1 to 25 of 27 Remote ISO/IEC 27001 Jobs in the South West

code reviews, provide guidance on secure libraries and frameworks. Standards & Compliance Ensure products meet regulatory and defence standards (ISO 27001 / 27005, NIST 800-30 / 53, JSP 440 / 604, Def Stan 05-series). Lead the creation and maintenance of security … execute penetration tests and automated vulnerability scans; validate fixes. Oversee third-party security assessments as required. Continuous Improvement Drive security tooling and automation (CI / CD integration, SAST / DAST). Stay ahead of emerging threats and security technologies; evangelise best practices across teams. Qualifications & Experience Proven experience … in product or application security within defence, government, or security-cleared environments. Deep knowledge of risk management frameworks (ISO 27001 / 2 / 5 / 31000, NIST 800-series) and Defence Standards (JSPs, Def Stan 05-138 / 139). Hands-on More ❯

code reviews, provide guidance on secure libraries and frameworks. Standards & Compliance Ensure products meet regulatory and defence standards (ISO 27001 / 27005, NIST 800-30 / 53, JSP 440 / 604, Def Stan 05-series). Lead the creation and maintenance of security … execute penetration tests and automated vulnerability scans; validate fixes. Oversee third-party security assessments as required. Continuous Improvement Drive security tooling and automation (CI / CD integration, SAST / DAST). Stay ahead of emerging threats and security technologies; evangelise best practices across teams. Qualifications & Experience Proven experience … in product or application security within defence, government, or security-cleared environments. Deep knowledge of risk management frameworks (ISO 27001 / 2 / 5 / 31000, NIST 800-series) and Defence Standards (JSPs, Def Stan 05-138 / 139). Hands-on More ❯

and Experience Required Knowledge of HMG standards (including MOD-specific JSP, Def Stan 05-138, Def Stan ). An understanding of MOD ISN 23 / 09 Secure by Design. Knowledge of security frameworks, such as ISO / IEC 27001, NIST … NIST 800-53 or OWASP. Experience of working with risk management frameworks and methodologies (e.g., ISO 27001 / 2, ISO27005 / 31000, NIST 800-30, NIST 800-53) Why Join? You'll gain exposure to cutting-edge defence technology and intelligence insights, alongside good … salary & benefits . The client offers flexible working options, with some hybrid / remote working. Apply now to be immediately considered for this fantastic opportunity. More ❯

Required Knowledge of HMG standards (including MOD-specific JSP, Def Stan 05-138, Def Stan 05 139). An understanding of MOD ISN 23 / 09 Secure by Design. Knowledge of security frameworks, such as ISO / IEC 27001, NIST … NIST 800-53 or OWASP. Experience of working with risk management frameworks and methodologies (e.g., ISO 27001 / 2, ISO27005 / 31000, NIST 800-30, NIST 800-53) Why Join? You'll gain exposure to cutting-edge defence technology and intelligence insights, alongside good … salary & benefits . The client offers flexible working options, with some hybrid / remote working. Apply now to be immediately considered for this fantastic opportunity. More ❯

Information Security Engineer Hybrid: Remote / Bristol Reporting to: Joe Mathews - VP of Technology Salary: £45,000 - £50,000 About Us Duel is a SaaS company on a mission to make Brand Advocacy the industry standard playbook for building brilliant retail brands. It was founded by world record breaking … a timely manner. Learn and implement security monitoring and automation solutions to detect and respond to threats. Help manage security tooling, including SIEM, IDS / IPS, and vulnerability scanning solutions. Work closely with engineers to support secure coding practices and help embed security considerations early in the development process. … as Secureframe, Drata, or Vanta. Experience working with pen testing and bug bounties a plus. Basic understanding of security tools such as SIEM, IDS / IPS, and vulnerability management solutions. Experience or knowledge of cloud security (AWS, GCP, or Azure). Awareness of security best practices in application and More ❯

knowledge sharing across teams. What We’re Looking For Technical Experience & Knowledge Experience with risk management frameworks and methodologies such as ISO / IEC 27001 / 2, ISO27005 / 31000, NIST 800-30, NIST 800-53. Strong understanding of security … standards and frameworks including OWASP, Secure by Design principles, and MOD-specific guidelines (e.g., JSP, Def Stan 05-138 / 139). Familiarity with HMG security principles and assurance frameworks is advantageous. Comfortable using threat modelling tools and implementing mitigation strategies. Experience with NIST standards. (this is an absolute More ❯

developing mitigation strategies. Conducting security code reviews and offering guidance to ensure a secure-by-design approach. Ensuring products meet key regulatory standards (ISO 27001, NIST 800 series, JSPs, Def Stans). Authoring vital security documentation, including RMADS and Security Assurance Documents. … Performing penetration testing and coordinating remediation efforts. What You Bring: A solid understanding of security frameworks such as ISO 27001 / 2, ISO 31000, NIST 800-30 / 37 / 53. Hands-on experience with Defence Standards (JSPs, HMG, Def Stan … / 139). Strong knowledge of security testing tools and techniques. Excellent communication skills — able to explain complex risks and solutions clearly. A proactive, problem-solving mindset with a high level of personal integrity and professional ethics. Experience with NIST standards. (this is an absolute must) You'll Succeed More ❯

