151 to 175 of 692 ISO/IEC 27001 Jobs in England

with focus on data protection, access controls, and secure handling of intellectual property • Prepare audit documentation, including pre-audit questionnaires, security checklists, and audit plans Operational Security: • Conduct remote / on-site audits of third-party supplier locations • Verify prototype device inventory and ready-to-scrap materials through physical and digital tracking systems • Evaluate security controls including access management … security configurations for new manufacturing processes A day in the life • Review and process documentation for upcoming audits including security policies, access logs, and recent incident reports • Conduct remote / onsite audits with supplier facilities, checking physical security measures (CCTV, access controls, secure areas), prototype tracking systems, and data protection controls • Build and update audit schedules, coordinating with multiple … encourage candidates to apply. If your career is just starting, hasn't followed a traditional path, or includes alternative experiences, don't let it stop you from applying. Work / Life Balance We value work-life harmony. Achieving success at work should never come at the expense of sacrifices at home, which is why flexible work hours and arrangements More ❯

SOC Analyst required for my client based near Leeds for a permanent role. Salary £35-60k DOE Hours: 8am - 4.30pm / 9.30am - 6pm Following probation 1 week in 4 you will be required to be on call 6pm - 8am (home based) where you will receive additional remuneration + overtime. This includes weekends. The Role: As a SOC Analyst … analytical & communication skills (explaining risks to clients is key!) Bonus if you have: Microsoft certs (SC-200, SC-100, AZ-500) Experience with automation (Logic Apps, Power Automate, PowerShell / Python) Exposure to compliance frameworks (NIST, ISO 27001, Cyber Essentials) Familiarity with other SIEMs (Splunk, QRadar, LogRhythm) #SOC #MicrosoftSentinel #CyberSecurityJobs #ThreatDetection #WeAreHiring #MSSP More ❯

our dynamic team in person. Responsibilities Design, implement, and lead Remepy's security practice and enterprise cybersecurity program Own security compliance with HIPAA, 21 CFR Part 11, FDA pre / postmarket cybersecurity guidance, and related frameworks Collaborate with Product, Engineering, and Compliance to embed security-by-design across our software lifecycle Lead enterprise risk assessments, incident response, disaster recovery … and business continuity planning Oversee security architecture across cloud infrastructure, mobile apps, and data pipelines Represent security matters to the executive team, Board of Directors, and external auditors / regulators Drive internal security awareness and training across the organization Support FDA submissions and security documentation for regulated products Qualifications Experience 7+ years of experience in information security, including 3+ … ability to scale and lead a high-performing cybersecurity team Executive presence and comfort engaging with regulatory bodies and strategic partners Nice to Have Certifications: CISSP, CISM, HCISPP, CIPP / US, or similar Experience in fast-paced startup environments or venture-backed digital health companies Familiarity with software as a medical device (SaMD) or digital therapeutics Leadership Abilities Ability More ❯

our dynamic team in person. Responsibilities Design, implement, and lead Remepy’s security practice and enterprise cybersecurity program Own security compliance with HIPAA, 21 CFR Part 11, FDA pre / postmarket cybersecurity guidance, and related frameworks Collaborate with Product, Engineering, and Compliance to embed security-by-design across our software lifecycle Lead enterprise risk assessments, incident response, disaster recovery … and business continuity planning Oversee security architecture across cloud infrastructure, mobile apps, and data pipelines Represent security matters to the executive team, Board of Directors, and external auditors / regulators Drive internal security awareness and training across the organization Support FDA submissions and security documentation for regulated products Qualifications Experience 7+ years of experience in information security, including 3+ … ability to scale and lead a high-performing cybersecurity team Executive presence and comfort engaging with regulatory bodies and strategic partners Nice to Have Certifications: CISSP, CISM, HCISPP, CIPP / US, or similar Experience in fast-paced startup environments or venture-backed digital health companies Familiarity with software as a medical device (SaMD) or digital therapeutics Leadership Abilities Ability More ❯

