1 to 25 of 52 ISO/IEC 27001 Jobs in Berkshire

will increase annually until you reach the top of the scale - £55,103. Plus, a location allowance of £1,928 and a non-pensionable allowance of £1,000. Location / Hybrid Working: This role can be based in either Sidcup, Hendon or Southwark but there may be a need for you to attend offsite meetings as required by the … large national retailers to local businesses including holidays, cars, days out, fashion, gifts, insurance, phones and much more A substantial range of health and wellbeing benefits including physiotherapy, 24 / 7 rehabilitation services and free eye tests To promote physical well-being you will have full access to subsidised sports centre membership to over 3,000 UK gyms and … London Fitness Centres. There is also an excellent range of sporting activities on offer through the various Met Police Sports and Social Clubs. Essential skills: Understanding of information assurance / security risks, with willingness to develop a full skillset Ability to assess risk and take proportionate action Excellent verbal and written communication; able to influence stakeholders at all levels More ❯

the primary contact for external auditors and certification bodies, planning and managing surveillance and recertification audits. Coordinate internal audits and spot checks across all standards and ensure effective corrective / preventive action processes are in place. Maintain and manage risk registers, compliance logs, document control processes, and policy updates. Work with leadership and key stakeholders to embed compliance practices … advisors to establish board-level reporting on ESG progress and support Tender submissions. Prepare the business for evolving ESG activities and regulatory frameworks. Person Specification Essential Demonstrable experience managing ISO27001:2022, ISO9001 and ideally ISO 14001 / 45001 within a multi-business environment. Proven ability to develop and manage an Integrated Management System (IMS). Strong understanding … of risk management, internal audit, and continual improvement principles. Excellent communication and stakeholder engagement skills. Highly organised with attention to detail. Desirable Certified Internal or Lead Auditor in ISO27001, 9001, 14001, or 45001. NEBOSH or IEMA qualifications. Experience in SaaS, GRC, property compliance, or similarly regulated sectors. Familiarity with compliance platforms (e.g. ISMS.online, Q-Pulse, etc.) Soft Skills Strong communication More ❯

Their current need sits within the energy sector and is for a EMEA-wide IT management system. The main responsibilities will be to support their client in maintaining ISO 27001 certification, and be compliant … with DORA, NIS 2, GDPR, etc. Requirements: ISO 27001 Lead Implementer or Auditor certification Strong knowledge of frameworks like ISO 27001 / 27002, CAF, eCAF, NIST, GDPR Client and stakeholder management The client is looking for someone with direct experience with utility providers or experience working with providers via Third-Party More ❯

Birmingham, Bristol, Manchester, Reading, St Albans Business Line Enabling Functions Job Type Permanent / FTC Date published 07-Aug-2025 19967 Connect to your Industry Deloitte Technology works at the forefront of technology development and processes to support and protect Deloitte around the world. In this truly global environment, we operate not in "what is" but rather "what can … experience Required Qualifications: Bachelor's degree (or equivalent) in cybersecurity, information systems, computer science, or other technology-related field, or equivalent experience Proven combined experience in the information security / cybersecurity domain, with a focus on policies and standards, or cybersecurity governance and risk management Strong ability to clearly communicate complex cybersecurity statements to technical and non-technical audiences … at various hierarchical levels Deep knowledge of common information security management frameworks and standards, such as ISO / IEC 27001 / 27002, NIST 800-53, and the NIST Cybersecurity Framework Soft skills: collaboration, teamwork, persuasion, attention to detail, time management, prioritization, resourcefulness Advanced proficiency with MS Office products, primarily MS Word, Excel More ❯

As the GRC Analyst, you’ll work closely with process owners, auditors, and stakeholders to monitor and address risk and compliance issues. You’ll be responsible for administering ISO 27001, ISO 22301, and PCI compliance programs, managing audits, and overseeing our GRC tooling to ensure it’s configured and maintained to the highest standards. … Key Responsibilities Own and manage the GRC tool and vendor relationship Lead risk assessments, compliance reviews, and validation testing Support and manage ISO 27001, 22301, and other audits Maintain a central repository for audit evidence Develop and enhance the GRC framework in line with best practices Collaborate across teams to identify and mitigate IT and business … Head of Audit What We’re Looking For Strong computer literacy and adaptability to niche IT systems (essential) Proficiency in Microsoft Teams, PowerPoint, Word, etc. (essential) Experience with ISO 27001 and 22301 Familiarity with GRC tooling and supply chain management (preferred) Excellent organisational, communication, and interpersonal skills Ability to influence at all levels and communicate with More ❯