Management Systems and Audit Manager, you will collaborate with cross-functional teams to support the continuous improvement. Support the maintenance of existing external ISO accreditation's and the support attainment of new ISO accreditation's to support the business strategy. Key Responsibilities: Support in the implementation … of National Security Solutions Audit Schedule Support in the maintenance of existing ISO accreditation's Support in the attainment of new ISO accreditations as required Maintain the company's Integrated Management System (IMS) Audit Schedule to ensure compliance with regulatory requirements and industry standards (e.g. ISO … benefits including private health care, career development opportunities and performance bonuses. For a comprehensive list of benefits, speak to our recruitment team. Essential qualifications / experience: ISO 9001 Lead auditor Detailed knowledge of ISO 9001, ISO 27001, ISO More ❯

reviews and ensure secure-by-design principles. Conduct threat modelling exercises to identify and mitigate potential risks. Ensure compliance with security regulations such as ISO27001, NIST 800-30 / 37 / 53, JSP 440, 604, and Defence Standards. Develop and maintain security documentation (e.g., RMADS, Security Assurance Documents … vulnerability assessments, and remediation activities. The Person Key Skills & Experience: Strong knowledge of risk management frameworks and methodologies (ISO 27001 / 2, ISO27005 / 31000, NIST 800-30, NIST 800-53). Experience with defence and government security standards (JSPs, Def Stan … / 139). Proficiency in security testing tools, technologies, and techniques. Ability to analyze and mitigate security vulnerabilities effectively. Strong problem-solving, decision-making, and communication skills. Qualifications & Requirements: Degree in Cybersecurity, Computer Science, or a related field (or equivalent experience). Industry certifications such as CISSP, OSCP, CEH More ❯

reviews and ensure secure-by-design principles. Conduct threat modelling exercises to identify and mitigate potential risks. Ensure compliance with security regulations such as ISO27001, NIST 800-30 / 37 / 53, JSP 440, 604, and Defence Standards. Develop and maintain security documentation (e.g., RMADS, Security Assurance Documents … vulnerability assessments, and remediation activities. The Person Key Skills & Experience: Strong knowledge of risk management frameworks and methodologies (ISO 27001 / 2, ISO27005 / 31000, NIST 800-30, NIST 800-53). Experience with defence and government security standards (JSPs, Def Stan … / 139). Proficiency in security testing tools, technologies, and techniques. Ability to analyze and mitigate security vulnerabilities effectively. Strong problem-solving, decision-making, and communication skills. Qualifications & Requirements: Degree in Cybersecurity, Computer Science, or a related field (or equivalent experience). Industry certifications such as CISSP, OSCP, CEH More ❯

Social network you want to login / join with: IT Director (Head of Software Engineering background), Bristol col-narrow-left Client: Robert Half Location: Bristol, United Kingdom Job Category: Other - EU work permit required: Yes col-narrow-right Job Reference: 2ef02aa82f7f Job Views: 4 Posted: 02.05.2025 Expiry Date: 16.06.2025 … strategic capacity planning. Ensuring compliance with internal and external requirements, conducting internal control testing, and ensuring security of our IT infrastructure and data protection (ISO27001 / SOX). Developing standard operating procedures allied to best practice, and ensuring written protocols and guidelines are provided for IT staff and end … agreements. Ensure personal training and competency requirements are in line and up to date with company policy and Senior Management Certification requirements Key Skills / Experience: You will currently be serving as a senior Software Engineering Manager or IT Director with a heavy focus on internal software development in More ❯

