201 to 225 of 711 ISO/IEC 27001 Jobs in England

strategy, cyber risk, cyber maturity, security architecture, cyber transformation and regulatory compliance for cyber. Experience of various recognised cyber security relevant standards and regulations, such as NIST CSF, CRI2.0, ISO27001, NCSC CAF, GDPR and NIS2. Experience working in a variety of environments or organisational contexts to develop cyber strategy and manage cyber risk. Desire to work with large organisations trying More ❯

strategy, cyber risk, cyber maturity, security architecture, cyber transformation and regulatory compliance for cyber. Experience of various recognised cyber security relevant standards and regulations, such as NIST CSF, CRI2.0, ISO27001, NCSC CAF, GDPR and NIS2. Experience working in a variety of environments or organisational contexts to develop cyber strategy and manage cyber risk. Desire to work with large organisations trying More ❯

GRC framework across the group Conduct regular risk assessments and support vulnerability management Maintain and evolve security controls, policies, and standards Ensure compliance with GDPR, CIS18, PCI DSS, and ISO27001 Lead on third-party audits and provide documentation and evidence Support cybersecurity programmes and incident response planning Provide GRC advisory to senior leadership and cross-functional teams Promote a culture More ❯

financial services sector, including leading private equity, venture capital, and top UK law firms. We have four Microsoft Solution Partner designations, a Tier 1 Microsoft CSP relationship, and are ISO27001 & ISO9001 accredited. Our clients rely on us to bring specialist expertise across cloud solutions, hybrid working, modern workplace, data and BI, cyber security, governance and compliance, and networking. We have More ❯

management. Stay updated on emerging IT risks, technologies, and regulatory changes. Provide guidance and training to junior audit staff on IT audit methodologies. Qualifications: Traditional accounting qualifications i.e. ACA / ACCA / CIMA or CISA, CISSP, or other relevant certification preferred. Minimum of 3 years of experience in IT auditing or a related field. Strong understanding of IT … Unix environments. Database Management: Knowledge of SQL, Oracle, and other database management systems. Cybersecurity: Experience with vulnerability assessments, penetration testing, and incident response. IT Governance: Knowledge of ITIL, ISO 27001, and other IT governance frameworks. Software Development: Understanding of SDLC, DevOps practices, and application security. Data Analytics: Proficiency in data analytics … tools and techniques to enhance audit processes. For example: Excel: Advanced skills in data manipulation, pivot tables, and data visualisation. SQL: Ability to query and analyse large datasets. Python / R: Experience with programming languages for data analysis and automation. Tableau / Power BI: Expertise in creating interactive dashboards and visualisations. ACL / Galvanize: Familiarity with audit More ❯

throughout the product development lifecycle Conduct detailed threat modelling and risk assessments using recognised tools Lead the implementation of risk management strategies based on industry best practices (NIST, ISO) Work closely with development teams to ensure secure-by-design principles are followed Identify and propose mitigations for security vulnerabilities in solution architectures Maintain and evolve internal security policies … and DefStan 05-139 (Issue 1) is essential Proficiency in threat modelling methodologies and tools (e.g., STRIDE, DREAD, Attack Trees) Familiarity with other standards such as ISO / IEC 27001, ISO 27005, OWASP, and MOD ISN 23 / 09 Ability to identify, assess and mitigate risks across software and hardware More ❯

throughout the product development lifecycle Conduct detailed threat modelling and risk assessments using recognised tools Lead the implementation of risk management strategies based on industry best practices (NIST, ISO) Work closely with development teams to ensure secure-by-design principles are followed Identify and propose mitigations for security vulnerabilities in solution architectures Maintain and evolve internal security policies … and DefStan 05-139 (Issue 1) is essential Proficiency in threat modelling methodologies and tools (e.g., STRIDE, DREAD, Attack Trees) Familiarity with other standards such as ISO / IEC 27001, ISO 27005, OWASP, and MOD ISN 23 / 09 Ability to identify, assess and mitigate risks across software and hardware More ❯

