101 to 125 of 435 ISO/IEC 27001 Jobs in the UK

Entra ID and Active Directory, overseeing requirements for Conditional Access, MFA, SSO, and PIM. Threat Detection & Incident Response: Own and operate the SIEM / SOAR stack, including Microsoft Sentinel and Defender XDR, to develop detection rules and support forensic investigations. Infrastructure Hardening: Enforce secure baselines across virtualized environments (VMware … / Hyper-V), Windows Servers, and Azure IaaS workloads. Data Protection: Manage the certificate lifecycle (PKI / AD CS) and implement data classification and DLP strategies using Microsoft Purview. Cloud Security Posture: Manage Azure Landing Zone security and connectivity, collaborating with Network Engineering to validate secure firewall ...

Entra ID and Active Directory, overseeing requirements for Conditional Access, MFA, SSO, and PIM. Threat Detection & Incident Response: Own and operate the SIEM / SOAR stack, including Microsoft Sentinel and Defender XDR, to develop detection rules and support forensic investigations. Infrastructure Hardening: Enforce secure baselines across virtualized environments (VMware … / Hyper-V), Windows Servers, and Azure IaaS workloads. Data Protection: Manage the certificate lifecycle (PKI / AD CS) and implement data classification and DLP strategies using Microsoft Purview. Cloud Security Posture: Manage Azure Landing Zone security and connectivity, collaborating with Network Engineering to validate secure firewall ...

obligations such as ISO 27001, PCI DSS, and other regulatory requirements. What You’ll Get in Return Help@Hand – 24 / 7 access to GPs, mental health support, and more for you and your family Thrive App – NHS-approved mental wellbeing support Buzz Brights Apprenticeships … have: Proven experience investigating and responding to security alerts and incidents Hands-on knowledge of operational security tools (SIEM, EDR, IDS / IPS, firewalls, vulnerability scanning, web / email gateways, etc.) Strong understanding of networks, operating systems, authentication, cloud platforms, and common attack techniques Experience with threat intelligence ...

industry best practices and frameworks, such as ISO 27001, NIST, and COBIT Security Operations Provide best practice advice for SecOps / SOC teams Support the establishment and delivery of SecOps strategies Perform SOC Maturity Assessments via SOC-SMM framework Perform threat hunting and vulnerability management … interpersonal skills, with the ability to convey complex security concepts to non-technical stakeholders Proficiency in security tools and technologies, such as SIEM, IDS / IPS, and vulnerability scanners Relevant certifications such as CISSP, CISM, or equivalent are highly desirable. Autonomy: Works under broad direction. Work is often self ...

Service Manager - ITIL / ITSM - hybrid - £60K Hybrid - 1 day a week in office - Manchester / Huddersfield Are you a proactive IT Service Manager who wants to lead technology service operations and ensure consistent, reliable performance across systems and platforms? In this role, you'll take ownership … hours support coverage. Partner with key stakeholders across Product, Engineering, and Compliance to support audit readiness (ISO 27001 / SOC 2). What you'll need: 5+ years' experience in IT service management, ITSM, ITIL, including awareness of Devops / Strong understanding of ITIL ...

picking, returns processing, and inventory control. This role manages staff performance, drives continuous improvement of warehouse processes, and ensures compliance with Hamilton Rentals ISO standards. The Warehouse Manager supports the wider business through collaboration with other department heads and plays a key role in maintaining operational effectiveness, safety … align procedures and resolve operational issues. Requirements: Strong Leadership Skills Experience managing warehouse operations within a technical or rental environment. Familiarity with IT / AV products and their logistical handling. Experience with rental systems or warehouse management systems (e.g. RMS). Strong understanding of ISO standards, especially ...

resilience planning Experience assessing supplier and third-party cybersecurity risk across the supply chain Strong understanding of recognised security frameworks and standards (e.g. ISO 27001, NIST, NIS2, TISAX, Cyber Essentials) Ability to engage confidently with senior executives and technical teams, providing clear, pragmatic security advice Excellent … role Desirable: Relevant security certifications (e.g. CISSP, CISM, CCISO, CRISC, ISO 27001 Lead Auditor) Experience working across regulated industries and / or multinational environments Previous experience operating as an embedded / virtual CISO or security delivery lead ...

resilience planning Experience assessing supplier and third-party cybersecurity risk across the supply chain Strong understanding of recognised security frameworks and standards (e.g. ISO 27001, NIST, NIS2, TISAX, Cyber Essentials) Ability to engage confidently with senior executives and technical teams, providing clear, pragmatic security advice Excellent … role Desirable: Relevant security certifications (e.g. CISSP, CISM, CCISO, CRISC, ISO 27001 Lead Auditor) Experience working across regulated industries and / or multinational environments Previous experience operating as an embedded / virtual CISO or security delivery lead ...

