101 to 125 of 786 ISO/IEC 27001 Jobs in England

and existing applications, ensuring that all potential attack vectors are identified and mitigated. Develop and maintain security automation scripts and tools, such as SAST / DAST, to detect and respond to threats; automate security monitoring and alerting using Splunk, ELK, or Chronicle; develop security-as-code practices using Terraform … Ansible, or Kubernetes security policies. Harden and secure AWS / Azure / GCP, endpoint, and IAM environments and enforce cloud security best practices. Perform offensive activities and proactively hunt for vulnerabilities. Participate in the incident response process, providing technical expertise to manage and resolve security incidents; contribute to … to-date and effective. ️ Is This You? CISSP, CISA, or CISM certification is strongly recommended, but not required. ISO 27001 / 27701 / 42001, SOC-2, PCI DSS, and GDPR knowledge, experience, and qualifications are highly desirable. At least 5 years of relevant industry More ❯

collaborate with cross-functional teams to support the continuous improvement of the company's management system, the maintenance of NGUKL's existing external ISO accreditations and the attainment of new ISO accreditations to support the business strategy. This is an excellent opportunity if you are looking … system and the CAD database Maintain the company's Integrated Management System (IMS) to ensure compliance with regulatory requirements and industry standards (e.g. ISO 9001, 20000-1, 27001, 14001) Support functions and process owners to ensure processes are up to date, efficient and align with required … required Ensure appropriate reviews have taken place, and required approvals have been obtained prior to publication We are looking for: Detailed knowledge of ISO 9001, ISO 27001, ISO 20000 and ISO 14001 standards Experience in managing libraries of process documentation More ❯

working closely with IT to educate and enable teams across Attest. Support with compliance : partner with our Legal team to ensure adherence to ISO 27001, GDPR, and other standards. Manage risk proactively : identify and mitigate vulnerabilities across cloud environments and applications. Embed secure development : working with … 27001 security framework . Hands-on expertise in network security, application security, IAM, and incident response . Proficiency with SIEM, IDS / IPS, WAFs, EDR, and vulnerability management tools . Understanding of secure coding practices and ability to collaborate with engineering teams. Strong communication skills to … is currently an IC role, although you will have the support of other teams in the business. You have never been through an ISO 27001 or similar security audit process. You are looking for a role where you can be remote. We believe that the best More ❯

Infrastructure & Operations and Internal Audit. Qualifications: What background do I need to have? A successful candidate will have a bachelor's degree or equivalent / higher in computer science, cyber security, information security or similar, or a professional certification such as SSCP. Verification of certification will be requested during … matter expertise for transformational security improvements in a complex Technology organisation Proven experience at engaging and influencing stakeholders across departmental and organisational and global / segment stakeholders An excellent understanding of best practice within cyber security and risk management including standards such as ISO / IEC 27001, Cyber Essentials and NIST CSF Demonstrable creativity and a commitment to future-proofing processes and security controls in a fast paced, ever-changing environment A self-starter with the ability to identify, lead and drive change through an organisation without being instructed to do so More ❯

Management: Participate in risk assessments and vulnerability analyses, recommending mitigation strategies. Compliance: Ensure adherence to security policies, standards, and regulations such as GDPR, ISO 27001, etc. Documentation: Maintain accurate records of security processes, incidents, and compliance activities. Collaboration: Work with IT and other departments to ensure … architecture, especially cloud security and compliance. Knowledge of security governance, risk, and compliance frameworks such as ISO 27001, NIST, NIS / NIS2, DORA, UK CNI / OT / IIOT. Experience engaging with external stakeholders through presentations, audits, or reporting. Ability to operate security More ❯

capability development activities within the Cybersecurity Practice, contributing insights from the client engagement. Qualifications A degree (or equivalent experience) in Cybersecurity, Systems Engineering, Electrical / Electronic Engineering, or a related technical discipline. Recognised cybersecurity certifications: CISSP, CISM, CISA, GICSP, SABSA, or equivalent. Technical certifications or training aligned to OT … security: IEC 62443, GIAC GRID / GICSP, SCADA / ICS security, or vendor-specific OT platforms. Familiarity with rail sector security and safety standards is highly desirable. Understanding of relevant UK regulatory frameworks, including NIS / NIS2 Regulations and UK CNI expectations. Additional certifications or … including threat modelling, risk analysis, defence-in-depth, and zero-trust architectures. Demonstrated ability to define, implement, and assure security controls across complex OT / IT systems within large engineering or infrastructure programmes. Experience integrating cybersecurity into engineering lifecycles, including Secure by Design practices, requirements definition, and traceability to More ❯

