1 to 25 of 56 ISO/IEC 27001 Jobs in the South West

security breaches. Provide security guidance and training to teams across the organization. Key Skills & Experience: Strong knowledge of security frameworks (ISO 27001, NIST 800-30 / 53, OWASP) . Experience with risk management methodologies and compliance with MOD and HMG security standards (JSP, Def Stan 05-138 / 139). Proficiency in security threat More ❯

security breaches. Provide security guidance and training to teams across the organization. Key Skills & Experience: Strong knowledge of security frameworks (ISO 27001, NIST 800-30 / 53, OWASP) . Experience with risk management methodologies and compliance with MOD and HMG security standards (JSP, Def Stan 05-138 / 139). Proficiency in security threat More ❯

network protocols, VPNs, and security architecture. Experience in incident detection, analysis, response, forensic and malware analysis. Skills in scripting and automation (Python, PowerShell). Knowledge of frameworks like ISO 27001, NIST, Cyber Essentials. Understanding of risk management, data protection, GDPR, and PII. Ability to produce clear security documentation and communicate technical info effectively. Solid organizational skills More ❯

enforce security best practices for Azure tooling, cloud workloads, and infrastructure components. Architect solutions for large-scale data centre migrations and greenfield deployments, including transformation from IaaS to PaaS / service compute. Oversee the deployment and optimisation of the Microsoft Defender Suite and cloud-native Azure security tooling. Design and manage network security components such as NSGs, network segmentation … Experience leading cloud migrations from on-premises or private data centres to Azure. Familiarity with Oracle environments, particularly during infrastructure transformation initiatives. Practical knowledge of DevSecOps and securing CI / CD pipelines. Strong foundation in network security, segmentation, and Azure networking principles. Certifications (Preferred) CISSP – Certified Information Systems Security Professional CCSP – Certified Cloud Security Professional CISM or SSCP – Highly … desirable Bonus Skills & Knowledge Awareness of compliance and risk frameworks such as ISO 27001, NIST, and CIS Benchmarks. Ability to support threat modelling, cloud risk assessment, and incident response planning. Exposure to Infrastructure-as-Code (IaC) security using tools like Terraform, ARM templates, or Bicep. Skilled in translating technical risks into business terms for senior stakeholders. More ❯

improvement Areas of Knowledge We are looking for people who have working experience or comfortable teaching (or able to learn) in the following areas: Network Security (e.g., Firewalls, IDS / IPS, VPNs) Operating System Security (e.g., Windows, Linux hardening) Ethical Hacking and Penetration Testing (e.g., reconnaissance, vulnerability scanning, exploitation) Security Operations (e.g., SIEM, SOC analysis) Incident Response and Digital … Forensics Cryptography and Secure Communications Cloud Security (e.g., AWS, Azure, GCP security best practices) Application Security (e.g., OWASP Top 10) Compliance and Governance (e.g., GDPR, ISO 27001) Security Tools (e.g., Wireshark, Nmap, Metasploit, Kali Linux) Person Specification: Experience delivering cybersecurity training or mentoring professionals in a security capacity Strong ability to develop learners from intermediate to More ❯

improvement Areas of Knowledge We are looking for people who have working experience or comfortable teaching (or able to learn) in the following areas: Network Security (e.g., Firewalls, IDS / IPS, VPNs) Operating System Security (e.g., Windows, Linux hardening) Ethical Hacking and Penetration Testing (e.g., reconnaissance, vulnerability scanning, exploitation) Security Operations (e.g., SIEM, SOC analysis) Incident Response and Digital … Forensics Cryptography and Secure Communications Cloud Security (e.g., AWS, Azure, GCP security best practices) Application Security (e.g., OWASP Top 10) Compliance and Governance (e.g., GDPR, ISO 27001) Security Tools (e.g., Wireshark, Nmap, Metasploit, Kali Linux) Person Specification: Experience delivering cybersecurity training or mentoring professionals in a security capacity Strong ability to develop learners from intermediate to More ❯