Information Security Specialist (ISO Certified) About the Role Our client, a leading organisation in Berkshire, is seeking an experienced Information Security Specialist with in-depth knowledge of ISO 9001, ISO 14001, ISO 22301, ISO 27001, and PCI-DSS compliance. This role will be central to designing, implementing, and … in-class security and compliance frameworks, ensuring that all information assets and operational processes are safeguarded to the highest standards. Key Responsibilities Develop, implement, and maintain compliance with ISO , and PCI-DSS standards. Conduct risk assessments, security audits, and vulnerability testing across systems and processes. Lead incident response activities, ensuring rapid and effective mitigation. Collaborate with internal stakeholders … and external auditors to achieve and maintain certifications. Deliver organisation-wide security and compliance awareness training. Monitor and report on security performance, providing actionable recommendations. Essential Skills & Qualifications ISO 27001 Lead Implementer or Lead Auditor certification (or equivalent). Demonstrable experience managing compliance for ISO , and PCI-DSS. Strong understanding of governance, risk management More ❯

Information Security Risk and Governance Lead Location: London or Lausanne Type: Full-time | Hybrid (3 days / week onsite) Company Overview Join a pioneering AI-first biotech company that’s redefining how we discover and develop medicines. This organisation leverages cutting-edge machine learning to unlock new possibilities in drug discovery, aiming to solve some of humanity’s most … drug design. You will play a pivotal role in aligning data governance, security operations, and compliance within an environment that spans regulated biopharma workflows, cloud-native infrastructure, and AI / ML experimentation at scale. Key Responsibilities Design and implement a unified compliance framework across AI, cyber, and life sciences regulatory domains. Own and drive the strategic programme for ISO … NIST, GDPR, HIPAA, GxP, and the EU AI Act. Demonstrated experience leading compliance certification programmes and external audits. Strong understanding of cybersecurity and IT infrastructure within ML / cloud environments. Proven track record managing risk end-to-end — from identification to mitigation and communication. Practical experience with privacy and data lifecycle controls, including audit trails, de-identification, and retention. More ❯

Quality Compliance Executive, ISO, Secuirty, SaaS, Cloud £50-60k Our client , a trusted and fast-growing leader in the [industry Saas / digital infrastructure / professional services / Cloud, is looking for a Quality Compliance Executive to join their team. This is a key role within the business, ensuring their internal systems, policies, and … accreditations not only meet regulatory expectations but set the benchmark for excellence. This is a brilliant opportunity for someone who thrives in process, governance and ISO compliance, and is ready to take ownership of end-to-end quality and regulatory functions across the business. What you’ll be doing: As a Quality Compliance Executive Policies, Procedures & Process Governance … Supporting the delivery of strategic management plans that align with the company’s ISO and regulatory obligations. Managing the Compliance & Regulatory Calendar—ensuring each department knows what's needed and when. Helping teams build out, document and follow clear procedures, tracking evidence to demonstrate compliance. Coordinating audits and keeping records of key business processes. Driving awareness and training More ❯

Cyber & Technology Security Manager - Data Center Location: London / UK Salary: £85- £95k + Travel Allowance £5k / Anum , Bonus (2x salary), Pension, Life Assurance, Healthcare, Income Protection Contract: Permanent Reporting to: Senior European IT Director Are you ready to take full ownership of a high-profile cybersecurity function, shaping strategy across both IT and Operational Technology (OT … technology risk management. Key Responsibilities: Develop, implement, and maintain a robust cybersecurity strategy and governance framework aligned with business and regulatory requirements. Oversee technical security controls including firewalls, IDS / IPS, SIEM, IAM, endpoint protection, and cloud security (Azure, AWS). Lead threat detection, incident response, and recovery, ensuring minimal business disruption. Manage patching processes, AI-driven email intelligence … Strong knowledge of security frameworks (ISO 27001, NIST, CIS Controls) and regulatory compliance requirements (GDPR, NIS2). Hands-on expertise with firewalls, SIEM, IAM, IDS / IPS, and cloud security. Strong understanding of networking, infrastructure, and application security. Experience in OT security or within a data centre environment is advantageous. Why Join Us? This is More ❯