experience in the field of Information Security, preferably in a senior or advanced analyst role. Proven experience in managing and auditing Information Security Management Systems (ISMS) aligned with ISO 27001 standards. Strong skills in risk assessment, vulnerability identification, and development of practical security solutions for complex IT environments. Experience with penetration testing and vulnerability assessments; certifications … to achieve their goals and an environment in which they can thrive. Apply for this job indicates a required field First Name Last Name Email Phone Location (City) Resume / CV Enter manually Accepted file types: pdf, doc, docx, txt, rtf Enter manually Accepted file types: pdf, doc, docx, txt, rtf DATA PRIVACY NOTICE FOR APPLICANTS Select Please review … the below link and confirm Which office are you applying to be based in? Select Do you have experience working to ISO 27001 standards? Select Do you require sponsorship to work in the UK? Select Do you have work experience in Ethical Hacking? Select Are you willing to work in the office 3 days a week More ❯

per week Holiday – 23 days annual leave (excluding bank holidays) increasing by one day per each year of service (up to a maximum of 28 days) Location - Hybrid, Midlands / Greater London Area South / Home Counties About the Systems Administrator role We are TC Group, the fastest-growing top 20 accountancy firm in the UK. We’re … and their businesses. We’re looking for a Systems Administrator to join our Central systems team. Based remotely, we are ideally looking for candidates around the Midlands, South, London / home counties area. This Systems Administrator role plays a pivotal role in ensuring systems are set up appropriately; maintained; well-integrated and well supported within a holistic framework across … with MS Azure / Active Directory Experienced with SSO and integration tools Strong understanding of systems architecture Familiar with Citrix environment Awareness of relevant standards such as GDPR, ISO27001, ITIL, Cyber Security frameworks as relate to securing systems and data Interpersonal Exceptional communication and relationship-building skills Strong problem-solving and conflict resolution abilities Organisational Effective time management and More ❯

deployment strategies , ensuring security and performance Work with Terraform, Deployment Manager, and CloudFormation for IaC-based deployments Security and Compliance: Implement cloud security measures and ensure compliance with ISO 27001, PCI DSS, GDPR, and other industry standards Define cloud architecture standards and best practices for a secure cloud environment Performance Optimisation: Monitor and optimise cloud resources … Experience 7+ years of experience in designing, implementing, and managing cloud-based solutions across multiple cloud platforms Primary Expertise: Deep hands-on experience in Google Cloud (GCP) Basic knowledge / willing to learn AWS Proven experience in designing and implementing cloud architectures and solutions Experience with Apache Kafka , including setup, configuration, monitoring, and troubleshooting Proficiency in Kubernetes (GKE) , including … with container orchestration, Helm charts, and Kubernetes operators Hands-on experience with DevOps tools (e.g., GitLab, Jenkins, ArgoCD ) and Infrastructure-as-Code (IaC) (e.g., Terraform, Ansible ) Experience with CI / CD pipelines (Jenkins, GitLab CI, ArgoCD) and source control management (Git) Strong scripting skills (e.g., Bash, Shell, PowerShell, Python ) Experience in automating infrastructure deployment using IaC tools such as More ❯

delivery of enhancements to operations based on industry trends; evolving customer and regulatory expectations; and experience, including the digitisation and automation of processes, documentation, and training & awareness. Key Skills / Qualifications needed for this role: Experienced in IT external assurance, IT risk and control assessment, or related fields. Proven experience in carrying out IT security control assessments with skills … ITIL. Certified in CISA or relevant certifications with one of the following: CISM, CISSP, equivalent experience. Strong knowledge of relevant laws, regulations, and industry standards e.g. UK GDPR, ISO 27001, PCI DSS, NIST. Great attention to detail and accuracy. Ability to work independently, manage time and workload effectively in a fast-paced environment. Experience in systems … s why we especially encourage applications from people with diverse backgrounds and experiences. Bupa is a Level 2 Disability Confident Employer. This means we aim to offer an interview / assessment to every disabled applicant who meets the minimum criteria for the role. We’ll make sure you are treated fairly and offer reasonable adjustments as part of our More ❯

