and Compliance environment Aid in improvements in assurance, compliance, and audit activities Address findings from identified risks or audits Maintain accurate records of risks, events, and issues in the ISMS Support internal and external audit investigations Ensure audit tests, self-certifications, and reviews are relevant and consistent with professional standards Work independently using defined processes and procedures Facilitate the use More ❯
excels at developing measurable controls that align with an organisation's risk appetite, capacity, and tolerance for breaches. Known for crafting innovative and cost-effective InformationSecurityManagement Systems (ISMS), the consultancy enables quantifiable compliance with key informationsecurity legislation, regulations, and industry standards, including PCI DSS, the UK Data Protection Act 2018 (DPA 2018), GDPR, and ISO/IEC More ❯
Brazil, Cyprus, Greece, Hong Kong, Japan, and Singapore. Overall Job Purpose : The Junior InformationSecurity Officer (JISO) will assist the InformationSecurity team in implementing and maintaining the informationsecuritymanagementsystem with the objective of managing risks to information assets to an acceptable level. The JISO will develop a good understanding of the informationsecurity policies, standards and procedures More ❯
London, South East, England, United Kingdom Hybrid / WFH Options
Michael Page Technology
simplify technology governance, policies, and processes to reflect a modern, strategic IT function. Embed frameworks such as: ISO/IEC 27001: The international standard for informationsecuritymanagement systems (ISMS), ensuring data confidentiality, integrity, and availability. ITIL (Information Technology Infrastructure Library): A framework for standardising IT service management practices and aligning them with business needs. Shift IT's organisational role More ❯
London, South East, England, United Kingdom Hybrid / WFH Options
Michael Page Technology
simplify technology governance, policies, and processes to reflect a modern, strategic IT function. Embed frameworks such as: ISO/IEC 27001: The international standard for informationsecuritymanagement systems (ISMS), ensuring data confidentiality, integrity, and availability. ITIL (Information Technology Infrastructure Library): A framework for standardising IT service management practices and aligning them with business needs. Shift IT's organisational role More ❯
Quality ManagementSystem, ISO 14001:2015 Environmental ManagementSystem with guidance for use", OHSAS 18001:2017 Occupational Health and Safety Management Systems and ISO/IEC 27001:2013 InformationSecurityManagementSystem, Policies, Plans, Procedures and Processes, and statutory requirements as they affect the Joint Venture 's operations and ensure that the requirements, as applicable within their discipline, are effectively More ❯
organization's informationsecurity policies, standards, and procedures in alignment with business objectives, while considering operational needs. Direct the management and continuous improvement of the InformationSecurityManagementSystem (ISMS). Oversee and manage Ravelin's PCI DSS and PCI 3DS compliance program, ensuring requirements are fulfilled, maintained, and areas for enhancement are identified. Conduct routine risk assessments to determine More ❯
Quality ManagementSystem, ISO 14001:2015 Environmental ManagementSystem with guidance for use", OHSAS 18001:2017 Occupational Health and Safety Management Systems and ISO/IEC 27001:2013 InformationSecurityManagementSystem, Policies, Plans, Procedures and Processes, and statutory requirements as they affect the Joint Venture 's operations and ensure that the requirements, as applicable within their discipline, are effectively More ❯
Quality ManagementSystem, ISO 14001:2015 Environmental ManagementSystem with guidance for use", OHSAS 18001:2017 Occupational Health and Safety Management Systems and ISO/IEC 27001:2013 InformationSecurityManagementSystem, Policies, Plans, Procedures and Processes, and statutory requirements as they affect the Joint Venture 's operations and ensure that the requirements, as applicable within their discipline, are effectively More ❯
robust informationsecurity and privacy practices across global operations. Conduct security risk assessments, support incident response, and contribute to audits and compliance initiatives. Maintain and enhance the firm's ISMS and Business Continuity frameworks. Complete client cyber due diligence and collaborate closely with internal stakeholders. More ❯
Work. Life. Smarter. Our commitment to a flexible and hybrid working culture As a GRC Analyst you will: Support the development and maintenance of our InformationSecurityManagementSystem (ISMS) including policies, objectives, and risk assessments Assist with internal audits and help prepare for external audits to maintain compliance with ISO27001 and other standards Help identify and assess informationsecurity … risks, working closely with the Cyber Risk Manager Provide guidance to colleagues on basic security best practices and requirements Contribute to reporting on the ISMS performance and improvement plans Support continual improvement initiatives and track progress Keep up to date with key trends and changes in informationsecurity and ISO standards Help maintain and update the security controls library What More ❯
InformationSecurity Lead Auditor Department: Audit Employment Type: Permanent Location: London, UK Reporting To: Regional Operations Manager Description Please note, that a full driving licence is required as this is a field-based role. Join our growing Lead Auditor teams More ❯
London, South East, England, United Kingdom Hybrid / WFH Options
Sanderson
to certification Conduct gap analysis tailored to private sector risk profiles and commercial priorities Facilitate risk assessments in accordance with ISO 27005 or recognised equivalents Draft, review, and update ISMS documentation including policies and procedures Advise on and oversee technical, administrative, and physical control implementation per ISO 27001 Annex A Deliver internal audits and lead clients through Stage 1 and … Stage 2 certification audits Establish ISMS performance monitoring and reporting mechanisms Provide targeted training to embed a security-first culture Experience Required Proven experience in ISO27001 implementation and auditing Strong understanding of ISMS frameworks and private sector regulatory requirements Excellent communication and client-facing consultancy skills Relevant certifications such as ISO27001 Lead Auditor/Implementor, CISSP, CISM, CRISC, CISA Experience More ❯
Company Overview Helix International Group is the parent company of a leading group of businesses operating in risk, compliance, safety software, and services for the built environment and workplace. Helix delivers market-leading risk, compliance, and safety solutions, creating business More ❯
City of London, London, United Kingdom Hybrid / WFH Options
Helix International Group Ltd
Company Overview Helix International Group is the parent company of a leading group of businesses operating in risk, compliance, safety software, and services for the built environment and workplace. Helix delivers market-leading risk, compliance, and safety solutions, creating business More ❯
