25 of 25 ISO/IEC 27001 Jobs in Gloucestershire

integrate security requirements throughout the product and system development lifecycle. Lead threat modelling and risk assessments, applying frameworks such as ISO / IEC 27001, NIST 800-30 / 53, and ISO 31000. Advise on secure architectures and develop strategies … identified information risks. Collaborate with multi-disciplinary teams to ensure compliance with MOD and HMG standards, including JSPs, Def Stan 05-, and ISN 23 / 09 Secure by Design. Support incident response and remediation activities for security events affecting products and systems. Produce and maintain security documentation, policies ...

Security and Governance Manager, ISO27001, c £ 50000 - 60000+ benefits, nr Cheltenham, Gloucestershire. 3 days in the office, 2 days WFH Growing company are looking for an IT Security and Governance Manager who will co-ordinate all the governance and compliance including Certifications such ISO 27001, Cyber … join a global company that is going through an exciting period of growth and expansion. If you have the required skills and experience around ISO27001 please send your CV for a full brief. This role is based in the Cheltenham / Gloucester area and requires 3 days a week ...

Head of Cybersecurity and work within our specialist Cybersecurity Practice . In this role, you will provide cybersecurity assurance within a complex marine / defence engineering programme, supporting the development and delivery of cyber-resilient systems. This is a consultancy role focused on integrating cybersecurity into programme controls, technical … Engineering, or a related technical or defence-focused discipline. Recognised cybersecurity certifications: CompTIA, CISSP, CISM, CRISC, ISO 27001 Lead Auditor / Implementer, or equivalent. Familiarity with MOD, maritime, or defence-specific frameworks: JSPs, DEFSTAN, NIST, IEC 62443, IMO or ISO / ...

will have at least 5 years of experience in compliance, risk management, and leading internal and external audits, with a strong background in ISO 27001, ETSI, and other relevant cybersecurity standards. This role requires an individual with a strong knowledge of regulatory frameworks, exceptional analytical … certificates, and cryptographic security principles. Experience with standards such as WebTrust for CAs, SOC 2, ISO 27001, FIPS 140-2 / 3, and NIST frameworks (800-53 r5, 800-63). Experience engaging with regulatory bodies, auditors, and external auditors. Experience writing and evaluating control ...

initial intake through submission and follow-up Maintain and manage the RFP calendar, tracking deadlines and coordinating resources across multiple concurrent proposals Conduct go / no-go analysis for incoming RFPs, assessing strategic fit and win probability Develop and maintain proposal templates, boilerplate content library, and response databases Coordinate … Management Continuously improve RFP response processes, tools, and timelines Maintain a comprehensive knowledge base of product capabilities, security controls, and compliance certifications Conduct win / loss analysis and implement lessons learned Train team members on RFP best practices and tools Track and report on RFP metrics, including volume ...

initial intake through submission and follow-up Maintain and manage the RFP calendar, tracking deadlines and coordinating resources across multiple concurrent proposals Conduct go / no-go analysis for incoming RFPs, assessing strategic fit and win probability Develop and maintain proposal templates, boilerplate content library, and response databases Coordinate … Management Continuously improve RFP response processes, tools, and timelines Maintain a comprehensive knowledge base of product capabilities, security controls, and compliance certifications Conduct win / loss analysis and implement lessons learned Train team members on RFP best practices and tools Track and report on RFP metrics, including volume ...

Principal Security Consultant , you will work on a variety of Defence and Public Sector assignments. Projects will range from risk assessments and ISO 27001 implementations to developing full ISMS frameworks and supporting clients through accreditation. You'll provide expert guidance across standards such as NIST … Security Consultant with experience in security assurance, accreditation, secure by design, and risk management, alongside recognised qualifications such as CISSP, CISM, or ISO 27001 Lead Implementer or perhaps you hold and MSc in Cyber Security or a similar relevant topic. In return, you'll enjoy ...

patterns and message-queue-based architectures. Developing and optimizing APIs that support real-time AI monitoring with strict sub-100ms performance requirements. Integrating ML / LLM systems into production environments. Building scalable data pipelines and processing systems. Deploying and operating services on AWS infrastructure. Contributing to frontend development … needed) within a modern JS framework. Collaborating with AI researchers to productionize experimental AI safety methods. Maintaining and improving CI / CD pipelines and developer tooling. Requirements Essential Strong, proven Python development experience in production environments. Familiarity with ML / LLM systems and their integration into applications. Experience ...

