126 to 150 of 618 ISO/IEC 27001 Jobs in the UK

the organisation's security posture. You'll collaborate closely with infrastructure, development, and compliance teams to maintain high standards of cyber resilience and uphold key frameworks such as ISO 27001 and Cyber Essentials Plus . Key Responsibilities: * Lead threat detection, incident response, and vulnerability management activities * Strengthen cyber security posture across cloud, infrastructure, and applications * Provide … expert guidance to development teams on secure SDLC practices * Maintain compliance with ISO 27001 and Cyber Essentials Plus standards * Mentor junior … analysts and support SOC process development Key Skills & Experience: * Strong technical background in cyber security * Experience with application, cloud (AWS) , and infrastructure security * Proven hands-on experience with EDR / NDR tools , particularly CrowdStrike * Proficient with Linux and databases such as MySQL , PostgreSQL , Apache , and PHP * Knowledge of ISO 27001 , Cyber Essentials , and general security More ❯

of projects from the System Design team into the SOC operations ensuring impact analysis, capacity and availability management are considered prior to accepting new projects. You will also mentor / oversee members of the SOC Engineering team, ensuring all operational tasks are completed and work tickets updated / closed on time. Responsibilities - Support SOC Engineers & Analyst activity - Supports … activity - Toolset availability and capacity management review and escalation - Maintain currency in security concepts, tools and best practices - Engagement with the R&D Cyber Defence Centre for Cyber Solutions / Products Skill Set Essential - Good knowledge of multiple SOC tooling including IDPS / Firewalls / SIEM / Splunk / Email & Web Protection etc. - Experience of … implementing and fault finding Firewall technologies including Cisco ASR / Palo Alto / Fortinet - Excellent understanding of network technologies - Experience of Scripting and programming - Experience of Windows and RedHat server systems and implementation of CIS hardening Desirable Knowledge of some of the following would be advantageous: vCenter Nessus Tenable Fortinet Patching (applications, WSUS) Jira Windows 11, Server More ❯

build and operate the Azure-based Internal Developer Platform as a product, enabling self-service environment provisioning and repeatable golden paths. Develop and maintain Infrastructure as Code (Terraform and / or Bicep) modules and reusable templates for AKS, networking, storage, databases, and app runtimes. Implement and evolve CI / CD pipelines (HL version control set) with quality gates … testing, security scanning, and progressive delivery. Introduce and run GitOps for Kubernetes (AKS preferred), patterns and multi-environment promotions. Own platform observability: metrics, logs and traces using Azure Monitor / Log Analytics / Application Insights, plus Datadog / Grafana where appropriate. Embed security by design: Azure Policy, Defender for Cloud, secrets management with Key Vault, SBOM and … image scanning, policy-as-code and least privilege IAM. Drive reliability using SRE practices: define SLIs / SLOs, error budgets, capacity planning, chaos testing, incident response and blameless post-incident reviews. Partner with application squads to remove toil, improve developer experience (DX), and reduce lead time for changes through automation and platform enhancements. Implement cost visibility and optimisation (FinOps More ❯

to ensure they meet our standards. You will act as a key point of contact for external audits and help the business prepare for assessments against frameworks like ISO 27001 and SOC 2. You will help manage our compliance with data privacy regulations, particularly GDPR, by conducting data protection impact assessments and advising the business on … technical and compliance concepts to non-technical stakeholders. A collaborative, problem-solving mindset with high attention to detail. Familiarity with security frameworks like ISO 27001 / 27701. SOC 2 is a plus but not required. Even if you don't meet every requirement, we still encourage you to apply. Your unique experiences and perspectives might … Private Healthcare Life Insurance with AIG Happl, our benefit platform which provides access to pre-negotiated discounts on a wide variety of services including entertainment, food, and fitness. Stock / Equity Check out the links below to see what our CEO Justin Floyd has to say about our plans for growth for the year ahead, and to see our More ❯

