176 to 200 of 510 ISO/IEC 27001 Jobs in England

effective remediation measures. Monitor systems, networks, and logs then Investigate security breaches, incidents, and other cybersecurity events. Oversight of compliance for regulatory compliance requirements, such as SOC2, HIPAA, ISO 27001, GDPR etc, and ensure our systems adhere to these standards Conduct security awareness training sessions, enabling the business. Who you are Cloud security enthusiast - You're … that protect systems Risk assessment pro - You enjoy identifying vulnerabilities, evaluating threats, and making informed security decisions backed by solid data Technical communicator - You have strong networking knowledge (TCP / IP, protocols) and can code / script (Python, Elixir, or similar) to automate security processes Bridge builder - You excel at translating complex security concepts for different audiences, from More ❯

Technical Knowledge & Experience Proven experience delivering IT or cyber security projects or capability enhancements in complex environments. Strong understanding of cyber security principles, controls, and frameworks (e.g. NIST, ISO 27001, CIS). Experience working with DevOps tools and practices (e.g. JIRA, Confluence, Azure DevOps). Familiarity with enterprise security domains such as identity management, cloud security … ability to work within structured governance and change control frameworks . Experience managing third-party suppliers and delivery partners. Strong knowledge of project delivery methodologies : PRINCE2 , APM PMQ , Agile / Scrum , or Hybrid delivery models. Understanding of ITIL and service management principles. Experience applying Change Management and Lean Six Sigma techniques is beneficial. Skills & Attributes Excellent leadership, stakeholder management More ❯

Technical Knowledge & Experience Proven experience delivering IT or cyber security projects or capability enhancements in complex environments. Strong understanding of cyber security principles, controls, and frameworks (e.g. NIST, ISO 27001, CIS). Experience working with DevOps tools and practices (e.g. JIRA, Confluence, Azure DevOps). Familiarity with enterprise security domains such as identity management, cloud security … ability to work within structured governance and change control frameworks . Experience managing third-party suppliers and delivery partners. Strong knowledge of project delivery methodologies : PRINCE2 , APM PMQ , Agile / Scrum , or Hybrid delivery models. Understanding of ITIL and service management principles. Experience applying Change Management and Lean Six Sigma techniques is beneficial. Skills & Attributes Excellent leadership, stakeholder management More ❯

offering, ensuring all customers benefit from foundational security controls. Develop optional upgrade paths for customers seeking formal certification or enhanced assurancesuch as Cyber Essentials, Cyber Essentials Plus, or ISO 27001using the same framework as a foundation. Conduct a gap analysis of Curveball's current product and service portfolio to identify areas requiring enhancement to meet these standards. Collaborate … execute IT security strategies that align with evolving business objectives. Draft, maintain, and implement information security policies and Standard Operating Procedures (SOPs). Configure and oversee mobile securityMDM (MAM / BYOD)to protect business continuity. Lead vulnerability assessments, penetration tests, firewall policy enforcement, and remediation efforts. Author compelling tender responses, clearly demonstrating technical capability and strategic value. Enhance Microsoft … naturally aligned with MSP-style work, deeply familiar with security frameworks, and thrive at the intersection of strategy and execution. In addition to this, you must have experience in / exposure to: Background in MSP / MSSP environments. Proven history of facilitating workshops and supporting sales from warm leads through closure. Strong understanding of ITIL, CAB, and structured More ❯

and conferences Handle correspondence, documentation, and presentations with precision Support finance functions, including invoicing, purchase orders, and reconciliations (experience with Xero beneficial) Assist with HR processes, compliance, and ISO documentation Oversee supplier relationships and purchasing activity Maintain accurate business systems, records, and asset registers Act as a key communication link between senior leadership and internal teams Benefits Competitive … and organisational abilities Confident communication skills, both written and verbal Financial acumen with experience using accounting or business systems Knowledge of HR and compliance processes (ISO 9001 / 27001 advantageous) A collaborative, professional, and solutions-focused approach How to apply for the role: If you have the skills and experience required for this position, click More ❯

