1 to 25 of 349 ISO/IEC 27001 Jobs in England

Cyber Security Consultant (GRC / ISO 27001) Hybrid | South Manchester | £60-70k + bonus An established and growing independent Cyber Security Consultancy is hiring a Cyber Security Consultant to lead client delivery and act as the internal SME across GRC and ISO … Deliver cyber assurance and compliance assessments and guide clients through certification processes Run risk, gap and maturity assessments aligned to recognised frameworks (e.g. NIST / NCSC) Provide senior advisory support (e.g. virtual security leadership / governance support ) Contribute to service improvement, proposal input, and client relationship development What ...

security operations, risk management and remediation activity Manage, mentor and develop a small internal security team Own ISO 27001 / 27002, including internal audits, compliance and continuous improvement Develop and maintain security policies, standards and procedures aligned to best practice Support internal and external audits … Incident response and security operations experience Knowledge of cloud security and Zero Trust principles Confident communicator with strong stakeholder management skills Desirable: CISSP and / or ISO 27001 Lead Implementer / Auditor Due to the volume of applications received for positions, it will ...

metrics to key stakeholders that aligns with the company’s interests. Contribute to the IT Strategy planning process with regards to Information Security, ISO27001 / 27002. Manage, mentor and maintain the internal ISO auditor programme including audit schedules, audit reviews and recommendation resolution Evolve the existing security … Lead Implementer / Auditor Professional skills / experience Demonstrate a good understanding of information security frameworks, standards and security best practice (ISO27001, NIST CSF, Cyber Essentials, OWASP). Knowledge and adherence to data protection legislation and regulatory requirements (e.g. GDPR, FCA SYSC, PCI DSS). Extensive experience ...

Cyber Essentials certification with strong, hands-on knowledge e.g IASME, CISSP (ISC2) CISM (ISACA), ISO 27001 Lead Auditor, CCP, SIRA / IA Auditor / IA Architect (Practitioner+), CRT, CREST Certified Infrastructure Tester, CSTM, CSTL, EC-Council CPENT / ECSA practical, Offensive Security OSCP … information security threats, risks, and risk assessment methodologies. Working knowledge of relevant standards and frameworks such as Cyber Essentials, GDPR, and ISO / IEC 27001. Strong written and verbal communication skills, with the ability to explain technical issues to non-technical stakeholders. A proactive mindset ...

from the GRC Analyst: Proven experience in a GRC, security risk, or compliance role Certifications for ISO 27001 (Lead Implementer / Auditor) , would be required Strong knowledge of frameworks such as ISO 27001, NIST, SOC 2, CIS , and data protection standards … Onboarding / vendor risk management experience Hands-on experience supporting or leading ISO 27001 certification activities Solid understanding of risk assessment, control design, and audit processes Experience working with GRC tooling, evidence management, and reporting Experience / Knowledge around high volume data process would ...

from the GRC Analyst: Proven experience in a GRC, security risk, or compliance role Certifications for ISO 27001 (Lead Implementer / Auditor) , would be required Strong knowledge of frameworks such as ISO 27001, NIST, SOC 2, CIS , and data protection standards … Onboarding / vendor risk management experience Hands-on experience supporting or leading ISO 27001 certification activities Solid understanding of risk assessment, control design, and audit processes Experience working with GRC tooling, evidence management, and reporting Experience / Knowledge around high volume data process would ...

Reporting to the Cyber Security Compliance Manager, you will support internal reviews, risk assessments, policy development, and ongoing compliance with frameworks such as ISO 27001 and NIS Regulations . Youll collaborate across the business to ensure risks are effectively managed, controls are embedded, and our security … standards remain robust and continually improved. Key Responsibilities: Plan, conduct, and document internal ISO 27001 audits across all areas of the Information Security Management System (ISMS), ensuring all controls and processes are regularly reviewed for effectiveness and compliance Evaluate the effectiveness of information security policies, procedures ...

Reporting to the Cyber Security Compliance Manager, you will support internal reviews, risk assessments, policy development, and ongoing compliance with frameworks such as ISO 27001 and NIS Regulations . You'll collaborate across the business to ensure risks are effectively managed, controls are embedded … security standards remain robust and continually improved. Key Responsibilities: Plan, conduct, and document internal ISO 27001 audits across all areas of the Information Security Management System (ISMS), ensuring all controls and processes are regularly reviewed for effectiveness and compliance Evaluate the effectiveness of information security policies ...