either Croydon or Manchester. You should be self-motivated, a natural problem solver, and used to operating independently. How you will contribute at Janes: Responsible for delivering the annual ISO27001 & Cyber Essentials programmes Own and co-ordinate the security testing roadmap, and provide key support to the overall Security strategy Conduct regular risk assessments to identify potential security threats and … Tradecraft processes within our Single Intelligence Environment (SIE). Janes uses a multi-faceted approach to open-source intelligence, developed over 120 years, with all sources assessed for bias / objectivity, reliability, and level of certainty. We excel at capturing and making sense of open-source information to regularly reveal new and timely insights. We provide clients with a … with the ability for you to grow rapidly, both personally and professionally. Janes is an inclusive and equal opportunities employer and encourages applications regardless of age, race, disability, religion / belief, sexual orientation, gender reassignment, marriage or civil partnership, pregnancy / maternity, or gender. Although this role is advertised as full time, Janes believed that flexibility at work More ❯

either Croydon or Manchester. You should be self-motivated, a natural problem solver, and used to operating independently. How you will contribute at Janes: Responsible for delivering the annual ISO27001 & Cyber Essentials programmes Own and co-ordinate the security testing roadmap, and provide key support to the overall Security strategy Conduct regular risk assessments to identify potential security threats and … Tradecraft processes within our Single Intelligence Environment (SIE). Janes uses a multi-faceted approach to open-source intelligence, developed over 120 years, with all sources assessed for bias / objectivity, reliability, and level of certainty. We excel at capturing and making sense of open-source information to regularly reveal new and timely insights. We provide clients with a … with the ability for you to grow rapidly, both personally and professionally. Janes is an inclusive and equal opportunities employer and encourages applications regardless of age, race, disability, religion / belief, sexual orientation, gender reassignment, marriage or civil partnership, pregnancy / maternity, or gender. Although this role is advertised as full time, Janes believed that flexibility at work More ❯

Operations Centre (SOC). Support compliance with relevant standards (e.g. ISO 27001, NIST, UK GDPR). Review security aspects of tenders and conduct third-party / vendor risk assessments to ensure alignment with organisational security requirements. Perform additional security-related tasks as directed by the Head of Information Security Essential Skills & Experience Proven experience in … and cloud security. Ability to assess and communicate technical vulnerabilities in business terms. Experience working with or within a SOC environment . Familiarity with risk management frameworks (e.g. ISO 27005, NIST RMF). Excellent communication and reporting skills. Due to the volume of applications received for positions, it will not be possible to respond to all applications and … personal data very seriously. Any information provided to us will be processed as detailed in our Privacy Notice, a copy of which can be found on our website http: / / proactive.it / privacy-notice / More ❯

in completing the application or if you require a different format of this document, please get in touch with at UKI.recruitment@tcs.com or call TCS London Office number 02031552100 / +44 204 520 2575 with the subject line: “Application Support Request”. Role: DLP Support Specialist Location: London / Watford Mode of working: Hybrid (3 days) Careers at … and implement new DLP solutions, techniques, and updates to enhance protection. Support Integration – Assist in integrating DLP solutions with broader IT security measures and infrastructure. Your Profile Essential skills / knowledge / experience: DLP Technologies Expertise – Hands-on experience with Microsoft Purview DLP, Symantec DLP, Forcepoint DLP, or similar solutions. Incident Response & Troubleshooting – Ability to investigate security alerts … employees on data protection best practices and ensure compliance with DLP measures. Continuous Learning & Improvement – Commitment to staying updated on emerging DLP technologies, threats, and security trends. Desirable skills / knowledge / experience: Experience with Cloud Security – Exposure to cloud-based DLP solutions (e.g., Microsoft 365, AWS, Google Cloud). Forensic Investigation Skills – Ability to conduct forensic analysis More ❯

