151 to 175 of 510 ISO/IEC 27001 Jobs in England

high performing Security team Leading by example to create a culture of continuous service improvements About you Experience in a regulated environment, preferably Financial Services. Previous experience in Information / Cyber Security, with demonstrable experience of Cloud Security tooling, to reduce risks and maintain strong controls in a DevSecOps cloud context Highly organised with the ability to prioritise workload … for example CCSK, CCSP, CISSP, CRISC Hands on demonstratable experience and knowledge of: Carrying out security reviews against recognised security control frameworks such as CSA Cloud Control Matrix, ISO27017 / 27001, NIST CSF, PCI-DSS, SWIFT, AWS CAF Atlassian, IAAC Terraform, Merge Requests, GIT Ops, Git Hub, Workflow, Wiz, Security Hub, Macie, Audit Manager, Microsoft Compliance Portal … / Purview, Microsoft Information Protection (AIP), Azure Security Centre. Strong experience with DevOps practices, continuous integration / continuous deployment (CI / CD) pipelines, and related tools Ability to evaluate the adequacy of cloud security controls, and how they are applied in a business context. Interview process The interview process for this role will be in two stages. More ❯

GDPR, ISO 27001, PCI DSS if applicable). Manage and continuously improve the firm's security architecture and controls across all domains: network, cloud (SaaS / IaaS), endpoints, and applications. Lead the Incident Response and Disaster Recovery programs, ensuring capabilities are tested, effective, and ready to mitigate the impact of security breaches. Drive security awareness … dependent upon your experience, qualifications and training. If you wish to apply, please read our Privacy Notice describing how we may process, disclose and store your personal data: gb / en / privacy-notice. More ❯

Implement network observability and predictive analytics to proactively prevent outages. Security, Compliance & Risk Management: Drive zero-trust security frameworks, ensuring secure and resilient network access. Ensure adherence to ISO 27001, NIST, SOC 2, GDPR, and industry best practices. Collaborate with cybersecurity teams to enhance network threat detection and mitigation. Implement automated security policy enforcement, reducing human … networking, predictive analytics, and network telemetry. Strong understanding of zero-trust networking, compliance frameworks, and security policies. Excellent leadership, communication, and stakeholder management skills. Preferred Qualifications: Certifications: CCIE, AWS / Azure / GCP Networking, CISSP, or equivalent. Experience with Kubernetes networking, Terraform, Ansible, and SDN. Strong problem-solving abilities, with a data-driven approach to network optimization. Who … scalability. Boston Consulting Group is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, age, religion, sex, sexual orientation, gender identity / expression, national origin, disability, protected veteran status, or any other characteristic protected under national, provincial, or local law, where applicable, and those with criminal histories will be considered in More ❯

and update Vulnerability Management related documentation to align with internal and external compliance requirements, industry best practices and emerging threats (e.g. ISO 27001, PCI DSS / 3DS, SOC 2 and NIST) Help define scanning schedules, thresholds, and automation opportunities. Collaborate with DevSecOps / Product Teams to embed security scanning into CI / CD … in evaluating new tooling and processes for better automation and risk tracking. Essential Strong engineering and automation background with an interest in vulnerability management Strong automation skills with CI / CD experience Strong technical knowledge, including: Cloud Experience (AWS, GCP) Kubernetes and Container experience Infrastructure as code (Terraform) Dashboard creation, front-end experience Self-sufficient - can be a trusted … expect the below, following a chat with one of our Talent Team: Stage 1 - 45 mins with BISO Stage 2 - 60 min with Peers Stage 3 - Final with CTO / Deputy CTO Benefits 33 days holiday (including public holidays, which you can take when it works best for you) An extra day's holiday for your birthday Annual leave More ❯

modelling. Advise on compliance (GDPR, NCSC Principles, ISO 27001). Configure cloud-native security tools & integrate with SIEM (Splunk, Chronicle). Embed security in CI / CD pipelines with DevOps teams. Support incident response & recovery for cloud-native environments. What You Bring Strong cloud architecture background. Knowledge of UK regulatory frameworks. IaC experience (Terraform / Deployment Manager). Understanding of monitoring, logging & network security. Consulting mindset with clear communication. Bonus: Cloud security certs, defence / public sector experience, Kubernetes / container security, Python / Bash scripting. Why Apply? This is your chance to apply DV-cleared cloud expertise where it matters most defence, security, and national resilience. Competitive salary, strong benefits More ❯

