51 to 75 of 186 Cyber Essentials PLUS Jobs in the UK

systems, suppliers, and projects. Review and respond to security questionnaires and tenders. Support remediation activities and maintain the Information Security Risk Register. Contribute to maintaining compliance with ISO 27001, Cyber Essentials Plus, DSPT, and GDPR . Technical Security Oversight Review alerts, vulnerabilities, and incidents, providing risk-based recommendations. Validate configurations across the Microsoft security stack (M365, Azure … combining technical and GRC work. ✅ Strong understanding of cloud and endpoint security (Microsoft-based environments). ✅ Experience conducting risk assessments and reviewing supplier assurance evidence. ✅ Familiarity with ISO 27001, Cyber Essentials Plus, DSPT, GDPR, and NCSC guidance. ✅ Ability to interpret vulnerability reports and advise on remediation priorities. ✅ Excellent written communication and stakeholder engagement skills. Desirable ⭐ Certifications such More ❯

Run phishing simulations, incident playbooks and device-compliance audits. Collaborate with the IT Manager on threat monitoring, investigations and ISO 27001 compliance. Ensure alignment with BW’s commitment to Cyber Essentials Plus and information security best practice. Change & Roll-out Plan and execute application upgrades, Intune policy changes and security updates with minimal user disruption. Document and … into reporting tools such as Power BI. Experience supporting mobile device management (iOS/iPadOS, rugged devices). Hands-on understanding of cybersecurity frameworks (ISO 27001:2022, ISO 22301, Cyber Essentials Plus, CIS controls). Proven ability to manage service desks, incidents, and SLAs using ITIL best practices. Strong communication and coaching skills — able to support colleagues More ❯

Run phishing simulations, incident playbooks and device-compliance audits. Collaborate with the IT Manager on threat monitoring, investigations and ISO 27001 compliance. Ensure alignment with BW’s commitment to Cyber Essentials Plus and information security best practice. Change & Roll-out Plan and execute application upgrades, Intune policy changes and security updates with minimal user disruption. Document and … into reporting tools such as Power BI. Experience supporting mobile device management (iOS/iPadOS, rugged devices). Hands-on understanding of cybersecurity frameworks (ISO 27001:2022, ISO 22301, Cyber Essentials Plus, CIS controls). Proven ability to manage service desks, incidents, and SLAs using ITIL best practices. Strong communication and coaching skills — able to support colleagues More ❯

Run phishing simulations, incident playbooks and device-compliance audits. Collaborate with the IT Manager on threat monitoring, investigations and ISO 27001 compliance. Ensure alignment with BW's commitment to Cyber Essentials Plus and information security best practice. Change & Roll-out Plan and execute application upgrades, Intune policy changes and security updates with minimal user disruption. Document and … into reporting tools such as Power BI. Experience supporting mobile device management (iOS/iPadOS, rugged devices). Hands-on understanding of cybersecurity frameworks (ISO 27001:2022, ISO 22301, Cyber Essentials Plus, CIS controls). Proven ability to manage service desks, incidents, and SLAs using ITIL best practices. Strong communication and coaching skills - able to support colleagues More ❯

Run phishing simulations, incident playbooks and device-compliance audits. Collaborate with the IT Manager on threat monitoring, investigations and ISO 27001 compliance. Ensure alignment with BW’s commitment to Cyber Essentials Plus and information security best practice. Change & Roll-out Plan and execute application upgrades, Intune policy changes and security updates with minimal user disruption. Document and … into reporting tools such as Power BI. Experience supporting mobile device management (iOS/iPadOS, rugged devices). Hands-on understanding of cybersecurity frameworks (ISO 27001:2022, ISO 22301, Cyber Essentials Plus, CIS controls). Proven ability to manage service desks, incidents, and SLAs using ITIL best practices. Strong communication and coaching skills — able to support colleagues More ❯

Run phishing simulations, incident playbooks and device-compliance audits. Collaborate with the IT Manager on threat monitoring, investigations and ISO 27001 compliance. Ensure alignment with BW’s commitment to Cyber Essentials Plus and information security best practice. Change & Roll-out Plan and execute application upgrades, Intune policy changes and security updates with minimal user disruption. Document and … into reporting tools such as Power BI. Experience supporting mobile device management (iOS/iPadOS, rugged devices). Hands-on understanding of cybersecurity frameworks (ISO 27001:2022, ISO 22301, Cyber Essentials Plus, CIS controls). Proven ability to manage service desks, incidents, and SLAs using ITIL best practices. Strong communication and coaching skills — able to support colleagues More ❯

