1 to 25 of 26 Remote Part-Time ISO/IEC 27001 Jobs

you will conduct IT security audits and assessments for clients across the United Kingdom and the European region, ensuring compliance with PCI DSS, ISO 27001 / 2, GDPR, NIS2, DORA, and other relevant frameworks. This position offers the opportunity to become a PCI QSA (training and certification sponsored by ControlCase) while working in an international … security or related field. Deep knowledge of IT security controls, access management, logging, vulnerability assessment, and secure system configuration. Experience with PCI DSS, ISO 27001 / 2, GDPR, NIS2, DORA, or similar compliance frameworks. Strong understanding of cloud environments and network architectures. Excellent English communication skills; fluency in German strongly preferred. At least one certification … from each of the following groups preferred: Group 1: CISA, ISO 27001 Lead Auditor Group 2: CISSP, ISO 27001 Lead Implementer, CISM More ❯

you will conduct IT security audits and assessments for clients across the United Kingdom and the European region, ensuring compliance with PCI DSS, ISO 27001 / 2, GDPR, NIS2, DORA, and other relevant frameworks. This position offers the opportunity to become a PCI QSA (training and certification sponsored by ControlCase) while working in an international … security or related field. Deep knowledge of IT security controls, access management, logging, vulnerability assessment, and secure system configuration. Experience with PCI DSS, ISO 27001 / 2, GDPR, NIS2, DORA, or similar compliance frameworks. Strong understanding of cloud environments and network architectures. Excellent English communication skills; fluency in German strongly preferred. At least one certification … from each of the following groups preferred: Group 1: CISA, ISO 27001 Lead Auditor Group 2: CISSP, ISO 27001 Lead Implementer, CISM More ❯

you will conduct IT security audits and assessments for clients across the United Kingdom and the European region, ensuring compliance with PCI DSS, ISO 27001 / 2, GDPR, NIS2, DORA, and other relevant frameworks. This position offers the opportunity to become a PCI QSA (training and certification sponsored by ControlCase) while working in an international … security or related field. Deep knowledge of IT security controls, access management, logging, vulnerability assessment, and secure system configuration. Experience with PCI DSS, ISO 27001 / 2, GDPR, NIS2, DORA, or similar compliance frameworks. Strong understanding of cloud environments and network architectures. Excellent English communication skills; fluency in German strongly preferred. At least one certification … from each of the following groups preferred: Group 1: CISA, ISO 27001 Lead Auditor Group 2: CISSP, ISO 27001 Lead Implementer, CISM More ❯

for an experienced Information Security Analyst to join our client who will play a key role in driving compliance, governance, and continual improvement across key security frameworks including ISO 27001, PCI DSS, and Cyber Essentials Plus. Key Responsibilities: Lead on the operation and continual improvement of the Information Security Management System (ISMS) Coordinate internal and external … audit readiness for ISO 27001, PCI DSS, and Cyber Essentials Plus Draft and update information security policies, procedures, and technical standards Work with procurement and commercial teams to support supplier assurance and risk assessment Contribute to tender responses and bid processes, ensuring security and compliance requirements are met Promote good security practices and raise awareness across … both written and verbal Ability to build effective working relationships and influence at all levels Comfortable working independently and proactively across teams Desirable: Experience in supplier risk management and / or tender processes ISO 27001 Lead Auditor / Implementer, PCIP, CISM, CompTIA Security+, or CISMP certification What you get in return: Up to More ❯

you'll play a key role in maintaining and enhancing the organisation's Quality Management and Information Security systems. Key Responsibilities You'll lead on compliance activities across ISO 27001, Cyber Essentials, and NHS Data Security and Protection Toolkit (DSPT), while also supporting the company's journey toward ISO 9001 accreditation. Acting as the … data protection, information governance and quality assurance. Required Skills A strong understanding of information governance and data protection within healthcare or HealthTech Experience managing or supporting compliance across ISO 27001, GDPR and Cyber Essentials Experience acting or supporting as a Data Protection Officer (DPO), including GDPR compliance, DPIAs, SARs and data-governance practices … Excellent communication skills and attention to detail The ability to work independently and manage multiple priorities Desirable: ISO 27001 or ISO 9001 Internal / Lead Auditor qualification GDPR / Data Protection certification (e.g., BCS, CIPP / E, CIPM) Experience supporting ISO 9001 implementation or working in Agile environments What More ❯