in completing the application or if you require a different format of this document, please get in touch with at UKI.recruitment@tcs.com or call TCS London Office number 02031552100 / +44 204 520 2575 with the subject line: “Application Support Request”. Role: DLP Support Specialist Location: London / Watford Mode of working: Hybrid (3 days) Careers at … and implement new DLP solutions, techniques, and updates to enhance protection. Support Integration – Assist in integrating DLP solutions with broader IT security measures and infrastructure. Your Profile Essential skills / knowledge / experience: DLP Technologies Expertise – Hands-on experience with Microsoft Purview DLP, Symantec DLP, Forcepoint DLP, or similar solutions. Incident Response & Troubleshooting – Ability to investigate security alerts … employees on data protection best practices and ensure compliance with DLP measures. Continuous Learning & Improvement – Commitment to staying updated on emerging DLP technologies, threats, and security trends. Desirable skills / knowledge / experience: Experience with Cloud Security – Exposure to cloud-based DLP solutions (e.g., Microsoft 365, AWS, Google Cloud). Forensic Investigation Skills – Ability to conduct forensic analysis More ❯

manage responses to customer security audits and assurance inquiries. Monitor regulatory changes and contribute to compliance initiatives such as DORA , NIS2 , and other applicable standards and frameworks (e.g., ISO 27001, SOC 2, GDPR). Assist in the development, maintenance, and improvement of internal GRC processes, policies, and documentation. Collaborate with cross-functional teams (Security, Legal, IT … a related field. Experience supporting sales processes, including responding to RFx security assessments. Solid understanding of cybersecurity principles, information security best practices, and regulatory requirements (DORA, NIS2, GDPR, ISO 27001, SOC 2, etc.). Excellent written and verbal communication skills; able to translate technical concepts for non-technical audiences. Strong organizational skills with the ability to … attention to detail. Experience working in a SaaS, cloud, or technology-driven company is preferred. Professional certifications (such as CISM, CRISC, ISO 27001 Lead Implementer / Auditor, or similar) are a plus Additional Information We are proud to foster a diverse and inclusive workplace, where every individual's unique background, perspective, and contribution is celebrated. More ❯

and deploy AI-powered automations that turn manual compliance tasks into real-time, self-service workflows. Skills you should HODL 7+ years in security engineering or technical external audit / advisory, including hands-on experience with industry frameworks (e.g. ISO 27001, SOC 2, PCI DSS, FedRAMP, NIST). Strong long-form and asynchronous writing skills … for a fully remote, globally distributed team. Built and / or made substantial contributions to a common controls framework. Knowledge of infrastructure as code, CI / CD, orchestration tools, and private key management. Familiarity with security capabilities for major cloud service providers (e.g. AWS, Azure, GCP). Ability to white-board architectures and technical process flows. Communicate limitations … controls with ease. Nice to haves Certifications: CRISC, CISSP, CCNA, CCSP Experience at a public technology, financial services, fintech, etc. company. Hands-on with blockchain relevant security standards and / or crypto-custody controls. Built or advised on LLM-based or general automations to manage stages of an assessment or control process. This job is accepting ongoing applications and More ❯

consultancy enables quantifiable compliance with key information security legislation, regulations, and industry standards, including PCI DSS, the UK Data Protection Act 2018 (DPA 2018), GDPR, and ISO / IEC 27001. If you would like to learn more about this opportunity, feel free to reach out and apply today! Responsibilities: Conduct web, mobile, API, infrastructure, cloud … wireless penetration testing. Create detailed technical reports and deliver test findings directly to clients. Provide remediation advice and post-assessment consultancy. Contribute to internal testing methodologies and Red Team / social engineering activities. Mentor junior team members and support collaborative delivery of projects. Occasionally support the creation of marketing materials such as research papers and articles. Skills / Must have: Strong knowledge of OWASP methodologies and offensive testing across black / grey / white-box approaches. Proficiency in tools like Burp Suite, Kali, Nmap, Nessus, Qualys, Metasploit. Familiarity with cloud platform security testing (AWS, Azure, GCP). Understanding of mobile security (Android & iOS), networking protocols, and the OSI model. Excellent verbal and written communication skills More ❯