Run phishing simulations, incident playbooks and device-compliance audits. Collaborate with the IT Manager on threat monitoring, investigations and ISO 27001 compliance. Ensure alignment with BW’s commitment to Cyber Essentials Plus and information security best practice. Change & Roll-out Plan and execute application upgrades, Intune policy changes and security updates with minimal user disruption. Document and … into reporting tools such as Power BI. Experience supporting mobile device management (iOS/iPadOS, rugged devices). Hands-on understanding of cybersecurity frameworks (ISO 27001:2022, ISO 22301, Cyber Essentials Plus, CIS controls). Proven ability to manage service desks, incidents, and SLAs using ITIL best practices. Strong communication and coaching skills — able to support colleagues More ❯

such as Mimecast, Avanan, SentinelOne, MDR/XDR, Fortinet, Huntress, Datto, and Autotask Strong troubleshooting, analytical, and communication skills Ability to work independently and collaboratively across teams Experience with Cyber Essentials, Cyber Essentials Plus, and other frameworks such as NIST, ISO27001 Commitment to producing clear documentation and knowledge sharing Desirable Certifications Microsoft Certified: Azure Administrator More ❯

such as Mimecast, Avanan, SentinelOne, MDR/XDR, Fortinet, Huntress, Datto, and Autotask Strong troubleshooting, analytical, and communication skills Ability to work independently and collaboratively across teams Experience with Cyber Essentials, Cyber Essentials Plus, and other frameworks such as NIST, ISO27001 Commitment to producing clear documentation and knowledge sharing Desirable Certifications Microsoft Certified: Azure Administrator More ❯

such as Mimecast, Avanan, SentinelOne, MDR/XDR, Fortinet, Huntress, Datto, and Autotask Strong troubleshooting, analytical, and communication skills Ability to work independently and collaboratively across teams Experience with Cyber Essentials, Cyber Essentials Plus, and other frameworks such as NIST, ISO27001 Commitment to producing clear documentation and knowledge sharing Desirable Certifications Microsoft Certified: Azure Administrator More ❯

such as Mimecast, Avanan, SentinelOne, MDR/XDR, Fortinet, Huntress, Datto, and Autotask Strong troubleshooting, analytical, and communication skills Ability to work independently and collaboratively across teams Experience with Cyber Essentials, Cyber Essentials Plus, and other frameworks such as NIST, ISO27001 Commitment to producing clear documentation and knowledge sharing Desirable Certifications Microsoft Certified: Azure Administrator More ❯

such as Mimecast, Avanan, SentinelOne, MDR/XDR, Fortinet, Huntress, Datto, and Autotask Strong troubleshooting, analytical, and communication skills Ability to work independently and collaboratively across teams Experience with Cyber Essentials, Cyber Essentials Plus, and other frameworks such as NIST, ISO27001 Commitment to producing clear documentation and knowledge sharing Desirable Certifications Microsoft Certified: Azure Administrator More ❯

such as Mimecast, Avanan, SentinelOne, MDR/XDR, Fortinet, Huntress, Datto, and Autotask Strong troubleshooting, analytical, and communication skills Ability to work independently and collaboratively across teams Experience with Cyber Essentials, Cyber Essentials Plus, and other frameworks such as NIST, ISO27001 Commitment to producing clear documentation and knowledge sharing Desirable Certifications Microsoft Certified: Azure Administrator More ❯

WILL BE RESPONSIBLE FOR: Managing, maintaining, and maturing the already established audit lifecycles for the following frameworks: PCI DSS v4.0, ISO 27001:2022, ISO 9001:2015, ISO 14001:2015, Cyber Essentials, Cyber Essentials Plus, SOC2 Type 1 – 3 & HIPAA Working in close collaboration with other team members, with peers, and across the business to ensure … commitments and requirements to managing a security, education, training and awareness (SETA) programme. WE WANT TO HEAR FROM YOU IF YOU: Possess extensive and comprehensive knowledge of Information/Cyber Security processes and methodologies as they relate to maintaining compliant PCI DSS and ISO certified environments. Have exceptional knowledge of steering and strategically managing GRC and audit roadmaps and … associated processes, and their relevance to maintaining a GRC programme. Are a strong and proactive collaborator with a positive professional, pragmatic work ethic. Possess a thorough understanding of applicable cyber security assurance methodologies and frameworks, e.g. NIST & CIS etc. Have a rudimentary understanding of AI GRC requirements that can be used to develop and mature AI GRC and assurance More ❯