Information Security Manager (3 days / week, permanent pro-rata) Location: Leeds-hybrid (on-site 1-2 day / week, typically Mon / Tue) Reports to: VP, Information Security Team: 5 in security (within a wider UK tech org of ~25, multi-region) We’re looking for a hands-on InfoSec Manager to take pressure off the … shape the control environment, and keep the security operations and compliance moving at speed. You’ll blend GRC and technical oversight , working closely with two security engineers (vuln scanning / IDS, external pen-test liaison) and two GRC specialists. What you’ll do Drive and extend ISO 27001 implementation / maintenance (UK certified; expanding … to Madrid and Manila ). Support SOC 2 Type 2 maintenance (already accredited)—expert level not required. Oversee SIEM operations with the tech team: ensure log ingestion / coverage , daily monitoring, and follow-up. Guide vulnerability management, alert triage (Alert Logic), and external pen-test cycles. Keep evidence flows tight: client questionnaires, audit responses, security awareness, and user access More ❯

Information / Cyber Security Engineer Lead the Future of Cyber, Governance & Digital Health Innovation Location: Remote-first (Bristol, Bournemouth, London offices 12 days a month onsite) Salary: Up to 75,000 + Private Healthcare + Amazing Holidays + Pension + Birthday Off Reporting to: The CTO (a visionary leader shaping the future of digital health) Interviews: This week & next … day one. Threat Modelling & Vulnerability Management Proactively identify, assess, and mitigate risks. ISMS Ownership Lead and maintain the Information Security Management System end-to-end. Certifications & Compliance Drive ISO 27001, Cyber Essentials Plus & SOC 2 readiness, certification, and ongoing compliance. Incident Response Leadership Build, refine, and lead incident response & security operations. Security Culture & Training Develop training … Lead security change management & governance reporting, spotting trends to inform leadership decisions. Stakeholder Partnership Be the security conscience for internal & external teams, giving clear, actionable guidance. Key Deliverables ISO 27001 & Cyber Essentials Plus certification & recertification SOC 2 Type I & Type II readiness & audits Up-to-date security risk register & treatment plans Regular internal security audits & training More ❯

with a leading Cybersecurity services provider to recruit a Technical Delivery Engineer . This company delivers advanced Cyber services across critical sectors supporting clients through offerings such as 24 / 7 SOC operations, Security Assurance, Threat Intelligence, Third-Party Risk, and Crisis Simulations . About the Role As a Technical Delivery Engineer , youll play a key role in delivering … and optimising cybersecurity solutions across a diverse client base. Youll focus on areas such as medical device / OT security, anti-ransomware solutions, third-party risk management, security assurance , and AI security . Working closely with clients, project teams, and partners, youll ensure smooth onboarding, configuration, and operational excellence of security services across hybrid and cloud environments. Whats in … sectors such as healthcare, manufacturing, or critical infrastructure Excellent documentation and reporting skills able to communicate clearly to both technical and non-technical audiences Experience with cloud security (AWS / Azure / GCP) and IoT or medical device environments Familiarity with Microsoft Intune, Sentinel , or similar endpoint management / security tools Awareness of ISO 27001 More ❯

practical network environments. Security Knowledge - Familiarity with basic network security principles, including firewalls, VPNs, and intrusion prevention systems (IPS). Networking Protocols - Working knowledge of network protocols like TCP / IP, DNS, DHCP and NAT. Network Security Strong experience with Fortinet FortiGate firewalls (policy config, VPNs, SD-WAN, SASE, ZTNA, HA, DPI). Knowledge of FortiManager and FortiAnalyzer for … Operating Systems - Emphasis on Microsoft Windows Server (all Versions) and respective client connectivity Hypervisors - Virtualisation principles and management including Hyper-V & VMware Microsoft 365 Suite - Administration of Entra (Identity) / Security / SharePoint / Exchange Online) Active Directory - Management, Group Policy, Sites and Services, ADconnect Public Cloud - Azure Administration & Management Endpoint Security - Antivirus / Firewalls Desirable … or Azure workload configuration such as Azure hosted Servers. Windows Server & PowerShell - Exposure to Windows Server environments and use of PowerShell and Bicep for administrative or automation tasks. VOIP / SIP Experience Understanding of voice systems such as Microsoft Teams Voice and SIP-based platforms. Our SIP trunks are currently delivered via Gamma, GTT, and Epsilon. Endpoint Management Microsoft More ❯

