1 to 25 of 38 ISO/IEC 27001 Jobs in the North West

Person Specification Qualifications Essential Education to a minimum of Masters Degree level or equivalent post graduate qualification or equivalent senior level experience Formal certification (CISSP, CISM or CRISC) and / or formal training in information security standards and best practice (e.g.: ISO 27001 / 2, COBIT, Cyber Essentials) Advanced level of IT literacy with … experience of using a range of IT applications Significant evidence of continued professional development Desirable ITIL Qualification COBIT Knowledge and Experience Essential Proven and significant leadership experience and / or formal management qualification Demonstrated expertise in an IT Security environment Direct experience of strategic and budgetary planning and financial management and controls Previously worked within the NHS A good … practical knowledge of security technologies and wider business solutions including Firewalls, IDS / IPS, Identity and access management, SIEM, remote working and cloud technologies Proven experience of working at a senior level leading and delivering IT Security in a sensitive and complex environment which is undergoing significant change Experience of delivering presentations to large groups of stakeholders Demonstrable commitment More ❯

QA / RA Assistant – £28,000 depending on experience + Benefits – Liverpool The Role Are you looking to kickstart your career in quality management and regulatory affairs within the medical device industry? MyCardium is offering an exciting opportunity for a QA / RA Assistant to join our team and play a key role in ensuring compliance with international … to the success of a leading medical device company, we want to hear from you! Key Responsibilities: Assist in maintaining compliance with certifications and regulatory approvals such as ISO 27001, ISO 9001, ISO 13485, UKCA, CE, and FDA 510(k). … Support the update and maintenance of QMS and ISMS documentation. Help coordinate and conduct internal audits, document findings, and ensure corrective actions are followed up on. Deliver basic QMS / ISMS training to staff, including during induction sessions. Assist in vendor approval processes and monitor adherence to MyCardium's quality standards. Support post-market surveillance activities in collaboration with More ❯

tools for access governance, identity lifecycle, and privileged access management in alignment with defence-grade standards Security Assurance & Compliance Ensure commission controls comply with MOD policies (e.g. JSP 440 / JSP 604) and security frameworks such as NIST, ISO 27005, STIGs, and UK Functional Standard 007 Vulnerability Assessment & Access Review Support regular access reviews, entitlement audits, and … DV Clearance : Must hold active Developed Vetting (DV) clearance (or immediate transfer eligibility) Access Control Expertise : Deep experience in identity & access management, particularly designing and enforcing commission controls, RBAC / ABAC models, access provisioning, and entitlement workflows. Tools & Technologies : Hands-on with identity platforms (e.g. Active Directory, Azure AD, Okta), PAM / IGA systems, SSO / SAML … / OAuth, and access governance tools. Security Framework Knowledge : Understanding of defence and public-sector security frameworks (JSP 440 / 604, STIGs, ISO 27001, Government Functional Standard 007) Incident & Risk Handling : Proven ability to conduct security incident investigations relevant to unauthorized access and remediate gaps. Communication Skills : Strong ability to engage with both technical More ❯

delivery standards. Under supervision, the apprentice will help resolve incidents, assist with service requests, and escalate issues when required, while gaining experience in IT service management, information security (ISO 27001), and quality management (ISO 9001). Duties and key responsibilities: Incident and Request Management: Act as the first point of contact for staff requiring … helpful, and professional support to all users Keep staff informed of the progress of their requests Learn to explain technical issues in simple, clear terms for nontechnical users ISO 27001 Responsibilities: Follow company information security policies and procedures Handle data and information responsibly, maintaining confidentiality and security Report any suspected security risks or incidents to the … skills Troubleshooting skills Can do attitude Willingness to learn Punctual Approachable Keen to learn Want to ask questions Qualifications GCSE's including English and Maths GCSE, grade (A*-C / 9-4 or equivalent) (Essential) About the Employer POSITIVE SOLUTIONS LIMITED Putting the patient at the heart of everything, we build software that solves your everyday problems, integrates into More ❯

DEFCON and HMG Secure by Design requirements to highlight key issues Support and implement service improvement for the assurance function Work with EIT Business Operation Teams to ensure findings / recommendations stemming from Operational Assurance are highlighted, tracked, and remediated Your skills and experiences: Educated to degree level (or equivalent … preferably in a related technical discipline Understanding of cyber security technologies, their implementation and secure configuration CompTIA (A+, Network+, Security+) / NSCP Practitioner / CCSK / ISO27001 Practitioner (Lead Auditor etc.), CISM-P Cyber Security qualification - Desirable one or more certifications Capable of a high standard of written communication including experience of writing complex reports and giving … Security Assurance team: The Cyber Security Assurance Team with Shared Services are part of Enterprise IT (EIT) with responsibility for assuring all enterprise managed systems and services, spanning UK / RoW. The team ensure systems / services are built and configured in-line with applicable Cyber Security Standards. Why BAE Systems? This is a place where you'll More ❯