capability development activities within the Cybersecurity Practice, contributing insights from the client engagement. Qualifications A degree (or equivalent experience) in Cybersecurity, Systems Engineering, Electrical / Electronic Engineering, or a related technical discipline. Recognised cybersecurity certifications: CISSP, CISM, CISA, GICSP, SABSA, or equivalent. Technical certifications or training aligned to OT … security: IEC 62443, GIAC GRID / GICSP, SCADA / ICS security, or vendor-specific OT platforms. Understanding of relevant UK regulatory frameworks, including NIS / NIS2 Regulations and UK CNI expectations. Additional certifications or practical experience in Secure by Design, systems assurance, or control systems … including threat modelling, risk analysis, defence-in-depth, and zero-trust architectures. Demonstrated ability to define, implement, and assure security controls across complex OT / IT systems within large engineering or infrastructure programmes. Experience integrating cybersecurity into engineering lifecycles, including Secure by Design practices, requirements definition, and traceability to More ❯

capability development activities within the Cybersecurity Practice, contributing insights from the client engagement. Qualifications A degree (or equivalent experience) in Cybersecurity, Systems Engineering, Electrical / Electronic Engineering, or a related technical discipline. Recognised cybersecurity certifications: CISSP, CISM, CISA, GICSP, SABSA, or equivalent. Technical certifications or training aligned to OT … security: IEC 62443, GIAC GRID / GICSP, SCADA / ICS security, or vendor-specific OT platforms. Understanding of relevant UK regulatory frameworks, including NIS / NIS2 Regulations and UK CNI expectations. Additional certifications or practical experience in Secure by Design, systems assurance, or control systems … including threat modelling, risk analysis, defence-in-depth, and zero-trust architectures. Demonstrated ability to define, implement, and assure security controls across complex OT / IT systems within large engineering or infrastructure programmes. Experience integrating cybersecurity into engineering lifecycles, including Secure by Design practices, requirements definition, and traceability to More ❯

capability development activities within the Cybersecurity Practice, contributing insights from the client engagement. Qualifications A degree (or equivalent experience) in Cybersecurity, Systems Engineering, Electrical / Electronic Engineering, or a related technical discipline. Recognised cybersecurity certifications: CISSP, CISM, CISA, GICSP, SABSA, or equivalent. Technical certifications or training aligned to OT … security: IEC 62443, GIAC GRID / GICSP, SCADA / ICS security, or vendor-specific OT platforms. Understanding of relevant UK regulatory frameworks, including NIS / NIS2 Regulations and UK CNI expectations. Additional certifications or practical experience in Secure by Design, systems assurance, or control systems … including threat modelling, risk analysis, defence-in-depth, and zero-trust architectures. Demonstrated ability to define, implement, and assure security controls across complex OT / IT systems within large engineering or infrastructure programmes. Experience integrating cybersecurity into engineering lifecycles, including Secure by Design practices, requirements definition, and traceability to More ❯

by Design Conduct threat modelling exercises to prioritise potential risks and develop mitigation strategies to reduce risks Ensure products meet regulatory standards such as ISO27001, NIST 800-30 / 37 / 53, Joint Standards Publications (JSP) such as JSP 440, 604 and Defence Standards (Def stans) Produce security … assessments and remediation activities Your skillset may include: Understanding and application of risk management frameworks and methodologies (e.g., ISO 27001 / 2, ISO27005 / 31000, NIST 800-30, NIST 800-53) Working knowledge of Defence Standards (e.g., JSPs, HMG, Def Stan 05-138, Def More ❯

by Design Conduct threat modelling exercises to prioritise potential risks and develop mitigation strategies to reduce risks Ensure products meet regulatory standards such as ISO27001, NIST 800-30 / 37 / 53, Joint Standards Publications (JSP) such as JSP 440, 604 and Defence Standards (Def stans) Produce security … assessments and remediation activities Your skillset may include: Understanding and application of risk management frameworks and methodologies (e.g., ISO 27001 / 2, ISO27005 / 31000, NIST 800-30, NIST 800-53) Working knowledge of Defence Standards (e.g., JSPs, HMG, Def Stan 05-138, Def More ❯