both regulatory and defence-sector standards. Key Skills and Experience Deep understanding of security frameworks (ISO 27001, NIST 800-30 / 53, OWASP). Strong capability in risk assessment, threat modelling, and vulnerability analysis. Expertise in secure-by-design principles and secure software development. Experience … with MOD and HMG security standards (JSP, Def Stan 05-138 / 139). Knowledge of penetration testing, incident response, and remediation. Ability to communicate complex security concepts to both technical and non-technical audiences. Familiarity with cloud security architectures (AWS, Azure, GCP). Strong analytical, documentation, and problem ...

cloud security architecture across AWS, Azure, and GCP, with expertise in IAM, key management, data encryption, and network segmentation Skilled in securing AI / ML workloads and data pipelines, ensuring the AI systems have controlled, auditable, and principle-based access to sensitive information Experienced with hybrid architectures integrating … security and data governance principles, including data minimisation, secure model access, and AI transparency requirements Experienced in intrusion detection and prevention systems (IDS / IPS), vulnerability scanning, endpoint protection, and security incident management Skilled in designing network and application security controls, including WAFs, firewalls, zero-trust models, and identity ...

privileged access policies, controls, and workflows with client stakeholders across on-prem, hybrid, and cloud environments. Integrate CyberArk with enterprise tools such as AD / LDAP, ticketing systems, SIEMs, and ITSM platforms. Lead technical workshops, demos, and training sessions for a range of technical and non-technical audiences. Troubleshoot … Privileged Access Management principles and security frameworks. Proven experience in Secrets Management using CyberArk Conjur (e.g. integration with automation platforms such as CI / CD and DevOps pipelines). Scripting experience (e.g., PowerShell, Python, Bash) for automation and system integration. CyberArk Certified Delivery Engineer (CDE) ideally, minimum CyberArk Defender ...

critical infrastructure . Strong understanding of cyber-physical systems , OT environments , and connected infrastructure . Experience applying assurance frameworks and technical standards (e.g. NIST, ISO27001, CAF). Background in governance, risk, and compliance (GRC) functions. Excellent communication and stakeholder engagement skills. Agile, analytical, and solutions-focused mindset. Experience in sectors ...

Role: Cloud Data Architect Location: Bristol, London / Hybrid (2 days a week on site, with travel to client sites as required) Role Type: Permanent / Full-Time Salary: Depends on experience Role Summary: As a Senior / Principal Consultant Cloud Data Architect, you will lead … architecture solutions. Strong understanding of UK Government secure data design principles, including Secure by Design. Awareness of relevant security & regulatory frameworks (NCSC, ISO 27001, NIST, GDPR). Ability to explain complex concepts to non‐technical audiences. Ability to influence diverse stakeholders including senior leadership. Collaborative ...

GDPR & ISO 27001. Collaborating with other areas within the company such as the Infrastructure & DevOps teams to integrate virtualisation with CI / CD pipelines and other automation frameworks. Skills: VMWare - vSphere Hyper-V Strong knowledge with automation and scripting technologies such as Python, PowerShell or Ansible. Cloud … based virtualisation (e.g., Azure, GCP, AWS) Knowledge around relevant industry standards such as ISO 27001 & GDPR. Benefits Healthcare package Life Works Gym Allowance Cycle to Work Long-Term Sickness Insurance Employee Assistance Programme Discretionary Bonus Infrastructure Engineer (eDV Cleared) | £70,000-£100,000 | VMware | Hyper ...

project milestones, as well as liaising with stakeholders and supporting the software development lifecycle. Key Responsibilities: Support the delivery of projects using hybrid Agile / Waterfall methodologies Assist in the development and execution of project plans Track project milestones, deliverable, and sprint progress in Azure DevOps Coordinate activities with … resolving software defects Perform regression and functional testing aligned with project milestones Create test documentation and reports Conduct compliance auditing aligned with ISO 27001 Skills & Experience: 1-3 years of experience in project management or similar roles Good understanding of Agile and Waterfall methodologies Experience with ...

project milestones, as well as liaising with stakeholders and supporting the software development lifecycle. Key Responsibilities: Support the delivery of projects using hybrid Agile / Waterfall methodologies Assist in the development and execution of project plans Track project milestones, deliverables, and sprint progress in Azure DevOps Coordinate activities with … resolving software defects Perform regression and functional testing aligned with project milestones Create test documentation and reports Conduct compliance auditing aligned with ISO 27001 Skills & Experience: 1-3 years of experience in project management or similar roles Good understanding of Agile and Waterfall methodologies Experience with ...

platform; aligning to our product roadmaps. Identify and mitigate technical risks, ensuring SaaS solutions are secure. Compliance needs include keeping out SOC2 and ISO 27001 accreditations. Design and understand integration with customer networks and software products. Develop and maintain detailed high-quality design documentation. Working with ...