team and engage in a diverse range of client projects within the defence, national security, environmental, and research sectors. This includes the provision of strategic risk management advice and / or technical consultancy within the context of cybersecurity. You will join a team of highly skilled professionals dedicated to safeguarding technologies and systems, many of which are critical to … and information assurance policies, standards, and guidance with experience in consultancy or supplier roles. Securing OT (Operational Technologies) with knowledge and understanding of challenges, particularly within military platforms and / or Critical National Infrastructure (CNI) Federation of Security Operations Centre (SOC)operations across two or more organisational environments such as enterprise, edge / deployed environments or cloud . … Demonstrable knowledge of cyber detection (e.g., threat identification / intelligence, real-time monitoring, anomaly detection) and cyber response (e.g. incident response, eradication and remediation, recovery, post-incident analysis). DevSecOps. Zero Trust Architecture (ZTA) expertise for enterprise, cloud and air-gapped environments along with knowledge of operational use of Zero Trust within any of the following: , IdAM systems, application More ❯

practice. Reporting to the Head of Security & Governance , the successful candidate will play a central role in delivering risk reduction across the business. You'll be responsible for maintaining ISO27001 compliance, overseeing risk assessment and mitigation, and supporting incident management across multi-entity operations. Key Accountabilities: Lead and manage a team of three security professionals , supporting their development and day … to-day delivery. Ensure ongoing ISO27001 accreditation and alignment with broader assurance frameworks (e.g. NIST CSF, Cyber Essentials). Shape and implement the company's information security strategy , including policy, tooling, and training. Conduct risk assessments, oversee remediation plans, and guide secure-by-design approaches across projects. Provide technical leadership in areas including threat intelligence, compliance reporting, and incident response … including service providers and the organisation's parent company. Required Skills & Qualifications: Demonstrable experience in information security leadership , including line management or team leadership . In-depth knowledge of ISO27001, GDPR, FCA SYSC, PCI DSS and other regulatory / compliance frameworks. Hands-on experience with security technologies: SIEM, IAM, vulnerability assessment, endpoint protection, cloud services (AWS, SaaS, IaaS) . More ❯

practice. Reporting to the Head of Security & Governance , the successful candidate will play a central role in delivering risk reduction across the business. You'll be responsible for maintaining ISO27001 compliance, overseeing risk assessment and mitigation, and supporting incident management across multi-entity operations. Key Accountabilities: Lead and manage a team of three security professionals , supporting their development and day … to-day delivery. Ensure ongoing ISO27001 accreditation and alignment with broader assurance frameworks (e.g. NIST CSF, Cyber Essentials). Shape and implement the company's information security strategy , including policy, tooling, and training. Conduct risk assessments, oversee remediation plans, and guide secure-by-design approaches across projects. Provide technical leadership in areas including threat intelligence, compliance reporting, and incident response … including service providers and the organisation's parent company. Required Skills & Qualifications: Demonstrable experience in information security leadership , including line management or team leadership . In-depth knowledge of ISO27001, GDPR, FCA SYSC, PCI DSS and other regulatory / compliance frameworks. Hands-on experience with security technologies: SIEM, IAM, vulnerability assessment, endpoint protection, cloud services (AWS, SaaS, IaaS) . More ❯

practice. Reporting to the Head of Security & Governance , the successful candidate will play a central role in delivering risk reduction across the business. You'll be responsible for maintaining ISO27001 compliance, overseeing risk assessment and mitigation, and supporting incident management across multi-entity operations. Key Accountabilities: Lead and manage a team of three security professionals , supporting their development and day … to-day delivery. Ensure ongoing ISO27001 accreditation and alignment with broader assurance frameworks (e.g. NIST CSF, Cyber Essentials). Shape and implement the company's information security strategy , including policy, tooling, and training. Conduct risk assessments, oversee remediation plans, and guide secure-by-design approaches across projects. Provide technical leadership in areas including threat intelligence, compliance reporting, and incident response … including service providers and the organisation's parent company. Required Skills & Qualifications: Demonstrable experience in information security leadership , including line management or team leadership . In-depth knowledge of ISO27001, GDPR, FCA SYSC, PCI DSS and other regulatory / compliance frameworks. Hands-on experience with security technologies: SIEM, IAM, vulnerability assessment, endpoint protection, cloud services (AWS, SaaS, IaaS) . More ❯

