1 to 25 of 296 Cyber Essentials PLUS Jobs in the UK

and policy requirements. Ensure process and requirements are met to support GDPR compliance and protection of personal data. Maintain and improve level of compliance with ISO 27001:2022 and Cyber Essentials Plus requirements. Work in partnership with development staff to embed best practices in the development processes throughout the software development lifecycle. Devise and embed an effective … life assurance, income protection, private healthcare. Remote working - cafe, bedroom, beach - wherever works. Truly flexible working hours - school pick up, volunteering, gym - no problem. Generous leave - 27 days' holiday plus bank holidays and enhanced family leave. Annual bonus - when Satalia does well, we all do well. Impactful projects - focus on bringing meaningful social and environmental change. People oriented culture More ❯

and policy requirements. Ensure process and requirements are met to support GDPR compliance and protection of personal data Maintain and improve level of compliance with ISO 27001:2022 and Cyber Essentials Plus requirements. Work in partnership with development staff to embed best practices in the development processes throughout the software development lifecycle. Devise and embed an effective … life assurance, income protection, private healthcare Remote working - café, bedroom, beach - wherever works Truly flexible working hours - school pick up, volunteering, gym - no problem Generous leave - 27 days’ holiday plus bank holidays and enhanced family leave Annual bonus - when Satalia does well, we all do well Impactful projects - focus on bringing meaningful social and environmental change People oriented culture More ❯

years of experience in Information Security, Compliance, or IT Risk Management. Experience with regulatory frameworks in UK & EU : GDPR (General Data Protection Regulation) ISO 27001 (Information Security Management Systems) Cyber Essentials Plus (UK government-backed security framework) DORA (Digital Operational Resilience Act) - EU financial sector PCI-DSS (if handling payment data) Experience in: Managing vendor risk assessments … Deep understanding of data protection laws (UK GDPR, EU GDPR, DPA 2018) . Familiarity with risk management frameworks like NIST CSF, CIS Controls, and ISO 27005 . Experience with cyber security tools (e.g., SIEM, Malware Protection, Firewalls and others) is a plus. Strong reporting and communication skills-ability to brief executives and regulators. Ability to design, implement, and enforce … security policies . Key Responsibilities: Ensure compliance with GDPR, Cyber Essentials Plus, PCI-DSS, and other applicable standards. Align ISMS activities with ISO 27001 framework. Develop and implement security policies, controls, and procedures. Conduct security risk assessments & compliance audits. Manage incident response & data breach reporting (ICO & EU authorities). Liaise with regulators, legal teams, and third-party More ❯

identity and access management (IAM), and security information and event management (SIEM) systems. Strong understanding of security frameworks, standards, and regulations, including ISO 27001, NIST Cybersecurity Framework, GDPR , NCSC Cyber Essentials Plus, with experience in implementing and maintaining compliance with these requirements. Excellent leadership and communication skills, with the ability to effectively communicate security-related concepts and More ❯

Leadership and Compliance Design and implement a comprehensive security strategy aligned with business goals. Lead risk assessments, incident response, and mitigation planning. Maintain compliance with ISO 27001, GDPR, CyberEssentials Plus, and other standards. Administer firewalls, IDS/IPS, antivirus, and endpoint protection tools. Foster security awareness through training and internal communications. Strategic Collaboration Collaborate with our CTO, IT Dept More ❯

technologies, including EntraID. Experience with government systems and audits such as OneLogin or GovAssure is highly desirable. Experience with security frameworks and standards, such as NIST, ISO 27001, CyberEssentials Plus, and CIS. Strong understanding of networking protocols, operating systems, and security technologies like firewalls, intrusion detection/prevention systems, and SIEM. Excellent analytical, problem-solving, and communication skills. Ability … encourage colleagues to bring their whole selves to work, supporting networks for neurodiversity, women’s health, men’s health, and more. What We Offer Generous annual leave: 30 days plus Bank Holidays Pension scheme: contributions matched 2 to 1 (up to 10% of salary) Interest-free season ticket loans Cycle to work scheme Subsidized health benefits Life assurance Volunteer More ❯