Robert Half have partnered on an exclsuive basis with a growing Pharmaceutical / MedTech organisation in the Greater Manchester area to recruit and IT Manager on a permanent basis. As the IT Manager, you will lead the planning, implementation, maintenance, and security of IT systems, ensuring seamless day-to-day operations. You will work closely with cross-functional teams … technical research and implementation. Provide technical support, training and communications to end-users as part of the wider change projects. Monitor system performance and implement improvements as needed. Experience / Skills required: Proven experience in an IT Manager or similar leadership role, preferably within healthcare, life sciences, or medical communications. Strong knowledge of cloud-based platforms (especially Microsoft … SharePoint, Azure). Excellent understanding of cybersecurity frameworks and data protection regulations (e.g. GDPR, ISO 27001). Experience supporting hybrid / remote teams using collaboration tools such as Teams, Zoom, and project management systems. Salary / logistics: £60,000-£65,000 + additional benefits Hybrid working - 2 / 3 days a week on More ❯

data products aligned to business priorities. Develop scalable data models that support BI and analytics platforms including Tableau and Power BI. Apply robust engineering practices (testing, version control, CI / CD) to all development. Advocate for and embed DataOps principles across data workflows. Partner with other technology functions to solve shared challenges and streamline processes. Ensure compliance with security … and quality frameworks, including ISO 27001, BS 10012, ISO 50001, and ISO 22301 . Skills & Experience Strong SQL expertise, with the ability to write and optimise complex queries. Hands-on experience with dbt (including testing and layered modelling). Practical knowledge of Snowflake for loading, transforming, and exporting datasets. Experience building and … solutions. Collaborative mindset with a passion for learning and improving processes. Desirable Extras Experience with cloud platforms such as AWS, Azure, or GCP . Knowledge of Git and CI / CD pipelines in data workflows. Exposure to Python or a similar programming language. More ❯

servers, networks, and storage. Diagnose and resolve deep technical problems, providing clear explanations and mentoring to 1st and 2nd line engineers. Manage, maintain, and optimise infrastructure including: Windows Server / Active Directory (including GPO) VMware vSphere (HA / DRS, vSwitches, performance tuning) Linux Systems (Ubuntu, services, automation, troubleshooting) Networking (routing, switching, VLANs, firewalls, VPNs, TCP / IP … services. Virtualisation: Expert knowledge of VMware vSphere (vCenter, ESXi, clustering, storage, networking). Linux Administration: Strong command-line expertise, system hardening, and cross-platform integration. Networking: In-depth TCP / IP knowledge, subnetting, routing, switching, and performance analysis. Storage & Backup: RAID design, SAN / NAS, vSAN, snapshot strategies, backup / restore principles. Scripting & Automation: PowerShell, Bash, or … able to explain complex technical concepts in a clear and logical manner. Desirable Skills Experience with cloud platforms (Azure, AWS, GCP). Knowledge of DevOps practices and tools (CI / CD, Infrastructure as Code). Exposure to containerisation (Docker, Kubernetes). Familiarity with security frameworks and compliance standards (ISO 27001, CE+). What You Get More ❯

executing IT security strategies that align with evolving business objectives. Drafting, maintaining and implementing information security policies and Standard Operating Procedures (SOPs). Configuring and overseeing mobile securityMDM (MAM / BYOD)to protect business continuity. Leading vulnerability assessments, penetration tests, firewall policy enforcement, and remediation efforts. Authoring compelling tender responses, clearly demonstrating technical capability and strategic value. Enhancing Microsoft … security leveraging Purview, Conditional Access, MFA to safeguard modern workplaces. Ensuring compliance with GDPR (DPA 2018), Cyber Essentials (Basic & Plus), and ISO 27001, supported by frameworks like NCSC and NIST. Operating around cybersecurity fundamentals: CIA (Confidentiality, Integrity, Availability), proactive threat prevention, and rapid incident response About You You're … naturally aligned with MSP-style work, deeply familiar with security frameworks, and thrive at the intersection of strategy and execution. In addition to this, you must have experience in / exposure to: Background in MSP / MSSP environments. Proven history of facilitating workshops and supporting sales from warm leads through closure. Strong understanding of ITIL, CAB, and structured More ❯