team. This is a fantastic opportunity for someone with 25 years of relevant experience to play a key role in maintaining and improving IT systems and ensuring compliance with Cyber Essentials Plus standards. Key Responsibilities Manage patching and vulnerability processes, using multiple scanning tools to identify and resolve security gaps. Coordinate and deploy updates across software and … Monitor system performance and availability using the companys chosen monitoring tools. Identify and resolve potential security breaches using centralised logging, alerting, and monitoring platforms. Support preparation and maintenance for Cyber Essentials Plus certification. Provide 1st and 2nd line support to internal teams and customers, ensuring tickets are accurately maintained and incidents managed effectively. Collaborate with cross-functional … routers, VPNs, and IP subnetting. Familiarity with directory services (e.g. Active Directory). Exposure to cloud platforms such as AWS or Azure (desirable but not essential). Experience with cyber security tools, including endpoint protection and data loss prevention (DLP) solutions. Excellent communication and documentation skills, with the ability to engage stakeholders at all levels. If youre looking to More ❯

certifications (AWS, security, etc.). Work that makes a difference to how citizens access vital public services. Be part of a company that holds ISO 9001, ISO 27001, and Cyber Essentials Plus certifications. Key Responsibilities of the Infrastructure & Security Support Specialist: Supporting and maintaining the AWS infrastructure that powers live government websites. Providing 1st and 2nd line … monitor security alerts and incidents — learning from experienced engineers. Supporting Docker-based web environments (nginx, WordPress, Drupal, MariaDB). Learning how to meet key government security standards (ISO 27001, Cyber Essentials Plus). What We’re Looking For: Commercial experience in IT support (1st Line, Service Desk, or similar) with a clear track record of solving technical More ❯

them with revenue and operational processes Oversee Google Workspace and Microsoft 365 , ensuring efficiency and security Provide hands-on IT support across the company Lead information security initiatives, supporting Cyber Essentials Plus certification and future ISO accreditation Manage vendor relationships, software procurement, and evaluations Deliver reporting and analysis to inform operational decisions Mentor, train, and support a … Google Workspace, and Microsoft 365 Practical problem-solver, comfortable working in ambiguity and fast-changing environments Experience managing small teams in IT or operations Knowledge of information security practices, Cyber Essentials Plus, and ISO processes advantageous Strong communicator able to explain technical concepts to non-technical colleagues What’s on Offer 25 days holiday + bank holidays More ❯

customers. Consult and Advise: Conduct assessments and reviews for ISO27001 (Information Security Management) and ISO22301 (Business Continuity Management). Provide expert advice on compliance standards such as PCI-DSS, Cyber Essentials, and more. Policy Development: Create, review, and update information security policies to align with business and regulatory requirements. Technical Expertise: Translate information security requirements into actionable IT … practices in cybersecurity and compliance. Client Engagement: Participate in scoping calls, client meetings, and ongoing project management to ensure client satisfaction. Incident Response Planning: Assist clients in developing robust Cyber Security Incident Response Plans (CSIRP). We’re looking for someone with: CISM, CISSP, or equivalent certifications. ISO27001 and ISO22301 Lead Auditor/Implementor certifications. Knowledge of Cyber Essentials/Cyber Essentials Plus. Familiarity with PCI DSS and ISO31000 (preferred). Experience: Proven track record in delivering governance, risk, and compliance services. Expertise in information security management and business continuity frameworks. Experience working with industry standards such as NIST, CIS, and NCSC. Strong communication skills with the ability to engage clients at all levels More ❯

customers. Consult and Advise: Conduct assessments and reviews for ISO27001 (Information Security Management) and ISO22301 (Business Continuity Management). Provide expert advice on compliance standards such as PCI-DSS, Cyber Essentials, and more. Policy Development: Create, review, and update information security policies to align with business and regulatory requirements. Technical Expertise: Translate information security requirements into actionable IT … practices in cybersecurity and compliance. Client Engagement: Participate in scoping calls, client meetings, and ongoing project management to ensure client satisfaction. Incident Response Planning: Assist clients in developing robust Cyber Security Incident Response Plans (CSIRP). We're looking for someone with: CISM, CISSP, or equivalent certifications. ISO27001 and ISO22301 Lead Auditor/Implementor certifications. Knowledge of Cyber Essentials/Cyber Essentials Plus. Familiarity with PCI DSS and ISO31000 (preferred). Experience: Proven track record in delivering governance, risk, and compliance services. Expertise in information security management and business continuity frameworks. Experience working with industry standards such as NIST, CIS, and NCSC. Strong communication skills with the ability to engage clients at all levels More ❯