Cyber Risk Analyst (Contract) Location: London / Southeast - Hybrid / Remote working Duration: 6+ months (12+ months programme of work) Day Rate: Up to £600 a day DOE (Inside IR35) Start date: ASAP. Overview We are seeking a skilled, proactive, and analytical Cyber Risk Analyst to support … compliance documentation aligned to industry standards, regulations, and legislative requirements, including but not limited to: NIS Directive - Cyber Assessment Framework (CAF) ISO / IEC 27001 and ISO / IEC 27002 NIST Cybersecurity Framework (CSF) 2.0 IEC ...

Product Delivery Manager +SC cleared role +Hybrid working 2 / 3 days a week in Reading +Inside IR35 + 80 - 83 ph We are seeking an experienced Product Delivery Manager to lead the delivery of model-based Product Security digital capabilities across a complex, regulated engineering environment. Reporting … digital toolchains, including: Threat & risk modelling (STRIDE, STPA-Sec, TARA, attack trees) Security requirements & controls modelling SBOM & vulnerability management Cryptography & key management governance Configuration / change control Verification & validation orchestration Security / assurance case evidence Define Product Security reference architecture and Digital Thread integrations Own roadmap, backlog ...

Systems Engineer +SC cleared role +Hybrid working 2 / 3 days a week in Reading +Inside IR35 + 80 - 83 ph We are seeking an experienced Senior Systems Engineer to lead the delivery of model-based Product Security digital capabilities across a complex, regulated engineering environment. Reporting … digital toolchains, including: Threat & risk modelling (STRIDE, STPA-Sec, TARA, attack trees) Security requirements & controls modelling SBOM & vulnerability management Cryptography & key management governance Configuration / change control Verification & validation orchestration Security / assurance case evidence Define Product Security reference architecture and Digital Thread integrations Own roadmap, backlog ...

Role Overview Role / Job title: Azure AI Architect Work Location: London, Tunbridge wells, Ipswich, Bolton Role type - Permanent / Fixed Term / Contracting: Contracting Mode of working Hybrid / office based: Hybrid If Hybrid, how many days are required in office?: 3 days The Role … solution designs including API contracts, integration patterns (Azure Functions, Logic Apps, Event driven), security boundaries, and observability. Architect document intelligence pipelines (classification / extraction / OCR / validation) and integrate with downstream systems (CRM / ERP / ITSM / EDM). Define non functional ...

continuous monitoring improvements. Design, implement, optimize, and monitor security controls and tooling from the ground up, strengthening security across endpoints, infrastructure, and application CI / CD pipelines. Collaborate with engineering teams to raise the security bar through reviews, guidance, and automation. Respond to security incidents in real time - manage … participate in tabletop exercises, incident simulations, and coordinate external penetration tests. Partner with Solutions Engineering to support enterprise customer onboarding, including SSO integrations (SAML / OIDC), network allowlisting, and security reviews. Join customer-facing technical and security discussions where needed, acting as a trusted security point of contact. Risk ...

scaling digital health organisation. Key Responsibilities Quality & Regulatory Leadership Own and maintain the organisation’s Quality Management System (QMS) in line with ISO 13485 Act as the internal lead for the ISO 27001 Information Security Management System (ISMS) Ensure ongoing compliance with HIPAA, DTAC … guidance for non-specialist stakeholders Support leadership with compliance reporting and customer or partner due diligence Key Authorities Authority to coordinate and maintain ISO 13485 and ISO 27001 management systems Authority to coordinate evidence and submissions for DTAC, NHS DSP Toolkit, and Cyber Essentials ...

Technical Specialist Key Requirements: Full project lifecycle experience OT cyber security expertise (desirable) HV systems experience (main area) Technical documentation skills Degree or HND / HNC in relevant discipline Eligible for security clearance IEC 62443 / IEC 61850 / ISO 27001 … knowledge Industrial networking and firewalls PLC / SCADA / DCS experience Attributes Adheres and champions company core values – Accountability, Communication, Entrepreneurial, Inspiring and Team Player Is commercially astute Must be able to manage the production of all documentation relevant to their area of responsibility to a high standard ...

administrating the security of both internal and external corporate network communications, including, routers, switches, firewalls, DMZ, servers, Wi-Fi, OT, telephony and LAN / WAN / VPN communication services. Constantly reviewing the IP space across the organisation ensuring that the TCP / IP stack, VLANs, IP Subnet … performance and security. Work closely with NIBE SOC teams and internal security engineers to ensure all preventative security measures are implemented and Zero Day / critical threats are extinguished in line with internal resolution targets. Collaborate with other business teams to ensure the proper use of systems. Coordinate investigations ...