Position: Security Lead / Security Architect Type: Permanent Location: London 2 days p / week; 3 days remote Salary: £84K - £94K DOE Looking for your next step in security leadership? This is a great opportunity for an experienced security professional to take ownership of an organisation's technology security strategy - driving best practice, influencing culture, and embedding security … at the heart of delivery. The Role As the Security Lead / Security Architect, you'll be the go-to person for all things security across global engineering teams. You'll shape strategy, improve governance, and guide technical teams to build secure, resilient systems. This role blends hands-on technical insight with strategic influence - perfect for someone who enjoys … both detail and direction. What You'll Be Doing Lead the organisation's security posture across technology and engineering. Set and deliver security strategy and best practice frameworks (ISO 27001, NIST, AWS Well-Architected). Oversee incident response, risk assessments, and vulnerability management. Drive a positive security culture across technical and non-technical teams. Partner with More ❯

SOC Operations Manager - Azure, ISO27001, Energy Up to £800 per day - Inside IR35 Primarily remote - Occasional travel 3 - 6 months My client is an instantly recognisable consultancy who require a SOC Operations Manager to lead the day-to-day operations of a Security Operations Centre. This is a hands-on leadership role where you'll manage a team of analysts … incident response, and ensure the SOC delivers measurable value to a well-known end client within the Energy Sector. Key Requirements: Proven experience working within SOC management, within Energy / Construction / Utilities Hands on leadership and team management skills. Proven experience with Enterprise Technologies (SOC / SIEM / XDR). Strong working knowledge of M365 … AWS. Ability to effectively communicate SOC value to stakeholders through clear and efficient reporting. Clear knowledge of current cybersecurity threats and trends. Familiarity with NCSC CAF, ONR SyAPs, and ISO27001 frameworks. Nice to have: Experience in complex, regulated environments, especially Critical National Infrastructure (CNI). Awareness of SOAR platforms and automation in incident response. Immediate availability If you're interested More ❯

SOC Operations Manager - Azure, ISO27001, Energy Up to £800 per day - Inside IR35 Primarily remote - Occasional travel 3 - 6 months My client is an instantly recognisable consultancy who require a SOC Operations Manager to lead the day-to-day operations of a Security Operations Centre. This is a hands-on leadership role where you'll manage a team of analysts … incident response, and ensure the SOC delivers measurable value to a well-known end client within the Energy Sector. Key Requirements: Proven experience working within SOC management, within Energy / Construction / Utilities Hands on leadership and team management skills. Proven experience with Enterprise Technologies (SOC / SIEM / XDR). Strong working knowledge of M365 … AWS. Ability to effectively communicate SOC value to stakeholders through clear and efficient reporting. Clear knowledge of current cybersecurity threats and trends. Familiarity with NCSC CAF, ONR SyAPs, and ISO27001 frameworks. Nice to have: Experience in complex, regulated environments, especially Critical National Infrastructure (CNI). Awareness of SOAR platforms and automation in incident response. Immediate availability If you're interested More ❯

management is also essential. The ability to work closely with business, technical and vendor stakeholders. Engagement via Umbrella Company Only; all taxes & NI deducted at source. General responsibilities: - Define / maintain IT disaster recovery framework ensuring alignment with business continuity objectives. Conduct risk assessments of existing infrastructure services enabling identification of mitigation strategies. Develop and document disaster recovery plans … large-scale enterprise environments. Infrastructure resilience and failover strategies. Ability to engage with senior stakeholders ITIL v4 certification Knowledge of regulatory requirements for IT risk and resilience e.g. ISO 22301, ISO 27001 Experience working in highly regulated environments. Reasonable Adjustments: Respect and equality are core values to us. We are proud of the diverse More ❯

ITIL practices and risk management methodologies. Significant proven experience with cyber security incident management and response Strong knowledge of security standards and regulations, such as GDPR, PCI-DSS, and ISO27001 Experience of delivering data protections specifically data loss prevention, sensitivity labelling and retention (using Microsoft Purview) Experience of managing projects through to completion Skills & Attributes Excellent problem-solving skills and More ❯

