1 to 25 of 31 Remote ISO/IEC 27001 Jobs in the North West

Security Engineer - Cloud / Compliance / ISO 27001 Location: Knutsford (Cheshire) - Hybrid Salary: £65,000 - £80,000 DOE + benefits About the Role We're working with a rapidly growing, cloud-first technology business that provides secure, compliant software to global enterprise clients across regulated sectors. They're now looking for an experienced Security … policies, and frameworks. Oversee day-to-day security operations including access control, patching, log review, and alert response. Implement and manage controls across cloud and on-premises environments (Azure / AWS preferred). Lead incident response processes and investigations, coordinating remediation actions. Support compliance programmes - ISO 27001, SOC 2 Type II, and data-protection (GDPR … Strong understanding of ISMS principles (ISO 27001) and audit support for SOC 2 Type II. Hands-on experience with security tools and controls - SIEM, IAM / PAM, endpoint protection, vulnerability management. Working knowledge of data-protection and privacy standards (GDPR, HIPAA). Excellent communication skills - able to collaborate across technical and non-technical teams. Relevant More ❯

the organisation’s GRC framework. Conduct and document risk assessments, identifying control gaps and recommending appropriate mitigations. Maintain and update internal policies and procedures to ensure compliance with ISO 27001, GDPR, and other regulatory requirements. Assist with internal and external audits, including evidence gathering and control testing. Prepare and deliver compliance and risk reports for management … with stakeholders across all levels of the organisation. Essential Skills and Experience: Previous experience in a GRC, Risk, or Compliance Analyst position. Good knowledge of frameworks such as ISO 27001, NIST, or COBIT. Understanding of data protection and … privacy regulations (e.g., GDPR). Excellent written, verbal, and interpersonal communication skills. Strong analytical and organisational abilities. Relevant professional certifications (e.g., ISO 27001 Lead Implementer / Auditor, CISM, CRISC, CISSP) are desirable but not essential. More ❯

the business. You’ll lead audits, influence policy, and strengthen the organisation’s security and compliance posture. Key Responsibilities Lead and enhance governance, risk, and compliance frameworks. Manage internal / external audits and risk assessments. Ensure compliance with PCI DSS, ISO 27001, GDPR, and NIST. Develop and improve policies, procedures, and vendor risk management. Support … incident response and promote a culture of security awareness. Experience & Skills Proven leadership in GRC or Information Security. Strong knowledge of ISO 27001, PCI DSS, GDPR, NIST. Experience managing audits and compliance programmes. Excellent communication and … stakeholder management. Hands-on technical understanding of security controls. Desirable: Certifications: CISM, CRISC, ISO 27001 Lead Auditor (or equivalent). Experience with cloud security (AWS / Azure) and enterprise-scale environments. Benefits Salary up to £75,000+ (DOE) Private healthcare, pension & income protection Life assurance & wellbeing support Cycle-to-work & EV schemes Career growth in More ❯

the organisation’s security posture. You’ll collaborate closely with infrastructure, development, and compliance teams to maintain high standards of cyber resilience and uphold key frameworks such as ISO 27001 and Cyber Essentials Plus . Key Responsibilities: • Lead threat detection, incident response, and vulnerability management activities • Strengthen cyber security posture across cloud, infrastructure, and applications • Provide … expert guidance to development teams on secure SDLC practices • Maintain compliance with ISO 27001 and Cyber Essentials Plus standards • Mentor junior … analysts and support SOC process development Key Skills & Experience: • Strong technical background in cyber security • Experience with application, cloud (AWS) , and infrastructure security • Proven hands-on experience with EDR / NDR tools , particularly CrowdStrike • Proficient with Linux and databases such as MySQL , PostgreSQL , Apache , and PHP • Knowledge of ISO 27001 , Cyber Essentials , and general security More ❯

the organisation's security posture. You'll collaborate closely with infrastructure, development, and compliance teams to maintain high standards of cyber resilience and uphold key frameworks such as ISO 27001 and Cyber Essentials Plus . Key Responsibilities: * Lead threat detection, incident response, and vulnerability management activities * Strengthen cyber security posture across cloud, infrastructure, and applications * Provide … expert guidance to development teams on secure SDLC practices * Maintain compliance with ISO 27001 and Cyber Essentials Plus standards * Mentor junior … analysts and support SOC process development Key Skills & Experience: * Strong technical background in cyber security * Experience with application, cloud (AWS) , and infrastructure security * Proven hands-on experience with EDR / NDR tools , particularly CrowdStrike * Proficient with Linux and databases such as MySQL , PostgreSQL , Apache , and PHP * Knowledge of ISO 27001 , Cyber Essentials , and general security More ❯

