201 to 225 of 1,042 ISO/IEC 27001 Jobs in the UK

support internal audits with robust systems and policies. • Incident & Change Leadership: Manage incidents and changes efficiently, providing strategic oversight on high-priority issues. • Financial Stewardship: Plan and manage Opex / Capex budgets, track spend, and identify cost-saving opportunities. You ll also lead on: • Cybersecurity Operations: Partner with our vCISO to manage 24 7 monitoring, vulnerability management, and secure … or higher) in Computer Science, Information Systems, Engineering, or related field. • MBA or postgraduate qualification (desirable). • ITIL v4 Managing Professional or ITIL Expert (mandatory). • Certifications in ISO 27001, COBIT, Microsoft Azure, Lean Six Sigma, Prince2, or SAFe Agilist. Leadership & Communication • Gravitas to influence regulators and auditors. • Exceptional stakeholder management and communication skills. • Commercial acumen … proud to be the only carbon negative pet insurer in the UK. What we offer: • 25 days annual leave which increases with service, plus bank holidays • Opportunity to buy / sell up to 5 days annual leave per calendar year • Pension and Life Assurance scheme • Access to 25% off insuring your pet with Agria. Friends and family are also More ❯

support internal audits with robust systems and policies. • Incident & Change Leadership: Manage incidents and changes efficiently, providing strategic oversight on high-priority issues. • Financial Stewardship: Plan and manage Opex / Capex budgets, track spend, and identify cost-saving opportunities. You’ll also lead on: • Cybersecurity Operations: Partner with our vCISO to manage 24×7 monitoring, vulnerability management, and secure … or higher) in Computer Science, Information Systems, Engineering, or related field. • MBA or postgraduate qualification (desirable). • ITIL v4 Managing Professional or ITIL Expert (mandatory). • Certifications in ISO 27001, COBIT, Microsoft Azure, Lean Six Sigma, Prince2, or SAFe Agilist. Leadership & Communication • Gravitas to influence regulators and auditors. • Exceptional stakeholder management and communication skills. • Commercial acumen … proud to be the only carbon negative pet insurer in the UK. What we offer: • 25 days annual leave which increases with service, plus bank holidays • Opportunity to buy / sell up to 5 days annual leave per calendar year • Pension and Life Assurance scheme • Access to 25% off insuring your pet with Agria. Friends and family are also More ❯

in designing and maintaining secure practices across Microsoft 365, Azure, and broader security operations. Working within a small, agile security team, you'll also contribute to regulatory compliance (ISO 27001, GDPR, Cyber Essentials+), risk assessments, vulnerability management, and stakeholder engagement at all levels. Experience of Interest: * Practical experience implementing Microsoft Entra ID Governance (or similar Okta … on and demonstrable use of Microsoft Purview for compliance, data classification, and DLP * Strong security operations knowledge across M365 and Azure environments * Awareness of regulatory frameworks such as ISO 27001, GDPR, NIST, Cyber Essentials+ * Comfortable working with senior IT, Compliance and Risk stakeholders Interested? Send your CV or reach out for a confidential conversation. Email More ❯

delivery. Collaborate with InfoSec and Legal teams to ensure compliance with relevant regulations (e.g., ISO 27001, GDPR). Lead incident response and disaster recovery planning / testing for internal platforms and operational IT. Requirements Needed: Bachelor's degree in information technology, Computer Science, or related experience. 10+ years of experience in IT operations and support More ❯

security specialism is aligned. Engineering degree with minimum 5 years' experience in product security and CISSP, CISM or equivalent qualification Practical experience of risk management frameworks (NIST SP800-37, ISO27001) Practical experience of risk assessment processes (NIST SP800-30 and ISO 27005) Practical experience of applying security controls (NIST SP800-53 and ISO27002) Practical experience of Secure by … Design requirements (ISN 2023 / 09) Demonstrable experience of writing IA Technical Risk Assessments and the management of these Assessments Ability to interpret Penetration Test Reports and write Remediation Action Plans An appreciation of the wider UK Government Assurance Processes (such as JSP 440, DEFSTAN 05-139 or the CAF GovAssure processes). This is not an exhaustive list More ❯