throughout the product development lifecycle Conduct detailed threat modelling and risk assessments using recognised tools Lead the implementation of risk management strategies based on industry best practices (NIST, ISO) Work closely with development teams to ensure secure-by-design principles are followed Identify and propose mitigations for security vulnerabilities in solution architectures Maintain and evolve internal security policies … and DefStan 05-139 (Issue 1) is essential Proficiency in threat modelling methodologies and tools (e.g., STRIDE, DREAD, Attack Trees) Familiarity with other standards such as ISO / IEC 27001, ISO 27005, OWASP, and MOD ISN 23 / 09 Ability to identify, assess and mitigate risks across software and hardware More ❯

throughout the product development lifecycle Conduct detailed threat modelling and risk assessments using recognised tools Lead the implementation of risk management strategies based on industry best practices (NIST, ISO) Work closely with development teams to ensure secure-by-design principles are followed Identify and propose mitigations for security vulnerabilities in solution architectures Maintain and evolve internal security policies … and DefStan 05-139 (Issue 1) is essential Proficiency in threat modelling methodologies and tools (e.g., STRIDE, DREAD, Attack Trees) Familiarity with other standards such as ISO / IEC 27001, ISO 27005, OWASP, and MOD ISN 23 / 09 Ability to identify, assess and mitigate risks across software and hardware More ❯

projects, functions, and services as required. Practicing continuous self-learning to keep up-to-date with industry trends and developments to enhance your relevant skills. Skills & experience Essential skills / behaviours: You'll have a broad understanding of the services that the organisation provides to its customer base and be able to map this to Cyber Security policies and … communicator with the ability to interface at the highest level and exhibit good verbal, written and presentation skills. Experience of working within key Cyber Security principles and standards (ISO 27001, NIST, Cyber Essentials, MITRE). [i] Experience working in a customer-facing role desirable. You should have experience in managing team driven workloads. Demonstrable experience driving More ❯

Lead Location: Bristol, GB, BS16 1EJ Onsite or Hybrid: Job Title: IS& Cyber Security Lead Location: Warrington, Bristol or Leicester Compensation: Band 7 - £51,941 Role Type: Full time / Permanent Role ID: SF66104 At Babcock we're working to create a safe and secure world, together, and if you join us, you can play your part as a … out of the ordinary. We are looking for a Cyber Security expert with proven working experience within a complex organisation responsible for critical defence programmes. Closely working with government / MOD client, programme partners, and design collaborators, you will ensure the highest standards of cybersecurity across all stages of development. Day-to-day, you'll have the following responsibilities … entries, Risk Balance Cases, Information Asset Owner forms, Supplier Assurance Questionnaires. Experienced in relevant Security Policy and Cyber Security Frameworks including the GovS 007, MOD Secure by Design (SbD), ISO27001 - Information Security Management Systems, NIST, NCSC IA Guidance Qualifications for the IS & Cyber Security Lead: Educated to degree level or holds a relevant professional qualification or equivalent experience. Security Clearance More ❯

OT Cyber Security Consultant Location: UK-wide (Remote / Hybrid) Job Type: Full-time Salary: Up to £100K + Benefits (depending on experience) We are currently recruiting for two OT Cyber Security Consultants to join a leading, nationwide organisation delivering high-impact cyber advisory services across critical infrastructure and the built environment. These roles are ideal for experienced cyber … within the built environment or critical infrastructure . Strong understanding of cyber-physical systems , OT environments , and connected infrastructure . Experience applying assurance frameworks and technical standards (e.g. NIST, ISO27001, CAF). Background in governance, risk, and compliance (GRC) functions. Excellent communication and stakeholder engagement skills. Agile, analytical, and solutions-focused mindset. Experience in sectors such as energy, water, transport More ❯