Cybersecurity & Cloud Security Specialists / Cyber Security Architects (x2) Location: Hybrid UK (Offices in Bristol & Hampshire) Company: Areti Group Salary: Up to 75,000 + Benefits (Pension, Fully Medical Healthcare, Full Expenses Covered) Areti Group is seeking two highly skilled Cybersecurity & Cloud Security Specialists / Cyber Security Architects to join our growing security function. These roles are ideal … integrate Defender XDR for real-time detection and rapid incident response. Cloud Security Enablement: Implement security tooling for Azure and hybrid environments, embedding security into DevOps workflows and CI / CD pipelines using GitHub Advanced Security . Vulnerability Management: Lead enterprise-wide vulnerability assessments, remediation programmes, and Breach and Attack Simulation (BAS) exercises for proactive threat mitigation. Compliance & Third … AWS Security . Proficiency with security tools like Snyk , Datadog , CrowdStrike , or similar. Knowledge of authentication, authorization, encryption , and vulnerability management . Familiarity with secure coding practices and CI / CD pipeline security . Certifications such as CEH , SSCP , or Elastic Security for SIEM are highly desirable. What We Offer Salary: Up to 75,000 + pension + fully More ❯

Company: Generis Enterprise Technology Limited Job Title: Technical Support Analyst (Remote) Location: Remote UK Contract Status: Full-time / Permanent Staff Closing date: Friday 7th November 2025. Successful applicants will be contacted after the closing date, with interviews to be carried out before the end of November. About us Generis is a fast growing and successful UK-headquartered developer … and information management, including AbbVie, AstraZeneca, Biogen, Gilead, Bayer, Pfizer, and Merck KGaA. Today, Generis serves more than 600,000 users worldwide, across use cases ranging from RIM, Regulatory / R&D and Safety use cases to Clinical, Non-clinical, Quality GxP, CMC, Pharmacovigilance, Medical Information / Medical Affairs applications and more. Our mission Our mission is to … An open, genuine personality Natural enthusiasm and intellect What we offer Competitive starting base salary (dependent on experience) 25,000 to 33,000 per year. Eligibility for discretionary performance / merit-based bonus Pension Private healthcare Full-time remote working Flexible working arrangements Half day Friday policy Wellness programme (bespoke to you) 1000 per year 100 per month personal More ❯

into workflows for reasoning, automation, and search Leading ML pipeline development , from ingestion to real-time inference Deploying to cloud and edge environments using Terraform, Helm, and Kubernetes (EKS / OpenShift) Automating deployments via CI / CD tools such as GitHub Actions and Argo CD Managing infrastructure security, observability, and cost-efficiency Collaborating with product, research, and engineering … agentic AI About You Youll bring experience in both AI development and systems engineering, including: Commercial experience building and deploying multi-agent systems Strong Python development skills for AI / ML applications Understanding of LLM orchestration , memory, and tool usage Familiarity with AWS core services , cloud security, and IaC (Terraform / CloudFormation) Proficiency with containerisation (Docker) and Kubernetes … practice Bonus if you have: MLOps experience (SageMaker, Kubeflow, ZenML) Research or deployments in edge AI or constrained environments Experience building REST APIs around AI systems Familiarity with ISO 27001 , GDPR , or NIST SSDF The Offer Permanent role with a salary of up to 100,000 , depending on experience Flexible hybrid working , UK-based A chance More ❯

with a strong focus on operational resilience and digital transformation. You'll be instrumental in ensuring the IT platforms are secure, efficient, and aligned to regulatory frameworks like ISO 27001 and GDPR, all while enabling the business to move faster, smarter, and with confidence. Responsibilities: Lead the shift to a secure, cloud-first infrastructure Owning the More ❯

