3 of 3 Remote ISO 27001 Lead Auditor Jobs in the South West

new and evolving expectations. We use the Scrum framework to drive product delivery, quality and success, so an appreciation of agile working is beneficial. Cyber and Information Security Lead - Key responsibilities: Develop and implement our security strategy: Design, implement and maintain a comprehensive security strategy, roadmap, and policies to support business objectives, future growth ambitions and product … the company's security posture meets the requirements of the NHS Data Security and Protection Toolkit (DSPT), Cyber Essentials Plus, ISO27001:2022 and other relevant frameworks. Risk management: Lead the information security risk management program, including identification, assessment, mitigation, and monitoring of information security risks across all systems, applications, and operations. Policy and procedure development: Support and … up to date with the latest cyber security threats, vulnerabilities, technologies, and best practices relevant to the health sector and the wider technology landscape. Cyber and Information Security Lead - Skills and Experience: Essential: Extensive security leadership: Proven experience (10+ years) in a senior information security role, with significant experience in a CISO or equivalent position within a More ❯

standards on highly complex programmes of work. Delivery of client engagements to support governance, risk and compliance against a range of cyber security regulations, frameworks and standards, including ISO 27001, NIST Regulations, CAF and secure by design. Staying on top of the latest developments within Cyber Security & Information Assurance by attending training and conferences. … to tenders and provide pre-sales support. About you: Experience: Security assurance, working with JSP440, JSP604 Security accreditation Secure by design Implementing security standards and frameworks, such as ISO 27001, NIST 800 and CAF Conducting Cyber Security risk assessments and managing risk management activities Good knowledge of IT systems covering traditional infrastructure, cloud platforms … or security management / leadership position Working with various technical teams Conducting Cyber Security assessments and gap analysis against various frameworks. Qualifications: NIST Foundation / Practitioner CISM CRISC ISO 27001 Lead Implementer / Auditor CISSP CISMP What we offer: Our story to-date has been phenomenal, but success More ❯

Central Bristol Job Type: Full-time, Hybrid (2 days per week in-office) Salary: £60,000 - £70,000 + Benefits We are recruiting an Information Security Manager to lead the operational and strategic security programme for a respected organisation headquartered in central Bristol. This hybrid role offers the opportunity to shape the company's approach to information … risk reduction across the business. You'll be responsible for maintaining ISO27001 compliance, overseeing risk assessment and mitigation, and supporting incident management across multi-entity operations. Key Accountabilities: Lead and manage a team of three security professionals , supporting their development and day-to-day delivery. Ensure ongoing ISO27001 accreditation and alignment with broader assurance frameworks (e.g. NIST … cloud services (AWS, SaaS, IaaS) . Strong communication skills and stakeholder management abilities. Experience in incident response and enterprise risk reporting. Professional certifications such as CISSP or ISO27001 Lead Implementer / Auditor (desirable). Benefits: Hybrid working (2 days per week in-office) Generous annual leave & pension contributions Life assurance and private health options More ❯