Develop and present comprehensive risk assessment reports, including clear recommendations for mitigation and investment Apply frameworks such as NIST 800-53, ISO / IEC 27001, and NCSC CAF to assess current controls and identify improvement opportunities Contribute to the development of organisational threat … can apply critical thinking to complex and ambiguous environments, making informed decisions under pressure You have strong knowledge of cyber risk frameworks (e.g. NIST, ISO27001, NCSC CAF) and experience in applying them You're experienced in one or more of: counterintelligence, human intelligence and security, physical security assessments, operational technology More ❯

diverse range of client projects within the defence, national security, environmental, and research sectors. This includes the provision of strategic risk management advice and / or technical consultancy within the context of cybersecurity. You will join a team of highly skilled professionals dedicated to safeguarding technologies and systems, many … and guidance with experience in consultancy or supplier roles. Securing OT (Operational Technologies) with knowledge and understanding of challenges, particularly within military platforms and / or Critical National Infrastructure (CNI) Federation of Security Operations Centre (SOC)operations across two or more organisational environments such as enterprise, edge / deployed environments or cloud . Demonstrable knowledge of cyber detection (e.g., threat identification / intelligence, real-time monitoring, anomaly detection) and cyber response (e.g. incident response, eradication and remediation, recovery, post-incident analysis). DevSecOps. Zero Trust Architecture (ZTA) expertise for enterprise, cloud and air-gapped environments along More ❯

vital role in safeguarding our cloud infrastructure and applications. - If you have expertise in AWS security, a strong understanding of security frameworks like ISO or NIST, and the ability to drive secure coding practices, we want to hear from you! The role. As an Application Security Engineer, you … such as ISO 27001, NIST, and CIS benchmarks. Collaborate with development teams to enhance secure coding practices and strengthen CI / CD pipeline security. Oversee and improve cloud security in AWS, leveraging tools such as AWS Security Hub, AWS Shield, and AWS IAM. Manage the … Familiarity with OWASP Top 10, CWE, and secure coding practices. Proficiency in using security tools such as static and dynamic analysis tools. Basic coding / scripting skills in Python, JavaScript, or similar. Strong communication skills with the ability to engage technical and non-technical stakeholders. Desirable Skills: Experience working More ❯

trends. Partner with teams across the globe to design, implement, and test security tools and controls. Lead the journey to achieving and maintaining ISO 27001 certification. Stay sharp on cybersecurity developments, translating new risks and regulations into meaningful action. Drive cultural change by creating impactful cybersecurity … You Bring to the Table We're looking for a curious, thoughtful, and detail-oriented professional. Hands-on experience implementing and auditing against ISO 27001 standards. A solid foundation in enterprise-level Information Security practices. Strong analytical skills and a calm approach under competing demands. Familiarity … 2010. For the purposes of the Conduct Regulations 2003, when advertising permanent vacancies we are acting as an Employment Agency, and when advertising temporary / contract vacancies we are acting as an Employment Business. More ❯

to teams across the organization. The Person Key Skills & Experience: Strong knowledge of security frameworks (ISO 27001, NIST 800-30 / 53, OWASP). Experience with risk management methodologies and compliance with MOD and HMG security standards (JSP, Def Stan 05-138 / More ❯

or equivalent) e.g. CISSP. In-depth knowledge of security frameworks, standards, and best practices (e.g., ISO 27001, NIST, CIS, DSPT / CAF). Experience as a Security Architect or in a similar role, with a strong track record of designing and implementing security controls and … / or solutions and leading technical teams. Experience with architecture methodology such as TOGAF or SABSA. Experience of threat and risk modeling. Strong understanding of network security, encryption, authentication, and access control mechanisms. Experience with security technologies such as firewalls, intrusion detection / prevention systems, security information and … Google). Experience of DevSecOps. Experience of research in technology trends and ways to secure those technologies. Experience with automated deployment techniques and CI / CD pipelines. Experience working in or with Government organizations, especially within a Health and Social Care setting, including the handling of assets subject to More ❯

Hybrid: Hybrid Job Title: Information Security Specialist Location: Corsham or Oakhanger + Hybrid Working Arrangements Compensation: Competitive Salary + Benefits Role Type: Full time / Permanent Role ID: SF63424 At Babcock we're working to create a safe and secure world, together, and if you join us, you can … and securely. Support vulnerability management activities such as vulnerability assessments and security control assessments. Support the maintenance of the programme Information Security Management System (ISO27001). Support the Information Security Manager to deliver Information Security best practices across the programme. Create and maintain high quality security documentation, such as vulnerability … understanding of computer and network technical architecture. Qualifications for the Information Security Specialist Relevant higher education qualification or industry certification. Achieving or working towards ISO27001 Implementor / Assessor. Security Clearance The successful candidate must be a SOLE UK National who is able to achieve and maintain Security Check (SC More ❯