and security architecture within financial services or other regulated sectors. Expertise across cloud (Azure, AWS) and on-premise hybrid infrastructure environments. Strong understanding of security frameworks (e.g. NIST, ISO 27001, CIS) and architectural best practices. Experience with network design, identity and access management, endpoint protection, and cloud security controls. Strong stakeholder engagement and communication skills, with More ❯

and security architecture within financial services or other regulated sectors. Expertise across cloud (Azure, AWS) and on-premise hybrid infrastructure environments. Strong understanding of security frameworks (e.g. NIST, ISO 27001, CIS) and architectural best practices. Experience with network design, identity and access management, endpoint protection, and cloud security controls. Strong stakeholder engagement and communication skills, with More ❯

assessments, including data profiling, permissions analysis, and Exchange infrastructure review. Creation and execution of migration wave plans, schedules, and user communication templates. Automation scripts for discovery, reporting, and pre / post-migration validation. Post-migration support including issue resolution, access validation, and adoption guidance. Comprehensive technical documentation, including runbooks, migration reports, and handover materials. Key Responsibilities: Lead technical design … and implementation of migration processes using tools such as ShareGate, AvePoint, Quest, Metalogix, BitTitan, Binary Tree, or native Microsoft tools (Mover, Migration Manager, HCW, PST import / export). Analyse file server data to identify redundant, obsolete, and trivial (ROT) content. Map file server structures and Exchange configurations to Microsoft 365 destinations, ensuring alignment with best practices. Conduct pre … issues, including mail flow, directory synchronization, Outlook connectivity, and data migration errors. Collaborate with security and compliance teams to ensure migrations meet organizational and regulatory requirements (e.g., GDPR, ISO 27001). Engage with business stakeholders and change management teams to drive user readiness and adoption. Provide technical guidance and escalation support during critical migration phases and More ❯

capable and versatile Technical Analyst (Contractor) to support enterprise-scale migration and transformation programmes. This role will involve leading and contributing to discovery and analysis activities across applications, identity / authentication, unstructured data, users, devices, and organisational structures. The ideal candidate will have hands-on experience in application and data discovery, file server and unstructured data analysis, identity and … and migration readiness. Authentication & Identity Analysis: Assess authentication methods (AD, LDAP, Kerberos, OAuth, SAML, OpenID Connect). Identify legacy barriers and recommend remediation for modern identity platforms (Azure AD / Entra ID). User, Device & Mailbox Discovery: Map accounts, groups, roles, and devices for compliance and migration readiness. Perform Exchange mailbox and shared mailbox analysis. Organisational & Governance Discovery: Analyse … Hands-on expertise in: Application & Data Discovery (legacy, web, SaaS, file servers, unstructured data) Identity & Authentication Protocols (AD, LDAP, Kerberos, SAML, OAuth, OpenID Connect) User & Device Analysis (Azure AD / Entra ID, Intune, SCCM, hybrid AD environments) M365 Services (Exchange Online, SharePoint Online, Teams) Permissions & Security (NTFS, ACLs, governance, compliance frameworks) Experience with data discovery / migration tools More ❯

practical security guidance, and play a key role in ensuring high-quality, timely assessments. Youll also have the opportunity to expand your professional credentials with support to pursue ISO 27001 and other advanced certifications. What Youll Do Conduct Cyber Essentials and Cyber Essentials Plus audits for a diverse SME client base. Guide customers through every stage More ❯

practical security guidance, and play a key role in ensuring high-quality, timely assessments. Youll also have the opportunity to expand your professional credentials with support to pursue ISO 27001 and other advanced certifications. What Youll Do Conduct Cyber Essentials and Cyber Essentials Plus audits for a diverse SME client base. Guide customers through every stage More ❯