Internal Auditor ISO Standards and Compliance Internal Job Title: Process Assurance Auditor Location: Office based (Lostock Gralam, Northwich, CW9 7UA), with possibility to work from home 2 days a week. Hours: 09 30 Monday to Friday Join our team as a Process Assurance Auditor and play a key … role in ensuring excellence across our organisation. You ll conduct and document internal audits against our current suite of ISO certifications (ISO 9001 Quality, ISO 20000 Service, ISO 22301 Business Continuity, ISO 27001 Information Security, ISO … legislation in relation to an IT services provider Affective communication at all levels Ability to work towards tight deadlines Ability to manage own workload / time effectively Ability to identify company risk through internal audit About us Comms-care is a leading channel-only provider of IT support and More ❯

Internal Auditor – ISO Standards and Compliance Internal Job Title: Process Assurance Auditor Location: Office based (Lostock Gralam, Northwich, CW9 7UA), with possibility to work from home 2 days a week. Hours: 09:00 – 17:30 Monday to Friday Join our team as a Process Assurance Auditor and play … a key role in ensuring excellence across our organisation. You’ll conduct and document internal audits against our current suite of ISO certifications (ISO 9001 Quality, ISO 20000 Service, ISO 22301 Business Continuity, ISO 27001 Information Security, ISO … legislation in relation to an IT services provider Affective communication at all levels Ability to work towards tight deadlines Ability to manage own workload / time effectively Ability to identify company risk through internal audit About us Comms-care is a leading channel-only provider of IT support and More ❯

Develop and present comprehensive risk assessment reports, including clear recommendations for mitigation and investment Apply frameworks such as NIST 800-53, ISO / IEC 27001, and NCSC CAF to assess current controls and identify improvement opportunities Contribute to the development of organisational threat … can apply critical thinking to complex and ambiguous environments, making informed decisions under pressure You have strong knowledge of cyber risk frameworks (e.g. NIST, ISO27001, NCSC CAF) and experience in applying them You're experienced in one or more of: counterintelligence, human intelligence and security, physical security assessments, operational technology More ❯

diverse range of client projects within the defence, national security, environmental, and research sectors. This includes the provision of strategic risk management advice and / or technical consultancy within the context of cybersecurity. You will join a team of highly skilled professionals dedicated to safeguarding technologies and systems, many … and guidance with experience in consultancy or supplier roles. Securing OT (Operational Technologies) with knowledge and understanding of challenges, particularly within military platforms and / or Critical National Infrastructure (CNI) Federation of Security Operations Centre (SOC)operations across two or more organisational environments such as enterprise, edge / deployed environments or cloud . Demonstrable knowledge of cyber detection (e.g., threat identification / intelligence, real-time monitoring, anomaly detection) and cyber response (e.g. incident response, eradication and remediation, recovery, post-incident analysis). DevSecOps. Zero Trust Architecture (ZTA) expertise for enterprise, cloud and air-gapped environments along More ❯

Hybrid working- Aldermaston Essential Skills: The ideal candidates will hold Active SC clearance and have a proven Information Security background, with the following skills / experience: Experience of security assurance and the measurement of controls. Experience of IT Security documentation (policies, standards, processes, procedures and patterns). Experience of … IT Health Check and Vulnerability Assessments Experience of risk and threat modelling. Qualifications: accreditation / assurances CISM / XCCP / ISO 27001 More ❯

Hybrid working- Aldermaston Essential Skills: The ideal candidates will hold Active SC clearance and have a proven Information Security background, with the following skills / experience: Experience of security assurance and the measurement of controls. Experience of IT Security documentation (policies, standards, processes, procedures and patterns). Experience of … IT Health Check and Vulnerability Assessments Experience of risk and threat modelling. Qualifications: accreditation / assurances CISM / XCCP / ISO 27001 More ❯

with business stakeholders to drive our cloud security strategy and initiatives across GBST. You will assist in cloud information security related activities by supporting / leading implementation of a risk-based, sustainable and mature security controls posture to protect client data, digital trust and internal systems. As an experienced … on security and have the ability to articulate cybersecurity issues to non-technical stakeholders. Help to improve GBST's security requirements within the CI / CD pipeline and supporting infrastructure using agile DevSecOps methodology. Work closely with managed security service providers to ensure security events and incidents are investigated. … deployment experience. Strong knowledge and understanding of ISO 27001, NIST, CIS, SOC type 2, and other relevant cybersecurity frameworks. AWS / Azure Cloud security experience a must. Knowledge of SDLC and agile environments in the context of information security. Bachelor's degree in information security More ❯

