101 to 125 of 813 ISO/IEC 27001 Jobs in the UK

Officer (CISO) is responsible for overseeing the organisation’s Information and Communications Technology (ICT) infrastructure and cybersecurity framework, ensuring alignment with the Digital Operational Resilience Act (DORA) and ISO 27001 standards. The CISO safeguards the Crypto-Asset Service Provider’s (CASP) systems, including the PIL crypto platform and front-end, by conducting risk assessments, maintaining comprehensive … team to protect critical operations in a regulated fintech environment. Here's what you'll do: Oversee the ICT infrastructure and cybersecurity programme, ensuring compliance with DORA and ISO 27001 standards. Develop and implement information security strategies, policies, and procedures in line with NIST CSF, NIST 800-53, CIS, and COBIT frameworks. Conduct risk assessments and … commercial correspondence. Extensive experience in IT security leadership, preferably within fintech, financial services, or crypto-asset sectors. Proven expertise in implementing information security and risk frameworks (NIST CSF, ISO 27001, NIST 800-53, CIS, COBIT). In-depth knowledge of DORA requirements, and risk management for ICT assets, including crypto platforms. Strong understanding of auditing frameworks More ❯

failure. Essential Skills & Experience: At least 2 years of hands-on experience in information security or IT infrastructure within an enterprise environment. Familiarity with security standards such as ISO 27001, Cyber Essentials, GDPR, and Data Protection Act. Experience with Microsoft O365 Security solutions and network security operations. Understanding of security testing principles, including vulnerability scanning, risk … apply now. Keywords: Information Security Consultant, IT Security Consultant, Cybersecurity Specialist, Microsoft O365 Security, Enterprise Security Jobs, Information Security Leeds, IT Risk Management, Security Incident Response, Vulnerability Management, ISO 27001, GDPR Compliance, Security Awareness, Disaster Recovery and Business Continuity. More ❯

failure. Essential Skills & Experience: At least 2 years of hands-on experience in information security or IT infrastructure within an enterprise environment. Familiarity with security standards such as ISO 27001, Cyber Essentials, GDPR, and Data Protection Act. Experience with Microsoft O365 Security solutions and network security operations. Understanding of security testing principles, including vulnerability scanning, risk … apply now. Keywords: Information Security Consultant, IT Security Consultant, Cybersecurity Specialist, Microsoft O365 Security, Enterprise Security Jobs, Information Security Leeds, IT Risk Management, Security Incident Response, Vulnerability Management, ISO 27001, GDPR Compliance, Security Awareness, Disaster Recovery and Business Continuity. More ❯

Role: Senior Cyber Security Engineer (Cyber SME) Salary : Up to 70,000 Location: Reading / Birmingham - Hybrid (1 day / week in office) Be the Cyber Security Subject Matter Expert protecting the backbone of our business. Are you a highly skilled cyber security professional ready to take ownership of security engineering and infrastructure hardening? We're looking for … re Looking For Essential: Right to work in the UK. Proven experience in cyber security engineering, including vulnerability management, SIEM, WAFs, and secure infrastructure design. Strong knowledge of TCP / IP, firewalls, routing, access controls, and threat-based security approaches. Excellent communication skills with the ability to create and maintain technical documentation. Background in infrastructure / networks and … CCNA / CCNP, or similar certifications. Familiar with ITIL-based service delivery, security hardening, and working cross-functionally. Desirable: Degree in Computer Science or equivalent experience. Understanding of ISO27001, Cyber Essentials, and AAF frameworks. What We Offer Competitive salary up to 70,000 Hybrid working - only 1 day a week in the office 25 days holiday (plus option to More ❯

