1 to 25 of 29 Remote ISO/IEC 27001 Jobs in Scotland

a current opportunity for a Senior InfoSec Advisor (IRM Manager) on a 12 month PAYE contract basis. The position will be based in Aberdeen and will have a 3 / 2 hybrid working pattern Key ResponsibilitiesRisk Assessment & Secure by Design Perform structured IT and information security risk assessments and threat modelling for new IT platforms, systems, and applications and … for material changes. Provide security architecture advice (patterns, guardrails) aligned to NIST CSF / ISO 27001 and company standards. Define and agree control selection (prevent / detect / correct) proportionate to risk, including identity, data and platform controls. Conduct IT control walkthroughs to validate design and operating effectiveness; document evidence and issues. LOD2 … systems; define test scopes, frequency and metrics. Track high-risk deviations and risk acceptances; drive remediation and report residual risk to the CISO, CIO and business risk owners. OT / ICS Security Own the LOD2 assurance plan across OT sites against the OT security standard, deciding the order and frequency of assessments aligned to risk and risk appetite. Provide More ❯

a current opportunity for a Senior InfoSec Advisor (IRM Manager) on a 12 month PAYE contract basis. The position will be based in Aberdeen and will have a 3 / 2 hybrid working pattern Key ResponsibilitiesRisk Assessment & Secure by Design Perform structured IT and information security risk assessments and threat modelling for new IT platforms, systems, and applications and … for material changes. Provide security architecture advice (patterns, guardrails) aligned to NIST CSF / ISO 27001 and company standards. Define and agree control selection (prevent / detect / correct) proportionate to risk, including identity, data and platform controls. Conduct IT control walkthroughs to validate design and operating effectiveness; document evidence and issues. LOD2 … systems; define test scopes, frequency and metrics. Track high-risk deviations and risk acceptances; drive remediation and report residual risk to the CISO, CIO and business risk owners. OT / ICS Security Own the LOD2 assurance plan across OT sites against the OT security standard, deciding the order and frequency of assessments aligned to risk and risk appetite. Provide More ❯

enterprise architecture standards for security, sustainability, and cost optimization. Implementation & Migration Lead end-to-end migration from Legacy platforms (Avaya, Cisco, Genesys) to Amazon Connect. Design and implement IVR / contact flows, Lex conversational bots, Contact Lens analytics, and agent assist capabilities. Integration & Ecosystem Architect integrations with CRM / ITSM platforms (Salesforce, ServiceNow, Dynamics, Pega), WFM / … analytics pipelines using AWS services (Lambda, EventBridge, Kinesis, Glue, Athena). Security, Compliance & Governance Implement IAM, KMS encryption, VPC networking, and PrivateLink for secure connectivity. Ensure compliance with GDPR / UK GDPR, PCI-DSS, ISO 27001, and sector-specific standards (eg, NHS DSP Toolkit, HIPAA). Define data retention policies, PIA / DPIA frameworks … and lawful intercept / emergency call handling. DevOps & Automation Establish CI / CD pipelines for flows, Lambda, Lex bots, and infrastructure using CloudFormation / Terraform / CDK. Implement automated testing and version control for safe, repeatable deployments. Operational Excellence Define KPIs / SLAs (AHT, CSAT / NPS, abandonment rates) and build Real Time dashboards More ❯

enterprise standards for security, cost efficiency, and operational sustainability. Implementation & Migration Lead full-scale migrations from legacy platforms (e.g., Avaya, Cisco, Genesys) to AWS Connect. Design and deploy IVR / contact flows, Amazon Lex conversational bots, analytics tools, and agent support solutions. Integration & Ecosystem Development Architect seamless integrations with CRM and ITSM platforms (Salesforce, ServiceNow, Dynamics, Pega), WFM / … PCI-DSS, ISO 27001, and industry-specific standards. Develop data retention policies, privacy impact frameworks, and procedures for emergency call handling. DevOps & Automation Establish CI / CD pipelines for Lambda, Lex bots, contact flows, and infrastructure using CloudFormation, Terraform, or CDK. Introduce automated testing, version control, and repeatable deployment practices. Operational Leadership Monitor KPIs / SLAs including AHT, CSAT / NPS, and abandonment rates via dashboards. Drive capacity planning, incident management, and continuous service improvement initiatives. Stakeholder & Governance Engagement Facilitate executive-level workshops, translating business needs into technical roadmaps. Prepare TCO / ROI analyses, investment cases, and maintain audit-ready documentation. Required Experience & Skills 15+ years in architecture or engineering roles, including More ❯