and configure ServiceNow GRC modules including: Policy and Compliance Management Risk Management Vendor Risk Management Customize workflows, dashboards, and reporting structures to align with organizational governance frameworks (e.g., ISO 27001, COBIT). 2. Process Design & Optimization Translate business and compliance requirements into ServiceNow solutions. Develop automated controls, risk, and compliance tracking processes. Streamline manual governance and … leadership visibility. Provide actionable insights into key metrics such as control effectiveness, risk exposure, and policy compliance status. Skills & Qualifications: Strong understanding of risk management frameworks (e.g., NIST, ISO 27001, COBIT). Proven expertise in ServiceNow platform administration and development, particularly GRC modules. In-depth knowledge of governance, risk, and regulatory compliance processes. Experience designing workflows More ❯

and configure ServiceNow GRC modules including: Policy and Compliance Management Risk Management Vendor Risk Management Customize workflows, dashboards, and reporting structures to align with organizational governance frameworks (e.g., ISO 27001, COBIT). 2. Process Design & Optimization Translate business and compliance requirements into ServiceNow solutions. Develop automated controls, risk, and compliance tracking processes. Streamline manual governance and … leadership visibility. Provide actionable insights into key metrics such as control effectiveness, risk exposure, and policy compliance status. Skills & Qualifications: Strong understanding of risk management frameworks (e.g., NIST, ISO 27001, COBIT). Proven expertise in ServiceNow platform administration and development, particularly GRC modules. In-depth knowledge of governance, risk, and regulatory compliance processes. Experience designing workflows More ❯

and configure ServiceNow GRC modules including: Policy and Compliance Management Risk Management Vendor Risk Management Customize workflows, dashboards, and reporting structures to align with organizational governance frameworks (e.g., ISO 27001, COBIT). 2. Process Design & Optimization Translate business and compliance requirements into ServiceNow solutions. Develop automated controls, risk, and compliance tracking processes. Streamline manual governance and … leadership visibility. Provide actionable insights into key metrics such as control effectiveness, risk exposure, and policy compliance status. Skills & Qualifications: Strong understanding of risk management frameworks (e.g., NIST, ISO 27001, COBIT). Proven expertise in ServiceNow platform administration and development, particularly GRC modules. In-depth knowledge of governance, risk, and regulatory compliance processes. Experience designing workflows More ❯

and configure ServiceNow GRC modules including: Policy and Compliance Management Risk Management Vendor Risk Management Customize workflows, dashboards, and reporting structures to align with organizational governance frameworks (e.g., ISO 27001, COBIT). 2. Process Design & Optimization Translate business and compliance requirements into ServiceNow solutions. Develop automated controls, risk, and compliance tracking processes. Streamline manual governance and … leadership visibility. Provide actionable insights into key metrics such as control effectiveness, risk exposure, and policy compliance status. Skills & Qualifications: Strong understanding of risk management frameworks (e.g., NIST, ISO 27001, COBIT). Proven expertise in ServiceNow platform administration and development, particularly GRC modules. In-depth knowledge of governance, risk, and regulatory compliance processes. Experience designing workflows More ❯

and configure ServiceNow GRC modules including: Policy and Compliance Management Risk Management Vendor Risk Management Customize workflows, dashboards, and reporting structures to align with organizational governance frameworks (e.g., ISO 27001, COBIT). 2. Process Design & Optimization Translate business and compliance requirements into ServiceNow solutions. Develop automated controls, risk, and compliance tracking processes. Streamline manual governance and … leadership visibility. Provide actionable insights into key metrics such as control effectiveness, risk exposure, and policy compliance status. Skills & Qualifications: Strong understanding of risk management frameworks (e.g., NIST, ISO 27001, COBIT). Proven expertise in ServiceNow platform administration and development, particularly GRC modules. In-depth knowledge of governance, risk, and regulatory compliance processes. Experience designing workflows More ❯