available.The main purpose of this job mainly focusses on information security, cybersecurity, and data security from a Greenfield perspective.We are on a journey to secure Cyber Essentials plus and ISO27001 certification.You MUST have experience working with banking / financial services regulations, FCA, PRA etc.Liaison with the Head Office, Security Operation Centre or Data Centre for implementing security policies, procedures … with regulatory requirements, and conducting thorough security audits.You will be part of the IT committee and work closely with the risk and compliance team.Ideally, having a background in IT / Network security, progressing into information security and cybersecurity.**Key Responsibilities:**- Develop, draft, implement, and maintain information security policies, procedures, and guidelines.- Conduct regular security audits and assessments to identify … interpersonal skills.**Preferred Qualifications:**- Experience with regulatory compliance requirements such as GDPR, HIPAA, or SOX.- Familiarity with security tools and technologies such as SIEM, DLP, and endpoint protection. CISA / CISSP / CCSP MCSA-Microsoft Windows Server MCSE- Microsoft Certified Solution Expert; MCITP-Microsoft Certified IT Professional; VMware Certified Professional;CCNA / CCNP Hays Specialist Recruitment Limited More ❯

Graduate Information Security Analyst - Stockport We are seeking an enthusiastic Junior Cyber / Information Security Graduate to join our client's information security team in Stockport. In this role, you will help monitor and defend the client's networks and infrastructure against emerging threats. We are looking for either recent graduates, or equivalent professional experience, with practical hands-on … self-learning and continual development outside of a university degree. Some professional cyber security work experience would be beneficial but not required. Any knowledge of various GRC frameworks (e.g. ISO27001, PCI DSS, Cyber Essentials +) would be useful Familiarity with monitoring tools such as SIEM, IDS / IPS, EDR, and threat intelligence platforms. Basic understanding of networking, operating systems … and core security technologies. Exposure to scripting / programming languages (e.g., Python, Bash, PowerShell). Strong analytical and problem-solving skills. Good communication and collaboration abilities. Relevant security certifications (e.g. CompTIA Security+, CompTIA Network+ ) would be beneficial but not required. You'll work as part of a small in-house team ensuring that appropriate cyber security measures are in More ❯

Security Controller & Assurance Manager Cambridge | Hybrid (Onsite Tue–Thu) ? 6-Month Contract (Inside IR35) – Extension / Perm Potential D ay rate depending on experience Active SC Clearance preferred (or eligibility required) We are seeking an experienced Security Controller & Assurance Manager to take ownership of end-to-end security governance within a leading defence engineering environment. This role spans protective … security, personnel security, information / data security and supporting cyber security , acting as the primary security authority on-site and working closely with senior leadership. This is a key hire driven by increased programme activity and business growth. Key Responsibilities ? Act as Security Controller & Crypto Custodian ? Lead compliance across personnel, facility & information security ? Oversee accreditation & facility clearance requirements ? Manage … handling & protection of classified / protectively marked material ? Own SALs, audits, security reporting & compliance metrics ? Support IT & Cyber teams on secure system governance ? Support HR with vetting and security onboarding ? Deliver security briefings and awareness programmes ? Ensure NPSA-compliant physical security measures across sites & programmes ? Maintain security manuals, SLAs & governance documentation ? Liaise with Police, CTSA, MoD, NPSA, DE&S More ❯

summaries Coordinate secure changes and maintenance windows with engineering teams Respond to security incidents and support root cause analysis and reporting Participate in the deployment of new applications and / or changes, ensuring that all service components are documented and monitored and integrated into the company’s operational processes. Work with stakeholders across the solutions lifecycle to ensure that … with technical stakeholders (including customers) on the delivery of hosted solutions. Experience & Qualifications Good experience in a hosting provider or managed service provider environment Strong working knowledge of ISO 27001, ISO 27017, ISO 27018, and ISO 22301 Hands-on experience with scanning and vulnerability detection applications Hands-on experience of … domain and AD management experience Strong troubleshooting skills Strong scripting skills Enthusiasm and talent for acquiring complex technical skills Good customer service attitude Knowledge of configuration management (Puppet and / or Red Hat Satellite preferred) Scripting for automation using technologies (e.g. Powershell, Puppet, Ansible, Python) ITIL knowledge – principles and application Ability to support and develop junior colleagues More ❯