infrastructure, and applications. ** Evaluate projects and initiatives for security risks, recommending appropriate mitigation and controls. ** Develop and maintain security frameworks and standards aligned to recognised best practice (e.g. ISO 27001, NIST, CIS). ** Ensure compliance with client and regulatory security obligations across all platforms and services. ** Collaborate with IT, Security Operations, and Risk teams to ensure … background in information security architecture and governance across enterprise environments. ** Expertise with Azure and Microsoft 365 security tooling and cloud security principles. ** Strong understanding of frameworks such as ISO 27001, NIST, and the Well Architected Framework. ** Experience with technologies such as SIEM, DLP, IAM, EDR, WAF, and SASE. ** Ability to communicate complex technical concepts to both More ❯

following: Strong understanding of IT, Security, and operational resilience in large organisations Proven experience with information security controls and standards (e.g. COBIT, NIST, ISO 27001 / 2) Demonstrable knowledge of Enterprise Risk Management in a technical setting Experience delivering assurance activities, including control testing Excellent communication, influencing and negotiation skills Ability to manage multiple priorities More ❯

Role: - Solution Architect (Amazon Connect Architect) Location: Glasgow, UK (Hybrid) (3 Days onsite in a week is Mandatory) Duration: Both Contract & Permanent position Required Qualifications:- 15+ years in architecture / engineering, 10+ years in contact centre technologies, 5+ years with Amazon Connect. Proven delivery of enterprise-scale Amazon Connect implementations with complex integrations. Expertise in AWS services: IAM, VPC … Kinesis, CloudWatch, DynamoDB. Strong knowledge of security and compliance frameworks (GDPR, PCI-DSS, ISO 27001, NHS DSP Toolkit). Hands-on experience with IaC (CloudFormation / Terraform / CDK) and serverless development (Node.js / Python). Preferred Qualifications:- AWS Solutions Architect Professional and Amazon Connect specialization. Experience with Contact Lens, Wisdom / Q in Connect, Voice ID, and outbound campaigns. Sector experience in healthcare / public sector or regulated industries. Familiarity with SIP, telephony routing, and Ofcom regulations. Success Metrics:- Delivery of secure, compliant architecture aligned to global regulatory standards. Achieve 99.99% availability, measurable improvements in CSAT / NPS, and reduced AHT. Full migration from legacy platforms within agreed More ❯

Data Architect / Security page is loaded Data Architect / Securitylocations: GB.United Kingdom: CHE.Baden 5400.Nordhaus 3time type: Full timeposted on: Posted 2 Days Agojob requisition id: R-141464 Job Description Job Title: Data Architect / Security Location: UK or Switzerland Join Us Lead enterprise-wide data architecture strategy and governance: • Define and manage data architecture across SAP … S / 4HANA, Workday, and cloud environments.• Develop conceptual, logical, and physical data models aligned with business and regulatory requirements.• Establish data governance frameworks, metadata standards, and MDM processes.• Embed governance checkpoints within PMO methodologies and quality gates.• Lead data lifecycle management initiatives ensuring accuracy and traceability.Architect secure and scalable data integration solutions:• Design end-to-end data flows … between legacy systems, S / 4HANA, and cloud platforms (Azure, AWS, GCP).• Oversee data migration strategies ensuring quality, validation, and audit readiness.• Collaborate with SAP BTP and integration teams to optimise secure interfaces.• Support analytics enablement across SAC, Power BI, and advanced analytics platforms.• Evaluate emerging technologies (e.g., data mesh, AI / ML) to enhance architecture.Champion data More ❯

if you have: Live in Edinburgh or are within commutable distance Solid experience in DevOps and Platform Engineering Git and version control workflows Security engineering tools and practices: SAST / DAST tools (Checkmarx, Veracode, SonarQube) Container security (Aqua, Snyk, Anchore) Programming and scripting languages (Python, Go, YAML, JSON etc.) A background in financial services or similar regulated industries. Familiarity … with compliance frameworks, and security requirements (e.g., ISO 27001, SOC 2, SOX, PCI DSS, FedRAMP, FFIEC, NYDFS, and SEC compliance requirements) A track record in consulting, solutions architecture, or technical coaching. Interest in technical … sales and supporting go-to-market strategies. Excellent written and verbal communication skills, with the ability to translate complex technical topics to both technical and non-technical stakeholders. AWS / Azure / GCP certifications, CISSP, CISM, or other security certifications are a plus Generous equity plan. Remote-first working environment with travel to our Oslo office and customer More ❯

