51 to 75 of 146 ISO/IEC 27001 Jobs in the South East

management is also essential. The ability to work closely with business, technical and vendor stakeholders. Engagement via Umbrella Company Only; all taxes & NI deducted at source. General responsibilities: - Define / maintain IT disaster recovery framework ensuring alignment with business continuity objectives. Conduct risk assessments of existing infrastructure services enabling identification of mitigation strategies. Develop and document disaster recovery plans … large-scale enterprise environments. Infrastructure resilience and failover strategies. Ability to engage with senior stakeholders ITIL v4 certification Knowledge of regulatory requirements for IT risk and resilience e.g. ISO 22301, ISO 27001 Experience working in highly regulated environments. Reasonable Adjustments: Respect and equality are core values to us. We are proud of the diverse More ❯

for Cloud, and cloud security architecture. Proven expertise in Microsoft Sentinel SIEM administration, threat detection, and automation (KQL experience desirable). Solid understanding of vulnerability management with Tenable (Tenable.io / Tenable.sc). Knowledge of industry security frameworks (ISO 27001, NIST, CIS). Strong analytical, problem-solving, and communication skills. Relevant certifications highly desirable (AZ More ❯

for Cloud, and cloud security architecture. Proven expertise in Microsoft Sentinel SIEM administration, threat detection, and automation (KQL experience desirable). Solid understanding of vulnerability management with Tenable (Tenable.io / Tenable.sc). Knowledge of industry security frameworks (ISO 27001, NIST, CIS). Strong analytical, problem-solving, and communication skills. Relevant certifications highly desirable (AZ More ❯

for Cloud, and cloud security architecture. Proven expertise in Microsoft Sentinel SIEM administration, threat detection, and automation (KQL experience desirable). Solid understanding of vulnerability management with Tenable (Tenable.io / Tenable.sc). Knowledge of industry security frameworks (ISO 27001, NIST, CIS). Strong analytical, problem-solving, and communication skills. Relevant certifications highly desirable (AZ More ❯

for Cloud, and cloud security architecture. Proven expertise in Microsoft Sentinel SIEM administration, threat detection, and automation (KQL experience desirable). Solid understanding of vulnerability management with Tenable (Tenable.io / Tenable.sc). Knowledge of industry security frameworks (ISO 27001, NIST, CIS). Strong analytical, problem-solving, and communication skills. Relevant certifications highly desirable (AZ More ❯

Familiarity with ISO 27001 , NCSC guidance , and protective monitoring standards. Proven experience with Security Architecture frameworks such as SABSA and TOGAF. Experience in designing systems / products in line with UK Government Security Group secure-by-design approach / principles. Desirable Skills AWS Certified Security – Specialty or equivalent. Experience in public sector or regulated … environments. Knowledge of container security (ECS / EKS) and CI / CD pipeline hardening. More ❯

threat detection, malware prevention, and device compliance. Build and operate scalable data protection solutions, including data loss prevention (DLP), secrets management, encryption, and classification. Integrate security controls into CI / CD pipelines, cloud-native services, and on-prem platforms to enforce security-by-design principles. Deliver security capabilities that support modern work scenarios, remote access, zero-trust networking, and … AI / ML workloads. Leverage automation frameworks and IaC to improve scalability and reduce manual intervention. Operational Security, SRE & Assurance: Ensure security platforms are resilient, continuously monitored, and designed for 24x7 support and incident response readiness. Embed security telemetry and observability to enable proactive threat detection and automated response. Apply SRE principles to improve reliability, performance, and maintainability of … security controls, implementing zero-trust models, and supporting 24x7 security operations. Strong understanding of compliance frameworks and risk management strategies. Preferred Qualifications Certifications such as CISSP, CCSP, CISM, AWS / Azure Security Specialty, or equivalent. Experience with tools like Okta, Azure AD, CrowdStrike, Tanium, Zscaler, Vault, and other modern security platforms. Familiarity with DevSecOps principles, Infrastructure as Code, and More ❯

Define, implement, and enforce security policies, standards, and architectural guardrails for AWS environments. Work closely with solution architects, DevOps, and platform engineering teams to embed security controls into CI / CD pipelines. Oversee Identity and Access Management (IAM) strategies, ensuring principles of least privilege and segregation of duties. Assess, implement, and optimise AWS-native and third-party security tools … e.g., GuardDuty, Security Hub, AWS Inspector). Ensure ongoing compliance with relevant frameworks and regulations, including ISO 27001, PCI DSS, and the UK GDPR. Conduct periodic architecture reviews and security assessments to identify gaps and recommend enhancements. Support incident response activities and lead post-incident reviews to strengthen cloud resilience. Remain abreast of emerging cloud threats … it is technical led, business acumen or methodologies. We want you to grow with us and to help us achieve more Private medical cover for you and your spouse / partner, offered via Vitality Discretionary bonus based on a blend of personal and company performance Holiday – You will receive 25 Days holiday, plus 1 day for Birthday and More ❯

