1 to 25 of 169 Remote/Hybrid ISO/IEC 27001 Jobs in the UK

based multi-site enterprise, is delivering a multi-year cybersecurity, controls and resilience programme aligned to NIST CSF v2.0 and ISO / IEC 27001:2022. They require an experienced, hands-on Infrastructure Engineer to design, implement and uplift infrastructure controls translating cyber security … environments. Remediate security findings arising from audits, risk assessments and maturity reviews. Engineer and embed technical controls supporting NIST CSF and ISO / IEC 27001 objectives. Support security tooling integration (SIEM log sources, EDR / XDR dependencies, vulnerability tooling). Enable ...

across the organisation. Your role in our future: Assist with the administration and maintenance of Quadient’s ISO 27001:2022 / ISO 27701:2019 certified ISMS / PIMS Investigate and resolve security incidents Maintain risk registers and ensure risks are identified, recorded … level experience in IT or security Degree in Information Security, IT or related field (or equivalent experience) ISO 27001 Foundation / Lead Implementer / Lead Auditor ISO 27701 Foundation CompTIA Security+ Certified Information Security Manager (CISM) or similar Additional Information Rewards & Benefits ...

security and compliance requirements and work closely with Engineering and IT teams to ensure they are implemented effectively Maintain existing compliance across PCI DSS, ISO27001, SOC2 and Cyber Essentials, and lead new compliance initiatives across additional standards such as ISO 27017 and ISO 27018 Manage audits … worked in security and compliance within a payments, fintech or PCI-regulated environment You have strong, hands-on experience with PCI DSS, ISO27001 and SOC2, including preparing for and delivering audits You've personally owned and delivered compliance programmes, not just overseen them You understand how security and compliance connect ...

+ 20% Bonus Based in Milton Keynes (Hybrid / Remote considered) Permanent Compliance Manager About the Opportunity We are seeking an experienced Compliance Manager to join our People & Compliance team. Working within a leading international technology solutions provider, you will take ownership of the company's compliance, governance … writing, documentation and communication skills. Self-motivated, organised and able to work independently. Desirable Experience implementing and maintaining Cyber Security compliance. Business Continuity and / or Health & Safety qualifications. Knowledge of NIS2, DORA and wider European regulatory frameworks. What You'll Bring Strong stakeholder management and influencing skills. ...

Role: Cyber Security Consultant Location: Leeds or Manchester (Hybrid, 1 day on site / week) Salary: £60,000 Type: Permanent, Full-Time Summary: We are working with a UK cyber security consultancy to bring in Cyber Risk & Compliance Consultants into their advisory practice. The team supports a varied client … information security, compliance or audit. Working knowledge of ISO 27001, NIST, GDPR. Certifications: ISO 27001 LI / LA, CISA, CRISC, CISM, CISSP. Cloud security review experience (AWS, Azure, M365). Strong written and verbal communication across technical and executive audiences. Benefits ...

comprehensive documentation (Manual, processes, procedures and controls) in accordance with contractual requirements, ISO 9001 and other applicable standards (ITIL, ISO / IEC 20000, ISO 27001, ISO 31000, etc). Develop and implement a Project Quality Plan … detail. Ability to work under pressure and manage competing priorities. Benefits: 25 days' holiday per annum + 8 days' bank holidays (options to buy / sell days) Pension - 4% employee and 4% employer Private medical insurance (including dental & optical) Life assurance Income protection Employee assistance programmes Flexible / ...

Cyber Security Implement Cyber Security policies under the SIRO. Lead ISO 27001 recertification, internal audits, and remediation. Work with infrastructure / product teams on data security and incident handling. Oversee playbooks and ensure measurable risk reduction. Digital Clinical Safety Collaborate with IT, Clinical, Legal … SIRO, and Caldicott Guardian. Maintain the Digital Clinical Safety Policy with CMO / CTO. Lead biennial reviews for DCB0129 / 0160 and MDD compliance. Oversee training compliance and safety case documentation. Quality Management Lead the ISO 9001aligned Quality Management System. Manage ISO 9001 audits ...