modelling. Advise on compliance (GDPR, NCSC Principles, ISO 27001). Configure cloud-native security tools & integrate with SIEM (Splunk, Chronicle). Embed security in CI / CD pipelines with DevOps teams. Support incident response & recovery for cloud-native environments. What You Bring Strong cloud architecture background. Knowledge of UK regulatory frameworks. IaC experience (Terraform / Deployment Manager). Understanding of monitoring, logging & network security. Consulting mindset with clear communication. Bonus: Cloud security certs, defence / public sector experience, Kubernetes / container security, Python / Bash scripting. Why Apply? This is your chance to apply DV-cleared cloud expertise where it matters most defence, security, and national resilience. Competitive salary, strong benefits More ❯

segmentation project in AWS, separating production and non-production environments. Key Responsibilities: Design, implement, and support enterprise network infrastructure across Cisco and Palo Alto on-premises environments, and Azure / AWS cloud platforms. Lead deployment and optimisation of SD-WAN and SASE / SSE technologies (e.g., Netskope, Zscaler, Cisco Umbrella). Manage and maintain secure network architectures including … root cause analysis, and ongoing improvements. Required Skills & Experience: Extensive experience executing network refresh projects. Strong expertise with Cisco, Palo Alto, HAProxy, and Azure networking. Solid understanding of TCP / IP, DNS, DHCP, VPNs, VLANs, firewall policies, and routing protocols (BGP, OSPF). Proven track record with SD-WAN deployments. Practical knowledge of SSE / SASE platforms (e.g. … Netskope, Zscaler, Prisma Access). Experience with AWS and / or Azure networking (VPC / VNet, transit gateways, peering, VPNs). Proficiency with monitoring and troubleshooting tools (NetFlow, Wireshark, CloudWatch, Grafana). Strong communication, documentation, and collaboration skills. Preferred Certifications: Cisco: CCNP, CCIE AWS: Advanced Networking, Solutions Architect Microsoft: Azure Network Engineer Associate, Azure Solutions Architect Expert Palo More ❯

IT Security Officer - £45,000-£55,000 | Permanent | Remote (UK-based, South / South West preferred) Join a respected group of independent education settings supporting pupils with diverse learning needs. We're seeking a proactive security and compliance professional to take ownership of cybersecurity, data protection, and governance across multiple UK sites. This hands-on role will suit someone … looking for Strong working knowledge of Microsoft 365 and Google Workspace security Experience managing or working with managed service providers (MSPs) Familiarity with Cyber Essentials , NCSC guidance , or ISO 27001 principles Understanding of GDPR and data protection responsibilities Relevant certification (e.g. CompTIA Security+ , CISMP ) or equivalent experience Excellent communication skills, especially with non-technical users Self More ❯

providing advice & guidance on a wide range of projects and BAU work. Primarily working on IT projects & programmes across IT Defence Portfolio, youll take responsibility for the installation and / or decommissioning of products and services. Responsible for delivering multiple IT platforms across both hybrid and on-premises environments. These platforms combine traditional virtualised infrastructure with cloud-based services. … secure, resilient, and supportable infrastructure components that align with architectural standards and project timelines. Specifically: Builds and configures on-premises infrastructure Deploys and integrates cloud-based services (e.g. IaaS / PaaS / SaaS, virtual machines, storage, networking, identity). Ensures systems are built in line with approved high-level and low-level designs Collaborates with solution architects, programme … and compliance frameworks (e.g. ISO 27001, Cyber Essentials Plus). Understanding of data classification, encryption standards (e.g. at rest and in transit), and secure storage / access principles. Experience supporting and configuring enterprise server platforms. Familiarity with virtualisation technologies used in production environments. Exposure to public cloud platforms and integration with on-premises systems. General More ❯

. ✔️ Strong experience drafting & negotiating commercial contracts. ✔️ Knowledge of data protection, commercial & contract law. ✔️ Pragmatic, proactive, and solutions-focused. ✔️ Excellent communicator & relationship-builder. 💡 Bonus points if you have: SaaS / fintech / tech sector experience. Knowledge of ISO 27001, SOC 2, payroll or financial services frameworks. Exposure to disputes, M&A, or advising professional More ❯

along with the ability to produce clear, concise documentation Enthusiastic about problem-solving, and a willingness to take responsibility and solve challenges Familiarity with industry frameworks such as ISO 22301, ISO 27001 Ability to adapt and respond to changing priorities and demands An appreciation for confidentiality and the ability to be successfully vetted to More ❯