parts of the role: Define, document, and embed a set of Security Architecture Principles that will guide projects, programmes and changes. Define, document, and embed a complete set of ISO27001 compliant Security Policies, and associated ISMS. Develop Reference Architecture and all associated architecture models for Identity Management and Privileged Account Management Consult on and input into the redevelopment and regular … the ability to put into practice global Information Security Standards including ISO27002, CIS and NIST CSF What you'll get in return Salary of between 70k-80k Fantastic training / development budget Hybrid working 2 / 3 days in South Wales per week (open to negotiation for the right candidate) Likely bonus 5% pension contribution from you, company More ❯

quality, fit-for-purpose IT solutions, ensuring development activities align with project timelines and business priorities. Develop secure, scalable, and supportable solutions using modern programming languages (such as: PL / SQL, .NET, JavaScript, Python) and Azure services, including Service Bus and Functions. Define, maintain, and promote coding standards and best practices across … development and the department, ensuring they are regularly reviewed, updated, and consistently applied to support high-quality, maintainable, and secure code. Ensure adherence to standards and regulation including to ISO27001, PCI DSS, and GDPR. Ensure quality and compliance across the development lifecycle, working closely with Test Analysts to validate solutions. Manage version control, documentation, and release processes, partnering closely with … requirements into robust Low-Level Designs, ensuring alignment with enterprise architecture and strategy. Drive innovation through research, prototyping, tool evaluations and the adoption of emerging technologies , including low-code / no-code platforms, AI / ML, and event-driven architectures. Champion continuous improvement in development methodologies, tools, and processes, contributing to the definition and governance of internal standards More ❯

recruit a Crisis Simulation Expert as part of a growing function within the business. The company supports a diverse client base across critical sectors, offering multiple services including: 24 / 7 SOC, Security Assurance, Threat Intelligence, 3rd Party Risk, and Crisis Sims. The work here is potentially repetitive, however it does offer the opportunity to create meaningful Cyber Security … access to own transport. Willingness to travel regularly to customer sites and occasionally across the UK. Employment is conditional upon passing a DBS national security vetting process. Understanding of ISO27001, ISO9001, and ISO42001 would be advantageous. Interested? Apply now or contact ewen@my-lynk.com for more information. More ❯

user, entitlement, role), including specialized privileged user workflows. SoD & Compliance: Define and enforce Segregation of Duties (SoD) rulesets and risk mitigation strategies, and generate compliance-ready audit reports (SOX / GDPR). Application Onboarding: Partner with application teams to onboard applications, assessing JML, SoD, and Governance needs. Identity Lifecycle: Manage identity lifecycle events (JML: Joiner, Mover, Leaver) and validate … application onboarding, and leveraging core Saviynt features (lifecycle events, campaigns, analytics). Integration: Practical experience with ServiceNow and Saviynt integration. Documentation: Ability to write high-quality supporting documentation (HLDs / LLDs). Compliance Knowledge: Familiarity with regulatory frameworks such as SOX, GDPR, and ISO 27001. Communication: Excellent communication skills for working effectively with business owners, compliance, and More ❯

operationsaligned with ISO22301 and other relevant standards. Responsibilities Contribute to the development, implementation, and maintenance of a SARIA Food & Pharma Business Continuity Management System (BCMS), ensuring alignment with ISO22301, ISO27001 and any other relevant industry standards and regulatory requirements Oversee the Business Impact Analysis (BIAs) and risk assessment process to identify critical business processes and systems and determine the potential … Knowledge and experience in ISO22301 and business continuity management systems Knowledge and experience with business continuity and risk management frameworks, risk assessment methodologies and cybersecurity frameworks, such as ISO22301, ISO27001 and NIS2 Experience of conducting risk assessments and developing effective mitigation plans Demonstrated experience of developing long-term partnerships with stakeholders and excellent communication skills Ability to work creatively and More ❯

Join Police Digital Service as a Cyber Architect FT / PT - starting salary £70,000pa About Police Digital Service The Cyber Architect will have responsibility to ensure National Policing systems and services have a clear strategic direction for Information Security and Risk (IS&R), through enterprise security architectural services, design services and carrying out product assessment and selection. Our … solutions are secure. Design and assess solutions using sound security architecture principles across PDS and UK police force environments, ensuring information systems are compliant with frameworks (for example, NIST, ISO27001, CIS and OWASP), applicable laws, policies and procedures. What you need to succeed in the role: Essential More ❯