external vendors to help deliver a wide range of infrastructure improvements. From migrating to Azure AD and Intune, to rolling out Defender across the business and helping push toward Cyber Essentials Plus and ISO 27001 compliance - there's a lot going on, and you'll be in the thick of it. Alongside cloud migration work, you'll … and cloud services, resolving escalated issues while contributing to a variety of internal projects. You'll work within an ITIL aligned environment, helping improve system performance, network reliability, and cyber security posture. Collaborating across support functions and with senior leadership, you'll take ownership of your technical space - from endpoint security to server virtualisation and cloud platform improvements. It … DHCP, routing, firewalls, web filtering Exposure to cloud migrations, ideally Azure (some AWS experience also fine) Experience supporting enterprise platforms like IIS & SQL Familiarity with compliance standards (ISO 27001, Cyber Essentials, NIST) Excellent problem solving and communication skills There's no on call requirement, though some flexibility around out of hours work may occasionally be needed. This is More ❯

security technologies such as firewalls, IDS/IPS, endpoint protection, encryption, IAM, and SIEM systems. Strong understanding of security frameworks and standards, including ISO 27001, NIST, GDPR, and NCSC Cyber Essentials Plus, with experience in compliance management. Excellent leadership and communication skills, capable of conveying security concepts to diverse audiences and building consensus. Analytical skills and problem More ❯

Join to apply for the Senior Cyber Security Consultant (GRC) role at FSP 1 week ago Be among the first 25 applicants Join to apply for the Senior Cyber Security Consultant (GRC) role at FSP We have an exciting opportunity for a Senior Security Consultant to join our growing Governance, Risk and Compliance (GRC) team. In this role … you will apply your expertise in information security to provide strategic guidance to clients on GRC activities, as well as on achieving their cyber and information security objectives. You will take the lead in managing technical consulting engagements and contribute to the successful delivery of complex security programs. Responsibilities Apply a strong knowledge of the cyber threats, hazards … risks, controls, and mitigations to protect organisations, their employees, customers and stakeholders and deliver effective Information Security outcomes. Work directly with our clients to understand the cyber security threats and regulatory requirements relevant to their organisation. Design and deliver information security, cyber resilience and maturity assessments tailored to customer’s organisational and compliance needs. Lead and advise customers More ❯

will light a fire within you. So, what's the role all about? The Information Security Analyst is primarily responsible for ensuring compliance with information security frameworks such as Cyber Essentials, Cyber Essentials Plus, ISO 27001, ISO 27701, ISO 42001, GDPR, and DORA. This role focuses on internal audits, regulatory compliance, and readiness for external … audits. Gap Assessments: Facilitate and/or conduct internal gap assessments and audit readiness evaluations for frameworks such as ISO 27001, GDPR, and DORA. Framework Tracking: Monitor updates to Cyber Essentials, ISO, and regulatory frameworks and ensure internal alignment. Control Documentation: Develop and maintain control narratives, walkthroughs, and documentation of compliance processes. Audit Findings: Identify control deficiencies and … coordination with IT and Security Operations teams. Have you got what it takes? Strong expertise in audit and compliance frameworks, including ISO 27001, ISO 27701, ISO 42001, GDPR, DORA, Cyber Essentials, and Cyber Essentials Plus. Familiarity with CSOC tools such as Rapid7 InsightIDR or other SIEM solutions. Hands-on experience in internal and external audits, compliance More ❯