supplier and project security documentation, responding to security questionnaires and tenders, supporting incident investigations, and helping to maintain security posture and compliance with relevant standards (Cyber Essentials Plus, ISO 27001, DSPT, GDPR, NCSC). This is a hands-on delivery role for someone who can work independently, make sound judgements, and communicate clearly with both technical … personal data very seriously. Any information provided to us will be processed as detailed in our Privacy Notice, a copy of which can be found on our website http: / / proactive.it / privacy-notice / More ❯

requirements, and conducting thorough security audits. You will be part of the IT committee and work closely with the risk and compliance team. Ideally, having a background in IT / Network security, progressing into information security and cybersecurity. **Key Responsibilities:** - Develop, draft, implement, and maintain information security policies, procedures, and guidelines. - Conduct regular security audits and assessments to identify … vulnerabilities and ensure compliance with industry standards (e.g., ISO 27001). - SIEM & Vulnerability Management. - Monitor and respond to security incidents, conducting investigations and implementing corrective actions. - Collaborate with IT and other departments to ensure the security of network infrastructure and data. - Manage risk assessments and vulnerability assessments to identify potential security threats. - Oversee the implementation of … interpersonal skills. **Preferred Qualifications:** - Experience with regulatory compliance requirements such as GDPR, HIPAA, or SOX. - Familiarity with security tools and technologies such as SIEM, DLP, and endpoint protection. CISA / CISSP / CCSP MCSA-Microsoft Windows Server MCSE- Microsoft Certified Solution Expert; MCITP-Microsoft Certified IT Professional; VMware Certified Professional;CCNA / CCNP Hays Specialist Recruitment Limited More ❯

with regulatory requirements, and conducting thorough security audits.You will be part of the IT committee and work closely with the risk and compliance team.Ideally, having a background in IT / Network security, progressing into information security and cybersecurity. **Key Responsibilities:**- Develop, draft, implement, and maintain information security policies, procedures, and guidelines.- Conduct regular security audits and assessments to identify … vulnerabilities and ensure compliance with industry standards (e.g., ISO 27001).- SIEM & Vulnerability Management.- Monitor and respond to security incidents, conducting investigations and implementing corrective actions.- Collaborate with IT and other departments to ensure the security of network infrastructure and data.- Manage risk assessments and vulnerability assessments to identify potential security threats.- Oversee the implementation of … interpersonal skills.**Preferred Qualifications:**- Experience with regulatory compliance requirements such as GDPR, HIPAA, or SOX.- Familiarity with security tools and technologies such as SIEM, DLP, and endpoint protection. CISA / CISSP / CCSP MCSA-Microsoft Windows Server MCSE- Microsoft Certified Solution Expert; MCITP-Microsoft Certified IT Professional; VMware Certified Professional;CCNA / CCNP Hays Specialist Recruitment Limited More ❯

SOC Analyst (Operational Technology) Outside IR35 Duration: 6 9 months Location: Crawley, Hybrid 2 days per week on site Overview of project: The role of an Incident Response (CSIRT) / Security Operations Centre (SOC) Level 3 Analyst is to respond to high-severity cyber security incidents and / or escalated events and alerts then, using experience combined with … and customer data are protected from cyber threats. Overview of role and responsibilities: Threat Hunting: Analyse intel and IOCs to find and remove hidden threats across UKPN's OT / IT environments. Policy: Create SOC policies, standards and procedures aligned with best practice. Logs: Ensure all logs feed into the SIEM and build use cases to detect anomalous activity. … reporting dashboards and key security metrics. Tooling: Support and maintain security tools and platforms for threat prevention, detection and response. Audit: Support SOC2 / NCSC CAF / ISO27001 audits and ensure compliance. Continuous Improvement: Automate and enhance monitoring, detection and response based on evolving threats. Skills, experience and previous achievements required: Essential Extensive End to End Cyber Incident More ❯