ITIL practices and risk management methodologies. Significant proven experience with cyber security incident management and response Strong knowledge of security standards and regulations, such as GDPR, PCI-DSS, and ISO27001 Experience of delivering data protections specifically data loss prevention, sensitivity labelling and retention (using Microsoft Purview) Experience of managing projects through to completion Skills & Attributes Excellent problem-solving skills and More ❯

audiences. Familiarity with cyber threats, threat actors, attack vectors, and vulnerabilities. Knowledge of information assurance standards and frameworks including CIS, NIST, ISO 27001, Cyber Essentials / Essentials Plus, GDPR. Knowledge of threat cyber security frameworks such as MITRE ATT&CK, Kill Chain and NIST CSF 2.0. The ideal candidate will combine strong technical expertise with More ❯

engineering teams on cloud security. Lead security architecture reviews, risk assessments, and controls for enterprise applications and cloud platforms (AWS, Azure, GCP). Implement DevSecOps practices, including secure CI / CD pipelines and infrastructure-as-code templates. Ensure compliance with frameworks such as NIST CSF, ISO 27001, PCI DSS, and CSA CCM. Essential Skills & Experience … AWS, Azure, GCP), multi-cloud preferred. Deep financial services security knowledge and regulatory experience. Expertise in IAM, network, data, application, container security, SIEM, and Zero Trust. DevSecOps and CI / CD security implementation experience. Relevant certifications desirable (CISSP, CCSP, AWS Security Specialty, Azure Security, GCP Security). Desirable Skills Strong communication, leadership, and stakeholder management skills. Strategic thinking and More ❯

engineering teams on cloud security. Lead security architecture reviews, risk assessments, and controls for enterprise applications and cloud platforms (AWS, Azure, GCP). Implement DevSecOps practices, including secure CI / CD pipelines and infrastructure-as-code templates. Ensure compliance with frameworks such as NIST CSF, ISO 27001, PCI DSS, and CSA CCM. Essential Skills & Experience … AWS, Azure, GCP), multi-cloud preferred. Deep financial services security knowledge and regulatory experience. Expertise in IAM, network, data, application, container security, SIEM, and Zero Trust. DevSecOps and CI / CD security implementation experience. Relevant certifications desirable (CISSP, CCSP, AWS Security Specialty, Azure Security, GCP Security). Desirable Skills Strong communication, leadership, and stakeholder management skills. Strategic thinking and More ❯

critical illness insurance, dental insurance, life assurance flex and partner cover. Retail savings scheme Online GP service, cycle to work scheme, gym membership discounts and many more! Location: Buttershaw / Hybrid Working (1-2 days in the office a week Bradford) Work type: 12-month fixed term contract. 37 hours per week, Monday Friday. We have an exciting opportunity … is taken away. But for us, its so much more than this. We look after communities, protect the environment, and plan to look after Yorkshires water, today, tomorrow 24 / 7, 365 days a year. We provide essential water and wastewater services to every corner of the Yorkshire region, and play a key role in the regions health, wellbeing … Stay current with GRC trends, standards, and best practices Assist in managing the Security GRC Framework Collaborate with stakeholders, auditors, and vendors Support compliance activities (CAF, SEMD, PCI DSS, ISO27001) Monitor and report on security compliance and incidents Conduct controls testing and coordinate audit findings Advise on compliance matters and manage policy exemptions Liaise with Data Protection team on GDPR More ❯

PLEASE NOTE THIS ROLE SITS WITHIN IR35***PLEASE NOTE THIS ROLE SITS WITHIN IR35*** IT Service Analyst / IT Vendor Management Analyst A fantastic opportunity has arisen for a IT Service Analyst / IT Vendor Management Analyst to join our Guildford based client on initial 6 month contract. IT Service Analyst / IT Vendor Management Analyst Key … cybersecurity, data protection, and infrastructure standards. * Day to day troubleshooting of tenant and STC issues. * Management of IT requirements for new tenants, tenant departures and moves IT Service Analyst / IT Vendor Management Analyst Experience required: * Good understanding of IT technologies * Excellent communication and stakeholder engagement skills. * Ability to manage third-party service providers effectively. * Organised and self-motivated … tenant or campus-style environment. * ITIL certification or similar service management qualifications. * Awareness of relevant compliance frameworks (e.g., ISO 27001, GDPR). IT Service Analyst / IT Vendor Management Analyst ***PLEASE NOTE THIS ROLE SITS WITHIN IR35***PLEASE NOTE THIS ROLE SITS WITHIN IR35*** In accordance with the Employment Agencies and Employment Businesses Regulations More ❯