external vendors Engage with senior stakeholders to translate security risk into clear business impact and priorities Support audits, certifications, and assurance activities (e.g. ISO 27001, Cyber Essentials Plus) About You You’ll be a confident, hands‐on security leader who is comfortable operating at both strategic … supplier risk Strong stakeholder management skills, with the ability to influence at senior level ISO 27001 certification experience and / or Cyber Essentials Plus Broad security background rather than a narrow technical specialism Experience in professional services environments advantageous Why Join? Senior leadership role with ...

external vendors Engage with senior stakeholders to translate security risk into clear business impact and priorities Support audits, certifications, and assurance activities (e.g. ISO 27001, Cyber Essentials Plus) About You You’ll be a confident, hands-on security leader who is comfortable operating at both strategic … supplier risk Strong stakeholder management skills, with the ability to influence at senior level ISO 27001 certification experience and / or Cyber Essentials Plus Broad security background rather than a narrow technical specialism Experience in professional services environments advantageous Why Join? Senior leadership role with ...

engineers, establish engineering standards, and uplift service maturity across teams. Partner with development and operations teams to evolve service architectures, DevOps tooling, and CI / CD practices. Architect, govern GitHub Actions pipelines with quality gates, automated validation. Own observability (Datadog), defining SLIs / SLOs, dashboards, alerting, MS Teams … integrations, and telemetry based improvements. Drive AI enabled operations using Bedrock / SageMaker and the Model Context Protocol (MCP) for log analysis, anomaly detection, and incident workflows. Define cloud guardrails and enforce security controls, including IAM boundaries, SCPs, OPA policies, tagging, centralized logging, and audit tooling. ...

logo opportunities as they arise. To support you, we have in-house and vendor-backed presales, vendor accreditations and an overarching ISO / Cyber Essentials attainment. Key tasks: Dealing with business owners and decision makers predominantly around SME businesses to identify opportunities, align to our services, generate … proposals, present and close with internal / vendor support as required. Managing your own allocated base of pre-existing Managed Services Clients You will be selling managed IT Support, Cyber Security, Microsoft Cloud services and transformation projects. Achieve and maintain KPI’s across revenue generation (upfront and recurring ...

multiple customer environments. Key Responsibilities Conduct cyber security assessments and vulnerability reviews Manage and review penetration testing activities Support clients with Cyber Essentials, ISO 27001, and GDPRcompliance Implement and manage security controls across Microsoft 365 and cloud environments Deploy and operate managed security tools … security within an MSP or multi-client environment Strong understanding of threat detection, incident response, and vulnerability management Hands-on experience securing Microsoft 365 / Azure AD Knowledge of EDR, AV, email security, and network security principles Familiarity with compliance frameworks (Cyber Essentials, ISO 27001 ...

required. Contribute expertise relating to threat modelling, exploitation techniques, and security best practices. Apply industry-recognised standards and frameworks (e.g., NIST, CIS Controls, ISO 27001) where relevant. Required Skills & Experience Proven experience performing penetration testing in professional environments. Strong technical understanding of application security, exploit techniques … sectors (finance, healthcare, government). Familiarity with frameworks such as NIST, ISO 27001, CIS Controls, or methodologies such as CVSS / FAIR. Ipswich - commutable distance - 3 days on site ...

hands-on technical leadership to protect our digital environment, reduce risk, and ensure robust preparedness against emerging threats. This is a hybrid role – 1 / 2 days a week in York. About the Role As the organisation’s senior cyber security authority, you will shape long-term security strategy … Cyber Essentials, GDPR, etc.). Hands-on experience with cyber tools (SIEM, firewalls, EDR, MFA, encryption) and incident response. Experience leading or supporting DR / BCP activities and security investigations. Ability to assess and communicate risks, influence decisions, and brief senior leaders. Experience with risk registers, governance, and compliance. ...

Senior Information Assurance / Cloud Security Consultant (DV Cleared) Contract: 6 months Rate: £700 per day (Outside IR35) Location: Corsham - 2 days per week on site Clearance: Active DV Clearance required We are seeking an experienced DV-cleared Information Assurance / Cloud Security Consultant to support assurance activities … secure-by-design cloud architectures rather than delivery of a single project. Key Responsibilities Develop and maintain Information Assurance documentation aligned to JSP 440 / JSP 453 , NIST 800-53 , NIST CSF , and ISO 27001 / 27002 Define and implement assurance approaches for cloud ...