will light a fire within you. So, what's the role all about? The Information Security Analyst is primarily responsible for ensuring compliance with information security frameworks such as Cyber Essentials, Cyber Essentials Plus, ISO 27001, ISO 27701, ISO 42001, GDPR, and DORA. This role focuses on internal audits, regulatory compliance, and readiness for external … audits. Gap Assessments: Facilitate and/or conduct internal gap assessments and audit readiness evaluations for frameworks such as ISO 27001, GDPR, and DORA. Framework Tracking: Monitor updates to Cyber Essentials, ISO, and regulatory frameworks and ensure internal alignment. Control Documentation: Develop and maintain control narratives, walkthroughs, and documentation of compliance processes. Audit Findings: Identify control deficiencies and … coordination with IT and Security Operations teams. Have you got what it takes? Strong expertise in audit and compliance frameworks, including ISO 27001, ISO 27701, ISO 42001, GDPR, DORA, Cyber Essentials, and Cyber Essentials Plus. Familiarity with CSOC tools such as Rapid7 InsightIDR or other SIEM solutions. Hands-on experience in internal and external audits, compliance More ❯

ll be doing This role will focus on the BMS which is certified to ISO 27001, ISO 9001 and ISO 27701 and forms the basis for our SOC2 and Cyber Essentials Plus accreditations. A core element of the role is to ensure that Bridewell’s accreditation portfolio is maintained and, where required, integrate new standards. As a … proactive and take pride in everything they do. Have experience of implementing and/or managing an Information Security Management System (ISO 27001) or generally managing and delivering on cyber security initiatives incl. controls design (SOC 2 etc.) Be highly organised and proactive in terms of the delivery of tasks and activities that support effective outcomes. Be a good … play in society, and our commitment to our people and clients. Bridewell will provide a great career opportunity with continual development as well as the following: 25 Days Holiday - Plus buy and sell options Flexible Working (around core office hours) Profit Share Scheme Company Pension Employee Shareholder Scheme Dedicated Training Budget Home Office Equipment (for remote working employees) Life More ❯

for current and new clients, supporting engagements across multiple sectors and technical environments. This hands-on, client-facing position focuses on control implementation, infrastructure security hardening, technical remediation, and cyber risk reduction. You will be expected to work independently while maintaining alignment with industry standards and client requirements. The role offers the opportunity to work with various organisations, technologies … and regulatory contexts, helping shape secure systems and improve cyber resilience in complex and fast-paced delivery environments. Responsibilities Deliver and support the implementation of cybersecurity solutions across a wide range of client environments, ensuring alignment with industry standards and regulatory requirements. Perform system and infrastructure hardening activities, including configuration reviews, security baseline application, and policy enforcement across cloud … vendor or platform-specific certifications (AWS, Azure, Microsoft, GCP, Palo Alto, CrowdStrike, Tenable) are advantageous. Demonstrable commitment to continuous professional development aligned with emerging technologies, infrastructure security, and evolving cyber threat landscapes. Essential skills Strong understanding of core cybersecurity principles, including confidentiality, integrity, availability, and risk management. Practical experience implementing security controls across IT/OT infrastructure. Proficiency in More ❯

the use of Microsoft Defender/Purview Work closely with the existing IT Infrastructure Manager to ensure security for office based & remote workers. As an ISO27001, BS10012, ISO22301 and Cyber Essentials Plus accredited business you must always carry out your role according to company IT policies. Assist with the handling of confidential information by ensuring appropriate file More ❯

the use of Microsoft Defender/Purview Work closely with the existing IT Infrastructure Manager to ensure security for office based & remote workers. As an ISO27001, BS10012, ISO22301 and Cyber Essentials Plus accredited business you must always carry out your role according to company IT policies. Assist with the handling of confidential information by ensuring appropriate file More ❯

date with emerging threats and vulnerabilities, including advising on architecture and design of internal and client-facing solutions Providing technical expertise towards compliance initiatives and programmes e.g. ISO 27001, Cyber Essentials Plus, GDPR Technical aspects of vendor and partner security reviews Increasing the levels of understanding of Information Security with end users, leading to improved user interactions … Protecting the data entrusted to us by our clients at all times The ideal background and skills we are looking for include: Experience with GDPR/UK Data Protection, Cyber Essentials and ISO 27001 frameworks Managing technical risks and proposing solutions and recommendations Security Operations procedures, i.e. Incident management and response Configuring, optimising and reporting with Microsoft More ❯