Role: Senior Cyber Security Engineer (Cyber SME) Salary : Up to £70,000 Location: Reading / Birmingham - Hybrid (1 day / week in office) Be the Cyber Security Subject Matter Expert protecting the backbone of our business. Are you a highly skilled cyber security professional ready to take ownership of security engineering and infrastructure hardening? We're looking for … re Looking For Essential: Right to work in the UK. Proven experience in cyber security engineering, including vulnerability management, SIEM, WAFs, and secure infrastructure design. Strong knowledge of TCP / IP, firewalls, routing, access controls, and threat-based security approaches. Excellent communication skills with the ability to create and maintain technical documentation. Background in infrastructure / networks and … CCNA / CCNP, or similar certifications. Familiar with ITIL-based service delivery, security hardening, and working cross-functionally. Desirable: Degree in Computer Science or equivalent experience. Understanding of ISO27001, Cyber Essentials, and AAF frameworks. What We Offer Competitive salary up to £70,000 Hybrid working - only 1 day a week in the office 25 days holiday (plus option to More ❯

talent, technologies, and tools that empower you to own your career. Join MUFG, where being inspired is expected and making a meaningful impact is rewarded. OVERVIEW OF THE DEPARTMENT / SECTION IT Risk, Security & Control department covers cyber security strategy maintenance and tactical planning and operations to provide IT Security protection, governance, risk management and reporting. This includes promoting … Information Security Standards and Procedures (ISSP) requirements and local security requirements. The department deploys, supports and monitors security solutions such as virus protection, vulnerability management, compliance monitoring and threat / incident management activities to reduce risk. NUMBER OF DIRECT REPORTS 1-2 MAIN PURPOSE OF THE ROLE To manage the technical delivery of various cybersecurity projects and contribute to … of information IT security technologies and embedded security; at the minimum knowledge must cover key cybersecurity domains such as Identity and Access Management, Threat Intelligence, Risk Evaluation, Security Assessment / Testing, Incidence Management and Vendor / Cloud products assessment. Possessing high level of analytical ability where problems are typically unusual and difficult. Ability to maintain a working knowledge More ❯

Information Security Standards and Procedures (ISSP) requirements and local security requirements. The department deploys, supports and monitors security solutions such as virus protection, vulnerability management, compliance monitoring and threat / incident management activities to reduce risk. NUMBER OF DIRECT REPORTS 1-2 MAIN PURPOSE OF THE ROLE To manage the technical delivery of various cybersecurity projects and contribute to … of information IT security technologies and embedded security; at the minimum knowledge must cover key cybersecurity domains such as Identity and Access Management, Threat Intelligence, Risk Evaluation, Security Assessment / Testing, Incidence Management and Vendor / Cloud products assessment Possessing high level of analytical ability where problems are typically unusual and difficult Ability to maintain a working knowledge … plan and timing, and global program ownership Demonstrable experience of senior stakeholder management and relevant management reporting. Ability to coach team members through knowledge transfer and constructive feedback Education / Qualifications: Degree educated and / or equivalent experience. SKILLS AND EXPERIENCE Functional / Technical Competencies: Essential (Must Have) Experience of working within Cybsersecurity team as a Technical More ❯

support smarter, faster decision-making at every level of the firm. With a small but growing team, we're looking for someone ready to wear multiple hats-from business / data analysis to solution design, implementation, and testing. The core foundation is in place-now we need someone to help operationalise and scale it, turning potential into business value. … SQL queries and stored procedures, and formal database design methodologies. Experience in setting up monitoring and data quality exception handling. Strong data modelling experience. Experience managing and developing CI / CD pipelines. Experience with Microsoft Azure products and services, and proficiency in ETL processes. Experience of working with APIs to integrate data flows between disparate cloud systems. Strong analytical … Experience in semi / fully unstructured datasets and NoSQL environments Awareness of working in a regulated environment, with experience of data legislation and cyber security accreditations e.g., GDPR, ISO27001, Cyber Essentials. Expertise in Business Intelligence, ideally via Power BI for data visualization and reporting Use of DevOps (CI / CD) concepts to test, schedule, and deploy to a More ❯