Monitor and administer the security of our internal and external corporate network communications, including routers, switches, firewalls, DMZ, servers, WiFi, OT, telephony and LAN / WAN / VPN communication services. Constantly review the IP space across the organisation ensuring our TCP / IP stack, VLANs, IP Subnet … progressive experience in an IT security role maintaining secure networks in a MS-Windows and Linux environment. Expert knowledge of and experience in LAN / WAN / VLAN communications, VPN configuration and enterprise wireless networking. Firewall configuration, management and monitoring experience is essential. Experience of Fortigate products preferable. ...

Cyber Security Implement Cyber Security policies under the SIRO. Lead ISO 27001 recertification, internal audits, and remediation. Work with infrastructure / product teams on data security and incident handling. Oversee playbooks and ensure measurable risk reduction. Digital Clinical Safety Collaborate with IT, Clinical, Legal … SIRO, and Caldicott Guardian. Maintain the Digital Clinical Safety Policy with CMO / CTO. Lead biennial reviews for DCB0129 / 0160 and MDD compliance. Oversee training compliance and safety case documentation. Quality Management Lead the ISO 9001aligned Quality Management System. Manage ISO 9001 audits ...

structured documentation suitable for both humans and AI models. Ensure all documentation is version-controlled, accessible, and aligned to enterprise governance frameworks. ISO & Cybersecurity Alignment: Ensure policies … support compliance with: ISO 27001, ISO 27701, ISO 22301, ISO 31000, Cyber Essentials / CE+, NIST Cybersecurity Framework (CSF). Conduct gap analyses against new or updated standards and lead remediation activity. Audit & Assurance: Support internal and external audit ...

cybersecurity audits for client organisations in line with UK regulations. Assess compliance with: UK GDPR & Data Protection Act 2018 NIS Regulations ISO / IEC 27001 Cyber Essentials / Plus Telecommunications (Security) Act 2021 Identify risks and provide actionable recommendations. Produce clear audit … auditing, ideally in a consultancy or client-facing role. Strong knowledge of UK legal frameworks and compliance standards. Relevant certifications (e.g. CISA, CISSP, ISO 27001 Lead Auditor). Excellent communication and stakeholder engagement skills. Ability to work independently and manage multiple client engagements. This ...

looking for a Senior Security Consultant with deep expertise in cybersecurity and practical experience in securing AI / ML systems. In this role, you will help clients navigate the rapidly evolving threat landscape of artificial intelligence. You will work across strategy, architecture, and hands-on technical analysis to design … resilient systems for high-impact environments. Key Responsibilities AI / ML Security Oversight: Evaluate and secure the entire AI lifecycle, including model governance, data pipelines, and deployment patterns. Threat Modeling: Conduct advanced security assessments and risk analysis across cloud, on-premise, and hybrid environments. Risk Mitigation: Advise clients ...

HEAD OF NETWORK OPERATIONS ( GREENFIELD & AI STRATEGY ) / NOC SME Up to £1,200 Per Day SECURE has Strategically Partnered with a leading consultancy to support a FinTech leader operating under strict Regulatory Frameworks (FCA / PCI DSS). They are undertaking a strategic pivot … Dark NOC " Ecosystem , seeking a Leader to Architect this Capability from the "Ground Up". We are looking to speak with talented NOC SME / Principal Network Architects / Lead NRE . This is a Player-Coach role for a Technologist who refuses to be a "manager. ...

Systems Engineer / SaaS & Identity Engineer (Contract) – Inside IR35 Contract: 6 months (likely), Inside IR35 Start: ASAP Location: Hybrid – 3 days / week onsite Notice: Up to 4 weeks considered Overview We are looking for an IT Systems Engineer (generalist) to support and enhance their internal tooling stack. … This is a contract role providing additional capacity / cover while permanent hiring is ongoing. This role is less about being a deep specialist in one platform and more about being a capable engineer across multiple core systems, able to jump into BAU + project work. Key Responsibilities Administer ...

week. In order to be suitable for this role you must be an accomplished Information Security Manager with an expert understanding of ISO 27001 standards. You will oversee the Governance, Risk and Compliance (GRC) framework, ensuring robust standards are met across information security, physical security, crisis … suitable for this role of significant responsibility you must be an accomplished Information Security Manager with proven experience of working to ISO 27001 standards. You will act as the Lead Implementer for the ISO 27001 Information Security Management System (ISMS), driving ...

week. In order to be suitable for this role you must be an accomplished Information Security Manager with an expert understanding of ISO 27001 standards. You will oversee the Governance, Risk and Compliance (GRC) framework, ensuring robust standards are met across information security, physical security, crisis … suitable for this role of significant responsibility you must be an accomplished Information Security Manager with proven experience of working to ISO 27001 standards. You will act as the Lead Implementer for the ISO 27001 Information Security Management System (ISMS), driving ...