SOC Operations Manager - Active SC, Azure, ISO27001, Energy Up to £800 per day - Inside IR35 Primarily remote - Occasional travel 3 - 6 months My client is an instantly recognisable consultancy who require a SOC Operations Manager with Active Security Clearance (SC), to lead the day-to-day operations of a Security Operations Centre. This is a hands-on leadership role where … incident response, and ensure the SOC delivers measurable value to a well-known end client within the Energy Sector. Key Requirements: Proven experience working within SOC management, within Energy / Construction / Utilities Holds an Active Security Clearance (SC) Hands on leadership and team management skills. Proven experience with Enterprise Technologies (SOC / SIEM / XDR … AWS. Ability to effectively communicate SOC value to stakeholders through clear and efficient reporting. Clear knowledge of current cybersecurity threats and trends. Familiarity with NCSC CAF, ONR SyAPs, and ISO27001 frameworks. Nice to have: Experience in complex, regulated environments, especially Critical National Infrastructure (CNI). Awareness of SOAR platforms and automation in incident response. Immediate availability If you're interested More ❯

SOC Operations Manager - Active SC, Azure, ISO27001, Energy Up to £800 per day - Inside IR35 Primarily remote - Occasional travel 3 - 6 months My client is an instantly recognisable consultancy who require a SOC Operations Manager with Active Security Clearance (SC), to lead the day-to-day operations of a Security Operations Centre. This is a hands-on leadership role where … incident response, and ensure the SOC delivers measurable value to a well-known end client within the Energy Sector. Key Requirements: Proven experience working within SOC management, within Energy / Construction / Utilities Holds an Active Security Clearance (SC) Hands on leadership and team management skills. Proven experience with Enterprise Technologies (SOC / SIEM / XDR … AWS. Ability to effectively communicate SOC value to stakeholders through clear and efficient reporting. Clear knowledge of current cybersecurity threats and trends. Familiarity with NCSC CAF, ONR SyAPs, and ISO27001 frameworks. Nice to have: Experience in complex, regulated environments, especially Critical National Infrastructure (CNI). Awareness of SOAR platforms and automation in incident response. Immediate availability If you're interested More ❯

authorization, and privileged access policies with data security controls. Deliver security capabilities that support modern work scenarios, remote access, zero-trust networking, and protection of sensitive data in AI / ML workloads. Leverage automation frameworks and IaC to improve scalability and reduce manual intervention. Operational Security, SRE & Assurance: Ensure security platforms are resilient, continuously monitored, and designed for 24x7 … operations. Strong understanding of compliance frameworks and risk management strategies. Demonstrated ability to present complex security topics to executive leadership. Preferred Qualifications: Certifications such as CISSP, CCSP, CISM, AWS / Azure Security Specialty, or equivalent. Experience with tools like Symantec DLP, Zscaler CASB, MS Purview, Palo Alto Prisma, Hashi Vault and other modern security platforms. Familiarity with DevSecOps principles … basis Boston Consulting Group is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, age, religion, sex, sexual orientation, gender identity / expression, national origin, disability, protected veteran status, or any other characteristic protected under national, provincial, or local law, where applicable, and those with criminal histories will be considered in More ❯

