1 to 25 of 26 Remote/Hybrid ISO/IEC 27001 Jobs in the North of England

Cyber Security Consultant (GRC / ISO 27001) Hybrid | South Manchester | £60-70k + bonus An established and growing independent Cyber Security Consultancy is hiring a Cyber Security Consultant to lead client delivery and act as the internal SME across GRC and ISO … Deliver cyber assurance and compliance assessments and guide clients through certification processes Run risk, gap and maturity assessments aligned to recognised frameworks (e.g. NIST / NCSC) Provide senior advisory support (e.g. virtual security leadership / governance support ) Contribute to service improvement, proposal input, and client relationship development What ...

scaling digital health organisation. Key Responsibilities Quality & Regulatory Leadership Own and maintain the organisation’s Quality Management System (QMS) in line with ISO 13485 Act as the internal lead for the ISO 27001 Information Security Management System (ISMS) Ensure ongoing compliance with HIPAA, DTAC … guidance for non-specialist stakeholders Support leadership with compliance reporting and customer or partner due diligence Key Authorities Authority to coordinate and maintain ISO 13485 and ISO 27001 management systems Authority to coordinate evidence and submissions for DTAC, NHS DSP Toolkit, and Cyber Essentials ...

Outside IR35, Programme Manager, Yorkshire, Hybrid Working , Fast paced environment, meticulous IT governance background, Cyber Risk Reduction, IT planning, Risk Management, Stakeholder Management, ISO27001 We are looking for a to recruit an IT Programme Manager for a Cyber workstream specifically around Cyber Risk Reduction / ISO27001 is a high … delivery of complex cyber programmes across multiple business units, ensuring all projects within the programme meet agreed time, budget, and quality constraints. ISO 27001 (Information Security Management)- Identifying, tracking, escalating, and mitigating programme-level risks, issues, and interdependencies, and ensuring alignment with regulatory obligations and control ...

Service Manager - ITIL / ITSM - hybrid - £60K Hybrid - 1 day a week in office - Manchester / Huddersfield Are you a proactive IT Service Manager who wants to lead technology service operations and ensure consistent, reliable performance across systems and platforms? In this role, you'll take ownership … hours support coverage. Partner with key stakeholders across Product, Engineering, and Compliance to support audit readiness (ISO 27001 / SOC 2). What you'll need: 5+ years' experience in IT service management, ITSM, ITIL, including awareness of Devops / Strong understanding of ITIL ...

control testing across digital and infrastructure domains Define clear risk appetite metrics and KRIs for technology and operational resilience Ensure alignment with PRA / FCA expectations and relevant ISO / NIST standards Operational Resilience & Change Risk Oversee resilience across critical services and digital platforms Provide oversight … regulated environment Deep understanding of enterprise risk tools (RCSAs, KRIs, control frameworks) Experience overseeing infrastructure, cloud, digitisation and legacy transformation risk Knowledge of PRA / FCA regulatory expectations and operational resilience requirements Familiarity with ISO 27001, NIST and related control frameworks Ability to challenge ...

Outside IR35, Programme Manager, Yorkshire, Hybrid Working , Fast paced environment, meticulous IT governance background, Cyber Risk Reduction, IT planning, Risk Management, Stakeholder Management, ISO27001 We are looking for a to recruit an IT Programme Manager for a Cyber workstream specifically around Cyber Risk Reduction / ISO27001 is a high ...

Atom’s AI team with AI and Automation specific infrastructure security needs. Partner with DevOps and engineering teams to integrate security into the CI / CD pipeline, and work cross-functionally with other teams to ensure shared understanding of security goals. What do we need from you? Deep expertise … securing cloud platforms (AWS, Azure, GCP) with a focus on financial services Proven experience with tools like SIEM, SOAR, IDS / IPS, and cloud-native security solutions Strong understanding of encryption protocols, key management systems, and IAM best practices Hands-on experience with container security tools for Kubernetes ...

Title: Cyber Security Analyst - ISO27001 or NIST Experience Location: Lake District (Hybrid) Salary: £45,000 to £50,000 Benefits: Generous Pension, Great Annual Leave, Life Cover This is a fantastic opportunity to join a well-established, future-focused, and growing company that is going through a major digital transformation programme. … this role will focus on a long-term project to comply with the NIST cyber security framework. As the framework is so similar to ISO27001 they are happy to look at an ISO 27001 auditor that is looking to broaden their skills and experience. Other areas ...

with industry security standards and best practices (e.g., ISO 27001, NIST, GDPR). Implement and maintain firewall policies, intrusion detection / prevention systems (IDS / IPS), and security patching. Perform regular security audits and vulnerability assessments on hosted infrastructure. Operational Support & Documentation: Provide … Proficient in Windows Server operating systems (Windows Server 2012, 2016, 2019) VMWare expertise: vSphere, ESXi, NSX, vSAN, Horizon, and related technologies. Networking knowledge: TCP / IP, VLANs, VPNs, BGP, OSPF, DNS, DHCP. Firewall and security solutions: Fortinet, Palo Alto, Cisco ASA (Bonus points for ISE!), or similar. Storage solutions ...