Senior IT GRC Analyst City of London / Hybrid £Competitive + strong bonus and benefits GRC Frameworks, ISO 27001, NIST A prestigious financial services organisation in the heart of the City of London is seeking a Senior IT GRC Analyst to join its dynamic team. In this collaborative role, you will support the development and … IT security and operational risk assessments. High attention to detail, ensuring accuracy in documentation, assessments, and compliance activities. Strong understanding of information security risk management principles, frameworks (e.g., ISO 27001, NIST), and compliance practices. Exposure and understanding of IT infrastructure, business applications, and their associated risks and controls. Experience collaborating with internal and external audit teams More ❯

Compliance Analyst (Information Assurance) Location: Teesside Department: Digital / ICT Contract Type: Permanent Salary: Up to £45,000 per annum, depending on experience About the Role We’re looking for a proactive and detail-focused Compliance Analyst to support our information assurance and data protection efforts. This is a great opportunity for someone with a solid foundation in GDPR … documentation skills. A collaborative approach and the ability to work across departments. Desirable (but not essential) Experience with tools like OneTrust , Varonis , or similar platforms. Certifications such as CIPP / E , CIPM , or ISO 27001 Lead Implementer . Exposure to security projects or risk management frameworks Benefits: Competitive salary and performance bonuses. Comprehensive health, dental … and vision insurance. Generous pension scheme. Opportunities for professional development and continuous learning. Flexible working hours and remote work options. Employee discounts and perks. Permanent / Hybrid Working / Monday - Friday Next Steps? If you would like to know anything more about this role or even just want to hear what other DevOps, Cloud and Security positions I More ❯

Compliance Analyst (Information Assurance) Location: Teesside Department: Digital / ICT Contract Type: Permanent Salary: Up to £45,000 per annum, depending on experience About the Role We're looking for a proactive and detail-focused Compliance Analyst to support our information assurance and data protection efforts. This is a great opportunity for someone with a solid foundation in GDPR … documentation skills. A collaborative approach and the ability to work across departments. Desirable (but not essential) Experience with tools like OneTrust , Varonis , or similar platforms. Certifications such as CIPP / E , CIPM , or ISO 27001 Lead Implementer . Exposure to security projects or risk management frameworks Benefits: Competitive salary and performance bonuses. Comprehensive health, dental … and vision insurance. Generous pension scheme. Opportunities for professional development and continuous learning. Flexible working hours and remote work options. Employee discounts and perks. Permanent / Hybrid Working / Monday - Friday Next Steps? If you would like to know anything more about this role or even just want to hear what other DevOps, Cloud and Security positions I More ❯

of our legacy systems to the Microsoft cloud. Your responsibilities will include: Evaluate and enhance existing IT systems, management procedures, and security protocols to ensure robust protection. Oversee ISO 27001 and other key accreditations by collaborating with internal teams and external auditors. Manage information security requests and compliance reports, ensuring adherence to GDPR and other relevant … have the opportunity to leverage your existing skills while developing new ones, contributing to the strategic security objectives of the Company and ensuring adherence to critical accreditations, including ISO 27001, GDPR, Cyber Essentials, and PCI DSS. The successful candidate will demonstrate: Strong analytical skills with a meticulous approach to identifying and resolving security issues. Excellent verbal … attitude towards learning and developing expertise in information security. Happy to travel occasionally to other sites as required. Desirable Experience: Demonstrable expertise in external audit, compliance, and security processes (ISO27001, GDPR, Cyber Essentials and PCI DSS). Microsoft accreditation or other recognised certifications (e.g. Microsoft Learning, CISA, CISM, CRISC, CCSP) would be very beneficial. Benefits: £25,000 - £35,000 salary More ❯

Job Title: IT Banking Auditor Location: Birmingham (5 days on-site, full-time) Employment Type: / Contract Salary: Competitive, based on experience Company Overview: We are a leading financial institution committed to excellence in compliance, risk management, and technological advancement. We are currently seeking an experienced IT Banking Auditor to join our Internal Audit team in Birmingham. This is … to explain technical issues to non-technical stakeholders. Ability to work independently and manage multiple audit assignments concurrently. Desirable: Experience with core banking platforms, digital banking, cloud services, and / or fintech integration. Knowledge of data analytics tools (e.g., ACL, IDEA, Power BI) and scripting languages (e.g., Python, SQL). Previous Big 4 or internal audit experience in a … dependent upon your experience, qualifications and training. If you wish to apply, please read our Privacy Notice describing how we may process, disclose and store your personal data: roberthalf.com / gb / en / privacy-notice. More ❯