infrastructure, SysOps or Security role; Active Directory management; AWS ecosystem, especially AppStream 2.0. NTFS permission & Group Policy configuration & management; Microsoft RDS Architecture (RemoteApp / RDWeb Gateway / RDS Broker); Virtual Windows 2016 DC Servers / File Server with SMB file shares; Site-to-Site VPN configuration & maintenance … interest in pursuing an Information Security specialism. Desirable: IaaS and PaaS environments; SQL; VMWare Cloud Director; SharePoint Windows IIS security & management. Security & GDPR compliance (ISO27001 / ISO27032 / SOC 2). ...

cyber and information security strategy. Lead, mentor, and develop the security team, supporting high performance and continuous improvement. Oversee compliance with PCI-DSS, ISO 27001, Cyber Essentials Plus, GDPR, and other regulatory requirements. Conduct security risk assessments, maintain governance frameworks, and ensure robust oversight. Set, enforce … CISM, or equivalent). Strong experience in cyber security leadership, strategy development, and operational oversight. Knowledge and hands-on involvement with PCI-DSS, ISO 27001, and Cyber Essentials Plus. Experience managing and developing security teams and influencing organisational change. Strong communication skills with the ability ...

Design agenda, guiding teams through the transition to modern DevSecOps ways of working.• Oversee application and cloud security posture, ensuring alignment with GDPR, ISO 27001, NIST, and related standards.• Act as a security thought-leader, monitoring emerging threats and industry best practice.• Build, manage, and mentor … Security, AppSec, Cloud Security, DevSecOps, Secure-by-Design, SDLC Security, OWASP, NIST, SAST, DAST, SCA, CSPM, CNAPP, CISSP, CISM, CISA, Security Frameworks, GDPR, ISO 27001, Risk Management, Security Governance ...

Risk & Compliance Specialist (ISO / Safety Support) Location: UK - Hybrid (predominantly remote with occasional travel to Hertfordshire HQ and limited global travel) Employment Type: Permanent, Full-time Salary: Negotiable depending on experience Start: Hiring immediately Overview My client is seeking a proactive Risk & Compliance Specialist to support … maintain ISO-aligned compliance and safety frameworks across a global organisation. This role is not responsible for leading ISO certifications end-to-end, but plays a critical operational role in keeping systems, documentation, and processes organised, audit-ready, and on track . This position suits someone ...

shift pattern | Farnborough Based Key highlights: Senior SOC Analyst opportunity with real influence across people, process and technology 24 / 7 SOC shift pattern within a highly secure environment Must hold active DV clearance About the client Our client is a specialist technology organisation delivering secure digital solutions within … Inclusive and collaborative working culture The Senior SOC Analyst role As a Senior SOC Analyst, you will play a key role in delivering 24 / 7 SOC services across multiple platforms and projects. You will lead and support a small team of analysts, oversee security monitoring and incident response ...

Oracle HCM Cloud - Functional Lead Location: Reading / Havant / Thatcham / Perth Duration: 3 month Support the successful delivery of the Oracle Fusion HCM Project through liaison with SI Partners, OCS, Business SMEs and IT colleagues through the build, test and cut over phases. Take particular … Integration's and Data Migration Workstream, mitigate, and manage these as required. Support the upcoming test phases with expertise in Parallel Payroll Runs / Payroll Comparison testing a particular focus Produce a range of project documentation, including but not limited to specs, strategies, project plans, RAID items. Translate technical ...

risk frameworks. Lead the development, review, and lifecycle management of security and privacy policies and procedures. Maintain a centralised control register aligned to ISO, NIST, and other recognised frameworks. … Coordinate internal assurance reviews and assessments of control effectiveness. Provide compliance and governance support for new services, contracts, and business changes. Support the CISO / CPO in defining, tracking, and reporting on risk metrics and compliance status. Drive and embed a strong information security culture across business ...

standards. Assist with security audits and help prepare documentation for internal or external reviews. Apply industry-recognized standards and frameworks such as NIST, ISO 27001, CIS Controls, in assessments and recommendations. Leverage past penetration testing, vulnerability management, and incident response experience to identify and contextualize threats … profile with experience in security risk analysis, application security, or vulnerability management. OSPC or CISP Proven experience with security frameworks such as NIST, ISO 27001, CIS Controls – nice to have. Strong knowledge of vulnerability scanning tools (e.g., Qualys, Tenable, Nexpose, Burp Suite). Solid understanding ...

controls. Liaise with regulators, auditors, and internal teams to ensure transparency and accountability. Mentor junior compliance colleagues and develop team capability. Support ISO 27001 certification and other standards, including Information Security and PCI DSS. Lead business continuity planning and manage insurance coverage to maintain operational resilience. … supporting a DPO. Ability to advise senior stakeholders and influence strategic risk planning. Experience leading compliance monitoring, reporting, and remediation activities. Familiarity with ISO 27001, PCI DSS, and information security frameworks. Strong leadership and mentoring capabilities, with excellent communication skills. Experience managing audits, investigations, incident response ...