who thrives in fast-moving, startup-like settings. What You'll Do Design and implement security controls across Kubernetes and OpenShift environments Manage secure configurations, access controls, and CI / CD workflows in GitLab Integrate and protect telemetry tools such as Cribl, Elastic, Splunk, Fluentd, and Syslog Perform threat modelling, vulnerability assessments, and risk analysis for the pipeline Partner … Monitor and respond to security events, maintaining clear documentation and response playbooks What You Bring Hands-on experience with Kubernetes, OpenShift, and secure production systems Strong GitLab and CI / CD security expertise Familiarity with telemetry and observability stacks Solid grasp of networking, firewalls, and core security principles Knowledge of container security tools (Aqua, Twistlock, Trivy) Understanding of frameworks … like NIST or ISO 27001 Excellent analytical and communication skills Bonus Points Certifications such as CISSP, CISM, or CKS Experience building MVPs or working in agile, early-stage environments Cloud security knowledge (AWS, Azure, or GCP) To apply for this role please submit your CV or contact Dillon Blackburn on or at . Tenth Revolution Group More ❯

Platform Engineering: Design, build, and orchestrate modular, declarative data pipelines using dbt , Dagster , and dlt within a Kubernetes-hosted environment . Develop and optimize Delta Lake models in Databricks / Synapse and Azure Data Lake Gen2 , ensuring scalability and ACID compliance. Maintain and enhance existing data pipelines (SQL Server, Azure Data Factory) to support ongoing migration and integration activities. … Implement data quality validation and automated testing through dbt and Dagster frameworks. Embed CI / CD and automation practices for reliable, repeatable pipeline deployments. Build and monitor data observability using Dagster and Grafana to ensure reliability through logging, monitoring, and alerting. Collaborate with the Data Stewardship Guild to maintain lineage, cataloguing, and governance via OpenMetadata. Drive cost optimization, performance … data pipelines. Ensure compliance with ISO 27001 , GDPR , and POWWR’s data governance standards. Reporting & Business Intelligence: Design, build, and maintain data pipelines and ETL / ELT workflows for analytics and reporting. Develop and optimize data models and dashboards in reporting platforms ( Power BI and Tableau ). Deliver high-quality, analytics-ready datasets consumed by More ❯

in designing, delivering projects in payments who is ready to take the next step toward becoming a Security Architect. This is a strategic and hands-on role, split 50 / 50 between engineering and architectural responsibilities, ideal for someone who thrives on solving complex challenges and shaping scalable, secure solutions. What You’ll Bring 5+ years in cybersecurity with … and DevSecOps. Familiarity with NIST, ISO 27001, OWASP, and CIS frameworks. Experience working in a payments environment (PCI compliant) Proficiency in tools like SIEM, IDS / IPS, DLP, IAM, and encryption. Strong communication and stakeholder influence skills. Certifications such as CISSP, CCSP, CISM, or TOGAF are a plus. What You’ll Get Salary up to More ❯

IT Security Engineer Location: Salford / Hybrid (2 days per week) Are you a hands-on Security Engineer ready to lead cyber defence initiatives and shape security strategy? Join us to play a pivotal role in safeguarding our infrastructure, applications, and data. You’ll manage and optimise key tools like CrowdStrike, Microsoft Defender, and Intune, contribute to compliance efforts … Strong understanding of core cybersecurity principles and threat vectors Understanding of risk frameworks such as Cyber Essentials+, ISO 27001, CIS, PCI-DSS Experience with EDR / XDR platforms - Crowdstrike Falcon Proficiency with Microsoft security stack (Defender, Intune, MFA, etc.) Solid grasp of patch management and vulnerability assessment Ability to interpret logs and alerts to assess … threat response Clear communicator with the ability to explain risk to non-technical teams Desirable Skills Familiarity with SIEM tools (e.g. Sentinel, Splunk) Scripting / automation knowledge (e.g. PowerShell, Python) Understanding of data protection and privacy frameworks (e.g. UK GDPR) In return the successful candidate and expect hybrid working 2 days per week on-site and a salary of More ❯

escalation point within the IT function Collaborating with internal teams and external suppliers to maintain compliance and security best practices Supporting audit and compliance activities related to Cyber Essentials, ISO27001 or similar What you’ll need: Proven experience managing IT security or information security functions Strong technical knowledge of Microsoft environments and security controls Experience with incident response, vulnerability management More ❯

