7 of 7 ISO/IEC 27001 Jobs in Somerset

Design and implement a comprehensive security strategy and roadmap, ensuring our security posture meets the requirements of the NHS Data Security and Protection Toolkit (DSPT), Cyber Essentials Plus, ISO 27001:2022, and other relevant frameworks. Risk Management: Lead the information security risk management program, including the identification, assessment, mitigation, and monitoring of risks across all systems … experience with UK healthcare security standards and regulations, including demonstrable expertise with the NHS Data Security and Protection Toolkit (DSPT), Digital Technology Assessment Criteria (DTAC) and NCSC CAF. ISO 27001:2022 implementation & maintenance: Hands-on experience with the successful implementation, certification, and ongoing maintenance of an ISO 27001 Information Security Management System More ❯

Design and implement a comprehensive security strategy and roadmap, ensuring our security posture meets the requirements of the NHS Data Security and Protection Toolkit (DSPT), Cyber Essentials Plus, ISO 27001:2022, and other relevant frameworks. Risk Management: Lead the information security risk management program, including the identification, assessment, mitigation, and monitoring of risks across all systems … experience with UK healthcare security standards and regulations, including demonstrable expertise with the NHS Data Security and Protection Toolkit (DSPT), Digital Technology Assessment Criteria (DTAC) and NCSC CAF. ISO 27001:2022 implementation & maintenance: Hands-on experience with the successful implementation, certification, and ongoing maintenance of an ISO 27001 Information Security Management System More ❯

principles Experience in system security engineering, ideally in defence, space, or critical infrastructure Familiarity with MOD, NCSC, and ISO standards (e.g. ISO 27001 / 2, NIST 800-series, JSP 604) Competence in requirements engineering and systems thinking Practical experience with security in software and / or system development environments Effective communication and … space system architectures or satellite communications DevSecOps awareness or experience with security automation Benefits: Annual Company Bonus 25 Days holiday not including bank holidays with the option to buy / sell up to 5 days Competitive pension contribution Continuous professional development including incentives Access to online Udemy training facility Flexible working arrangements Bike to work scheme Electric car scheme More ❯

Job Title: Cyber & Information Security Lead Type: Full Time & Permanent Location: Hybrid / Bath, England About the Role: Seeking a senior cyber and information security professional to lead on safeguarding critical healthcare technology platforms. This role is ideal for someone with strong expertise in compliance, risk management, and security governance—particularly within public sector or regulated environments—who’s … Key Responsibilities: Security Strategy : Define and maintain a robust security strategy aligned with business goals and growth. Compliance : Ensure adherence to key standards including DSPT, Cyber Essentials Plus, and ISO27001:2022. Risk Management : Lead the identification and mitigation of information security risks across all operations. Security Architecture : Oversee secure system and software design throughout the development lifecycle. Incident Response : Manage … security, ideally in a CISO or equivalent role within software or health tech. Healthcare Standards : Strong knowledge of UK healthcare security frameworks like DSPT, DTAC, and NCSC CAF. ISO 27001 : Proven track record in implementing and maintaining ISO 27001:2022-certified ISMS. Secure by Design : Deep understanding of secure SDLC and embedding More ❯

Job Title: Cyber & Information Security Lead Type: Full Time & Permanent Location: Hybrid / Bath, England About the Role: Seeking a senior cyber and information security professional to lead on safeguarding critical healthcare technology platforms. This role is ideal for someone with strong expertise in compliance, risk management, and security governance—particularly within public sector or regulated environments—who’s … Key Responsibilities: Security Strategy : Define and maintain a robust security strategy aligned with business goals and growth. Compliance : Ensure adherence to key standards including DSPT, Cyber Essentials Plus, and ISO27001:2022. Risk Management : Lead the identification and mitigation of information security risks across all operations. Security Architecture : Oversee secure system and software design throughout the development lifecycle. Incident Response : Manage … security, ideally in a CISO or equivalent role within software or health tech. Healthcare Standards : Strong knowledge of UK healthcare security frameworks like DSPT, DTAC, and NCSC CAF. ISO 27001 : Proven track record in implementing and maintaining ISO 27001:2022-certified ISMS. Secure by Design : Deep understanding of secure SDLC and embedding More ❯

IT / Technical Account Manager Salary: Up to £45,000 + Company Car or Car Allowance + Performance-Based Bonus Based in Frome About Them At my client, they are more than just a Managed Service Provider (MSP) - they are a dedicated partner in the success of their clients. They believe in the power of technology to revolutionise businesses … hybrid role encompasses account management, technical consultation, and strategic planning-offering a unique opportunity to influence how clients leverage technology to achieve their objectives. Key Responsibilities for the IT / Technical Account Manager Client Relationship Management: Cultivating and maintaining strong, lasting relationships with clients, serving as the primary point of contact. Technical Advisory: Leveraging an understanding of IT environments … to advise on strategy, infrastructure, and improvements, grounded in best practices (Cyber Essentials, ISO 27001, Microsoft 365). Quarterly Business Reviews: Leading meaningful QBRs to assess performance, uncover opportunities, and create a technology roadmap aligned with business objectives. Customer Success: Proactively identifying opportunities to enhance client businesses, recommending additional services that foster growth and security. Proposal More ❯

vendor management, procurement, or category management. Proven experience working in multinational or global environments with diverse stakeholders. Confidence in reviewing vendor contracts, including security schedules. Strong knowledge of ISO27001:2022 and information security standards. Experience with TPRM tools / platforms; exposure to software licensing, cloud services, or professional services vendors is a plus. This is your opportunity to More ❯