assurance platform. What you'll need: At least 3 years of directly related Security Third Party Risk Management experience. Strong understanding of security and technology controls. Knowledge of ISO 27001 and other relevant security standards. Strong problem-solving skills and … attention to detail. Certified Information Systems Security Professional (CISSP) Certified Information Systems Auditor (CISA) Certified in Risk and Information Systems Control (CRISC) UK Driving Licence. Advert Closing Date: 21 / 10 / 25 Benefits: £55,000 - £65,000 (salary dependant on skills and experience) Hours: 08:30am - 17:00pm (Mon - Thurs) 08:30am - 16:30pm (Friday) Learning and More ❯

with the ability to influence technical and non-technical stakeholders. Strong leadership, motivational, and problem-solving abilities. Useful additional expertise (advantageous): Experience with SAN servers, SQL, Microsoft Teams, SCCM / SCOM, RMM / MDM tools. Cybersecurity certifications and knowledge (CE+, ISO 27001, etc.). Advanced networking expertise (QoS, VLANs, MPLS, wireless AP configuration). More ❯

skills with the ability to influence technical and non-technical stakeholders. Strong leadership, motivational, and problem-solving abilities.Useful additional expertise (advantageous): Experience with SAN servers, SQL, Microsoft Teams, SCCM / SCOM, RMM / MDM tools. Cybersecurity certifications and knowledge (CE+, ISO 27001, etc.). Advanced networking expertise (QoS, VLANs, MPLS, wireless AP configuration). More ❯

Sentinel - essential Microsoft Purview, Compliance Manager and related compliance tools Entra ID (Azure AD), Conditional Access and Identity Governance Data Loss Prevention, sensitivity labels and insider risk management ISO 27001, SOC 2, GDPR and NIS2 frameworks PowerShell … scripting and use of Microsoft Graph API Working across cloud, infrastructure and application teams Certifications required: AZ-500 SC-100 (or working towards) One or more of MS-500 / SC-400 / SC-900 The following are desired: CISSP, CISM, CCSP Interested? Please apply below. Senior Security engineer, M365 Consultant, M365 Engineer, Senior Cloud Security Engineer, Infrastructure More ❯

HAVE: • 5+ years of experience in software development, with 3+ years of experience using C# • Strong experience TypeScript, HTML and CSS • Strong cloud platform experience, ideally AWS • Strong CI / CD experience • Strong experience of using infrastructure as code (e.g. CDK, Terraform) • Experience developing serverless applications (e.g. Lambda) • A strong focus on architecture and code quality • Experience of modern … production • A solid understanding of security principles and secure coding including OWASP Top 10 Nice to haves: o Experience in VOIP, (SIP and RTP advantageous) o Experience of TDD / BDD / DDD o Knowledge of PCI compliance and associated standards such as ISO 27001 o Knowledge of accessibility standards and how to apply More ❯

Cyber Security GRC Consultant (DV Cleared) Location: Hybrid / Southeast Region - on-site presence required Contract Type: Permanent & Full-time Salary: Competitive + Benefits About the Role As a Cyber Security Consultant, you will play a pivotal role in delivering Secure by Design risk and security assurance services within MOD and Public Sector environments. You'll collaborate with multi … part of a knowledge-sharing culture, working alongside expert peers in Secure Architecture and Risk Planning. Key Responsibilities Deliver Secure by Design risk and security assurance functions within MOD / Public Sector. Lead and advise on risk management frameworks, ISMS, and Enterprise Security Risk Management. Facilitate security and risk workshops with Authority departments. Produce clear reporting on vulnerabilities, risks … professional registration at either Chartered or Principal for Risk Management. Active DV clearance required Strong working knowledge of: Security Assurance Coordinator or Delivery Team Security Lead roles JSP440, JSP604 / 453 & JSP490 Working with system secure design MOD / GDS Secure by Design Principles Supplier Chain Assurance and Risks. Security related legislation (e.g. GDPR, PCI DSS, ICO requirements More ❯

compliance (e.g., GDPR, ISO 27001), and security architecture. Hands-on experience with: SIEM Rapid7, InsightIDR XDR (SentinelOne preferred) Firewalls (Fortinet preferred) PAM (Delinea preferred) SSE / ZTNA (Netskope preferred) Cloud security / CNAPP SOAR Automation tools (Ansible, Terraform) A track record of leading complex cybersecurity projects. Strong client engagement and stakeholder management skills. Practical More ❯

compliance (e.g., GDPR, ISO 27001), and security architecture. Hands-on experience with: SIEM Rapid7, InsightIDR XDR (SentinelOne preferred) Firewalls (Fortinet preferred) PAM (Delinea preferred) SSE / ZTNA (Netskope preferred) Cloud security / CNAPP SOAR Automation tools (Ansible, Terraform) A track record of leading complex cybersecurity projects. Strong client engagement and stakeholder management skills. Practical More ❯