practice. Reporting to the Head of Security & Governance , the successful candidate will play a central role in delivering risk reduction across the business. You'll be responsible for maintaining ISO27001 compliance, overseeing risk assessment and mitigation, and supporting incident management across multi-entity operations. Key Accountabilities: Lead and manage a team of three security professionals , supporting their development and day … to-day delivery. Ensure ongoing ISO27001 accreditation and alignment with broader assurance frameworks (e.g. NIST CSF, Cyber Essentials). Shape and implement the company's information security strategy , including policy, tooling, and training. Conduct risk assessments, oversee remediation plans, and guide secure-by-design approaches across projects. Provide technical leadership in areas including threat intelligence, compliance reporting, and incident response … including service providers and the organisation's parent company. Required Skills & Qualifications: Demonstrable experience in information security leadership , including line management or team leadership . In-depth knowledge of ISO27001, GDPR, FCA SYSC, PCI DSS and other regulatory / compliance frameworks. Hands-on experience with security technologies: SIEM, IAM, vulnerability assessment, endpoint protection, cloud services (AWS, SaaS, IaaS) . More ❯

practice. Reporting to the Head of Security & Governance , the successful candidate will play a central role in delivering risk reduction across the business. You'll be responsible for maintaining ISO27001 compliance, overseeing risk assessment and mitigation, and supporting incident management across multi-entity operations. Key Accountabilities: Lead and manage a team of three security professionals , supporting their development and day … to-day delivery. Ensure ongoing ISO27001 accreditation and alignment with broader assurance frameworks (e.g. NIST CSF, Cyber Essentials). Shape and implement the company's information security strategy , including policy, tooling, and training. Conduct risk assessments, oversee remediation plans, and guide secure-by-design approaches across projects. Provide technical leadership in areas including threat intelligence, compliance reporting, and incident response … including service providers and the organisation's parent company. Required Skills & Qualifications: Demonstrable experience in information security leadership , including line management or team leadership . In-depth knowledge of ISO27001, GDPR, FCA SYSC, PCI DSS and other regulatory / compliance frameworks. Hands-on experience with security technologies: SIEM, IAM, vulnerability assessment, endpoint protection, cloud services (AWS, SaaS, IaaS) . More ❯

practice. Reporting to the Head of Security & Governance , the successful candidate will play a central role in delivering risk reduction across the business. You'll be responsible for maintaining ISO27001 compliance, overseeing risk assessment and mitigation, and supporting incident management across multi-entity operations. Key Accountabilities: Lead and manage a team of three security professionals , supporting their development and day … to-day delivery. Ensure ongoing ISO27001 accreditation and alignment with broader assurance frameworks (e.g. NIST CSF, Cyber Essentials). Shape and implement the company's information security strategy , including policy, tooling, and training. Conduct risk assessments, oversee remediation plans, and guide secure-by-design approaches across projects. Provide technical leadership in areas including threat intelligence, compliance reporting, and incident response … including service providers and the organisation's parent company. Required Skills & Qualifications: Demonstrable experience in information security leadership , including line management or team leadership . In-depth knowledge of ISO27001, GDPR, FCA SYSC, PCI DSS and other regulatory / compliance frameworks. Hands-on experience with security technologies: SIEM, IAM, vulnerability assessment, endpoint protection, cloud services (AWS, SaaS, IaaS) . More ❯

8+ years of experience in Information Security or IT , with 3+ years in IT Audit or security control testing Familiar with security frameworks such as NIST 800-53, ISO 27001, CIS Controls, COBIT Hands-on experience using RSA Archer, ServiceNow , and familiarity with automation and data-driven testing Working knowledge of cloud environments ( AWS, Azure ) and … related security controls Relevant certifications: CISA, CISM, CISSP, ISO 27001 Lead Auditor (desirable) Excellent communication skills with the ability to translate technical findings into business risks Experience with Agile methodologies (Kanban, Jira) a plus Interested? Apply today with your CV and we'll be in touch to discuss the role in more detail and arrange next More ❯