home-based working model. As an experienced Cyber Security Architect, you will design, implement and manage security measures to protect the Azure & M365 estates. Cyber Security Architect: Duties Implement / Manage security measures to protect Azure, M365, Cloud Infrastructure & Data Deep knowledge of Azure & M365 security services Ensure security of cloud infrastructure Identify & implement automation opportunities Coordinate / Manage engineering projects Design / Develop / Maintain security architecture … Mentor the engineering function, provide technical leadership Cyber Security Architect: Duties Proven experience with Azure & M365 security tools and technologies Deep knowledge of security frameworks and standards (NIST, CIS, ISO27001) Knowledge of scripting & automation tools (PowerShell, Azure CLI, Azure Logic Apps) Cyber Security Architect: Relevant Certifications Microsoft Cert: Azure Security Engineer Associate Microsoft Cert: Cyber Security Architect Expert certification Microsoft More ❯

Job Title: Information Security Architect - Solutions & Enterprise Security Architecture Location: Manchester Hybrid Working: 50% Remote / 50% Office Leading Financial Services / FinTech are seeking a highly technical and broad Information Security Architect to join their security architecture team. This is a key position responsible for ensuring that the design, delivery, and operation of systems and services meet … design, ensuring the confidentiality, integrity, and availability of corporate systems and data. Define, design, and implement enterprise-grade security controls and reference architectures, aligned with frameworks such as NIST, ISO27001, and CIS. Conduct security design and architecture reviews for technology projects, integrations, and third-party solutions. Lead security assurance for cloud transformation initiatives, promoting best practices such as zero trust … secure design principles, IAM, encryption, API security, and application security. Experience performing threat modelling, security risk assessments, and control design validation. In-depth knowledge of industry standards and frameworks (ISO27001, NIST CSF, PCI DSS, CIS Controls). Minimum of 5 years’ experience in information security roles, ideally within financial services or large-scale digital environments. Professional certifications such as CISSP More ❯

Data Centre Site Manager £450-500 per day Hybrid working 12 months Leading provider of high-performance data infrastructure, powering mission-critical systems for clients across industries-e.g. AI / HPC . With state-of-the-art facilities built for resilience, scalability, and sustainability. Your next role as a Data Centre Site Manager is to lead day-to-day … critical infrastructure environments. Strong knowledge of mechanical and electrical systems (HVAC, UPS, generators, switchgear, BMS, etc.). Excellent problem-solving and incident management capabilities. Working knowledge of ITIL, ISO 27001, or Uptime Institute standards preferred. Ability to interpret technical drawings, operational data, and system logs. Qualifications SMSTS, CSCS Black Card, CITB Construction Site Manager Safety Certificate More ❯

Data Centre Site Manager £450-500 per day Hybrid working 12 months Leading provider of high-performance data infrastructure, powering mission-critical systems for clients across [industries—e.g. AI / HPC]. With state-of-the-art facilities built for resilience, scalability, and sustainability. Your next role as a Data Centre Site Manager is to lead day-to-day … infrastructure environments . Strong knowledge of mechanical and electrical systems (HVAC, UPS, generators, switchgear, BMS, etc.) . Excellent problem-solving and incident management capabilities. Working knowledge of ITIL, ISO 27001, or Uptime Institute standards preferred. Ability to interpret technical drawings, operational data, and system logs. Qualifications SMSTS, CSCS Black Card, CITB Construction Site Manager Safety Certificate More ❯

working in a service critical environment are advantageous. As a DevOps Engineer you will be responsible for ensuring all deployment processes and automation meet regulatory requirements, namely PCI DSS, ISO27001, and Cyber Security Essentials. This will include the introduction of standards to ensure conformity within the PayPoint development and deployment workflows. This role is Hybrid with a requirement to be … onsite at least once a month in Liverpool / Welwyn Garden City. Key responsibilities • Design, build, and maintain CI / CD pipelines using Azure DevOps and GitHub Actions • Implement and manage Infrastructure as Code using Terraform and ARM templates • Configure and maintain monitoring, logging, and alerting solutions for applications and infrastructure • Automate deployment processes across development, staging, and … Security scanning and vulnerability management in pipelines • Performance optimization and capacity planning • Development team productivity through tooling and automation What we would like from you • Strong experience with CI / CD pipeline design and implementation (Azure DevOps, GitHub Actions) • Proficiency in Infrastructure as Code tools, particularly Terraform • Experience with containerization technologies (Docker) and orchestration platforms (Kubernetes) • Strong knowledge of More ❯