support smarter, faster decision-making at every level of the firm. With a small but growing team, we're looking for someone ready to wear multiple hats-from business / data analysis to solution design, implementation, and testing. The core foundation is in place-now we need someone to help operationalise and scale it, turning potential into business value. … SQL queries and stored procedures, and formal database design methodologies. Experience in setting up monitoring and data quality exception handling. Strong data modelling experience. Experience managing and developing CI / CD pipelines. Experience with Microsoft Azure products and services, and proficiency in ETL processes. Experience of working with APIs to integrate data flows between disparate cloud systems. Strong analytical … Experience in semi / fully unstructured datasets and NoSQL environments Awareness of working in a regulated environment, with experience of data legislation and cyber security accreditations e.g., GDPR, ISO27001, Cyber Essentials. Expertise in Business Intelligence, ideally via Power BI for data visualization and reporting Use of DevOps (CI / CD) concepts to test, schedule, and deploy to a More ❯

support smarter, faster decision-making at every level of the firm. With a small but growing team, we're looking for someone ready to wear multiple hats-from business / data analysis to solution design, implementation, and testing. The core foundation is in place-now we need someone to help operationalise and scale it, turning potential into business value. … SQL queries and stored procedures, and formal database design methodologies. Experience in setting up monitoring and data quality exception handling. Strong data modelling experience. Experience managing and developing CI / CD pipelines. Experience with Microsoft Azure products and services, and proficiency in ETL processes. Experience of working with APIs to integrate data flows between disparate cloud systems. Strong analytical … Experience in semi / fully unstructured datasets and NoSQL environments Awareness of working in a regulated environment, with experience of data legislation and cyber security accreditations e.g., GDPR, ISO27001, Cyber Essentials. Expertise in Business Intelligence, ideally via Power BI for data visualization and reporting Use of DevOps (CI / CD) concepts to test, schedule, and deploy to a More ❯

support smarter, faster decision-making at every level of the firm. With a small but growing team, we're looking for someone ready to wear multiple hats-from business / data analysis to solution design, implementation, and testing. The core foundation is in place-now we need someone to help operationalise and scale it, turning potential into business value. … SQL queries and stored procedures, and formal database design methodologies. Experience in setting up monitoring and data quality exception handling. Strong data modelling experience. Experience managing and developing CI / CD pipelines. Experience with Microsoft Azure products and services, and proficiency in ETL processes. Experience of working with APIs to integrate data flows between disparate cloud systems. Strong analytical … Experience in semi / fully unstructured datasets and NoSQL environments Awareness of working in a regulated environment, with experience of data legislation and cyber security accreditations e.g., GDPR, ISO27001, Cyber Essentials. Expertise in Business Intelligence, ideally via Power BI for data visualization and reporting Use of DevOps (CI / CD) concepts to test, schedule, and deploy to a More ❯

for identified deficiencies and assist with implementing corrective actions. Improve IT Controls and Process documentation (i.e., work with process owners to refine risk control matrix, improve process flows, refine / develop test procedures, propose control language and associated risks etc.) Maintain up-to-date knowledge of regulatory requirements and best practices in IT controls and SOX compliance. Assist with … ITGCs). Excellent knowledge of a wide range of technology (infrastructure, applications, networking, cyber security, IT governance). Familiarity with IT control frameworks such as COBIT, NIST or ISO 27001. Experience with auditing tools and techniques, and proficiency in Microsoft Excel, Word, Outlook, Visio, PowerPoint, Access. Excellent analytical, problem-solving, verbal and written communication skills with the ability … an adjustment, please contact fidelis@avenciaconsulting.com to discuss. All information relating to your health or disability will be treated in accordance with our data protection policy. Apply by 11 / 07 / 2025 #J-18808-Ljbffr More ❯

strong emphasis on operational security and incident response. Extensive knowledge of IT risk management, threat intelligence, IAM and vulnerability management. Familiarity with key regulatory and compliance frameworks, including ISO 27001, GDPR, NIST, and CyberEssentials. Ability to articulate complex technical risks in clear, actionable terms to business stakeholders. This is an exciting opportunity to lead a future More ❯

strong emphasis on operational security and incident response. Extensive knowledge of IT risk management, threat intelligence, IAM and vulnerability management. Familiarity with key regulatory and compliance frameworks, including ISO 27001, GDPR, NIST, and CyberEssentials. Ability to articulate complex technical risks in clear, actionable terms to business stakeholders. This is an exciting opportunity to lead a future More ❯

inclusive and comprehensive security program. Risk Management & Compliance Identify, assess, and manage information security risks and exposures. Ensure compliance with relevant laws, regulations, and standards (e.g., GDPR, HIPAA, ISO 27001, NIST). Oversee audits and risk assessments and lead remediation efforts. Policy Development Create and maintain policies, standards, and guidelines to ensure compliance and reduce risks. More ❯

