STC issues. * Management of IT requirements for new tenants, tenant departures and moves IT Service Analyst / IT Vendor Management Analyst Experience required: * Good understanding of IT technologies * Excellent communication and stakeholder engagement skills. * Ability to manage third-party service providers effectively. * Organised and self-motivated … tenant or campus-style environment. * ITIL certification or similar service management qualifications. * Awareness of relevant compliance frameworks (e.g., ISO 27001, GDPR). IT Service Analyst / IT Vendor Management Analyst ***PLEASE NOTE THIS ROLE SITS WITHIN IR35***PLEASE NOTE THIS ROLE SITS WITHIN IR35*** In accordance with the Employment Agencies and Employment Businesses Regulations More ❯