Site Reliability Engineer / SRE / Systems Engineer A fantastic opportunity for a Site Reliability Engineer / Systems Engineer to support highly available, scalable production systems within a fast-growing technology environment, working across cloud platforms, DevOps, networking and operational resilience. If youve also worked … Experience within ISP, MSP or telecommunications environments Familiarity with enterprise IT architectures including OSS and BSS systems Knowledge of information security frameworks such as ISO27001, NIST or GDPR Experience with infrastructure automation tools such as Terraform or Ansible BENEFITS Smart casual dress code Free access to gym facilities Access ...

mobile platforms, this is an exciting opportunity to contribute to projects that truly make a difference.Your new role We are seeking a Documentation Controller / SharePoint Specialist to take ownership of our large-scale Healthcare system, and manage SharePoint solutions across the business. In this role, you will: Manage … verbal communication skills, with the ability to translate technical information into clear, user-friendly language. Hands-on experience with SharePoint Online and SharePoint 2016 / 2019, plus a solid understanding of SharePoint architecture. Technical skills, with the ability to read and interpret code. Knowledge of ISO documentation ...

Leeds office 3 days a week. What You'll Do Design, build, and maintain cloud infrastructure on AWS using Terraform Develop and operate CI / CD pipelines using GitHub Actions Manage Kubernetes deployments and application delivery with Argo CD (GitOps) Build and maintain platform tooling that improves developer experience … everything, but experience in several of these is expected: Cloud: AWS (EKS, IAM, VPC, EC2, S3, Security Hub, Inspector) Infrastructure as Code: Terraform CI / CD: GitHub Actions GitOps / CD: Argo CD Containers & Orchestration: Docker, Kubernetes Monitoring & Logging: Elastic (ELK / Elastic Observability) Security: Trivy ...

governance use cases Integrate APIs with authentication and token services using OAuth2, OIDC, JWT, and federation standards Develop event-driven architectures using Pub / Sub to support asynchronous identity and access workflows Build cloud-native services using Cloud Run, Cloud Functions, GKE , or containerised workloads Implement Infrastructure as Code … using Terraform for IAM, APIs, Pub / Sub topics, and permissions Support CI / CD pipelines, automated testing, and validation of IAM policies and API behaviour Troubleshoot identity, access, and API issues across distributed systems Collaborate with security teams on audits, compliance, and incident investigations Produce clear technical ...

along with physical security control measures and industry best practice Exposure to recognised cyber security frameworks and standards, such as NCSC CAF, NIST, ISO 2700x series and CIS Relevant certifications in Information or Physical Security Management (e.g. PSP, CRISC, CISSP) ISO 27001 audit experience ...

Databases Designing and maintaining Veeam backup and recovery solutions Managing SQL Server backup, maintenance, and redundancy Regularly testing disaster recovery processes Security & Compliance Supporting ISO27001, Cyber Essentials Plus, and PCI compliance Carrying out vulnerability scanning and remediation Maintaining system security through patching, hardening, encryption, and certificate management Managing email security ...

investigations best practice including the use of Microsoft Purview and computer forensics an advantage. Experience of utilising and monitoring Information Security solutions e.g. email / web gateways, SIEM, Endpoint protection etc. Strong awareness of Cloud services and supporting security solutions & standards. Good understanding of cloud native and devops practices … point security tools and data loss prevention systems also highly advantageous Experience working within recognised Information Security frameworks and best practices such as ISO27001, NIST etc. Knowledge of relevant regulatory requirements (e.g. GDPR / FCA / PRA) Experience in an Information Security role gained in a financial services ...

Security Assurance function and present findings to key stakeholders. Candidates must hold one of the following certs - CISM , CRISC , CISSP , CISA , CGEIT , or ISO 27001 Lead Auditor Due to the nature of the role a Security clearance is required. ...