SOC Analyst (Operational Technology) Outside IR35 Duration: 6 – 9 months Location: Crawley, Hybrid 2 days per week on site Overview of project: The role of an Incident Response (CSIRT) / Security Operations Centre (SOC) Level 3 Analyst is to respond to high-severity cyber security incidents and / or escalated events and alerts then, using experience combined with … and customer data are protected from cyber threats. Overview of role and responsibilities: Threat Hunting: Analyse intel and IOCs to find and remove hidden threats across UKPN's OT / IT environments. Policy: Create SOC policies, standards and procedures aligned with best practice. Logs: Ensure all logs feed into the SIEM and build use cases to detect anomalous activity. … reporting dashboards and key security metrics. Tooling: Support and maintain security tools and platforms for threat prevention, detection and response. Audit: Support SOC2 / NCSC CAF / ISO27001 audits and ensure compliance. Continuous Improvement: Automate and enhance monitoring, detection and response based on evolving threats. Skills, experience and previous achievements required: Essential Extensive End to End Cyber Incident More ❯

AWS, Nutanix, and on-prem . Key Responsibilities Define and deliver a 3-5 year cyber security strategy and roadmap Lead enterprise security governance and represent security at senior / board level Own policies, frameworks, compliance, DPIAs, and operating models Oversee incident response, vulnerability management, SOC integration, and threat monitoring Secure hybrid platforms (Azure, AWS, Nutanix, SD-WAN, Zero … days Strong GDPR & PCI audit outcomes Reduction in vulnerabilities and phishing incidents Improved audit ratings and team engagement What We're Looking For Senior leadership experience in cyber / security CISSP, CISM, CISA or equivalent Strong track record with ISO 27001, NIST, PCI DSS, Cyber Essentials Plus Hands-on background across Azure, AWS, hybrid infrastructure … dependent upon your experience, qualifications and training. If you wish to apply, please read our Privacy Notice describing how we may process, disclose and store your personal data: gb / en / privacy-notice. More ❯

internal teams, consultants, partners, and customers. Use downtime effectively to practice installations, test upgrades, and explore new technologies. Maintain internal information management systems and follow company standards, including ISO 27001. Mentor junior team members and contribute to knowledge sharing across the team. ? Technical research to identify new ideas and ways of working, as well as presentations to team … Leading and contributing to technical discussions and planning Working as part of a team; mentoring and learning from others Maintaining and improving information management systems according to the ISO 27001 standard Linux administration (Red Hat, Ubuntu): file systems, networking, LVM, backups, clustering, upgrades, installation, and scripting Windows Server administration and Microsoft enterprise software. Database management: DB2 … throughout the year. These have included visits to indoor electric go-karting, mini golf and driving ranges, escape rooms, and more. Check out some of our socials here: https: / / responsiv.co.uk / social-events / Continuous ProfessionalDevelopment: Responsiv provide access to self-paced training, distance learning, and residential courses as appropriate to support your work. More ❯

ICT Infrastructure Supervisor - Redhill / Croydon Salary Range: £40,000 - £45,000 You will be supporting both Redhill and Croydon sites We are seeking an enthusiastic and experienced ICT Infrastructure Supervisor to join our dynamic in-house IT team. In this pivotal role, you’ll lead and support a skilled team responsible for maintaining and developing the organisation’s … or a related field (or equivalent experience) Experience working in an educational or similarly complex environment Ability to develop IT policies, procedures, and information security standards Understanding of ISO 27001 principles Proven experience in strategic IT operations, project delivery, and service improvement Strong technical knowledge in: Microsoft Server Environments VMware SQL Networking Backup systems Due to … personal data very seriously. Any information provided to us will be processed as detailed in our Privacy Notice, a copy of which can be found on our website http: / / proactive.it / privacy-notice / More ❯

Microsoft Entra ID and Active Directory Domain Services. Provide security requirements for Conditional Access, MFA, SSO, passwordless authentication, and identity governance, implemented by the IAM teams. Partner with IAM / Infrastructure teams to ensure privileged access (PIM), RBAC models, and least-privilege designs meet security requirements. Harden identity infrastructure including domain controllers, authentication protocols (Kerberos / NTLM), secure … LDAP, and hybrid identity components. Monitor identity-related security signals (Identity Protection, risky users / sign-ins) and support investigation of identity-based attacks. Validate secure delegation models, access review processes, and identity lifecycle controls defined by IAM. Threat Detection, Monitoring & Incident Response Own and operate SIEM and SOAR tooling, including Microsoft Sentinel, Defender XDR, Identity Protection, and threat … security tools. Produce incident reports, RCA documentation, and post-incident improvement plans. Coordinate with SOC teams or third-party providers when required. Endpoint, Server, and Infrastructure Security Implement CIS / NIST-aligned hardening across Windows Server, domain controllers, virtual machines, and Azure workloads. Deploy and manage endpoint protection and EDR platforms (e.g., Microsoft Defender for Endpoint). Enforce secure More ❯