standards and product specifications, especially regarding regulatory compliance and Cyber security. Ensure compliance with industry standards and regulatory requirements specific to fire alarm and life safety devices (EN54\UL864\ISO27001\CE). Implement best practices in coding, testing, and documentation. Develop and refine measurable software development processes to enhance efficiency and quality. Collaborate with R&D team section managers to … Degree level in Engineering, preferably with a Software focus. Experience Considerable proven experience managing development teams of 10-15 engineers within an electronic product segment, ideally regulatory controlled. Knowledge / Skills Management Proven experience leading and managing software development teams of various sizes, with a track record as an exceptional people manager. Ability to mentor, coach, motivate, and develop … design documents that comprehensively describe the product design and functionality. Certification Experience in designing products for a regulatory controlled market and ensuring compliance with those standards including ISO9001 and ISO27001 / NIST or other relevant security frameworks. This is an excellent opportunity to become part of the key engineering team within a developing business with its culture shaped by More ❯

s a small function. What You'll Do Lead and support a small, global cybersecurity team. Create and manage a strategic security plan aligned with company goals and ISO 27001. Proactively identify and address security risks and threats. Respond to and manage cybersecurity incidents and breaches. Conduct risk assessments, penetration tests, and other security evaluations. Keep senior leadership … Run regular training to promote cybersecurity awareness across the company. What You Bring Experience leading high-performing global security teams. Strong understanding of security frameworks and regulations (eg, ISO 27001, NIST, GDPR, DORA). Background in network, cloud (Azure), endpoint, and application security. Experience building and running company-wide security programs. Proven ability to handle real More ❯

s a small function. What You'll Do Lead and support a small, global cybersecurity team. Create and manage a strategic security plan aligned with company goals and ISO 27001. Proactively identify and address security risks and threats. Respond to and manage cybersecurity incidents and breaches. Conduct risk assessments, penetration tests, and other security evaluations. Keep senior leadership … Run regular training to promote cybersecurity awareness across the company. What You Bring Experience leading high-performing global security teams. Strong understanding of security frameworks and regulations (eg, ISO 27001, NIST, GDPR, DORA). Background in network, cloud (Azure), endpoint, and application security. Experience building and running company-wide security programs. Proven ability to handle real More ❯

s a small function. What You'll Do Lead and support a small, global cybersecurity team. Create and manage a strategic security plan aligned with company goals and ISO 27001. Proactively identify and address security risks and threats. Respond to and manage cybersecurity incidents and breaches. Conduct risk assessments, penetration tests, and other security evaluations. Keep senior leadership … Run regular training to promote cybersecurity awareness across the company. What You Bring Experience leading high-performing global security teams. Strong understanding of security frameworks and regulations (eg, ISO 27001, NIST, GDPR, DORA). Background in network, cloud (Azure), endpoint, and application security. Experience building and running company-wide security programs. Proven ability to handle real More ❯

across projects and meetings. Drive awareness through training, supplier reviews, and client security assessments. ?? What You Bring Strong knowledge of security tools and infrastructure: WAFs, SIEM, AV, firewalls, TCP / IP, and more. Familiarity with OWASP … zero-trust, SASE, and risk-based vulnerability management. A background in infrastructure or networks. Working towards or holding certifications like CISSP, GCIA, Security+, CCNA / CCNP. Understanding of ISO27001, Cyber Essentials, and AAF frameworks. Excellent communication skills and the ability to create clear technical documentation. ?? Why Join? Impactful Work: Your expertise will directly influence the organisation's security posture. More ❯

Security and requires a broad understanding of security controls and their effective implementation within corporate environments. The role will also require good relationship management skills across the assigned region / sub-region to enable business adoption. As a Director within the Regional Security Office (RSO) service, you will be accountable for service delivery to the assigned region / sub-region and solution lines. The role will need to have effective relationships with senior leadership to support the delivery of the regional / sub-regional business goals and operate an effective security risk management regime against an agreed security risk mitigation strategy. As the trusted security lead, the role will present to local leaders, regulators, and clients … management experience. Experience of Compliance assurance and Audit practice is desirable. Security certification (CISSP, CISM) is an advantage. Understanding and experience of delivering compliance standards, including Sarbanes Oxley (404), ISO27001, and Cyber Essentials+. How we support our colleagues: In addition to our comprehensive benefits package, we encourage a diverse workforce. Plus, our agile, inclusive environment allows you to manage your More ❯