Documenting alignment of existing controls with compliance frameworks. Implementation Plans: Designing and deploying new security controls. Updated Security Documentation: Policies, procedures, and system security plans. Essential Qualifications & Experience BSc / MSc in IT Security or … a related field, or relevant industry experience. 5+ years of experience in security architecture, with at least 2 years in a similar role. Strong knowledge of NIST 800-53, ISO27001, PCI DSS, and COBIT. Experience with security frameworks (SABSA, TOGAF). Understanding of threat and risk analysis methodologies. Experience in cloud security (Azure, AWS, Google). Ability to work in More ❯

presentation to Senior Management and the Exec Board. What we're looking for Extensive IT knowledge and experience in Cyber Security and Information Security standards and frameworks such as ISO27001 and Cyber Essentials. Confident in leading and managing teams Proficient in Incident Management and Response procedures and familiarity of ITIL. Extensive and broad-based IT and business experience, delivering diverse … corporate and operational IT services in a medium / large organisation. In-depth knowledge of security concepts such as cyber-attacks and techniques, threat vectors, risk management and incident management. Knowledge of organisation applications, databases, operating systems to address security threats against the same. Experience building relationships with and influencing senior leaders and stakeholders. Educated to degree level standard More ❯

for identified deficiencies and assist with implementing corrective actions. Improve IT Controls and Process documentation (i.e., work with process owners to refine risk control matrix, improve process flows, refine / develop test procedures, propose control language and associated risks etc.) Maintain up-to-date knowledge of regulatory requirements and best practices in IT controls and SOX compliance. Assist with … ITGCs). Excellent knowledge of a wide range of technology (infrastructure, applications, networking, cyber security, IT governance). Familiarity with IT control frameworks such as COBIT, NIST or ISO 27001. Experience with auditing tools and techniques, and proficiency in Microsoft Excel, Word, Outlook, Visio, PowerPoint, Access. Excellent analytical, problem-solving, verbal and written communication skills with the ability More ❯

for identified deficiencies and assist with implementing corrective actions. Improve IT Controls and Process documentation (i.e., work with process owners to refine risk control matrix, improve process flows, refine / develop test procedures, propose control language and associated risks etc.) Maintain up-to-date knowledge of regulatory requirements and best practices in IT controls and SOX compliance. Assist with … ITGCs). Excellent knowledge of a wide range of technology (infrastructure, applications, networking, cyber security, IT governance). Familiarity with IT control frameworks such as COBIT, NIST or ISO 27001. Experience with auditing tools and techniques, and proficiency in Microsoft Excel, Word, Outlook, Visio, PowerPoint, Access. Excellent analytical, problem-solving, verbal and written communication skills with the ability More ❯

of security standards and secure development principles such as NCSC Secure Development & Deployment Guidance, OWASP, NIST Secure Software Development Framework (SSDF - 800-218), Microsoft Azure Secure Development best practices, ISO27001 Experience with Azure cloud infrastructure, particularly Azure PaaS service Experience with Azure DevOps, particularly CI / CD and backlog management Prepare and present regular security reports to senior management More ❯

strong projects delivery and change processes to ensure a robust and safe IT Infrastructure meets business needs. This role is a hands-on position designing and provisioning new systems / platforms within a controlled project environment. Ensure that the IT strategy for infrastructure and security requirements is adhered to and continuously improved, supporting the business in its day-to … that support them, including the interfaces between systems. Sharing equally with other members of the team, the responsibility of responding to out of hours calls and patching. What skills / experience do you need to be successful in the role? We are looking for IT Infrastructure Professionals with a minimum of 3 years level 2 experience in a commercial … holiday per year (pro rata) plus bank holidays Free health cash plan so you can claim back cash for a range of medical expenses. Wellbeing support - including a 24 / 7 employee assistance programme (EAP) for you and your nearest and dearest. More ❯