our digital platforms and tools are aligned to the company vision. The successful candidate will have a deep understanding of digital architecture in asset-heavy environments (including BIM, OT / IT integration, and data led-delivery). Key Duties Include: Manage the design and development of end-to-end digital solutions that align with the engineering, operations, and BIM … delivery and Digital Transformation strategies. Define how digital platforms, tools, and integrations will work together (e.g., mobile apps, cloud-based services, analytics, IT / OT, customer portals). Produce and maintain architectural documentation (e.g., solution diagrams, interface specs, data flow models) to guide development and delivery. Ensure all solutions comply with data governance, cyber security, and ISO 19650 / ISO 27001 standards. Translate business objectives into technical roadmaps and digital service designs. Continuously scan for emerging technologies (e.g., AI, digital twins, automation) that can improve RSEs digital capabilities. Manage the design of integrated platforms that connect existing legacy systems with new cloud-native or SaaS solutions. Participate in reviews, pilots More ❯

our digital platforms and tools are aligned to the company vision. The successful candidate will have a deep understanding of digital architecture in asset-heavy environments (including BIM, OT / IT integration, and data led-delivery). Key Duties Include: Manage the design and development of end-to-end digital solutions that align with the engineering, operations, and BIM … delivery and Digital Transformation strategies. Define how digital platforms, tools, and integrations will work together (e.g., mobile apps, cloud-based services, analytics, IT / OT, customer portals). Produce and maintain architectural documentation (e.g., solution diagrams, interface specs, data flow models) to guide development and delivery. Ensure all solutions comply with data governance, cyber security, and ISO 19650 / ISO 27001 standards. Translate business objectives into technical roadmaps and digital service designs. Continuously scan for emerging technologies (e.g., AI, digital twins, automation) that can improve RSEs digital capabilities. Manage the design of integrated platforms that connect existing legacy systems with new cloud-native or SaaS solutions. Participate in reviews, pilots More ❯

our digital platforms and tools are aligned to the company vision. The successful candidate will have a deep understanding of digital architecture in asset-heavy environments (including BIM, OT / IT integration, and data led-delivery). Key Duties Include: Manage the design and development of end-to-end digital solutions that align with the engineering, operations, and BIM … delivery and Digital Transformation strategies. Define how digital platforms, tools, and integrations will work together (e.g., mobile apps, cloud-based services, analytics, IT / OT, customer portals). Produce and maintain architectural documentation (e.g., solution diagrams, interface specs, data flow models) to guide development and delivery. Ensure all solutions comply with data governance, cyber security, and ISO 19650 / ISO 27001 standards. Translate business objectives into technical roadmaps and digital service designs. Continuously scan for emerging technologies (e.g., AI, digital twins, automation) that can improve RSE s digital capabilities. Manage the design of integrated platforms that connect existing legacy systems with new cloud-native or SaaS solutions. Participate in reviews More ❯

our digital platforms and tools are aligned to the company vision. The successful candidate will have a deep understanding of digital architecture in asset-heavy environments (including BIM, OT / IT integration, and data led-delivery). Key Duties Include: Manage the design and development of end-to-end digital solutions that align with the engineering, operations, and BIM … delivery and Digital Transformation strategies. Define how digital platforms, tools, and integrations will work together (e.g., mobile apps, cloud-based services, analytics, IT / OT, customer portals). Produce and maintain architectural documentation (e.g., solution diagrams, interface specs, data flow models) to guide development and delivery. Ensure all solutions comply with data governance, cyber security, and ISO 19650 / ISO 27001 standards. Translate business objectives into technical roadmaps and digital service designs. Continuously scan for emerging technologies (e.g., AI, digital twins, automation) that can improve RSE’s digital capabilities. Manage the design of integrated platforms that connect existing legacy systems with new cloud-native or SaaS solutions. Participate in reviews More ❯