date with emerging threats and vulnerabilities, including advising on architecture and design of internal and client-facing solutions Providing technical expertise towards compliance initiatives and programmes e.g. ISO 27001, Cyber Essentials Plus, GDPR Technical aspects of vendor and partner security reviews Increasing the levels of understanding of Information Security with end users, leading to improved user interactions … Protecting the data entrusted to us by our clients at all times The ideal background and skills we are looking for include: Experience with GDPR/UK Data Protection, Cyber Essentials and ISO 27001 frameworks Managing technical risks and proposing solutions and recommendations Security Operations procedures, i.e. Incident management and response Configuring, optimising and reporting with Microsoft More ❯

controls and policies across cloud, on-premise, and hybrid environments. This role also involves working with SIEM solutions, automating security workflows, and contributing to the company's compliance with Cyber Essentials Plus and ISO 27001 standards. Key Responsibilities: Design, implement, and manage network security architectures, including firewalls, VPNs, and other perimeter security technologies. Configure, deploy, and manage … security incident response, including automating workflows to improve incident response times. Lead threat hunting activities across on-premises and cloud environments to proactively identify potential security threats. Assist with Cyber Essentials Plus and ISO 27001 audits and certifications to ensure company-wide compliance with industry best practices and regulations. Collaborate with development teams to integrate security throughout … managing SIEM rule sets, creating dashboards, and correlating data for threat detection. Familiarity with security event log analysis, alerts management, and incident response workflows. Cybersecurity Frameworks & Compliance: Knowledge of Cyber Essentials Plus and ISO 27001 compliance requirements. Ability to help maintain and audit compliance for ongoing security certifications. Demonstrated experience with proactive threat hunting and identifying vulnerabilities More ❯

Are you currently working for an IT provider but ready to step into the world of dedicated Cyber Security? We have an exciting opportunity for an Information Security Consultant looking to elevate their career. We're looking for someone with hands-on experience in ISO 27001 implementation and auditing, and expertise in NIST to drive our Compliance Team's … service offerings forward. Work with a innovative, industry-leading Cyber Security team Play a key role in the development of internal and client security programs Contribute to significant projects that support clients' compliance and risk management goals If you're ready to make an impact in Cyber Security, this role is for you! Responsibilities: Ensure protection of information …/Must have: Extensive experience in Information Security Governance, Risk, and Compliance (GRC) Experience contributing to an Information Security Management System (ISMS) certified to ISO27001 standards Knowledge of the Cyber Essentials Plus Scheme, GDPR, and Data Protection Act (2018) Strong communication skills and the ability to build relationships with internal and external stakeholders Hands-on experience in More ❯

and supplier. A typical day: Develop and own our Information Security Management System (ISMS) aligned with ISO 27001 Maintain security policies, control frameworks and ensure compliance with UK GDPR, Cyber Essentials Plus, PCI-DSS and DPA Conduct risk assessments, manage our risk register, and lead remediation actions Oversee security tooling and controls—from endpoint protection to vulnerability … What you’ll bring: 3+ years’ experience in security, compliance or risk roles within mid-to-large UK organisations Deep knowledge of ISO 27001, UK GDPR, and frameworks like Cyber Essentials Practical experience with risk management, audit prep, incident response and policy development Familiarity with technical controls such as access management, scanning tools and endpoint security Strong communication More ❯

on hardware/software/networks/environments as well as supporting the architecture and integration of technical solutions Maintaining our high standards in ISO 27001 as well as Cyber Essentials Plus accreditation You will also research and document major incidents and problems, developing complete documentation impact and RCA's Requirements Person Specification Applicants should have key More ❯