desirable. Proven track record of security transformation and delivery of security projects, particularly within a federated organisation. Strong knowledge of Information Security and compliance frameworks, including NIST CSF, ISO 27001, Cyber Essentials, PCI DSS, and DORA, and the ability to design controls that align with these standards. Ability to analyse data and generate reports using tools … Bachelor’s degree in Information Security, Computer Science, or a related field. A Master’s degree is a plus. Relevant certifications such as CISSP, CCSP, CRISC, CISM, or ISO 27001 Lead Implementer are highly desirable. More ❯

now looking for an experienced and dynamic Senior Cyber Security Engineer to join our vibrant office with hybrid working. Senior Cyber Security Engineer - Responsibility: Carry out daily security engineering / operation tasks under an ITIL framework Develop an understanding of the threats, risks, vulnerabilities and evolving attack vectors facing the business. Using strong technical knowledge, continuously analyse and make … recommendations to implement effective security controls, system hardening and security improvement projects with a particular focus in application / web hosting security. Assist in the management of patching, vulnerability analysis and penetration testing to ensure recommendations are risk assessed and implemented in a timely manner Senior Cyber Security Engineer - Skills: Experience in Security Engineering, Network Security, and / … protocols such as networks, domain management, and virtualized environments. Holds or is working towards certifications like CISSP, SANS GCIA, CompTIA Security+, CCNA / CCNP, or similar. Knowledge of ISO27001, Cyber Essentials, and AAF frameworks is a plus. Due to the volume of applications received for positions, it will not be possible to respond to all applications and only applicants More ❯

including NIST, PCI-DSS, GDPR, COBIT, ISO 27001 and Cyber Essential compliance to any new or existing programme of work. Prepare and support internal and / or external compliance audit activities. Manage remediation of any audit (internal & External) non-conformities. Ensure security policies (on a risk-based approach) are produced, signed off by relevant stakeholders … up-to-date knowledge of legal & regulatory requirements impacting Technology and Operations and its Partners. Apply comprehensive knowledge of legal, regulatory obligations, and industry best practices (e.g., NIST, COBIT, ISO27001, PAS 555) to ensure compliance with technology standards. Schedule and review risk and compliance audits; direct issues to appropriate resources for investigation and resolution. Our people make us who we … our customers. LI-KS1 Possess one of the Risk or security certifications (CISSP, CRISC, CISM). Have good knowledge and practical experience of NIST, PCI-DSS, GDPR, COBIT, ISO 27001, or Cyber Essentials. Previous experience in a similar role, with the ability to work in a dynamic and changing environment. Excellent team player who can influence More ❯

Cyber Security Consultant Salary > £65k - 80k Hybrid UK office 1-2 days / wk and Client Site as Required A multi-award-winning service provider is building out a Cyber practice and you can be a central figure reporting into and working with the CISO. This growing Cyber Practice will add to and complement their existing portfolio of services. … your clients, and proposing risk mitigating controls. A current knowledge of the cyber threat landscape. Experience auditing against security frameworks such as the ISO 27001 / Cyber Essential, identifying gaps and recommending controls. If you have certs such as, CISM, CISSP. Great verbal and written communication skills with the ability to communicate tech issues to More ❯

role is key in building and improving Primark's Cyber Security posture. Duties & Responsibilities Actively progress and improve Primark's cyber security posture with the delivery of agreed projects / initiatives aligned with industry best practice. Ensure project deliverables are aligned with the Cyber Roadmap with outcomes directly addressing strategic objectives / maturity gaps / audit points. … Advise and lead on solutions with our internal teams / outsourced partners, having a 'hands on approach' including the construction of business cases and contractual arrangements. Have a metric based approach with a structure to enable auditing and managing vendor performance. Coordinating resources, preparing delivery teams for kick-off and ensure effective completion of milestones, controlling scope and mitigating … defining, developing and managing implementation schedules Maintaining a roadmap of future initiatives, that effectively facilitates the prioritisation of delivery plans. Ensuring an ongoing focus on delivering the required quality / value for money and compliance with published standards and guidelines. Co-ordinates cross-functional team members, identifies resources needed, assigns and prioritises tasks / responsibilities and ensures deadlines More ❯