compliance (e.g., GDPR, ISO 27001), and security architecture. Hands-on experience with: SIEM Rapid7, InsightIDR XDR (SentinelOne preferred) Firewalls (Fortinet preferred) PAM (Delinea preferred) SSE / ZTNA (Netskope preferred) Cloud security / CNAPP SOAR Automation tools (Ansible, Terraform) A track record of leading complex cybersecurity projects. Strong client engagement and stakeholder management skills. Practical More ❯

legal documentation. Excellent Microsoft Office skills (Word, Excel, Outlook & PowerPoint) Desirable Experience in or exposure to security, CCTV, or technology-based industries . Legal or compliance certification (e.g., CIPP / E, ISO 27001 Lead Implementer, or equivalent). Multilingual proficiency is an advantage. Personal Attributes High integrity, professionalism, and discretion. Proactive and pragmatic approach to More ❯

Microsoft Cloud technologies ESSENTIAL Other requirements: Proven experience with Microsoft Sentinel, Microsoft Defender for Cloud, and Microsoft Purview in real-world environments. Strong understanding of cloud security architecture, SIEM / SOAR, compliance frameworks (e.g., ISO 27001, NIST, GDPR), and data protection. Familiarity with Azure, Microsoft 365, and hybrid cloud environments. Understanding of security operations, incident More ❯

of cloud-based and on-premises systems into DR strategies. Provide input into Group-wide security awareness initiatives, ensuring technical accuracy. Expertise Required Strong background as a Systems Engineer / Infrastructure Engineer with significant exposure to IT Security and resilience. Proven track record in designing and testing Disaster Recovery solutions across multiple technology stacks. Familiarity with backup solutions, replication … security models in hybrid environments, least privilege enforcement, Privileged Access Management (PAM), Strong knowledge of networking (routing, firewalls, segmentation, VPN, DNS, load balancers). Practical expertise in AWS and / or Azure platforms, IAM, and cloud security controls. Administration and hardening of VMware vSphere infrastructure. Hands-on experience with Kubernetes. Proficiency with Windows Server and Linux. Advanced scripting and … automation skills (PowerShell, Python, Bash, Terraform, Ansible). Experience managing M365 / Entra ID, SSO, MFA, and conditional access. Experience with vulnerability management using tools such as Experience working in multi-national environments with diverse technical standards. Knowledge of telecoms or IoT-related infrastructure. Behaviours Successful candidates will demonstrate a hands-on, problem-solving mindset, with a strong focus More ❯

of cloud-based and on-premises systems into DR strategies. Provide input into Group-wide security awareness initiatives, ensuring technical accuracy. Expertise Required Strong background as a Systems Engineer / Infrastructure Engineer with significant exposure to IT Security and resilience. Proven track record in designing and testing Disaster Recovery solutions across multiple technology stacks. Familiarity with backup solutions, replication … security models in hybrid environments, least privilege enforcement, Privileged Access Management (PAM), Strong knowledge of networking (routing, firewalls, segmentation, VPN, DNS, load balancers). Practical expertise in AWS and / or Azure platforms, IAM, and cloud security controls. Administration and hardening of VMware vSphere infrastructure. Hands-on experience with Kubernetes. Proficiency with Windows Server and Linux. Advanced scripting and … automation skills (PowerShell, Python, Bash, Terraform, Ansible). Experience managing M365 / Entra ID, SSO, MFA, and conditional access. Experience with vulnerability management using tools such as Experience working in multi-national environments with diverse technical standards. Knowledge of telecoms or IoT-related infrastructure. Behaviours Successful candidates will demonstrate a hands-on, problem-solving mindset, with a strong focus More ❯

Kafka-based real-time data systems. - Ensure cloud environments follow best practices in security, compliance, and performance. - Mentor technical teams and drive strategic architectural decisions. - Optimise infrastructure through CI / CD, Infrastructure as Code, and cloud cost management. Key Skills & Experience: - Strong AWS background with cloud security expertise (IAM, VPC, encryption, etc.) - Deep knowledge of Kubernetes, Docker, Kafka, and … Java backend systems. - Experience with CI / CD, Terraform / CloudFormation, and automated deployments. - Familiarity with industry standards such as GDPR, HIPAA, and ISO 27001 is a plus. - Eligible for or already holds UK Security Clearance. Why Apply? - Leadership role with technical ownership of high-impact cloud projects. - Remote-first working model with flexible … love to hear from you. Apply now to explore this exciting opportunity. Please note: UK Security Clearance (or eligibility for it) is a requirement for this role. Reference: ODI / LeadTechArchitect1 #oddi More ❯