PQQ) sent out to suppliers prior to tender. Provide training and guidance to KBJV team in procuring suppliers and managing information correctly. Provide support / completing ITSO applications for onsite Hardware and software. Understand the hardware and software requirements on the project and communicate with the BIM Lead and … company policies and report any inadequacies Who are we looking for? Degree in related discipline (logistics, security, etc.) is preferred. Strong knowledge of ISO 27001, ISO9001 and Cyber essentials. Able to collaborate and work effectively within a multidiscipline and diverse team, with strong communication and interpersonal … in logistics, supply chain management and information security. Whats in it for you? Competitive salary A wide range of family friendly policies Company car / car allowance / travel allowance 8 % matched pension contributions Private healthcare Life assurance 26 days holiday 2 wellbeing days 1 volunteering day Personal More ❯

PQQ) sent out to suppliers prior to tender. Provide training and guidance to KBJV team in procuring suppliers and managing information correctly. Provide support / completing ITSO applications for onsite Hardware and software. Understand the hardware and software requirements on the project and communicate with the BIM Lead and … company policies and report any inadequacies. Who are we looking for? Degree in related discipline (logistics, security, etc.) is preferred. Strong knowledge of ISO 27001, ISO9001 and Cyber essentials. Able to collaborate and work effectively within a multidiscipline and diverse team, with strong communication and interpersonal … logistics, supply chain management and information security. What's in it for you? Competitive salary. A wide range of family friendly policies. Company car / car allowance / travel allowance. 8 % matched pension contributions. Private healthcare. Life assurance. 26 days holiday. 2 wellbeing days. 1 volunteering day. Personal More ❯

Backend Software Engineer / Developer (Java Spring API Security) Cambridge / WFH to £55k Are you a backend focussed Java technologist looking for an opportunity to progress your career whilst working on complex and interesting systems with continual learning opportunities? You could be joining a market leading software … stack. There are challenges around scalability and robustness, you'll be continually learning and progressing your career within a supportive Agile team environment. Location / WFH: There's a friendly and supportive team environment, you'll be able to work from home most of the time, meeting up with … strong knowledge of Computer Science fundamentals such as OOP, Design Patterns, Data Structures You have a good understanding of networking technologies, protocols e.g. TCP / IP, UDP, multicast and security principles You have an appreciation of security and ideally have worked in an ISO 27001 More ❯

integration of identity services across all domains. A key focus will be maturing identity governance, automating processes, managing Segregation of Duties (SoD), enhancing RBAC / PBAC frameworks, and ensuring compliance with IAM policies. Qualifications You are an experienced leader in Identity Governance & Administration (IGA), with a passion for developing … our time between working on-site at our offices, and at home, remotely within the UK. We believe hybrid working achieves a good work / life balance for our colleagues, allowing us to connect with each other, collaborate on important work, and perform together to deliver for our customers. … option to purchase and sell days Free fresh fruit and snacks in the office 1 day for volunteering Funded Private Medical Insurance cover Electric / Hybrid Car Salary Sacrifice Scheme and Cycle to Work Scheme Life assurance at 4 times your basic salary to give you a peace of More ❯

from day one. What You'll Do As a DevSecOps Engineer, you'll be embedded in a fully agile team focused on secure CI / CD pipeline delivery, automated testing, and infrastructure as code. You'll bring security left, ensure functional integrity, and automate relentlessly. You Will Build and … maintain secure, scalable CI / CD pipelines Integrate functional and automation testing into every phase of delivery Embed security practices across all engineering stages Work cross-functionally with developers, testers, and architects Help define best practices and tooling for a high-stakes healthcare environment Technical Experience Proven experience in … roles Strong grasp of functional and automation testing (e.g., Selenium, JMeter, Cypress, Postman, etc.) Cloud-native tooling and containerization (Docker, Kubernetes, Terraform, etc.) CI / CD systems like GitLab CI, Jenkins, Azure DevOps Scripting skills (Bash, Python, or similar) Security mindset: static / dynamic code analysis, vulnerability scanning More ❯

through Opus. The rate is equivalent to around £375-400 per day through an Umbrella company. You will need experience in the following: - ISO 27001 gap analysis to identify areas for improvement. - Review of existing IT policies and procedures - Prepare detailed reports and documentation on findings More ❯

maintained. Implement solutions in line with overall strategy and architecture. Take operational ownership of all information security management processes across projects. Ensure certification and / or network accreditation to required standards. Work closely with delivery partners and client / business stakeholders to understand their needs. Roadmap solutions to … ability to convey complex technical details to clients in a straightforward manner. Strong background in security architectures, processes and both industry and government compliances (ISO27001, CES, CES+ in particular). Background in Microsoft, AWS and / or Cloudflare security technology would be beneficial. Good knowledge of security standards, legislation More ❯