11 of 11 ISO/IEC 27001 Jobs in Surrey

The Information Security Director develops, shapes, and maintains Sycurio's information security capability, driving the attainment and maintenance of the ISO27001, PCI-DSS, and SOC2 compliance. They are the subject matter expert on all things regarding security and compliance, owning the information risk management processes. They are the thought leader on all matters within the security and compliance domain such … the information security strategy to relevant parties and providing assurance of policies, procedures, and systems. Develop, maintain, and expand the information security management system ('ISMS') to optimise compliance for ISO27001, PCI-DSS, and SOC2. Identify gaps in the information security capability, both technical and operational, and propose remediation and mitigation plans and solutions. Responsible for the Company's information security … degree in Computer Science, Cybersecurity, or related field (Master's preferred). Industry certifications such as CISSP, CISM, CISA, or equivalent. Experience: 10+ years of information security experience. Financial / Fintech services / payments desirable. Deep knowledge of security frameworks (PCI, ISO 27001, NIST) and regulations (GDPR, CCPA). Experience with PCI DSS compliance More ❯

and evaluation of risk, as well as using GRC tools and guidance developed for Risk mitigation. Practical knowledge of information security standards and risk assessment frameworks such as ISO 27001, SOC 2, NIST 800-32 Strong knowledge of cyber controls, policies, and procedures. Experience of delivering metrics for senior level audiences. Demonstrate analytical and problem-solving … to work every day. And you'll never stop growing, whatever your level . Discover more reasons to connect with us, our people and purpose-driven culture at deloitte.co.uk / careers More ❯

with the latest security trends, threats, and technology solutions. Ensure compliance with relevant laws, regulations, and industry standards. Prepare and present security reports to senior management. Skills Preferred Skills / Requirements Ideally around 5 years of experience in cybersecurity or a related field. Knowledge of security frameworks and standards (e.g., ISO 27001, ITIL, NIST). … Experience with security tools and technologies (e.g., firewalls, IDS / IPS). Excellent problem-solving and analytical skills. Strong communication and interpersonal skills. Ability to work independently and as part of a team. Experience with cloud and internet security. Familiarity with regulatory requirements (e.g., GDPR, HIPAA). Qualifications / training desirable but not essential. More ❯

with the latest security trends, threats, and technology solutions. Ensure compliance with relevant laws, regulations, and industry standards. Prepare and present security reports to senior management. Skills Preferred Skills / Requirements Ideally around 5 years of experience in cybersecurity or a related field. Knowledge of security frameworks and standards (e.g., ISO 27001, ITIL, NIST). … Experience with security tools and technologies (e.g., firewalls, IDS / IPS). Excellent problem-solving and analytical skills. Strong communication and interpersonal skills. Ability to work independently and as part of a team. Experience with cloud and internet security. Familiarity with regulatory requirements (e.g., GDPR, HIPAA). Qualifications / training desirable but not essential. More ❯

ensure consistency, uphold best practices, and drive compliance efforts that align with industry standards and regulatory expectations. How Youll Spend Your Time Assistingwith the compliance program and integrated quality / information security management system to maintain alignment with industry standards Facilitatingand conducting risk assessments in order to ensure risks are effectively identified and managed according to the company framework … your skillset using innovative tools and technologies along the way. You will grow and develop, and be a part of an amazing international team, advancing your career further. Experience / Knowledge / Competencies You Will Need: Must have excellent oral and written communication skills and expertise in: UK & EU privacy legislation completing risk assessments in general, privacy assessments … program Demonstrate discretion, integrity and ethical judgment in all compliance-related matters We would like to speak to you if you have Managed a compliance program (SOC, HIPAA, ISO9001, ISO27001, preferred) within a technology or healthcare company Excellent knowledge of legal requirements and procedures but particularly privacy legislation in the UK & EU Knowledge of privacy legislation in US, Canada, Australia More ❯