our digital platforms and tools are aligned to the company vision. The successful candidate will have a deep understanding of digital architecture in asset-heavy environments (including BIM, OT / IT integration, and data led-delivery). Key Duties Include: Manage the design and development of end-to-end digital solutions that align with the engineering, operations, and BIM … delivery and Digital Transformation strategies. Define how digital platforms, tools, and integrations will work together (e.g., mobile apps, cloud-based services, analytics, IT / OT, customer portals). Produce and maintain architectural documentation (e.g., solution diagrams, interface specs, data flow models) to guide development and delivery. Ensure all solutions comply with data governance, cyber security, and ISO 19650 / ISO 27001 standards. Translate business objectives into technical roadmaps and digital service designs. Continuously scan for emerging technologies (e.g., AI, digital twins, automation) that can improve RSE’s digital capabilities. Manage the design of integrated platforms that connect existing legacy systems with new cloud-native or SaaS solutions. Participate in reviews More ❯

to the Head of IT on service compliance, health and technical risks Champion best practice across service delivery, patch management and system resilience Contribute directly to the ongoing ISO 27001 certification and Cyber Essentials Plus compliance Act as deputy to the Head of IT, maintaining continuity of leadership Some specific tasks include: Operational leadership – ie lead … the following in the successful candidate: Solid, progressive experience in IT operations or Service delivery in a 200-500 user Organisation. Hands on experience with Microsoft 365, Azure AD / Entra ID and Intune endpoint management (or very close experience to this) Understanding of networking fundamentals, patch management and system monitoring. Practical knowledge of ITIL principles Confident in coaching … / mentoring / motivating others. In terms of personal attributes, it’s important you are methodical, calm and able to make decisions, work independently and take ownership. The team and company are super nice, so you need to be a decent, ethical person who works well in a team. Additional Information Salary is dependent upon experience. This is More ❯

now looking for a Principal Security Design Consultant to steer high-value client engagements across both security architecture and GRC. You’ll work on complex regulatory frameworks (e.g. NIST, ISO27001, CAF, IEC 62443), lead design reviews, and guide clients through secure solution design. You’ll also support junior consultants, contribute to pre-sales, and help shape internal service … consultants and supporting the sales and marketing function with technical input. KEY SKILLS: Experience across cyber security and GRC. Strong understanding of TOGAF, SABSA, and major compliance frameworks (e.g ISO27001 & IEC 62443) Experience leading consultancy or internal projects in regulated sectors. Ability to lead projects and mentor others. Excellent communication and stakeholder management skills. BENEFITS: 26 Days Holiday … + Bank Holidays, plus the option to buy / sell up to 5 days of annual leave per year. Company funded medical cover. Enhanced Company Pension Scheme up to 6%. Employee-funded car leasing scheme. Life Assurance & Income Protection Scheme We are an equal opportunity recruitment company. This means we welcome applications from all suitably qualified people regardless More ❯

re now looking for a Principal Security Design Consultant to steer high-value client engagements across both security architecture and GRC.You’ll work on complex regulatory frameworks (e.g. NIST, ISO27001, CAF, IEC 62443), lead design reviews, and guide clients through secure solution design. You’ll also support junior consultants, contribute to pre-sales, and help shape internal service … consultants and supporting the sales and marketing function with technical input. KEY SKILLS: Experience across cyber security and GRC. Strong understanding of TOGAF, SABSA, and major compliance frameworks (e.g ISO27001 & IEC 62443) Experience leading consultancy or internal projects in regulated sectors. Ability to lead projects and mentor others. Excellent communication and stakeholder management skills. BENEFITS: 26 Days Holiday … + Bank Holidays, plus the option to buy / sell up to 5 days of annual leave per year. Company funded medical cover. Enhanced Company Pension Scheme up to 6%. Employee-funded car leasing scheme. Life Assurance & Income Protection Scheme We are an equal opportunity recruitment company. This means we welcome applications from all suitably qualified people regardless More ❯