Social network you want to login / join with: Come join us and make a difference in the world! Discover more at NO AGENCIES PLEASE Job Description Please Note: Role can be Hybrid Office Based or Remote, subject to location. At NEC Software Solutions, our Technical Architects are key enablers supporting the business in achieving its goals and objectives. … Azure, Amazon Web Services, Oracle OCI. Experience designing and delivering solutions within the UK Government domain. Familiarity with compliance & security standards across the enterprise IT landscape such as ISO 27001 and NCSC Cyber Essentials. Familiarity with ITIL service management principles & tools, and their use in an enterprise environment. Additional Information We pride ourselves in offering an … following: Private Medical Cover funded by NEC for Employees (with the option to add family members at an additional cost) 25 days paid holiday with the option to buy / sell (FTE) 4 x basic salary life assurance cover funded by NEC (with the option to increase cover at an additional cost) A Group Pension Plan with fantastic employer More ❯

in designing and maintaining secure practices across Microsoft 365, Azure, and broader security operations. Working within a small, agile security team, you'll also contribute to regulatory compliance (ISO 27001, GDPR, Cyber Essentials+), risk assessments, vulnerability management, and stakeholder engagement at all levels. Experience of Interest: * Practical experience implementing Microsoft Entra ID Governance (or similar Okta … on and demonstrable use of Microsoft Purview for compliance, data classification, and DLP * Strong security operations knowledge across M365 and Azure environments * Awareness of regulatory frameworks such as ISO 27001, GDPR, NIST, Cyber Essentials+ * Comfortable working with senior IT, Compliance and Risk stakeholders Interested? Send your CV or reach out for a confidential conversation. Email More ❯

delivery. Collaborate with InfoSec and Legal teams to ensure compliance with relevant regulations (e.g., ISO 27001, GDPR). Lead incident response and disaster recovery planning / testing for internal platforms and operational IT. Requirements Needed: Bachelor's degree in information technology, Computer Science, or related experience. 10+ years of experience in IT operations and support More ❯

security specialism is aligned. Engineering degree with minimum 5 years' experience in product security and CISSP, CISM or equivalent qualification Practical experience of risk management frameworks (NIST SP800-37, ISO27001) Practical experience of risk assessment processes (NIST SP800-30 and ISO 27005) Practical experience of applying security controls (NIST SP800-53 and ISO27002) Practical experience of Secure by … Design requirements (ISN 2023 / 09) Demonstrable experience of writing IA Technical Risk Assessments and the management of these Assessments Ability to interpret Penetration Test Reports and write Remediation Action Plans An appreciation of the wider UK Government Assurance Processes (such as JSP 440, DEFSTAN 05-139 or the CAF GovAssure processes). This is not an exhaustive list More ❯

practice. Reporting to the Head of Security & Governance , the successful candidate will play a central role in delivering risk reduction across the business. You'll be responsible for maintaining ISO27001 compliance, overseeing risk assessment and mitigation, and supporting incident management across multi-entity operations. Key Accountabilities: Lead and manage a team of three security professionals , supporting their development and day … to-day delivery. Ensure ongoing ISO27001 accreditation and alignment with broader assurance frameworks (e.g. NIST CSF, Cyber Essentials). Shape and implement the company's information security strategy , including policy, tooling, and training. Conduct risk assessments, oversee remediation plans, and guide secure-by-design approaches across projects. Provide technical leadership in areas including threat intelligence, compliance reporting, and incident response … including service providers and the organisation's parent company. Required Skills & Qualifications: Demonstrable experience in information security leadership , including line management or team leadership . In-depth knowledge of ISO27001, GDPR, FCA SYSC, PCI DSS and other regulatory / compliance frameworks. Hands-on experience with security technologies: SIEM, IAM, vulnerability assessment, endpoint protection, cloud services (AWS, SaaS, IaaS) . More ❯