OT Cyber Security Consultant Location: UK-wide (Remote / Hybrid) Job Type: Full-time Salary: Up to 100K + Benefits (depending on experience) We are currently recruiting for two OT Cyber Security Consultants to join a leading, nationwide organisation delivering high-impact cyber advisory services across critical infrastructure and the built environment. These roles are ideal for experienced cyber … within the built environment or critical infrastructure . Strong understanding of cyber-physical systems , OT environments , and connected infrastructure . Experience applying assurance frameworks and technical standards (e.g. NIST, ISO27001, CAF). Background in governance, risk, and compliance (GRC) functions. Excellent communication and stakeholder engagement skills. Agile, analytical, and solutions-focused mindset. Experience in sectors such as energy, water, transport More ❯

OT Cyber Security Consultant Location: UK-wide (Remote / Hybrid) Job Type: Full-time Salary: Up to £100K + Benefits (depending on experience) We are currently recruiting for two OT Cyber Security Consultants to join a leading, nationwide organisation delivering high-impact cyber advisory services across critical infrastructure and the built environment. These roles are ideal for experienced cyber … within the built environment or critical infrastructure . Strong understanding of cyber-physical systems , OT environments , and connected infrastructure . Experience applying assurance frameworks and technical standards (e.g. NIST, ISO27001, CAF). Background in governance, risk, and compliance (GRC) functions. Excellent communication and stakeholder engagement skills. Agile, analytical, and solutions-focused mindset. Experience in sectors such as energy, water, transport More ❯

experience in Cyber Security Good understanding of core security principles and tools Exposure to network security, vulnerability management, or risk assessments (preferred) Familiarity with security frameworks such as ISO 27001, NIST, or PCI DSS (preferred) Professional certifications like Security+, CEH, or CISSP are desirable Analytical mindset, attention to detail, and a proactive approach to learning What More ❯

be joining this local, growing and forward thinking organising in Bristol. This role will be to lead their information security compliance efforts, specifically in line with ISO / IEC 27001 , ISO / IEC 42001 and Cyber Essentials PLUS standards. In this role you will be responsible for maintaining … Instrumental in the building of a new Team to deliver CaaS and supporting services. Develop, implement, and maintain the Information Security Management System (ISMS) aligned with ISO / IEC 27001 and Cyber Essentials PLUS standards. Lead internal audits, gap assessments, and risk assessments for ISO 27001 and Cyber Essentials … risk treatment actions, and evidence required for certification. The Person: For this role our client is looking for someone who has an in-depth knowledge of ISO / IEC 27001. For this role you could be a Lead Auditor, Compliance Officer or have led an ISO 27001 implementation for your organisation More ❯

to be joining this local, growing and forward thinking organising in Bristol. This role will be tolead their information security compliance efforts, specifically in line with ISO / IEC 27001 , ISO / IEC 42001 and Cyber Essentials PLUS standards. In this role you will be responsible for maintaining … Instrumental in the building of a new Team to deliver CaaS and supporting services. Develop, implement, and maintain the Information Security Management System (ISMS) aligned with ISO / IEC 27001 and Cyber Essentials PLUS standards. Lead internal audits, gap assessments, and risk assessments for ISO 27001 and Cyber Essentials … risk treatment actions, and evidence required for certification. The Person: For this role our client is looking for someone who has an in-depth knowledge of ISO / IEC 27001. For this role you could be a Lead Auditor, Compliance Officer or have led an ISO 27001 implementation for your organisation More ❯