Information Security control standards and frameworks Awareness and understanding of the Information Security threat landscape Deep understanding of Information Security solutions e.g. email / web gateways, Privileged Account Management (PAM), Identity Governance and Administration (IGA), Security Information and Event Management (SIEM), Endpoint protection etc. Knowledge / experience working … security solutions and standards is highly advantageous Competence, knowledge and skills Competence Experience working within recognised Information Security frameworks and best practices such as ISO27001, NIST etc. 5 years experience in an Information Security role gained in a financial services or e-commerce environment is preferred Knowledge & Skills Significant experience ...

Security Governance & Compliance (20%) Act as razorblues subject matter expert on cybersecurity best practice. Align all solution designs with frameworks such as Cyber Essentials, ISO27001, and NCSC guidelines. Conduct internal and client-facing security reviews, readiness assessments, and recommendations. Maintain current penetration testing qualifications to support Cyber Essentials Plus assessments. … hold Full UK Driving Licence At least one relevant IASME recognised qualification CREST Registered Tester (CRT) Offensive Security Certified Professional (OSCP) CHECK Team Member / Team Leader Relevant infrastructure qualifications Experience Microsoft Stack experience including Microsoft 365 experience Windows Server installation & configuration Virtualisation Vulnerability Scanning tools such as Qualys ...

function while building out new AI and automation capabilities. This is a brand-new position sitting across both the Security team and the AI / Automation team , giving you a genuine opportunity to become their go-to specialist for security within AI and cloud platforms . What makes this … incident response within cloud environments. Help mature vulnerability management processes and security playbooks. Compliance & Risk Ensure cloud services align with recognised frameworks (e.g. ISO27001, SOC2, PCI, GDPR). Assist with risk assessments for new systems, cloud services, and third-party integrations. Cross-Team Collaboration Act as the bridge between ...

role in an MSP environment, focused on practical remediation and customer outcomes. The ideal candidate will have strong experience across Windows Server, Microsoft 365 / Azure, and modern security technologies, and will be comfortable switching between customer meetings, technical design sessions, and hands-on engineering work when required. … secure baselines, hardening standards, and repeatable remediation approaches. Security Standards & Assurance (40%) Support clients with security improvements aligned to frameworks such as Cyber Essentials, ISO27001 principles, and NCSC guidance. Contribute to internal and client-facing security reviews, readiness assessments, and improvement recommendations. Ensure designs and delivered solutions follow secure baseline ...

role in an MSP environment, focused on practical remediation and customer outcomes. The ideal candidate will have strong experience across Windows Server, Microsoft 365 / Azure, and modern security technologies, and will be comfortable switching between customer meetings, technical design sessions, and hands-on engineering work when required. … secure baselines, hardening standards, and repeatable remediation approaches. Security Standards & Assurance (40%) Support clients with security improvements aligned to frameworks such as Cyber Essentials, ISO27001 principles, and NCSC guidance. Contribute to internal and client-facing security reviews, readiness assessments, and improvement recommendations. Ensure designs and delivered solutions follow secure baseline ...

techniques Experience of security governance and compliance, ideally gained in financial services organisations Demonstrable understanding of Information Security control standards and frameworks e.g. ISO27001, NIST, PCI DSS Awareness and understanding of the Information Security threat landscape Deep understanding of Information Security solutions and controls Experience of Cloud security solutions … standards is highly advantageous Competence, knowledge, and skills Competence Experience working within recognised Information Security frameworks and best practices such as ISO27001, NIST etc. 5 years experience in an Information Security role gained in a financial services or e-commerce environment is preferred Knowledge & Skills Excellent communicator, able to translate ...

function while building out new AI and automation capabilities. This is a brand-new position sitting across both the Security team and the AI / Automation team , giving you a genuine opportunity to become their go-to specialist for security within AI and cloud platforms . What makes this … incident response within cloud environments. Help mature vulnerability management processes and security playbooks. Compliance & Risk Ensure cloud services align with recognised frameworks (e.g. ISO27001, SOC2, PCI, GDPR). Assist with risk assessments for new systems, cloud services, and third-party integrations. Cross-Team Collaboration Act as the bridge between ...

formats such as REST, WebSockets, SOAP, JSON and SQL Experience operating within DevOps environments and agile delivery models Experience using source control and CI / CD tools such as GitHub Experience with containerisation technologies, including Docker Experience working with cloud platforms, particularly Google Cloud Platform Working knowledge of Windows … secure coding practices and application security principles DESIRABLE Experience with enterprise IT architectures and business support systems Knowledge of information security frameworks such as ISO27001, NIST or GDPR Experience within ISP, MSP or telecommunications environments BENEFITS Smart casual dress code Free access to gym facilities Access to a financial wellbeing ...