so that it can be interpreted by Information Technology and business individuals Skills: Recognised qualifications include CISSP, CISM, CISA or equivalent ISO 27001 Lead Auditor / Lead Implementor or similar qualification Familiarity with the NIST Cybersecurity Framework is beneficial. Formal qualification in Information Security domain or equivalent experience desirable Cloud Security Controls Location – Manchester or More ❯

so that it can be interpreted by Information Technology and business individuals Skills: Recognised qualifications include CISSP, CISM, CISA or equivalent ISO 27001 Lead Auditor / Lead Implementor or similar qualification Familiarity with the NIST Cybersecurity Framework is beneficial. Formal qualification in Information Security domain or equivalent experience desirable Cloud Security Controls Location – Manchester or More ❯

so that it can be interpreted by Information Technology and business individuals Skills: Recognised qualifications include CISSP, CISM, CISA or equivalent ISO 27001 Lead Auditor / Lead Implementor or similar qualification Familiarity with the NIST Cybersecurity Framework is beneficial. Formal qualification in Information Security domain or equivalent experience desirable Cloud Security Controls Location – Manchester or More ❯

Business Line Enabling Functions Job Type Permanent / FTC Date published 05-Jun-2025 19325 Connect to your Industry Deloitte Technology works at the forefront of technology development and processes to support and protect Deloitte around the world. In this truly global environment, we operate not in "what is" but rather "what can be" to help Deloitte deliver and … and evaluation of risk, as well as using GRC tools and guidance developed for Risk mitigation. Practical knowledge of information security standards and risk assessment frameworks such as ISO 27001, SOC 2, NIST 800-32. Strong knowledge of cyber controls, policies, and procedures. Experience of delivering metrics for senior level audiences. Demonstrate analytical and problem … self to work every day. And you'll never stop growing, whatever your level. Discover more reasons to connect with us, our people and purpose-driven culture at deloitte.co.uk / careers WPFULL SLICSS BAGLOB LOCGAT LOCREA LOCALB More ❯

across compliance and assurance What youll bring Strong background in cyber security governance, policy, and risk management Knowledge of ISO 27001, NIST CSF, CAF, GDPR / DPA Stakeholder engagement skills with senior leaders and technical teams Experience delivering security awareness or culture-change programmes Familiarity with tools such as Power BI, Excel or ServiceNow dashboards More ❯

across compliance and assurance What youll bring Strong background in cyber security governance, policy, and risk management Knowledge of ISO 27001, NIST CSF, CAF, GDPR / DPA Stakeholder engagement skills with senior leaders and technical teams Experience delivering security awareness or culture-change programmes Familiarity with tools such as Power BI, Excel or ServiceNow dashboards More ❯

across compliance and assurance What youll bring Strong background in cyber security governance, policy, and risk management Knowledge of ISO 27001, NIST CSF, CAF, GDPR / DPA Stakeholder engagement skills with senior leaders and technical teams Experience delivering security awareness or culture-change programmes Familiarity with tools such as Power BI, Excel or ServiceNow dashboards More ❯

across compliance and assurance What youll bring Strong background in cyber security governance, policy, and risk management Knowledge of ISO 27001, NIST CSF, CAF, GDPR / DPA Stakeholder engagement skills with senior leaders and technical teams Experience delivering security awareness or culture-change programmes Familiarity with tools such as Power BI, Excel or ServiceNow dashboards More ❯

escalation point within the IT function Collaborating with internal teams and external suppliers to maintain compliance and security best practices Supporting audit and compliance activities related to Cyber Essentials, ISO27001 or similar What youll need: Proven experience managing IT security or information security functions Strong technical knowledge of Microsoft environments and security controls Experience with incident response, vulnerability management, and More ❯

functional delivery teams to plan, develop, and support software products encouraging collaboration, trust, and continuous improvement across the teams increasing quality through continuous improvement of: + processes, driving agile / lean good practice, + people, through modelling leadership behaviours, coaching, and + technology, ensuring systems reflect good practice facilitating product increment (PI) planning and execution running scrum of scrums … meetings and keeping workflows efficient escalating issues, managing risks, and ensuring governance is in place agreeing the scope and frequency of software releases making sure delivery aligns with ISO9001, ISO27001, and AQA policies managing supplier delivery contracts and relationships providing clear reporting on progress and performance supporting financial, risk, business continuity, and information security processes keeping your own professional development … to the organisation Escalating impediments, managing risk, and driving delivery improvement. Agreeing scope and frequency of releases. Deliver software in accordance with relevant standards such as ISO9001 / ISO27001, regulatory requirements and AQA policies. Stakeholders Provide confidence to customers and stakeholders through; consistent, timely, high quality delivery, excellent communication, and wider services. Work close with Product Managers and Product More ❯