Full-Time Remote Locations Showing 1 location Remote, EMEA 00000, GBR Description Title: Lead Analyst, Information, Security, Governance, Risk and Compliance Location: Remote-UK Salary: £60,000 / annually About PSI We are PSI Services. We power world leading tests. Delivered with trusted science and the very best test taker experience. PSI supports test-takers on their journey to … continual improvement of GRC processes and tools. Generate and present GRC-related metrics and reports to internal stakeholders and executive leadership. Support and coordinate internal and external audits (e.g., ISO27001, SOC2, etc.), including gathering evidence and managing responses. Assist in third-party and entity-level risk assessments, identifying and mitigating risks through effective controls. Build and maintain cross-functional relationships … maintaining ISO standards such as ISO 27001, 9001, 14001 and 20000 (essential). Experience in implementing and maintaining externally awarded certifications such as ISO27001 is essential. Proficient with MS Office Solid understanding of common security tools (e.g., vulnerability scanners, firewalls, IDS / IPS, AV software) strongly recommended Extensive training and experience in computer More ❯

Information Security / Information Privacy SME (Contract) Location: Central London (Hybrid - 2 days onsite per week) Contract: Inside IR35 or Umbrella Engagement Duration: 6-12 months (with potential extension) Industry: Private Banking / Wealth Management Role Overview: We are seeking a highly experienced Information Security / Information Privacy Subject Matter Expert (SME) to support a leading private … and ISO 27001 audits. Stay current on emerging threats, regulatory changes, and industry best practices. Required Skills & Experience: Proven experience in Information Security, Cybersecurity, and / or Information Privacy. Deep understanding of regulatory frameworks: GDPR, DPA 2018, ISO 27001, NIST , and FCA guidelines. Strong knowledge of security controls, data lifecycle management … sector is essential. Demonstrated ability to engage with C-level stakeholders and influence decision-making. Relevant certifications preferred: CISSP, CISM, CISA, ISO 27001 Lead Implementer / Auditor, CIPM, or similar. Excellent written and verbal communication skills. Reasonable Adjustments: Respect and equality are core values to us. We are proud of the diverse and inclusive community More ❯

strong specialisation in Artificial Intelligence (AI) and Machine Learning (ML) security. The role involves significant influence across the organisation, with customers and peers, regarding the strategic contribution of AI / ML security to business objectives. The post holder will apply a wide range of complex technical and professional security activities in diverse AI / ML contexts, driving the … development and execution of AI / ML security strategies. A key aspect of the role is contributing to the formulation of AI / ML security policies, standards and strategies, ensuring alignment with overall business and technology strategies. Key Accountabilities / Responsibilities: AI / ML Security Strategy and Architecture: • Strategically define and implement AI / ML … security strategies, policies, and standards. • Develop and lead enterprise security architecture for AI / ML systems and pipelines. • Design secure architectures for complex AI / ML models and infrastructure. • Establish and maintain AI / ML architecture patterns and reference architectures. • Direct AI / ML architecture standards development, ensuring best practices. • Evaluate and select security tools for More ❯

Information Security Analyst - 6-Month FTC Governance, Risk and Compliance Location: London / Hybrid Contract Type: Fixed Term (6 months) Salary: Competitive A global professional services firm is seeking a proactive Information Security Analyst to support the delivery of robust security and privacy policies across its global operation. This role is ideal for someone with hands-on experience in … information risk management, policy compliance, ISO 27001 , and client security due diligence . Key Responsibilities: Maintain and evolve the firm’s Information Security Management System (ISMS) and associated documentation Support audits and ensure security practices align with industry standards (e.g., ISO 27001, Cyber Essentials) Assist with Business Continuity Management (BCM) - including BIAs … cyber team in aligning security measures with application and infrastructure development What We’re Looking For: Demonstrable experience in information security and privacy risk management Working knowledge of ISO 27001 , Cyber Essentials , and CIS Controls frameworks Ability to articulate security risks and controls clearly to technical and non-technical stakeholders Strong analytical and written communication skills More ❯