1 to 25 of 46 ISO/IEC 27001 Jobs in the North of England

Cyber Security Consultant (GRC / ISO 27001) Hybrid | South Manchester | £60-70k + bonus An established and growing independent Cyber Security Consultancy is hiring a Cyber Security Consultant to lead client delivery and act as the internal SME across GRC and ISO … Deliver cyber assurance and compliance assessments and guide clients through certification processes Run risk, gap and maturity assessments aligned to recognised frameworks (e.g. NIST / NCSC) Provide senior advisory support (e.g. virtual security leadership / governance support ) Contribute to service improvement, proposal input, and client relationship development What ...

Cyber Essentials certification with strong, hands-on knowledge e.g IASME, CISSP (ISC2) CISM (ISACA), ISO 27001 Lead Auditor, CCP, SIRA / IA Auditor / IA Architect (Practitioner+), CRT, CREST Certified Infrastructure Tester, CSTM, CSTL, EC-Council CPENT / ECSA practical, Offensive Security OSCP … information security threats, risks, and risk assessment methodologies. Working knowledge of relevant standards and frameworks such as Cyber Essentials, GDPR, and ISO / IEC 27001. Strong written and verbal communication skills, with the ability to explain technical issues to non-technical stakeholders. A proactive mindset ...

scaling digital health organisation. Key Responsibilities Quality & Regulatory Leadership Own and maintain the organisation’s Quality Management System (QMS) in line with ISO 13485 Act as the internal lead for the ISO 27001 Information Security Management System (ISMS) Ensure ongoing compliance with HIPAA, DTAC … guidance for non-specialist stakeholders Support leadership with compliance reporting and customer or partner due diligence Key Authorities Authority to coordinate and maintain ISO 13485 and ISO 27001 management systems Authority to coordinate evidence and submissions for DTAC, NHS DSP Toolkit, and Cyber Essentials ...

Role: Customer Support Engineer - DERMS Key Skills: Prior experience supporting DERMS or other OT / IT grid management platforms. Knowledge of GridOS ecosystem and integration with DERMS. Exposure to cybersecurity standards (NERC CIP, ISO 27001, SOC2). Cloud / hybrid deployment experience (Azure … . Certifications such as ITIL, Security+, or utility-specific systems training. Scripting / automation skills (Python, Bash, PowerShell) for operational efficiency Key Responsibilities: Deliver L2 / L3 support for DERMS applications, integrations, and services. Monitor system availability, performance, and data flows between DERMS, grid control systems (SCADA, ADMS ...

Outside IR35, Programme Manager, Yorkshire, Hybrid Working , Fast paced environment, meticulous IT governance background, Cyber Risk Reduction, IT planning, Risk Management, Stakeholder Management, ISO27001 We are looking for a to recruit an IT Programme Manager for a Cyber workstream specifically around Cyber Risk Reduction / ISO27001 is a high … delivery of complex cyber programmes across multiple business units, ensuring all projects within the programme meet agreed time, budget, and quality constraints. ISO 27001 (Information Security Management)- Identifying, tracking, escalating, and mitigating programme-level risks, issues, and interdependencies, and ensuring alignment with regulatory obligations and control ...

Service Manager - ITIL / ITSM - hybrid - £60K Hybrid - 1 day a week in office - Manchester / Huddersfield Are you a proactive IT Service Manager who wants to lead technology service operations and ensure consistent, reliable performance across systems and platforms? In this role, you'll take ownership … hours support coverage. Partner with key stakeholders across Product, Engineering, and Compliance to support audit readiness (ISO 27001 / SOC 2). What you'll need: 5+ years' experience in IT service management, ITSM, ITIL, including awareness of Devops / Strong understanding of ITIL ...

multiple customer environments. Key Responsibilities Conduct cyber security assessments and vulnerability reviews Manage and review penetration testing activities Support clients with Cyber Essentials, ISO 27001, and GDPRcompliance Implement and manage security controls across Microsoft 365 and cloud environments Deploy and operate managed security tools … security within an MSP or multi-client environment Strong understanding of threat detection, incident response, and vulnerability management Hands-on experience securing Microsoft 365 / Azure AD Knowledge of EDR, AV, email security, and network security principles Familiarity with compliance frameworks (Cyber Essentials, ISO 27001 ...

control testing across digital and infrastructure domains Define clear risk appetite metrics and KRIs for technology and operational resilience Ensure alignment with PRA / FCA expectations and relevant ISO / NIST standards Operational Resilience & Change Risk Oversee resilience across critical services and digital platforms Provide oversight … regulated environment Deep understanding of enterprise risk tools (RCSAs, KRIs, control frameworks) Experience overseeing infrastructure, cloud, digitisation and legacy transformation risk Knowledge of PRA / FCA regulatory expectations and operational resilience requirements Familiarity with ISO 27001, NIST and related control frameworks Ability to challenge ...