to support their operations. The company offers a broad portfolio of services including network, cloud, voice, and security solutions. Description Maintain and enhance compliance with multiple security standards (e.g. ISO27001, PCI, Cyber Essentials). Manage the organisation's Information Security Management System (ISMS). Lead responses to customer security questionnaires and support proposal / audit requests. Deliver internal security … alignment strategies. Support resilience planning and external audit coordination. Contribute to NIST maturity assessments and regulatory readiness. Profile Proven experience in security compliance and stakeholder management. Strong knowledge of ISO27001, PCI DSS, and other relevant standards. Holds certifications such as ISO27001 LA / LI, PCI Implementer, and CISA Additional qualifications like CISSP, CISM, CRISC, or ISO22301 are desirable. Background More ❯

to support their operations. The company offers a broad portfolio of services including network, cloud, voice, and security solutions. Description Maintain and enhance compliance with multiple security standards (e.g. ISO27001, PCI, Cyber Essentials). Manage the organisation's Information Security Management System (ISMS). Lead responses to customer security questionnaires and support proposal / audit requests. Deliver internal security … alignment strategies. Support resilience planning and external audit coordination. Contribute to NIST maturity assessments and regulatory readiness. Profile Proven experience in security compliance and stakeholder management. Strong knowledge of ISO27001, PCI DSS, and other relevant standards. Holds certifications such as ISO27001 LA / LI, PCI Implementer, and CISA Additional qualifications like CISSP, CISM, CRISC, or ISO22301 are desirable. Background More ❯

Security, Governance, Risk and Compliance Manager- £(phone number removed) + Bens – Warrington / Hybrid Over the past ten years, Talos360 has firmly established itself as a market leader in talent software solutions and online recruitment media with our innovations in the HR software space, Talos ATS & Talos Engage solving todays talent challenges. 2024 was a year where our business … compliance is adhered to -Review the Talos360 processes to ensure they add value and contribute to mitigating risks -Overall responsibility for the information, security and management system to maintain ISO27001 compliance and deliver improvements -Supporting internal teams with GDPR compliance and improvements -Defining internal policies and procedures and working with different internal teams to implement -To build effective, supportive relationships … and procedures. - Understanding of Infosec best practice and cybersecurity essentials and an understanding of vulnerability operations such as scanning, and remediation - Experience working with relevant regulations, standards, and requirements (ISO27001, GDPR, DSP Toolkit and Cyber Essentials+) - Ideally experienced with Microsoft Azure or similar - Previous experience within a similar role within a SAAS would be advantageous On offer is a highly More ❯

Head of Infrastructure – Azure | Leadership | Strategy | Cyber Security | Manchester / Hybrid | £85,000 + Bonus + Benefits Location: Manchester / Hybrid (on-site when required) Salary: Up to £85,000 per annum DOE + Bonus + Benefits Start Date: ASAP The Company: Charles Simon Associates are proud to be partnering with a well-established, national organisation to recruit … operations and ensure service excellence across internal teams and 3rd-party vendors. Drive standardisation and optimisation across the IT environment. Maintain and advance Cyber Security compliance (Cyber Essentials Plus, ISO27001). Act as the escalation point for infrastructure and compliance issues. Collaborate with stakeholders across the business on projects and transformation programmes. Remain hands-on where required, supporting Azure, O365 … Microsoft 365, and related cloud technologies. Experienced in leading and developing high-performing teams. Strong stakeholder management and vendor relationship experience. Knowledge of Cyber Security standards (Cyber Essentials Plus, ISO27001). Experience supporting application delivery or development teams is advantageous. What’s On Offer: Salary up to £85,000 per annum (DOE) Bonus + comprehensive benefits package Hybrid working model More ❯

regulations. Provide strategic advice on managing supplier-related risks and compliance gaps. Govern relationships with critical suppliers to ensure alignment with security expectations. Support internal and external audits (e.g. ISO27001, TSA, financial audits). Communicate risks clearly to non-technical stakeholders to support informed decision-making. Monitor and interpret emerging compliance standards and apply them to supplier oversight. Profile Extensive … experience in security risk management, particularly in third-party and supplier contexts. Strong understanding of frameworks such as ISO27001, ISO27005, SOC2, and NIST. Holds certifications such as CISSP, CISM, or CRISC. Telecoms sector experience is a plus. Skilled in stakeholder engagement and translating technical risks into business language. Job Offer Discretionary bonus Private Medical Insurance Max. 6% pension contributed from More ❯