a multi-account Organization. This should include: • Networking and DNS components, Compute, Storage and Backup platforms, Logging, Messaging, and Alerting services, Organisational account management platforms, Serverless platforms, Data Lake / Lake House platforms, services & architecture, IAM roles and policies, Security and audit tools and practices • Experience with implementing complex Terraform IaC and multi-branch CI / CD pipelines … including experience of designing, developing, and working with, CI / CD pipelines including multi-branch deployments and automated testing. • Extensive experience of working within an architectural framework such as TOGAF or BCS to design Cloud based solutions. • Experience of running well-architected reviews for cloud workloads, security penetration testing and remediations. • Experience with ISO 27001 More ❯

next generation of cyber leaders Ideal Background Proven experience in cyber strategy, transformation, and risk management within complex organisations Strong knowledge of regulatory and security frameworks (e.g. NIST CSF, ISO27001, GDPR, NIS2, NCSC CAF) Experience across areas such as GRC, security architecture, threat management, or vulnerability management Outstanding communication and stakeholder engagement skills, with the ability to influence at C … CISA, MSc Cyber Security) advantageous What You'll Receive Salary: £73,100 - £90,950 + benefits 25 days annual leave + UK public holidays Contributory pension scheme (6% employer / 2% employee) Private healthcare, dental, and wellbeing support options Critical illness and life assurance cover Flexible benefits including electric vehicle scheme, cycle-to-work, and more Hybrid working Who … you're ready to influence boardroom decisions, lead complex transformations, and shape the future of cyber resilience in the UK, we'd love to hear from you. Reference: ODI / D / Cyber #oddi More ❯

teams to embed cyber risk Improve processes, tools, and methodologies What were looking for Strong knowledge of cyber risk and enterprise risk registers Familiarity with frameworks like NIST, ISO 27001 or NCSC CAF Confident presenting to technical and exec audiences Skilled with reporting tools (Excel, Power BI, GRC platforms) Organised, proactive, and a clear communicator Whats More ❯

support smarter, faster decision-making at every level of the firm. With a small but growing team, we're looking for someone ready to wear multiple hats-from business / data analysis to solution design, implementation, and testing. The core foundation is in place-now we need someone to help operationalise and scale it, turning potential into business value. … SQL queries and stored procedures, and formal database design methodologies. Experience in setting up monitoring and data quality exception handling. Strong data modelling experience. Experience managing and developing CI / CD pipelines. Experience with Microsoft Azure products and services, and proficiency in ETL processes. Experience of working with APIs to integrate data flows between disparate cloud systems. Strong analytical … Experience in semi / fully unstructured datasets and NoSQL environments Awareness of working in a regulated environment, with experience of data legislation and cyber security accreditations e.g., GDPR, ISO27001, Cyber Essentials. Expertise in Business Intelligence, ideally via Power BI for data visualization and reporting Use of DevOps (CI / CD) concepts to test, schedule, and deploy to a More ❯

Information Security controls are operating effectively. Ensure where gaps are identified that these have remediation plans agreed and delivered. Ensure annual Security Awareness tests are completed and provide visibility / status updates for these. Ensure effective Information Security Awareness campaigns are defined and delivered throughout the year. Help embed security best practices throughout the business and early … in projects. Skills, Experience and Knowledge: Proven experience of IT GRC and Information / Cyber security Proven experience of risk and control management Proven experience of standards including ISO27001, PCI, GDPR / DPA & NIST Communication of complex ideas clearly in a non-technical way Strong stakeholder and 3rd party management experience Strong communication and collaboration Confident at working … with people at all levels Cloud security experience is highly beneficial ISO27001 Auditor would be advantageous Why us? Markerstudy Insurance Services Limited (MISL) is one of the largest Managing General Agents in the UK. With a strong presence in the UK motor insurance market, we specialise in niche motor cover, where our solid market knowledge and experience enables us to More ❯

Information Security risk management tools and techniques Experience of security governance and compliance, ideally gained in financial services organisations Demonstrable understanding of Information Security control standards and frameworks e.g. ISO27001, NIST, PCI DSS Awareness and understanding of the Information Security threat landscape Deep understanding of Information Security solutions and controls Experience of Cloud security solutions and standards is highly advantageous … Competence, knowledge, and skills Competence Experience working within recognised Information Security frameworks and best practices such as ISO27001, NIST etc. 5 years experience in an Information Security role gained in a financial services or e-commerce environment is preferred Knowledge & Skills Excellent communicator, able to translate complex topics to all areas of the business Significant experience in the area of More ❯