Manage and optimise IT infrastructure (on-premises and cloud), ensuring performance and security. Collaborate on IT security and compliance, maintaining standards such as ISO 27001. Plan and deliver IT projects, ensuring timely and cost-effective execution. Manage the IT budget and vendor relationships, ensuring value for money. Develop ...

Manager Remote / Gloucestershire Very competitive salary Our client, a well-established and growing organisation within the technology and cybersecurity industry, based in the Gloucestershire area (with a predominantly remote set-up), has an exciting new opportunity for an IT Manager to join their team on a full-time … premises and cloud infrastructure with a focus on performance and security Collaborating closely on IT security, compliance and maintaining standards such as ISO 27001 Planning and delivering IT projects efficiently and within budget Managing vendor relationships and ensuring best value from suppliers Maintaining strong IT documentation ...

prem and cloud environments, and ideally experience in areas such as: Network security, IAM, SIEM, and threat detection Compliance frameworks (e.g. NIST, ISO 27001, CIS Controls) Security automation and scripting Producing security artefacts and documentation Experience in Operational Technology would be an added bonus ...

Some of our environments require security vetting and you should be comfortable undertaking that process. Skills & Requirements Significant C# and web-development experience Javascript / Typescript experience Experience programming using a functional approach (professional or hobby) Desirable Exposure to the LanguageExt library in C# ( Health industry work experience SaaS … large complex code bases Experience with .Net Framework as well as modern .Net SQL Server knowledge About Us Medical Management Systems is an ISO 27001:2013 certified organization that adheres to NHS Data Security and Protection Toolkit (DSP Toolkit) standards and GDPR compliance. As part ...

operational cybersecurity, policies, and risk management. You will define and maintain security standards, oversee incident response, and ensure compliance with frameworks such as ISO27001, Cyber Essentials, CIS, NIST, and GDPR. A key part of this role involves leading and mentoring apprentices, designing structured training pathways, and helping shape the organisation … Essential Skills: Strong experience across IT operations and cybersecurity, including incident response, risk management, and policy creation Working knowledge of security frameworks such as ISO27001, CIS, NIST, GDPR, and Cyber Essentials Cybersecurity certifications such as CISSP, Security+, CEH or equivalent Proven leadership and team development experience, ideally including apprenticeship support ...

Project Engineer Birstol / Hybrid We are seeking a skilled Projects Engineer to deliver modern technology solutions across a diverse customer base in multiple industry sectors. This role focuses on technical implementation and offers exposure to a wide range of technologies and environments. Key Responsibilities: Implement solutions in line … complex technical concepts clearly and manage workload effectively Team player with strong interpersonal skills and a positive, proactive attitude Desired Qualities: Experience in ISO-9001, ISO-27001, and Cyber Essentials certified organisations Familiarity with ITIL-aligned service operations Exposure to project delivery using both waterfall ...

will be a key member of the change advisory board and business risk steering committee. Main responsibilities include - Assist with the continued certification of ISO27001, CMMC (NIST), Cyber Essentials, etc. Responsible for the delivery of the company cyber security strategy . Work with external partners to ensure their work meets … company response plan in the event of a security breach. Skills and Experience Required - Working knowledge of some of the following - ITAR, CMMC, ISO27001, CCPA, Cyber Essentials Plus 5 years plus experience in a similar Cyber Security role. Good understanding of networking ports, protocols, traffic flow, system administration, etc Experience ...

correctly configured Diagnose and resolve issues with PC and server hardware, network and internet connectivity, and telephone systems Support and troubleshoot Windows 10 / 11, Windows Server 2019 / 2022, Active Directory, SQL Server, SharePoint, Office 365 and key line-of-business applications (including ERP and time & attendance … manner and clear written English High attention to detail, accuracy and a methodical approach to problem solving Full UK driving licence Desirable: Awareness of ISO27001 Experience with NetSuite or similar ERP platforms Confidence working with data in tools such as Excel or other statistical / analysis packages The ideal ...