Job Title: Risk and Compliance Manager Location: Cambridge (Hybrid) Salary: £60,000 to £70,000 plus package Function: Risk & Compliance within a Fintech/Technology-focused company Primary Objective To lead and manage compliance and risk management operations—ensuring the company remains compliant with internal policies, external standards (like ISO27001, GDPR), and regulatory bodies. Key Responsibilities Policy & Compliance Management … Risk and Compliance role ISO27001 GDPR Experience managing audits Policy and procedure development Solid risk management knowledge Desirable Background in financial services Understanding of FCA material supplier requirements FSQS Cyber Essentials/Cyber Essentials Plus Stakeholder engagement experience If this could be of interest, please drop me an email at jack@tdatelecoms.com or call me More ❯

Job Title: Risk and Compliance Manager Location: Cambridge (Hybrid) Salary: £60,000 to £70,000 plus package Function: Risk & Compliance within a Fintech/Technology-focused company Primary Objective To lead and manage compliance and risk management operations—ensuring the company remains compliant with internal policies, external standards (like ISO27001, GDPR), and regulatory bodies. Key Responsibilities Policy & Compliance Management … Risk and Compliance role ISO27001 GDPR Experience managing audits Policy and procedure development Solid risk management knowledge Desirable Background in financial services Understanding of FCA material supplier requirements FSQS Cyber Essentials/Cyber Essentials Plus Stakeholder engagement experience If this could be of interest, please drop me an email at jack@tdatelecoms.com or call me More ❯

many businesses can say that these days? What will you be doing You’ll be providing high level infrastructure support as well as monitoring and securing the business against cyber threats, working alongside the Head of IT, to monitor endpoints, patch devices and develop security resilience, building on some of the work the head of IT has already undertaken … support, deployed a range of infrastructure and either has an affinity for security or has recently specialised in the security aspect, You may have been involved in things like Cyber Essentials (or Cyber Essentials Plus) or iso27001 and comfortable engaging with internal stakeholders to both assess security risks or communicate security policy You’ll be More ❯

many businesses can say that these days? What will you be doing You’ll be providing high level infrastructure support as well as monitoring and securing the business against cyber threats, working alongside the Head of IT, to monitor endpoints, patch devices and develop security resilience, building on some of the work the head of IT has already undertaken … support, deployed a range of infrastructure and either has an affinity for security or has recently specialised in the security aspect, You may have been involved in things like Cyber Essentials (or Cyber Essentials Plus) or iso27001 and comfortable engaging with internal stakeholders to both assess security risks or communicate security policy You’ll be More ❯

to enhance the management of deployed applications and Operating systems. The role involves managing, maintaining, and continuously improving the Trusts endpoint management platform in line with NHS Digital standards, cyber security requirements, and organisational strategy. The post holder will provide expert technical advice and operational support on all aspects of device image creation, software deployment, patching, and compliance reporting … to support the safe and efficient delivery of patient care. Working closely with other Digital Services teams, including End User Services, Cyber Operations, and Infrastructure, the MCM Engineer will play a vital role in enabling the transition to a sustainable hybrid operating model by providing local capability and resilience in device management. The post holder will also contribute to … security and compliance initiatives, supporting frameworks such as the DSP Toolkit and Cyber Essentials Plus. The MCM (Microsoft Configuration Manager) Engineer will be a key member of the Digital Services team, responsible for ensuring the effective configuration, deployment, and lifecycle management of the Trusts end user devices and operating system builds. This includes managing the Trusts SCCM/ More ❯

Senior IT Security Specialist to lead and strengthen the cyber resilience of a complex public-sector programme. The postholder will play a pivotal role in developing, implementing, and governing security strategy, ensuring compliance with national standards, and embedding robust cyber practices across digital and IT estates. This is a senior strategic and technical leadership role, ideal for a … objectives and statutory duties. Lead the creation and enforcement of cybersecurity governance frameworks. Align security objectives with enterprise architecture and digital transformation strategy. Advise senior management and boards on cyber risk posture, incidents, and mitigations. Identify and manage strategic risks — technical, legal, reputational, and financial. Evaluate emerging technologies (AI, RPA, cloud, hybrid infrastructure) from a security perspective. Policy, Procedure … and Guidance Oversight Review, update, and enforce security policies, standards, and guidance (e.g. Acceptable Use, Incident Response, Remote Access). Ensure compliance with NCSC, ISO 27001, NIST, Cyber Essentials, and GDPR frameworks. Clarify security roles and responsibilities across departments. Support Information Governance and Data Protection teams on policy alignment and compliance. Technical Review and Oversight Lead or oversee More ❯