Information Security Specialist Permanent - Good salary + strong benefits Location: Hybrid - Bristol / Edinburgh - 2 / 3 days a week on site Your new company: A leading UK Law and Professional Services company is currently looking for an Information Security Specialist to come in and support the existing … Manager to improve and maintain their governance, risk and compliance (GRC) capability and help us continually improve our ISO 27001 / CE+ Information Security Management System (ISMS). The role is full-time, with a hybrid working pattern usually around 2 / 3 days ...

online tutorials to enhance and achieve your personal and professional goals. Healthcare cash plan. This will give you access to online GP appointments, 24 / 7 access to qualified counsellors and cash back against a range of general healthcare Casual dress policy Company Pension Scheme Company social events … days annual leave plus public / bank holidays Purchase of annual leave scheme Life at Littlefish: Our company values shape who we are as a business, what we stand for and how we work. Hiring people with our values at heart, is very important as we see Littlefish grow. ...

Purpose of Position As Information Security Risk Manager (f / m / d) you will own and drive Awin’s global Information Security Risk Management capability end-to-end, ensuring the business not only understands its risks but takes measurable action to reduce them. You will be accountable … implementing, or improving control frameworks Experience with GRC platforms (e.g. Hyperproof) Confident communicator (with very good English skills) - able to build relationships and challenge / influence senior stakeholders Our Offer Flexi-Week : We prioritise your mental health and wellbeing by offering you a four-day Flexi-Week (with ...

Purpose of Position As Information Security Risk Specialist (f / m / d) you will own and drive Awin’s global Information Security Risk Management capability end-to-end, ensuring the business not only understands its risks but takes measurable action to reduce them. You will be accountable … implementing, or improving control frameworks Experience with GRC platforms (e.g. Hyperproof) Confident communicator (with very good English skills) - able to build relationships and challenge / influence senior stakeholders Our Offer Flexi-Week : We prioritise your mental health and wellbeing by offering you a four-day Flexi-Week (with ...

expert for security, working across infrastructure, operations, and leadership to embed best practice in a live 24 / 7 production environment. The Role You will take ownership of cyber security across the organisation, combining hands-on technical delivery with strategic oversight. Key Responsibilities Lead delivery of Cyber Essentials, CE+ … security lead without the luxury of a large team. Strong cyber security background across infrastructure and systems environments Experience delivering or supporting Cyber Essentials / ISO 27001 Knowledge of: Identity & access management (Entra ID, MFA, Conditional Access) Endpoint & network security (EDR / MDR, firewalls ...

delivery of an engaging and relevant security awareness program. What you will be doing: The end-to-end design, implementation and maintenance of an ISO27001 aligned Information Security Management System. Ownership, delivery and maintenance of Cyber Essentials certification. The implementation of an effective Third-Party Risk Management strategy to mitigate … simulation Skills & Competencies Qualifications and Experience Proven experience in the hands-on delivery of GRC strategies in complex environments. Intrinsic knowledge of ISO 27001, CE & PCI Engagement with external auditors Certification is desirable: ISO 27001 Lead Auditor; ISO 27001 ...

ISMS delivery . You will ideally bring: Strong experience managing Information Security in a complex organisation or group structure Excellent knowledge of ISO 27001 , ideally including ISO 27001:2022 Experience with Cyber Essentials and Cyber Essentials Plus Strong understanding of ISMS management … business processes and decision-making Translating security requirements into clear, proportionate and usable guidance for staff Supporting compliance and audit activity for ISO 27001, Cyber Essentials and Cyber Essentials Plus Coordinating audit preparation, staff readiness, evidence collection and remediation activity Acting as a key point ...

ambitious team where there are genuine long-term career prospects and endless opportunities to develop. The Role Lead and conduct internal audits across ISO 27001, GDPR, DORA, Cyber Essentials & more. Prepare teams for external audits and manage the audit process end-to-end. Monitor changes … Cyber Essentials, GDPR, DORA). Experience with CSOC tools such as Rapid7 InsightIDR or other SIEM solutions. Hands-on experience with internal / external audits and compliance assessments. Relevant security / audit certifications (CISA, CISM, CISSP, ISO 27001 Lead Auditor, Cyber Essentials Assessor ...

primary responsibilities will be to: Support the development and continual improvement of Information Security policies, standards and procedures in line with ISO / IEC 27000, promoting a secure by design culture informed by business impact assessments, risk appetite and regulatory requirements. Serve as the Cyber … environments. Broad knowledge of cyber and information security, supported by relevant professional qualifications (e.g., CISSP, CISM, ISO 27001 Lead Implementer / Lead Auditor). Experience or strong awareness of enterprise cloud technologies, architectures and capabilities (e.g., Azure, AWS, GCP). Understanding of Operational Technology ...