Service Desk, Projects and Account Management teams to maintain high standards of service, document solutions and mentor junior engineers in line with cybersecurity best practices and frameworks such as ISO27001, NIST, and Cyber Essentials Plus. Key Responsibilities – Cyber Security & Centralised Services Manager: Serve as the primary escalation point for complex IT and cybersecurity incidents, including malware infections, ransomware attacks, phishing … client environments, providing actionable recommendations and remediation guidance. Implement and maintain security hardening across infrastructure, cloud services, endpoints, and networks, in alignment with best practices and frameworks such as ISO27001, NIST, and Cyber Essentials Plus. Lead and coordinate incident response efforts, including root cause analysis, threat containment and post-incident reporting for clients. Collaborate with the Project and Service Desk … EDR / MDR / XDR platforms, email security, RMM tools, and centralised monitoring systems. Familiarity with security frameworks and compliance standards, including Cyber Essentials, Cyber Essentials Plus, ISO27001, NIST, and GDPR requirements. Skilled in vulnerability management, threat detection, incident response, and remediation planning, including experience with ransomware and phishing mitigation. Ability to analyse complex technical and security issues More ❯

we combine strategy, creativity, and technology to help organisations transform how they attract, engage, and delight their customers. We're also committed to doing things properly - Huble is ISO 27001:2022 and ISO 9001:2015 certified, reflecting our focus on security, quality, and trust. After 15+ years and over 500 successful HubSpot implementations, we … dedicated experience in digital marketing strategy and execution. Consulting Mastery: Documented success delivering large-scale, complex marketing programs for enterprise clients. Strategic Acumen: Strong understanding of digital strategy, demand / lead generation, campaign execution and the ability to connect business strategy with marketing technology execution. Platform Authority: Hands on experience with major CRM and / or marketing platforms More ❯

and management response is well defined. Engage risk review and assurance activities across existing suppliers. Provide IT and business advice on aspects of security standards and regulations such as ISO27001, NIST CSF, PCI DSS, NISD and NIS2. Engage with I&T system owners to provide training in relation to information security, cyber resilience, phishing, and facilitation of cyber scenario desktop … standards, controls and consequences across both IT and manufacturing environments in manufacturing or similar industries. Experience working with information security standards and frameworks such as and regulations such as ISO27001, NIST CSF, PCI DSS, NISD and NIS2. Proven analytical, problem-solving, planning, project delivery and supplier work packages management skills. Demonstrable experience of engaging across all levels of a company … in relation to information and cyber security risks. Working towards or achieved professional certifications (ISO27001 lead, ISC2, CISM or CRISC) advantageous. Benefits Competitive salary Company bonus Pension scheme Life assurance Income protection 25 days holiday plus bank holidays Electric Car / Bike to Work schemes More ❯

mindset and ability to thrive under pressure. QualificationsAnd Knowledge Strong understanding of key cybersecurity standards and best practices. Familiarity with leading information security frameworks such as NIST CSF, ISO 27001, and Cyber Essentials. Governance-focused certifications are advantageous, including CISMP, CISM, CISSP, or CompTIA A+. Awareness of regulatory and compliance requirements impacting cybersecurity, such as DORA More ❯

Sentinel. Use MITRE ATT&CK to anticipate and counter adversarial activity. Apply cost-optimisation principles (data tiering, filtering). Collaborate with security architects to improve internal policies and ISO 27001 alignment. Act as an escalation point within the SOC and mentor junior engineers. What We Are Looking For 3+ years’ experience as a Microsoft Sentinel or More ❯

and systems proactively for suspicious activity. Maintain and update cyber security procedures and documentation. Provide IT support when required, including first, second, and third line assistance. Attend monthly cyber / vulnerability meetings and contribute expertise as needed. Essential Skills & Experience: Minimum 2 years' experience in an IT security-related role ???. Experience with vulnerability management and reporting tools. Strong … understanding of patch deployment solutions, including Microsoft Intune. Knowledge of ITIL support processes. Familiarity with Cyber Essentials or ISO 27001 assessments ??. Solid technical knowledge of IT infrastructure, networks, and operating systems. … Good written and verbal communication skills to explain risks to both technical and non-technical stakeholders. CompTIA Security+ or equivalent qualification ??. Desirable: Experience with SIEM systems, EDR, IDS / IPS, and vulnerability scanners. Previous experience in a law firm or professional services environment. Familiarity with Practice Management Systems (PMS) and Document Management Systems (DMS). Personal Attributes: Methodical More ❯