engaged alongside management responsibilities Experience managing infrastructure strategy, service desk operations, and suppliers Solid networking and systems knowledge (e.g. Cisco technologies, Windows Server, M365 / Entra ID) We’d love to see any of the following certifications although not essential: Azure Administrator or Architect (AZ-104 / AZ-305) or equivalent AWS certification ITIL v4 Foundation Cyber Essentials / ISO 27001 exposure CCNA or similar networking certification If you’re an Infrastructure Leader ready to take ownership of a complex, evolving environment and drive meaningful change, we would love to hear ...

hands-on technical leadership to protect our digital environment, reduce risk, and ensure robust preparedness against emerging threats. This is a hybrid role – 1 / 2 days a week in York. About the Role As the organisation’s senior cyber security authority, you will shape long-term security strategy … Cyber Essentials, GDPR, etc.). Hands-on experience with cyber tools (SIEM, firewalls, EDR, MFA, encryption) and incident response. Experience leading or supporting DR / BCP activities and security investigations. Ability to assess and communicate risks, influence decisions, and brief senior leaders. Experience with risk registers, governance, and compliance. ...

Outside IR35, Programme Manager, Yorkshire, Hybrid Working , Fast paced environment, meticulous IT governance background, Cyber Risk Reduction, IT planning, Risk Management, Stakeholder Management, ISO27001 We are looking for a to recruit an IT Programme Manager for a Cyber workstream specifically around Cyber Risk Reduction / ISO27001 is a high ...

Atom’s AI team with AI and Automation specific infrastructure security needs. Partner with DevOps and engineering teams to integrate security into the CI / CD pipeline, and work cross-functionally with other teams to ensure shared understanding of security goals. What do we need from you? Deep expertise … securing cloud platforms (AWS, Azure, GCP) with a focus on financial services Proven experience with tools like SIEM, SOAR, IDS / IPS, and cloud-native security solutions Strong understanding of encryption protocols, key management systems, and IAM best practices Hands-on experience with container security tools for Kubernetes ...

Title: Cyber Security Analyst - ISO27001 or NIST Experience Location: Lake District (Hybrid) Salary: £45,000 to £50,000 Benefits: Generous Pension, Great Annual Leave, Life Cover This is a fantastic opportunity to join a well-established, future-focused, and growing company that is going through a major digital transformation programme. … this role will focus on a long-term project to comply with the NIST cyber security framework. As the framework is so similar to ISO27001 they are happy to look at an ISO 27001 auditor that is looking to broaden their skills and experience. Other areas ...

with industry security standards and best practices (e.g., ISO 27001, NIST, GDPR). Implement and maintain firewall policies, intrusion detection / prevention systems (IDS / IPS), and security patching. Perform regular security audits and vulnerability assessments on hosted infrastructure. Operational Support & Documentation: Provide … Proficient in Windows Server operating systems (Windows Server 2012, 2016, 2019) VMWare expertise: vSphere, ESXi, NSX, vSAN, Horizon, and related technologies. Networking knowledge: TCP / IP, VLANs, VPNs, BGP, OSPF, DNS, DHCP. Firewall and security solutions: Fortinet, Palo Alto, Cisco ASA (Bonus points for ISE!), or similar. Storage solutions ...

Practice Group / Department: IT Security Job Description We're Norton Rose Fulbright - a global law firm with over 50 offices and 7,000 employees worldwide. We provide the world’s preeminent corporations and financial institutions with a full business law service. At Norton Rose Fulbright, our strategy … Python) and SOAR platforms to streamline incident response, automate repetitive tasks, and enhance overall security operations. Strong knowledge of security technologies (e.g., firewalls, IDS / IPS, EDR, SIEM) Technical bachelor’s degree or equivalent IT / Information Security experience (required) Security-related certification e.g. CompTIA Security+, GSEC, CISSP ...

Site Reliability Engineer / SRE / Systems Engineer A fantastic opportunity for a Site Reliability Engineer / Systems Engineer to support highly available, scalable production systems within a fast-growing technology environment, working across cloud platforms, DevOps, networking and operational resilience. If youve also worked … Experience within ISP, MSP or telecommunications environments Familiarity with enterprise IT architectures including OSS and BSS systems Knowledge of information security frameworks such as ISO27001, NIST or GDPR Experience with infrastructure automation tools such as Terraform or Ansible BENEFITS Smart casual dress code Free access to gym facilities Access ...