Integrity360 is the largest independent cyber security provider in Europe, with a growing international presence spanning the UK, Ireland, mainland Europe, Africa and the Caribbean. With over 700 employees, across 12 locations, and six Security Operations Centres (SOCs)-including locations in Dublin, Sofia, Stockholm, Madrid, Naples and Cape Town-we support more than 2,500 clients across a wide … range of industries. Over 80% of our team are technical experts, focused on helping clients proactively identify, protect, detect and respond to threats in an ever-evolving cyber landscape. Our security-first approach positions cyber resilience as a business enabler, empowering organisations to operate with confidence. At Integrity360, people come first. We invest heavily in learning, development and … progression, fostering a dynamic culture where innovation, collaboration and continuous growth are at the heart of what we do. If you're ready to take your cyber security career to the next level, we'd love to hear from you. Job Role/Responsibilities We are seeking an enthusiastic Cyber Risk & Assurance Analyst to support our Cyber More ❯

Senior Cyber Security Engineer opportunity working within an established fintech firm in Liverpool Attractive benefits package Up to £60,000 per annum depending on experience Full Time - Permanent role - Hybrid working available Sector: Finance Benefits Competitive Salary - £55,000 - £60,000 per annum Generous Annual Leave Paid Sick days Company Pension A comprehensive in-house training Continued training and … development Friendly and supportive working culture About the Role: Lead on technical cyber security initiatives within the Security Operations team Ensure the implementation of robust security controls and best practices Provide specialist security support to IT teams, including infrastructure, development, and database teams Work with stakeholders to maintain compliance with industry standards such as ISO27001, Cyber Essentials Plus, PCI/DSS Stay ahead of cyber threats, maintaining and improving security monitoring and risk management processes Support vulnerability management, penetration testing, and incident response Requirements for this role: 3+ years' experience in a senior cyber security role Strong knowledge of security frameworks (NIST, NCSC, CIS, MITRE ATT&CK) Hands-on experience with security tools More ❯

Senior Cyber Security Engineer opportunity working within an established fintech firm in Liverpool Attractive benefits package Up to £60,000 per annum depending on experience Full Time - Permanent role - Hybrid working available Sector: Finance Benefits Competitive Salary - £55,000 - £60,000 per annum Generous Annual Leave Paid Sick days Company Pension A comprehensive in-house training Continued training and … development Friendly and supportive working culture About the Role: Lead on technical cyber security initiatives within the Security Operations team Ensure the implementation of robust security controls and best practices Provide specialist security support to IT teams, including infrastructure, development, and database teams Work with stakeholders to maintain compliance with industry standards such as ISO27001, Cyber Essentials Plus, PCI/DSS Stay ahead of cyber threats, maintaining and improving security monitoring and risk management processes Support vulnerability management, penetration testing, and incident response Requirements for this role: 3+ years' experience in a senior cyber security role Strong knowledge of security frameworks (NIST, NCSC, CIS, MITRE ATT&CK) Hands-on experience with security tools More ❯

Role Overview We have an exciting opportunity for a Principal Cyber Security Consultant to join our Governance, Risk and Compliance practice. As a Principal Consultant, you will work with senior client stakeholders to help them develop and deliver effective cyber security strategy and programmes alongside supporting the growth and development of our GRC related offerings. Responsibilities • Applying a … strong knowledge of Cyber Security controls, risks, and mitigation solutions to protect organisations and deliver effective outcomes for our clients • Leading and managing major and complex Cyber Security GRC programs within clients • Development of Cyber GRC service offerings, shaping go-to-market strategies, and forming strategic client relationships • Support and management of GRC team members • Lead and … advise customers on the design, implementation and adoption of information security improvement programs, risk management, policies, controls, procedures and frameworks • Ensuring client cyber security controls meet, legal, regulatory, privacy, policy, standards and security requirements • Building long-term trusted-advisor client relationships with senior stakeholders • Staying up to date with the latest industry and technological developments and promoting these within More ❯