strategic and operational decisions, supporting the business in managing risk appropriately. Maintain legal risk register and contribute to companywide risk review. Policy Oversight and Monitoring Where relevant implement and / or maintain key corporate policies owned by the legal team, including but not limited to anti-bribery and corruption, competition, whistleblowing, data protection and ethical conduct. Monitor adherence and … in or leading the design and implementation of compliance frameworks, policies, and legal risk controls across multiple jurisdictions. Familiarity with international compliance standards and regulations. Working knowledge of ISO standards such as ISO 27001 (information security), ISO … compliance management), or ISO 9001 (quality management), and their practical application within business operations. Understanding of internal control design, maintenance of compliance registers, and participation in internal / external audits. Proficient in using legal research tools, compliance management platforms, and document control systems. Skilled in drafting and managing corporate policies and procedures to support legal, regulatory, and More ❯

to targets in the new business sales team to prospective clients Making outbound calls to prospective clients on daily basis. Promoting a range of bespoke ICT Solutions (wireless technologies / converged IP Networks / audio visual tech and IP Security / CCTV Doing research to identify potential target clients and opportunities Keep on top of sales cycle … time keeping Self-starter Thrive under pressure A consultative sales approach Strong presentation skills Negotiation skills Qualifications 5 GCSE's including English Language and Maths GCSE, grade (A*-C / 9-4 or equivalent) (Essential) About the Employer VIETEC LTD Vietec was formed in 2005 and has grown into a leading ICT infrastructure solutions provider with many well known … clients. Our company is proud to hold many accreditations covering ISO9001 / 45001 / 27001, SSAIB and Construction line and this helps us play a vital role in supporting our clients in meeting their compliance needs. Our expert team designs and installs both bespoke complete network systems and isolated solutions that integrate into your existing system. More ❯

Certification Manager to lead and evolve its certification, compliance, and audit frameworks. This is a strategic role where you'll manage internal and external audit processes, maintain key ISO accreditations, and influence risk and compliance practices across multiple regions. Key Responsibilities: Lead all certification and recertification efforts (e.g. ISO 27001, 9001, 14001, 45001, EcoVadis … with GDPR and emerging AI standards. Lead customer audits and manage compliance-related RFIs. What you'll bring: 5+ years’ experience in compliance, assurance, and internal audit within tech / IT / consultancy Strong track record with ISO standards and regulatory frameworks. Relevant qualifications such as ISO Lead Auditor, CIA, or CISA preferred. Experience More ❯

. ✔️ Strong experience drafting & negotiating commercial contracts. ✔️ Knowledge of data protection, commercial & contract law. ✔️ Pragmatic, proactive, and solutions-focused. ✔️ Excellent communicator & relationship-builder. 💡 Bonus points if you have: SaaS / fintech / tech sector experience. Knowledge of ISO 27001, SOC 2, payroll or financial services frameworks. Exposure to disputes, M&A, or advising professional More ❯

. ✔️ Strong experience drafting & negotiating commercial contracts. ✔️ Knowledge of data protection, commercial & contract law. ✔️ Pragmatic, proactive, and solutions-focused. ✔️ Excellent communicator & relationship-builder. 💡 Bonus points if you have: SaaS / fintech / tech sector experience. Knowledge of ISO 27001, SOC 2, payroll or financial services frameworks. Exposure to disputes, M&A, or advising professional More ❯

Information Security Officer Hybrid – Home & London | Permanent | £68,000 | 35 hrs / week (flexible) A rare and brilliant opportunity to join this international development children’s charity, as their new Information Security Officer . You'll be the expert, working closely with the Chief Information Officer and other senior leaders to embed security practices across systems, suppliers, and staff. … experience in ICT security management and incident response (CIS and Cyber Essential Plus). Strong technical knowledge of Microsoft 365, Azure, and cloud security. Familiarity with frameworks like ISO 27001, NIST, and … CIS. Excellent communication skills and a pragmatic, risk-based mindset. Relevant certifications (e.g. AZ-500, CISSP, CISM, CCSP) are highly desirable. This role offers hyrbid working (1-2 days / week in office) as well as open discussion around different working patterns i.e 9-day fortnight and varied start / finish times. The organisation values professional development and More ❯

threat detection, vulnerability management, and incident response Lead threat modelling and risk assessments for critical systems and services Collaborate with engineering teams to integrate security best practices into CI / CD pipelines Monitor and respond to security incidents, coordinating investigation and remediation efforts Drive security automation and infrastructure-as-code initiatives Support compliance efforts (ISO 27001 … understanding of networking, identity & access management, and encryption technologies Hands-on experience with tools like Terraform, Kubernetes, SIEM platforms, and security scanners Familiarity with DevSecOps practices and modern CI / CD pipelines Strong scripting or coding skills (e.g., Python, Bash, or PowerShell) Excellent problem-solving, communication, and stakeholder engagement skills Nice to Have Security certifications (e.g., CISSP, AWS Security More ❯