CYBER SECURITY ENGINEER Up to £70,000 / Bonus + Excellent Staff Benefits Strong Career Growth Opportunities 2 Days Onsite / 3 Days Remote SECURE has Strategically Partnered with a Multi-Award-Winning Technology Organisation. As one of the UKs Largest Independent Software Based Businesss, they … Azure, AWS & Office 365), Automation Tools & Scripting Languages (Python, Java, PowerShell). Strong Knowledge of ITIL Principles & Security Governance Frameworks (such as ISO 27001, NIST, PCI DSS, CIS Controls). Responsibilities of Cyber Security Engineer will include: Deploy & Oversee Security Tools & Technologies to effectively protect ...

risks — including AI, data, cybersecurity and cloud transformation. You’ll play a central role in ensuring digital initiatives are well-controlled, compliant with PRA / FCA expectations, and aligned to risk appetite.This role would suit someone who is genuinely tech-minded, able to get to the root cause … line oversight across digital, AI, cyber and cloud risks Lead end-to-end risk assessments (RCSAs, control testing, deep-dives) Oversee governance around AI / model risk and data ethics Partner with Technology and Security teams to challenge control environments Support regulatory reporting (including ORSA) Ensure alignment with ...

Leeds office 3 days a week. What You'll Do Design, build, and maintain cloud infrastructure on AWS using Terraform Develop and operate CI / CD pipelines using GitHub Actions Manage Kubernetes deployments and application delivery with Argo CD (GitOps) Build and maintain platform tooling that improves developer experience … everything, but experience in several of these is expected: Cloud: AWS (EKS, IAM, VPC, EC2, S3, Security Hub, Inspector) Infrastructure as Code: Terraform CI / CD: GitHub Actions GitOps / CD: Argo CD Containers & Orchestration: Docker, Kubernetes Monitoring & Logging: Elastic (ELK / Elastic Observability) Security: Trivy ...

governance use cases Integrate APIs with authentication and token services using OAuth2, OIDC, JWT, and federation standards Develop event-driven architectures using Pub / Sub to support asynchronous identity and access workflows Build cloud-native services using Cloud Run, Cloud Functions, GKE , or containerised workloads Implement Infrastructure as Code … using Terraform for IAM, APIs, Pub / Sub topics, and permissions Support CI / CD pipelines, automated testing, and validation of IAM policies and API behaviour Troubleshoot identity, access, and API issues across distributed systems Collaborate with security teams on audits, compliance, and incident investigations Produce clear technical ...

Systems Administrator / Developer Hull - Office based Do you enjoy owning IT systems end to end rather than just firefighting tickets? Are you comfortable switching between infrastructure support and hands-on development work? Looking for a stable, office-based role where your technical input actually matters? What … group policies Supporting and improving the IT service desk function Producing reports and working with ERP systems Maintaining documentation, IT policies and security standards (ISO27001 / Cyber Essentials) Supporting new starters with system access and inductions Where you'll be doing it You'll be joining a UK-based ...

hybrid infrastructure. Support secure configuration, IAM, cloud environments, patch management, and application security testing. Ensure compliance with standards such as Cyber Essentials, ISO 27001, SOC 2, and GDPR. Play a key role during high-pressure incidents, managing both technical resolution and stakeholder communication. Participate ...

along with physical security control measures and industry best practice Exposure to recognised cyber security frameworks and standards, such as NCSC CAF, NIST, ISO 2700x series and CIS Relevant certifications in Information or Physical Security Management (e.g. PSP, CRISC, CISSP) ISO 27001 audit experience ...

Databases Designing and maintaining Veeam backup and recovery solutions Managing SQL Server backup, maintenance, and redundancy Regularly testing disaster recovery processes Security & Compliance Supporting ISO27001, Cyber Essentials Plus, and PCI compliance Carrying out vulnerability scanning and remediation Maintaining system security through patching, hardening, encryption, and certificate management Managing email security ...

investigations best practice including the use of Microsoft Purview and computer forensics an advantage. Experience of utilising and monitoring Information Security solutions e.g. email / web gateways, SIEM, Endpoint protection etc. Strong awareness of Cloud services and supporting security solutions & standards. Good understanding of cloud native and devops practices … point security tools and data loss prevention systems also highly advantageous Experience working within recognised Information Security frameworks and best practices such as ISO27001, NIST etc. Knowledge of relevant regulatory requirements (e.g. GDPR / FCA / PRA) Experience in an Information Security role gained in a financial services ...