practice. Reporting to the Head of Security & Governance , the successful candidate will play a central role in delivering risk reduction across the business. You'll be responsible for maintaining ISO27001 compliance, overseeing risk assessment and mitigation, and supporting incident management across multi-entity operations. Key Accountabilities: Lead and manage a team of three security professionals , supporting their development and day … to-day delivery. Ensure ongoing ISO27001 accreditation and alignment with broader assurance frameworks (e.g. NIST CSF, Cyber Essentials). Shape and implement the company's information security strategy , including policy, tooling, and training. Conduct risk assessments, oversee remediation plans, and guide secure-by-design approaches across projects. Provide technical leadership in areas including threat intelligence, compliance reporting, and incident response … including service providers and the organisation's parent company. Required Skills & Qualifications: Demonstrable experience in information security leadership , including line management or team leadership . In-depth knowledge of ISO27001, GDPR, FCA SYSC, PCI DSS and other regulatory / compliance frameworks. Hands-on experience with security technologies: SIEM, IAM, vulnerability assessment, endpoint protection, cloud services (AWS, SaaS, IaaS) . More ❯

practice. Reporting to the Head of Security & Governance , the successful candidate will play a central role in delivering risk reduction across the business. You'll be responsible for maintaining ISO27001 compliance, overseeing risk assessment and mitigation, and supporting incident management across multi-entity operations. Key Accountabilities: Lead and manage a team of three security professionals , supporting their development and day … to-day delivery. Ensure ongoing ISO27001 accreditation and alignment with broader assurance frameworks (e.g. NIST CSF, Cyber Essentials). Shape and implement the company's information security strategy , including policy, tooling, and training. Conduct risk assessments, oversee remediation plans, and guide secure-by-design approaches across projects. Provide technical leadership in areas including threat intelligence, compliance reporting, and incident response … including service providers and the organisation's parent company. Required Skills & Qualifications: Demonstrable experience in information security leadership , including line management or team leadership . In-depth knowledge of ISO27001, GDPR, FCA SYSC, PCI DSS and other regulatory / compliance frameworks. Hands-on experience with security technologies: SIEM, IAM, vulnerability assessment, endpoint protection, cloud services (AWS, SaaS, IaaS) . More ❯

standards and product specifications, especially regarding regulatory compliance and Cyber security. Ensure compliance with industry standards and regulatory requirements specific to fire alarm and life safety devices (EN54\UL864\ISO27001\CE). Implement best practices in coding, testing, and documentation. Develop and refine measurable software development processes to enhance efficiency and quality. Collaborate with R&D team section managers to … Degree level in Engineering, preferably with a Software focus. Experience Considerable proven experience managing development teams of 10-15 engineers within an electronic product segment, ideally regulatory controlled. Knowledge / Skills Management Proven experience leading and managing software development teams of various sizes, with a track record as an exceptional people manager. Ability to mentor, coach, motivate, and develop … design documents that comprehensively describe the product design and functionality. Certification Experience in designing products for a regulatory controlled market and ensuring compliance with those standards including ISO9001 and ISO27001 / NIST or other relevant security frameworks. This is an excellent opportunity to become part of the key engineering team within a developing business with its culture shaped by More ❯

s a small function. What You'll Do Lead and support a small, global cybersecurity team. Create and manage a strategic security plan aligned with company goals and ISO 27001. Proactively identify and address security risks and threats. Respond to and manage cybersecurity incidents and breaches. Conduct risk assessments, penetration tests, and other security evaluations. Keep senior leadership … Run regular training to promote cybersecurity awareness across the company. What You Bring Experience leading high-performing global security teams. Strong understanding of security frameworks and regulations (eg, ISO 27001, NIST, GDPR, DORA). Background in network, cloud (Azure), endpoint, and application security. Experience building and running company-wide security programs. Proven ability to handle real More ❯