member firms and stakeholders in the global firm to participate in the Technology Standards and Maturity Assessment with the objective to assess the member firm's overall IT capability / maturity and to help them establish their own priorities. Keep abreast of new and emerging technologies being deployed and ensure risk assessment processes are appropriately applied and advise on … decisions with technology risk impacts as new activities and other change management / transformational initiatives. Leverage available technical resources / tools to research; expand technology risk knowledge to enhance work product, to remain up to date on member firms and line of businesses hot topics while sharing the technology risk knowledge amongst the team where applicable. Advise member … programme process including the use of ServiceNow Integrated Risk Management module to support integrated IT risk Management processes. An understanding of the principals around CMMI, COBIT, ITIL, PMI, Prince2, ISO27001, SOC2. Cybersecurity or IT Risk Management experience which should include either control testing or compliance assessment experience. A strong understanding of system development life cycles approaches and concepts (CMMI knowledge More ❯

Azure Solutions Architect (Contract) IaC / Terraform | DevOps | Azure Certifications | Mission-Critical Location: United Kingdom (Hybrid / Remote options depending on project requirements) Contract Type: Day Rate Contract Duration: Initial 6-12 months (extension likely) Role Overview We are seeking an experienced Azure Solutions Architect to join a complex, mission-critical programme within the defence, aerospace, and security … compliant, and cost-effective Azure solutions. Collaborate with cybersecurity teams to ensure solutions meet UK government security classifications, accreditation processes, and relevant compliance frameworks (eg NCSC, MOD JSP, ISO 27001). Support deployment automation and Infrastructure-as-Code (IaC) approaches leveraging Azure Resource Manager (ARM), Bicep, or Terraform. Conduct Azure cost optimisation, performance tuning, and cloud More ❯

environments Providing escalation and technical support to Operations teams for the internal systems, Managed Services and customer projects. Conducting regular checks of our customer networks in compliance with ISO 27001 ensuring they are optimised, secure and monitored. Monitor … identify and log work items against the health and service status of all networking components relating to the environments, including any performance degradation within the service Supporting the 24 / 7 / 365 escalation team by providing cover for network related issues managed by a on-call rota (every other week) Proactive security focus and remediation of tasks … Private medical insurance Access to Mental Health Support Homeworking budget One paid charity day (matched) per year Quarterly company paid team lunches Employee of the Quarter awards (time off / £) Due to the volume of applications received for positions, it will not be possible to respond to all applications and only applicants who are considered suitable for interview will More ❯

similar administrative or operational support role. The successful Business Administrator will be responsible for: Providing administrative support across all departments, maintaining consistent standards and alignment with ISO9001 (Quality) and ISO27001 (Information Security). Maintain and manage internal documentation, including templates, policies, procedures, and controls. Coordinate and control all document filing systems, both electronic and hard copy, with particular responsibility for More ❯

Windows Systems Administrator (IIS) Godalming / WFH to £50k Do you have a strong knowledge of Windows Server? You could be progressing your career in a hands-on role at a successful software house. As a Windows Systems Administrator you'll be an integral part of a small team responsible for the company's technical infrastructure. You'll have … IIS, Active Directory and Hyper-V. You will collaborate with the Head of Technical Operations and software engineering teams to implement code, monitor performance, assist with security maintenance for ISO27001, develop the existing disaster recovery procedures, write environment documentation (including network diagrams, procedures and Scripts) troubleshoot performance issues and investigate customer issues. Location / WFH: You can work from … up with colleagues once a week in the Godalming office (free onsite parking). Please note there is a on-call requirement of one week in four, providing 24 / 7 cover (you'll get an additional 7% of your base salary pro-rata). About you: You have experience as a Windows Systems Administrator, with a strong knowledge More ❯

Global Leading Technology Brand SaaS - Platform based Technology Services London / Surrey / Hybrid Working £70,000-£80,000 salary + benefits package Our client a global technology leader is currently looking for a hands on Head of IT to c oordinate the UK delivery of IT services by managing a small team responsible for Production Infrastructure, Networking … of team goals. Strategy: Develop effective IT strategies to align with the strategic objectives of the business. Policy & Compliance: Manage IT policy suite, client due diligence, data security, and ISO27001 compliance. Client Focus: Craft and implement service practices that meet client and business needs. Planning and Organising: Establish courses of action for self and others to ensure that work is More ❯