key for this role, make sure to check you have the preferable soft skills before applying if required. 5 Month Contract (extendable) Hybrid - 3 days per week in Glasgow / 2 days remote Role Overview: We are seeking a highly capable Security Engineer to join a focused team developing a telemetry pipeline MVP. This role requires deep technical expertise … and development teams. Key Responsibilities: Design and implement security controls across containerized environments using Kubernetes and OpenShift Ensure secure configuration and access management within GitLab version control and CI / CD pipelines Integrate and secure telemetry tools including Cribl, Elastic, Splunk, Fluentd, and Syslog Conduct threat modeling, vulnerability assessments, and risk analysis for the telemetry pipeline Collaborate with DevOps … of security architecture, policies, and incident response procedures Required Skills & Experience: Strong hands-on experience with Kubernetes and OpenShift in secure production environments Proficiency in GitLab and secure CI / CD pipeline practices Familiarity with telemetry and logging tools: Cribl, Elastic, Splunk, Fluentd, and Syslog Deep understanding of networking protocols, firewalls, VPNs, and security principles Experience with security frameworks More ❯

information and cloud security, particularly Azure and Microsoft 365 . Hands-on experience with SIEM, DLP, IAM, EDR, WAF, and SASE tools. Solid understanding of frameworks such as ISO 27001, NIST, CIS, and the Well-Architected Framework . Relevant qualifications such as CISA, CISM, SABSA, or TOGAF (preferred). Excellent communicator who can translate complex security More ❯

information and cloud security, particularly Azure and Microsoft 365 . Hands-on experience with SIEM, DLP, IAM, EDR, WAF, and SASE tools. Solid understanding of frameworks such as ISO 27001, NIST, CIS, and the Well-Architected Framework . Relevant qualifications such as CISA, CISM, SABSA, or TOGAF (preferred). Excellent communicator who can translate complex security More ❯

information and cloud security, particularly Azure and Microsoft 365 . Hands-on experience with SIEM, DLP, IAM, EDR, WAF, and SASE tools. Solid understanding of frameworks such as ISO 27001, NIST, CIS, and the Well-Architected Framework . Relevant qualifications such as CISA, CISM, SABSA, or TOGAF (preferred). Excellent communicator who can translate complex security More ❯

analysis, and performance optimisation. Maintain internal documentation, CMDB entries, and knowledgebase articles. Collaborate with cybersecurity teams to enhance cloud security posture. Apply and maintain Azure security policies aligned with ISO27001, NIST, CIS, Essential 8 and Cyber Essentials Plus. Provide guidance and training to colleagues transitioning from on-premise infrastructure roles Technical skills: Extensive hands-on experience supporting Azure Cloud environments More ❯

analysis, and performance optimisation. Maintain internal documentation, CMDB entries, and knowledgebase articles. Collaborate with cybersecurity teams to enhance cloud security posture. Apply and maintain Azure security policies aligned with ISO27001, NIST, CIS, Essential 8 and Cyber Essentials Plus. Provide guidance and training to colleagues transitioning from on-premise infrastructure roles Technical skills: Extensive hands-on experience supporting Azure Cloud environments More ❯

analysis, and performance optimisation. Maintain internal documentation, CMDB entries, and knowledgebase articles. Collaborate with cybersecurity teams to enhance cloud security posture. Apply and maintain Azure security policies aligned with ISO27001, NIST, CIS, Essential 8 and Cyber Essentials Plus. Provide guidance and training to colleagues transitioning from on-premise infrastructure roles Technical skills: Extensive hands-on experience supporting Azure Cloud environments More ❯

technical background across Microsoft technologies, networking, and unified communications. ** Experience with telephony platforms (e.g. Avaya, Cisco, Genesys, or similar) would be highly advantageous. ** Sound understanding of cybersecurity standards, including ISO27001, PCI, and Cyber Essentials Plus. ** Excellent supplier management and contract governance experience. ** Strong communicator and influencer, comfortable engaging at all levels of the organisation. What's on Offer: The salary More ❯

technical background across Microsoft technologies, networking, and unified communications. ** Experience with telephony platforms (e.g. Avaya, Cisco, Genesys, or similar) would be highly advantageous. ** Sound understanding of cybersecurity standards, including ISO27001, PCI, and Cyber Essentials Plus. ** Excellent supplier management and contract governance experience. ** Strong communicator and influencer, comfortable engaging at all levels of the organisation. What's on Offer: The salary More ❯

approach to problem-solving. You’ll be comfortable working in a fast-paced environment and keen to develop your skills further. Essential Skills: Strong troubleshooting skills with Windows 10 / 11. Experience with Microsoft 365 and Azure Active Directory. Understanding of networking fundamentals (DNS, DHCP, IP routing). Ability to support a 200+ user environment both onsite and remotely. … Excellent communication and documentation skills. Desirable Skills: Microsoft 365 / Azure administration. Windows Server 2016–2022. NAS / SAN storage management. Mobile device support (Android / iOS). Backup and replication tools (e.g., Veeam). Awareness of Cyber Essentials or ISO27001. Interest or experience in cyber security or risk management. What’s On Offer Salary up to More ❯