Perform Pre Cable and Pre deploy duties in cases where circuits and client sites are yet to be delivered or readied by vendors. Troubleshoot / Investigate and rectify circuit connection errors & circuit / hardware down scenarios using ServiceNow ticketing system and working closely with internal teams. Participate in … a Rota system to provide out of hours migration / switch over works providing on-site support if required to client premises nationwide. Perform Hardware upgrades on legacy equipment and re-cable as instructed. Participate in on-call / out of hours duties on various planned and unplanned … order of received tickets, workload for each day. Keep in line with internal and client agreed SLAs surrounding time taken to deliver each ticket / site deployment dependent on geographical location. Maintain a professional and disciplined approach at all times when working within Exponential-e Client Premises, Data Centres More ❯

AV Support Assistant / Audio Visual Specialist / AV Engineer A fantastic opportunity has arisen for an AV Support Assistant / Audio Visual Specialist / AV Engineer to join our London based global law firm on initial 6 month contract. AV Support Assistant / Audio … Visual Specialist / AV Engineer Summary: Our clients IT team is responsible for delivery of a responsive, effective and timely IT support service to the firm’s employees and clients. They devise and implement operational processes and procedures in order to provide reliable and available IT systems to the … PowerPoint, and Excel - Knowledge of Remote Access systems and focusing on supporting remotely - Understanding of ITIL (v2 or v3), understanding of ISMS / ISO27001 would be desirable. AV Support Assistant / Audio Visual Specialist / AV Engineer More ❯

AV Support Assistant / Audio Visual Specialist / AV Engineer A fantastic opportunity has arisen for an AV Support Assistant / Audio Visual Specialist / AV Engineer to join our London based global law firm on initial 6 month contract. AV Support Assistant / Audio … Visual Specialist / AV Engineer Summary: Our clients IT team is responsible for delivery of a responsive, effective and timely IT support service to the firm’s employees and clients. They devise and implement operational processes and procedures in order to provide reliable and available IT systems to the … PowerPoint, and Excel - Knowledge of Remote Access systems and focusing on supporting remotely - Understanding of ITIL (v2 or v3), understanding of ISMS / ISO27001 would be desirable. AV Support Assistant / Audio Visual Specialist / AV Engineer More ❯

to quantify and lead risk mitigation plans Work with Service Management to ensure that partners and suppliers adhere to agreed standards, policies and verify / evidence appropriate compliance and security KPIs Work closely with 1st, 2nd and 3rd lines of defence on all matters relating to cyber security, information … 27001) within relevant geographic boundaries. Performs focused information risk assessments of existing or new services and technologies, alongside the Operational / Service Management team and technology subject matter experts. As required, will extend the assessment of existing and proposed services to third party suppliers, including … to risk management Maintains strong working relationships with individuals and groups involved in managing information risk across the in-scope services and aligned suppliers / 3rd parties Chairs and co-ordinates Security Working Groups (SWG) and actively participates in supporting / governing forums What experience you'll bring More ❯

an experienced Contract Business Continuity Consultant to develop, implement, and maintain BCPs and DRPs while ensuring compliance with key regulatory frameworks such as ISO 27001:2022, NIS2, and ISO 22301. Day Rate: £700-£800pd IR35 Status: Outside Duration: 6 Months Travel: Remote This BCDR … within a Global company Developed, implemented and improved Business Continuity Plans, Disaster Recovery Plans and the Business Continuity Management System. Ensuring alignment with ISO 27001:2022, ISO 22301 & NIS2 Led Business Impact Analyses and risk assessments to identify critical functions, dependencies, and resilience opportunities. More ❯

to the sector, including: NCSC NIS Guidance and CAF ISO 27001 and ISO 27005 NERC CIP ISA-99 / IEC 62443 NIST CSF. Additional information Please note that the interview stages may be subject to change based on the specific requirements More ❯

to the sector, including: NCSC NIS Guidance and CAF ISO 27001 and ISO 27005 NERC CIP ISA-99 / IEC 62443 NIST CSF. Additional information Please note that the interview stages may be subject to change based on the specific requirements More ❯