s a small function. What You'll Do Lead and support a small, global cybersecurity team. Create and manage a strategic security plan aligned with company goals and ISO 27001. Proactively identify and address security risks and threats. Respond to and manage cybersecurity incidents and breaches. Conduct risk assessments, penetration tests, and other security evaluations. Keep senior leadership … Run regular training to promote cybersecurity awareness across the company. What You Bring Experience leading high-performing global security teams. Strong understanding of security frameworks and regulations (eg, ISO 27001, NIST, GDPR, DORA). Background in network, cloud (Azure), endpoint, and application security. Experience building and running company-wide security programs. Proven ability to handle real More ❯

across projects and meetings. Drive awareness through training, supplier reviews, and client security assessments. ?? What You Bring Strong knowledge of security tools and infrastructure: WAFs, SIEM, AV, firewalls, TCP / IP, and more. Familiarity with OWASP … zero-trust, SASE, and risk-based vulnerability management. A background in infrastructure or networks. Working towards or holding certifications like CISSP, GCIA, Security+, CCNA / CCNP. Understanding of ISO27001, Cyber Essentials, and AAF frameworks. Excellent communication skills and the ability to create clear technical documentation. ?? Why Join? Impactful Work: Your expertise will directly influence the organisation's security posture. More ❯

Security and requires a broad understanding of security controls and their effective implementation within corporate environments. The role will also require good relationship management skills across the assigned region / sub-region to enable business adoption. As a Director within the Regional Security Office (RSO) service, you will be accountable for service delivery to the assigned region / sub-region and solution lines. The role will need to have effective relationships with senior leadership to support the delivery of the regional / sub-regional business goals and operate an effective security risk management regime against an agreed security risk mitigation strategy. As the trusted security lead, the role will present to local leaders, regulators, and clients … management experience. Experience of Compliance assurance and Audit practice is desirable. Security certification (CISSP, CISM) is an advantage. Understanding and experience of delivering compliance standards, including Sarbanes Oxley (404), ISO27001, and Cyber Essentials+. How we support our colleagues: In addition to our comprehensive benefits package, we encourage a diverse workforce. Plus, our agile, inclusive environment allows you to manage your More ❯

the spirit of regulatory frameworks. Key Areas of Responsibility: Regulatory Implementation & Frameworks Assist in establishing a comprehensive resilience framework that meets DORA standards and other recognised guidelines (e.g. ISO 22301, ISO 27001, NIST). Draft internal controls, policies, training content, and risk assessment methodologies. Contribute to core DORA workstreams such as ICT risk management More ❯

the spirit of regulatory frameworks. Key Areas of Responsibility: Regulatory Implementation & Frameworks Assist in establishing a comprehensive resilience framework that meets DORA standards and other recognised guidelines (e.g. ISO 22301, ISO 27001, NIST). Draft internal controls, policies, training content, and risk assessment methodologies. Contribute to core DORA workstreams such as ICT risk management More ❯

the spirit of regulatory frameworks. Key Areas of Responsibility: Regulatory Implementation & Frameworks Assist in establishing a comprehensive resilience framework that meets DORA standards and other recognised guidelines (e.g. ISO 22301, ISO 27001, NIST). Draft internal controls, policies, training content, and risk assessment methodologies. Contribute to core DORA workstreams such as ICT risk management More ❯

the spirit of regulatory frameworks. Key Areas of Responsibility: Regulatory Implementation & Frameworks Assist in establishing a comprehensive resilience framework that meets DORA standards and other recognised guidelines (e.g. ISO 22301, ISO 27001, NIST). Draft internal controls, policies, training content, and risk assessment methodologies. Contribute to core DORA workstreams such as ICT risk management More ❯

technology estates. You will have proven experience with Cyber Security best practice including remediations for the MITRE ATT&CK Framework and NIST Cloud Security guidelines. You will support ISO 27001 compliance and have strong documentation skills. Experience in the Telco sector and knowledge of the UK Telecoms Security Act would be advantageous to your application. You More ❯