audits covering all aspects of the IT and IS departments' activities. Typically, this will involve working under the guidance of senior team members and / or audit leads. You will conduct audits of various risk and controls, prepare and review planning, identify key risks, execute fieldwork, document work completed … / banking applications. Cloud based SAS (both Public and Private implementation) solution exposure, including risk assessments. (AWS, MS Azure, GCP) ITIL / ISO27001 / SWIFT CSP certification experience Network Infrastructure review (Firewall reviews, Penetration testing review experience) Identity & Access Management. Voice & Telephony technology exposure and audit exposure ...

incident response and internal communications Track and ensure remediation of vulnerabilities and security incidents Governance, Risk & Compliance Support implementation of frameworks such as ISO 27001, Cyber Essentials Plus, NIST, and CIS Develop and maintain security policies, standards, and procedures Conduct risk assessments and track mitigation actions … Sentinel, Defender, Microsoft Security Stack) Familiarity with frameworks such as ISO 27001, NIST, CIS, Cyber Essentials Experience assessing third-party / vendor risk Excellent stakeholder management and communication skills Ability to translate security requirements into practical business outcomes Desirable Experience working with outsourced SOC providers ...

Lead Information Security Analyst Engineer / Architect to £54k + Benefits ISO27001, COBIT, SECURITY, ITIL, CISM, CISSP, PCI-DSS Lead Information Security Engineer / Analyst: Do you have a background working in an IT Security function and are able to identify and remediate threats or vulnerabilities, implement information … help safeguard their digital assets and mitigate against potential risks.You will be actively responsible for ensuring the successful achievement of external certifications such as ISO27001, MOU, PSN and PCI-DSS etc alongside managing security incident response plans. In addition, the Lead information Security Analyst / Engineer will provide advice ...

Description: Cyber Security Engineer Reports to: Infrastructure Manager Location: Hybrid (remote / office-based) Role Overview The Cyber Security Engineer will help protect and improve security across a hybrid IT environment, spanning Microsoft Azure cloud services, on - prem VMware infrastructure, and the network estate (including Cisco Meraki). … Cloud Security (Azure) Implement and maintain Azure security controls across identity, networking, compute and storage. Support governance guardrails (Azure Policy), secure baselines and logging / monitoring for cloud workloads. Contribute to security design reviews for new services and changes to ensure secure-by-default patterns. On - Prem Security (VMware ...

renewal processes, and associated tooling. Familiarity with relevant cryptography related regulatory and industry frameworks and standards including NIST, FIPS 140, IETF, ISO / IEC 27001, DORA, and GDPR. If this role is of interest to you and would lilke to know more, please ...

trusted boardroom advisor to mid-market clients across cyber security, risk, and resilience. Core Frameworks: Lead client assessments and certifications across Cyber Essentials / CE+, ISO 27001, and UK GDPR . Innovation: Build next-generation AI Governance and operational resilience (BC / DR) frameworks. … Strong practical knowledge of Cyber Essentials, UK GDPR, and ISO 27001. Exceptional executive presence—confident presenting risk and strategies to C-suite / board levels. Commercial acumen to partner with sales teams and expand client adoption. Desirable: CISSP, CISM, CRISC, or ISO 27001 ...

sector, including: NCSC NIS Guidance and CAF ISO 27001 and ISO 27005 NERC CIP ISA-99 / IEC 62443 NIST CSF. Please be aware that some of our UK roles at PA Consulting require a UK security clearance. All PA people … redirected to and must complete the application process on our careers page. To start the process, click the Apply button below to Login / Register. TLNT1 ...

outcomes at scale. Proven authority in security governance, risk management and compliance, with strong working knowledge of recognised frameworks and standards such as ISO 27001, NIST, COBIT and GDPR, and experience supporting control and assurance activities. Confident senior-level communicator, experienced in briefing CIOs and business … Visit the link below to discover why we're a great place to work and what being part of more means for you. https: / / www.morethanacareer.energy / centrica If you're full of energy, fired up about sustainability, and ready to craft not only a better ...

team. Essential requirements: You will need strong evidence of strategic leadership, delivery and commercial judgement. Senior leadership experience owning a portfolio of digital products / platforms across live service, improvement and transformation. Proven people leadership, including developing leaders and building a high-performing, inclusive team. Experience setting strategy … level decisions and build trust across the organisation. Commercial and financial management experience, including managing significant budgets (typically up to £5m) and leading supplier / partner performance. Good working knowledge of modern delivery and service approaches (e.g., agile / hybrid delivery, DevOps, continuous improvement) and when ...