Head of Engineering Location: Milton Keynes (2 days a week in office) Salary: £80,000 Engineering - QA - Cloud Operations - SaaS - Leadership - Azure - AWS - GCP - Architecture - AI / ML An established software provider is seeking an experienced Head of Engineering to lead their product engineering organisation through a major SaaS and AI transformation. With 25+ years in the market and … to shape the future of mission-critical technology used by universities worldwide. The Role You'll lead engineering, QA, and cloud operations as the business migrates from on-prem / hosted solutions to a modern multi-tenant SaaS platform. You'll build high-performing teams, drive engineering standards, and ensure smooth customer transitions while guiding the adoption of AI … Partner with Product, Security, Sales and Customer Experience teams to align delivery and ensure successful customer migrations Set standards for secure development, CI / CD, observability and compliance (ISO27001, GDPR, PCI / DSS) What You'll Bring Proven leadership in enterprise SaaS or major SaaS transformation programmes 8+ years in engineering, including 4+ years in senior leadership Experience More ❯

TVM), PAM, IAM, DLP, Network Security and Penetration Testing Managing outsourced security providers and holding them to account on performance Acting as SME for security improvement projects, aligned to ISO27001 / NIST Managing security incidents, including forensic investigations and post-incident reviews Supporting governance, due diligence and audit activity across the security function Key Requirements: Significant experience leading IT … such as CISSP, TOGAF, CCSP, GCIH or equivalent Strong experience securing Microsoft cloud environments (Azure) - design, deployment, configuration and management Broad knowledge of infrastructure and security solutions, including SIEM / SOAR Proven track record designing end-to-end solutions with security Embedded across network, infrastructure, access, cloud services, controls and SecOps Experience addressing cloud-specific security challenges, patterns and … in major IT / cloud transformation initiatives, ensuring security is integrated throughout Good understanding of security standards, procedures, reviews and security automation Familiarity with security frameworks such as ISO27001 and NIST Strong stakeholder management skills, with the ability to work closely with IT, Security, Risk and external suppliers To discuss this permanent opportunity in more detail, please get in More ❯

Key responsibilities: Responsible for management of Microsoft 365 and Azure cloud services, support Windows-based web and business applications, manage Remote Desktop Services (RDS) and RemoteApp, oversee DNS, SSL / TLS certificate management, handle all backups, updates, patching, and security maintenance, ensure system performance, availability, and disaster recovery, contribute to ISO 27001 and GDPR processes … required Previous hands-on experience in infrastructure engineering Educated to degree level in Computer Science or relevant certifications Solid skills across Windows Server, Linux (RHEL), Azure, networking, and VMware / Hyper-V and SQL. Strong knowledge across Remote Access, Web Tech, Databases, Networking, Storage and Security / Compliance A team-oriented mindset with problem-solving ability and excellent More ❯

Key responsibilities: Responsible for management of Microsoft 365 and Azure cloud services, support Windows-based web and business applications, manage Remote Desktop Services (RDS) and RemoteApp, oversee DNS, SSL / TLS certificate management, handle all backups, updates, patching, and security maintenance, ensure system performance, availability, and disaster recovery, contribute to ISO 27001 and GDPR processes … required Previous hands-on experience in infrastructure engineering Educated to degree level in Computer Science or relevant certifications Solid skills across Windows Server, Linux (RHEL), Azure, networking, and VMware / Hyper-V and SQL. Strong knowledge across Remote Access, Web Tech, Databases, Networking, Storage and Security / Compliance A team-oriented mindset with problem-solving ability and excellent More ❯

CAs, HSMs, OCSP, CRLs, SCEP , and related PKI components. Hands on experience with Microsoft ADCS, Thales HSMs, OpenSSL, DigiCert , and similar tools. Knowledge of certificate usage for TLS, S / MIME, code signing, document signing, VPN, and smart cards . Understanding of encryption algorithms, hashing, and key management. Experience designing secure solutions in hybrid or cloud environments such as … Azure or AWS. Familiarity with standards including NIST, FIPS, ISO 27001 and other compliance frameworks. Certifications such as CISSP, CISM, GIAC , or Microsoft identity qualifications are desirable. Shape secure digital services and lead critical cryptographic design as a PKI Architect . To apply, please send your CV by pressing the apply button. More ❯

technology roadmaps. Requirements Significant hands-on experience with Microsoft Azure, particularly in networking, security, and PaaS services • Proven track record in regulated environments, ensuring compliance with frameworks such as ISO27001, NIST or FCA requirements • Strong expertise in Terraform, GitHub Actions, and modern Infrastructure-as-Code practices • Experience in applying AI and automation to infrastructure operations, driving efficiency and improving resilience More ❯