CyberArk, OpenText, ServiceNow and Microsoft to enhance the relationship with Turnkey and deliver value to our clients When needed, work alongside our Sales, Marketing & Innovation team to provide materials / Pre-Sales support for sales activities Writing and reviewing reports and other client-facing deliverables, to a high standard The expectation will be that you have basic skill in … IAM vendors capabilities (e.g. Life Cycle Management, Application Onboarding, Workflows, Provisioning, Access Review, Reports, Roles, SoDs, etc.) Identity Governance and Administration (IGA) Identity Management (IDM) Ideally with good conceptual / practical knowledge of: Access Management (inc. Single Sign-On (SSO) / Multi-Factor Authentication (MFA) / Password-less Authentication) Privileged Access Management (PAM) Consumer Identity (CIAM) Required … an IAM solution across all aspects of the SDLC (Analyse, Design, Develop / Configure, Test, Deploy, Document) Understanding of regulatory frameworks, and their application to IAM, e.g. SOx, ISO27001, NIST, HIPAA, GDPR, PSD2, etc. Ideally, an education in Business, IT, IT security or related field Advantageous: Professional certifications such as CISSP, CISA, ITIL, etc. Product certifications from SailPoint, or More ❯

CyberArk, OpenText, ServiceNow and Microsoft to enhance the relationship with Turnkey and deliver value to our clients When needed, work alongside our Sales, Marketing & Innovation team to provide materials / Pre-Sales support for sales activities Writing and reviewing reports and other client-facing deliverables, to a high standard The expectation will be that you have basic skill in … IAM vendors capabilities (e.g. Life Cycle Management, Application Onboarding, Workflows, Provisioning, Access Review, Reports, Roles, SoDs, etc.) Identity Governance and Administration (IGA) Identity Management (IDM) Ideally with good conceptual / practical knowledge of: Access Management (inc. Single Sign-On (SSO) / Multi-Factor Authentication (MFA) / Password-less Authentication) Privileged Access Management (PAM) Consumer Identity (CIAM) Required … an IAM solution across all aspects of the SDLC (Analyse, Design, Develop / Configure, Test, Deploy, Document) Understanding of regulatory frameworks, and their application to IAM, e.g. SOx, ISO27001, NIST, HIPAA, GDPR, PSD2, etc. Ideally, an education in Business, IT, IT security or related field Advantageous: Professional certifications such as CISSP, CISA, ITIL, etc. Product certifications from SailPoint, or More ❯

Senior C# Developer - Integration Specialist Maidenhead Hybrid £60,000 Global SaaS Platform I'm currently on the lookout for a skilled C# / .NET Developer to lead the charge on third-party integrations across our AI-powered operations platform. From financial systems to telematics and mapping APIs, you'll build secure, scalable connections that help businesses work smarter. The … with API setup and documentation Expand telematics features like event tracking and reporting Ensure security and GDPR compliance Implement structured logging and monitoring What You'll Bring Strong C# / .NET experience in integration-heavy environments Knowledge of REST, WebAPI, async messaging, and resilient system design Solid grasp of integration security and GDPR Clear communicator with great documentation skills … Fluent English for global collaboration Nice to Have Experience with ERP / financial integrations Swagger / OpenAPI, Azure, Power Automate, Zapier Exposure to IoT or telematics platforms Awareness of ISO 27001, SOC 2 Why Join? Award-winning culture focused on respect, innovation, and growth Flexible hybrid working from our Maidenhead office Work on impactful More ❯

data platforms. Perform threat modelling, architecture reviews, and propose mitigation strategies. Ensure alignment with European regulatory standards (e.g., GDPR, PSD2, DORA, NIS2). Embed DevSecOps into SDLC and CI / CD pipelines using IaC and automation tools. Drive adoption of Zero Trust principles, secure APIs, container security, and logging strategies. What Were Looking For 15+ years in Information Security … years of hands-on cloud security experience (AWS, Azure, or GCP multi-cloud preferred). In-depth understanding of financial services compliance requirements and frameworks (e.g., NIST CSF, ISO 27001, CSA CCM, PCI DSS). Expert-level knowledge of IAM, network security, encryption, API and application security, container security, and SIEM strategies. Proven leadership in DevSecOps More ❯