1st / 2nd Line IT Support Administrator Location: Poole (with occasional travel between sites) Hours: Monday-Friday, 8:00am-5:00pm Salary: £29,000 - £33,000 DOE Are you an experienced IT Support professional with a hands-on approach and a knack for problem-solving? We're working with a successful and growing business based in Poole, looking to … expand their IT function with a 1st / 2nd Line IT Support Administrator . This role is a fantastic opportunity for someone with strong technical knowledge across infrastructure, networking, and business systems, who enjoys both day-to-day support and contributing to longer-term IT projects. What you'll be doing: Provide 1st and 2nd line support to end … Firewalls, VLANs, VPNs, Umbrella VMware, Datto (VM management & restoration), RDS Active Directory, Group Policy, Powershell Sentinel, Defender, NAS maintenance Print management (Papercut), Service Desk Management Cyber Security Essentials Plus, ISO27001 standards What we're looking for: Proven experience in 1st / 2nd line IT support Strong understanding of infrastructure, networking, and business systems Logical problem-solving skills and ability More ❯

by-design). Perform security code reviews, provide guidance on secure libraries and frameworks. Standards & Compliance Ensure products meet regulatory and defence standards (ISO 27001 / 27005, NIST 800-30 / 53, JSP 440 / 604, Def Stan 05-series). Lead the creation and maintenance of security documentation (RMADS, Security Assurance Documents … . Testing & Assurance Design and execute penetration tests and automated vulnerability scans; validate fixes. Oversee third-party security assessments as required. Continuous Improvement Drive security tooling and automation (CI / CD integration, SAST / DAST). Stay ahead of emerging threats and security technologies; evangelise best practices across teams. Qualifications & Experience Proven experience (5+ years) in product or … application security within defence, government, or security-cleared environments. Deep knowledge of risk management frameworks (ISO 27001 / 2 / 5 / 31000, NIST 800-series) and Defence Standards (JSPs, Def Stan 05-138 / 139). Hands-on experience with security testing tools and techniques (SAST, DAST, penetration testing). Eligible More ❯

The following content displays a map of the jobs location - Exeter Lead Application Operations Engineer - Microsoft SharePoint Job Reference metoffice / TP / 349 / 797 Permanent Working Hours: 37 Location (City / Town): Exeter Closing Date: 20 / 07 / 2025 Profession: Region / Division: UK Region Careers website category: Technology Job … to use. Define and communicate best practice Evaluate the effectiveness of SharePoint and Teams training, providing recommendations and assistance in delivering agreed training in collaboration with any other teams / parties. Ability to explain technical concepts in simple and clear terms. Collaborate with colleagues on how applications are performing and changes that need to be put in place. Build … essential criteria in the supporting statement questionnaire .We recommend candidates use the CARL method (Context, Action, Result and Learning) for presenting evidence of experience and skills. Closing date 20 / 07 / 2025 at 23:59 with first stage interviews commencing from 28 / 07 / 2025. You will hear from us once the closing date More ❯

Own cloud operations across Azure and drive platform performance and cost optimisation Oversee security engineering, audits, pen testing, and compliance Lead change and incident management and support services (24 / 7) Manage end-user tech, corporate apps (e.g. ServiceNow, Salesforce), and software licensing Collaborate with exec leadership weekly to drive strategy and improvement We're looking for someone who … Proven experience in IT operational leadership roles Strong knowledge of Azure, DevOps / cloud engineering, and platform reliability Experience driving observability and monitoring strategies across large-scale services Good working knowledge of cybersecurity practices, frameworks (NIST, ISO 27001, Cyber Essentials), and audit processes Vendor, contract, and license management experience across software and infrastructure suppliers Skilled More ❯

Job Title: Security Consultant - Secure by Design / Security Assurance Location: Hybrid - Remote & Onsite (Corsham, Wiltshire) Contract Length: 9 Months Clearance Required: DV Rate: up to £700pd outside IR35 Start Date: 1st July Responsibilities: Provide expert security consultancy across the project lifecycle, with a focus on secure-by-design practices. Lead or support security risk assessments, threat modelling, and … and NCSC guidance. Experience producing or reviewing technical security documentation Ability to influence stakeholders and work collaboratively across multi-disciplinary teams. Security-related qualifications (e.g., CISSP, CISM, CCP, ISO 27001 Lead Auditor). Experience with cloud security Background in supporting complex ICT systems or programmes within secure environments. People Source Consulting Ltd is acting as an More ❯