board Drive security awareness and training programmes for all employees Manage relationships with external auditors, regulators, and security vendors Mentor, hire, and retain high-performing information security talent Experience / Skills Required Managing security for cloud-first environments (AWS, Azure, Google Cloud) Implementing Security Operations Centres (SOC) and automated security monitoring Leading third-party risk management and vendor security … leadership experience in information security within financial services Deep understanding of regulatory and compliance requirements for banking and finance Strong track record of designing and implementing security frameworks (ISO 27001, NIST) Hands-on experience with SIEM, DLP, IAM, and endpoint security technologies Excellent risk assessment and incident management skills Outstanding communication skills with the ability to More ❯

board Drive security awareness and training programmes for all employees Manage relationships with external auditors, regulators, and security vendors Mentor, hire, and retain high-performing information security talent Experience / Skills Required Managing security for cloud-first environments specifically Microsoft Azure Implementing Security Operations Centres (SOC) and automated security monitoring Collaborate with the third-party risk management and vendor … leadership experience in information security within financial services Deep understanding of regulatory and compliance requirements for banking and finance Strong track record of designing and implementing security frameworks (ISO 27001, NIST) Hands-on experience with SIEM, DLP, IAM, and endpoint security technologies, specifically Microsoft Defender XDR, Purview and Sentinel Excellent risk assessment and incident management skills More ❯

threat detection, malware prevention, and device compliance. Build and operate scalable data protection solutions, including data loss prevention (DLP), secrets management, encryption, and classification. Integrate security controls into CI / CD pipelines, cloud-native services, and on-prem platforms to enforce security-by-design principles. Deliver security capabilities that support modern work scenarios, remote access, zero-trust networking, and … AI / ML workloads. Leverage automation frameworks and IaC to improve scalability and reduce manual intervention. Operational Security, SRE & Assurance: Ensure security platforms are resilient, continuously monitored, and designed for 24x7 support and incident response readiness. Embed security telemetry and observability to enable proactive threat detection and automated response. Apply SRE principles to improve reliability, performance, and maintainability of … security controls, implementing zero-trust models, and supporting 24x7 security operations. Strong understanding of compliance frameworks and risk management strategies. Preferred Qualifications: Certifications such as CISSP, CCSP, CISM, AWS / Azure Security Specialty, or equivalent. Experience with tools like Okta, Azure AD, CrowdStrike, Tanium, Zscaler, Vault, and other modern security platforms. Familiarity with DevSecOps principles, Infrastructure as Code, and More ❯

infrastructure (e.g., network security, data protection, vulnerability management, access control). Leading disaster recovery planning, business continuity strategies, and incident response. Familiarity with compliance standards such as NIST, ISO 27001, PCI-DSS, and GDPR in the context of data centers, critical IT infrastructure, and application resilience for business survivability. Excellent communication, presentation, and client-facing skills More ❯

Proficient in communicating complex security concepts to non-technical stakeholders and collaborating across departments and third-party providers. (S&I) Demonstrable knowledge of information security frameworks, regulations (such as ISO27001, NIST, and GDPR), and security technologies and controls. (S&I) Proven ability to lead and drive security initiatives, respond to security incidents, and conduct investigations. (S&I) Comprehensive understanding of More ❯

people across the UK. They are passionate about creating safe, nurturing environments that transform lives. As part of their digital evolution, they are seeking a skilled Information Security Engineer / Analyst to help strengthen their cyber security posture and safeguard our systems and data. Reporting directly to the Head of IT this is a hands-on technical role focused … Support secure software development lifecycle (SDLC) processes and promote secure coding standards Identify and remediate vulnerabilities using industry-standard tools Administer and configure security technologies (e.g., firewalls, SIEM, IDS / IPS, endpoint protection) Oversee access controls and identity management systems Conduct penetration testing and routine vulnerability scans Monitor networks and systems for threats; lead incident response efforts Perform root … NIST, ISO 27001, Cyber Essentials+ Hands-on experience with tools like Nessus, Qualys, SIEM, EDR, DLP, VPNs, and firewalls Strong understanding of network protocols (TCP / IP, DNS, HTTP, SSH) and segmentation Knowledge of Zero Trust architecture and cloud-native security practices Proficiency in identity and access management (Azure AD, MFA, SSO, RBAC) Skilled in More ❯