RULE 5: You must observe proper standards of market conduct. KEY RELATIONSHIPS Internal Relationships: Information Technology Risk and Compliance Business departments, and Internal forums, groups and committees External Relationships / Contacts: Suppliers and Vendors Regulators Authorities and focused groups CONFIDENTIAL INFORMATION The holder of this job must sign a Data Confidentiality agreement. He / she shall not, directly … or indirectly, disclose, allow to access to, transmit or transfer the confidential information to a third party without prior written consent. He / she may only disclose the confidential information to employees on a "need to know" basis. He / she shall, prior to disclosing the Confidential Information to such employees issue appropriate written instructions to them to … security evaluations, with the ability to analyse events and deliver effective remediation. Solid understanding of the cyber threat landscape, incident / breach management, and industry frameworks such as ISO27001, NIST CSF, PCI-DSS and the likes. Excellent analytical, communication, and stakeholder engagement skills, with the ability to influence decision-making across technical and non-technical teams. Committed to continuous More ❯

Transitioning clients to a position of mature cyber security & resilience, sometimes from a starting point of minimal security maturity. Supporting clients to implement frameworks, standards, and guidance, including ISA / IEC62443, NCSC CAF, NIST SP 800-82, ISO 27001, HSE OG86. Helping clients to understand their attack vectors that could be exploitable by threats. Designing … security controls and approaches within OT environments. Understanding of the different priorities of cyber security in OT & IT. Knowledge of cyber security frameworks, including but not limited to ISA / IEC62443, NCSC CAF, NIST SP 800-82, HSE OG86, ISO 27001. Awareness and understanding of the OT security threat landscape. Ability to understand and articulate the impacts More ❯

maintain a deployment infrastructure for web and native applications that adheres to client security requirements Collaborate with design team and project teams to ensure the technical feasibility of UI / UX designs Support business development, marketing and design with HEOR website performance improvement, accessibility and maintenance Contribute to new project proposal development by identifying solutions to client needs Provoke … with operational research group colleagues to develop HEOR coding best practices Support the development and implementation of solutions to optimise internal processes and productivity e.g. via internal web apps / tools Requirements What you'll bring to the team: Proven experience as a full-stack developer working in the consulting, life sciences or the pharmaceutical industry Degree or equivalent … frameworks like Jest, Mocha, and Cypress Knowledge of authentication, security best practices, and frameworks such as ISO 27001 and Cyber Essentials Plus Experience with CI / CD pipelines using GitHub Actions or Azure DevOps If you are passionate about building innovative web applications and eager to make a difference in healthcare through technology, we would More ❯

Policy Support Lead Security Standards Management: Develop and maintain comprehensive security policies, standards and procedures across the organisation. Align all standards with applicable regulatory requirements and frameworks (e.g., ISO 27001, GDPR, NIS-R). Review and update standards regularly in response to emerging threats and regulatory changes. Governance & Compliance: Oversee the exception management framework, including reporting … communication skills with the ability to deliver complex messages clearly. Skilled in exception management, reporting and compliance monitoring. Desirable Experience: Additional skills and experiences would be great to have / bring: Experience in maintaining security standards and exception frameworks. Exposure to information risk management processes and controls. Desirable Technical Skills & Qualifications: Relevant certifications such as CISSP, CISM or CISA. More ❯

and is a well-established medium-sized company. Description Key Responsibilities Manage and optimise end-user technology services, including devices, AV, mobile, identity, printing, meeting rooms, networks, and ITSM / ITAM tools. Gather stakeholder feedback to evolve digital workplace services and ensure they meet user needs. Promote strong customer service standards and develop the maturity of the end-user … for high-profile meetings and AV setups. Manage the full lifecycle of end-user equipment from procurement to retirement. Improve service resilience through ongoing performance reviews and disaster recovery / IT continuity testing. Enhance and maintain internal portal applications for improved access and usability. Create Autopilot / configuration profiles and ensure device security and compliance. Deploy endpoint and … optimise BYOD policies to ensure a secure and positive mobile experience. Act as an escalation point for complex endpoint issues. Support IT and AV infrastructure including print services, VC / event tech, and room booking systems. Contribute to endpoint security compliance and certifications (e.g., Cyber Essentials). Manage diverse EUC environments across multiple teams, ensuring minimal disruption during major More ❯