approach to problem-solving. You ll be comfortable working in a fast-paced environment and keen to develop your skills further. Essential Skills: Strong troubleshooting skills with Windows 10 / 11. Experience with Microsoft 365 and Azure Active Directory. Understanding of networking fundamentals (DNS, DHCP, IP routing). Ability to support a 200+ user environment both onsite and remotely. … Excellent communication and documentation skills. Desirable Skills: Microsoft 365 / Azure administration. Windows Server 2016 2022. NAS / SAN storage management. Mobile device support (Android / iOS). Backup and replication tools (e.g., Veeam). Awareness of Cyber Essentials or ISO27001. Interest or experience in cyber security or risk management. What s On Offer Salary up to More ❯

approach to problem-solving. You’ll be comfortable working in a fast-paced environment and keen to develop your skills further. Essential Skills: Strong troubleshooting skills with Windows 10 / 11. Experience with Microsoft 365 and Azure Active Directory. Understanding of networking fundamentals (DNS, DHCP, IP routing). Ability to support a 200+ user environment both onsite and remotely. … Excellent communication and documentation skills. Desirable Skills: Microsoft 365 / Azure administration. Windows Server 2016–2022. NAS / SAN storage management. Mobile device support (Android / iOS). Backup and replication tools (e.g., Veeam). Awareness of Cyber Essentials or ISO27001. Interest or experience in cyber security or risk management. What’s On Offer Salary up to More ❯

approach to problem-solving. You’ll be comfortable working in a fast-paced environment and keen to develop your skills further. Essential Skills: Strong troubleshooting skills with Windows 10 / 11. Experience with Microsoft 365 and Azure Active Directory. Understanding of networking fundamentals (DNS, DHCP, IP routing). Ability to support a 200+ user environment both onsite and remotely. … Excellent communication and documentation skills. Desirable Skills: Microsoft 365 / Azure administration. Windows Server 2016–2022. NAS / SAN storage management. Mobile device support (Android / iOS). Backup and replication tools (e.g., Veeam). Awareness of Cyber Essentials or ISO27001. Interest or experience in cyber security or risk management. What’s On Offer Salary up to More ❯

approach to problem-solving. You’ll be comfortable working in a fast-paced environment and keen to develop your skills further. Essential Skills: Strong troubleshooting skills with Windows 10 / 11. Experience with Microsoft 365 and Azure Active Directory. Understanding of networking fundamentals (DNS, DHCP, IP routing). Ability to support a 200+ user environment both onsite and remotely. … Excellent communication and documentation skills. Desirable Skills: Microsoft 365 / Azure administration. Windows Server 2016–2022. NAS / SAN storage management. Mobile device support (Android / iOS). Backup and replication tools (e.g., Veeam). Awareness of Cyber Essentials or ISO27001. Interest or experience in cyber security or risk management. What’s On Offer Salary up to More ❯

and operational workflows. Maintain and evolve infrastructure documentation and runbooks. Security & Compliance Enforce security best practices including MFA, time-based access controls, and role-based access. Ensure compliance with ISO27001, SOC 2, and other relevant standards. Manage responses to vendor security questionnaires and client-facing security documentation. Cross-Team Collaboration Partner with Engineering, Product, and Support teams to resolve incidents … Call support rota management Weekly 1:1s with team members Hiring for team needs About you Proven experience managing SaaS infrastructure at scale. Experience with infrastructure-as-code, CI / CD pipelines, and cloud security. Excellent communication and documentation skills. Experience in team leadership or cross-functional collaboration. Bonus points if you have Strong knowledge of Azure services: App … work from 09:00 - 17:30 from Monday to Friday, though we can be flexible around this, just let us know. We have a strong preference for someone in / around Edinburgh, though we're open to the possibility of this being a remote role (as long as you're in the UK). We're making the most More ❯

focussing on insights and continuous improvement with a need to be an out of the box thinker. Role details: Be conversant in ISO Standards that include: ISO9001, ISO27001, ISO22301, ISO45001 and ISO14001, maintain all ISO Standards and accreditations and associated internal policies and procedures. Support and maintain positive relationships with any relevant regulatory bodies. Management & Testing … and promote quality improvements and efficiencies along with risk mitigation based on actionable insights. Leading and supporting the Quality Team. Requirements: Essential Previous success in delivering comprehensive quality assurance / continuous improvement strategies. Experience in a contact centre, business improvement role. Knowledge and understanding of the ISO Standards and audit procedures Experience of risk management / … legislation, how it impacts the business and data subjects. Benefits: Salary up to £50,000.00 DOE + employee benefits Bonus Opportunity 30 Days Paid Holiday Hybrid Working Enhanced Maternity / Paternity Cover Comprehensive training to ensure you have the tools to do your job Relaxed Dress Code Positive working environment Plus much more! INDQC1 Next steps:Feel ready to More ❯