Ready to Make an Impact in Cybersecurity? Information Security Analyst – 6-Month FTC | Global Law Firm | London / Hybrid Our client, a leading global law firm , is looking for an experienced Information Security Analyst to join their London team on a 6-month fixed-term contract . This is a fantastic opportunity to work in a high-impact role … frameworks. Complete client cyber due diligence and collaborate closely with internal stakeholders. What You'll Bring: Proven experience in information security and risk management. Strong working knowledge of ISO 27001, Cyber Essentials, and CIS Controls. A strong technical skillset – capable of assessing systems, advising on architectures, and working closely with IT to address risks. Excellent communication More ❯

Ready to Make an Impact in Cybersecurity? Information Security Analyst – 6-Month FTC | Global Law Firm | London / Hybrid Our client, a leading global law firm , is looking for an experienced Information Security Analyst to join their London team on a 6-month fixed-term contract . This is a fantastic opportunity to work in a high-impact role … frameworks. Complete client cyber due diligence and collaborate closely with internal stakeholders. What You'll Bring: Proven experience in information security and risk management. Strong working knowledge of ISO 27001, Cyber Essentials, and CIS Controls. A strong technical skillset – capable of assessing systems, advising on architectures, and working closely with IT to address risks. Excellent communication More ❯

annum, it comes with a substantial bonus scheme, Company pension, private medical package and much much more! We’re looking for Azure Security Architects that have the following attributes / experience; Extensive commercial experience working with Azure Extensive commercial experience working with networking, firewalls, end point protection, and Access Management and data protection. Strong knowledge of cloud (IaaS, PaaS … GDPR) Solid knowledge and experience in enterprise architecture frameworks such as; TOGAF Extensive commercial experience within cyber-security Experience in documenting reference architectures, standards and position papers Key Responsibilities / Deliverables: Define and create Information Security architectural standards, artefacts, design patterns and technical specification documents. Assess, monitor and recommend improvements to the global security architecture to improve security posture … adherence to security design patterns and best practices. Designs and collaborates on solutions that balance business requirements with information security requirements. Proactively identifies technical and architectural risks, commenting and / or providing alternatives for improvement. Lead efforts for security technology evaluations, participate in proof of concept testing and provide in-depth analysis of the proposed solution. Collaborate and partner More ❯

all internal core applications, with a focus on SharePoint Online, CAD, PDM & PLM. Maintain and update application configuration including user security as needed to meet the business requirements. Create / update support procedures and ensure proper maintenance of standard operating procedure (SOP). New Systems: Capture requirements and create a plan with the vendor and end users to ensure … issues to the appropriate teams. Assist in user account management, including account creation, modification, and termination. PERSON SPECIFICATION (essential requirements) Qualifications Relevant qualification in Information Technology, Computer Science, CAD / CAM Engineering or related field (or equivalent work experience). Relevant certifications (e.g., ITIL v3 / 4, CompTIA A+, Microsoft Certified: Azure Administrator, etc.) are a major plus … Must be able to attain and hold National Security Vetting to a minimum SC level. Azure Architect AZ300 / 303 / 305 Experience Proven experience in IT support and administration, experience dealing with or working in an engineering environment Knowledge of licensing models for various software products (e.g., Microsoft, Adobe, Oracle, CAD Applications). Experience with system monitoring More ❯

critical and high risk third parties. - Review and complete client cyber due diligence questionnaires in a timely manner. Liaise with the client to close off any remedial actions. Experience / Skills Required: - Practical knowledge of information security and privacy regulation, legislation & standards including ISO 27001, Cyber Essentials and the CIS Controls framework. - Strong experience of More ❯