This job is brought to you by Jobs / Redefined, the UK's leading over-50s age inclusive jobs board. Cybersecurity Director - UK Region Reporting to the EMEA Regional Security Officer, this role is key in managing the regional and solution line operational security risk level to within acceptable levels via leading remediation programs and deployment of Global Cybersecurity … Cybersecurity and requires a broad understanding of security controls and their effective implementation within corporate environments. The role will also require good relationship management skills across the assigned region / sub-region to enable business adoption. As a Director within the Regional Security Office (RSO) service you will be accountable for service delivery to the assigned region / … management experience. Experience of Compliance assurance and Audit practice is desirable. Security certification (CISSP,CISM) is an advantage. Understanding and experience of delivering compliance standards, including; Sarbanes Oxley (404), ISO27001 and Cyber Essentials+. How we support our colleagues In addition to our comprehensive benefits package, we encourage a diverse workforce. Plus, our agile, inclusive environment allows you to manage your More ❯

the spirit of regulatory frameworks. Key Areas of Responsibility: Regulatory Implementation & Frameworks Assist in establishing a comprehensive resilience framework that meets DORA standards and other recognised guidelines (e.g. ISO 22301, ISO 27001, NIST). Draft internal controls, policies, training content, and risk assessment methodologies. Contribute to core DORA workstreams such as ICT risk management More ❯

Job Description: Director of NetworksPermanentLondon / Staines / Manchester (Hybrid Working) We make health happen At Bupa, we’re here to help people live longer, healthier, happier lives – and make a better world. As a global healthcare leader with no shareholders, our focus is always on our customers and our people. That’s why we invest in innovation … zero-trust networking and platforms like Palo Alto Prisma.• Experience with Microsoft Azure and Google Cloud Platform networking.• Familiarity with compliance frameworks such as HIPAA, GDPR, NIST, and ISO 27001.• A data-driven mindset with a focus on user experience and operational excellence.• Experience working in a product-centric model, embedding DevSecOps and SRE principles.• Excellent leadership, communication … s why we especially encourage applications from people with diverse backgrounds and experiences. Bupa is a Level 2 Disability Confident Employer. This means we aim to offer an interview / assessment to every disabled applicant who meets the minimum criteria for the role. We’ll make sure you are treated fairly and offer reasonable adjustments as part of our More ❯

the spirit of regulatory frameworks. Key Areas of Responsibility: Regulatory Implementation & Frameworks Assist in establishing a comprehensive resilience framework that meets DORA standards and other recognised guidelines (e.g. ISO 22301, ISO 27001, NIST). Draft internal controls, policies, training content, and risk assessment methodologies. Contribute to core DORA workstreams such as ICT risk management More ❯

the spirit of regulatory frameworks. Key Areas of Responsibility: Regulatory Implementation & Frameworks Assist in establishing a comprehensive resilience framework that meets DORA standards and other recognised guidelines (e.g. ISO 22301, ISO 27001, NIST). Draft internal controls, policies, training content, and risk assessment methodologies. Contribute to core DORA workstreams such as ICT risk management More ❯

the spirit of regulatory frameworks. Key Areas of Responsibility: Regulatory Implementation & Frameworks Assist in establishing a comprehensive resilience framework that meets DORA standards and other recognised guidelines (e.g. ISO 22301, ISO 27001, NIST). Draft internal controls, policies, training content, and risk assessment methodologies. Contribute to core DORA workstreams such as ICT risk management More ❯

technology estates. You will have proven experience with Cyber Security best practice including remediations for the MITRE ATT&CK Framework and NIST Cloud Security guidelines. You will support ISO 27001 compliance and have strong documentation skills. Experience in the Telco sector and knowledge of the UK Telecoms Security Act would be advantageous to your application. You More ❯

ensuring compliance with security standards, managing incidents, and collaborating with internal and external stakeholders. Key Responsibilities: Lead and manage the Cyber Security Operations team. Ensure compliance with security standards (ISO27001, NCSC CAF). Manage security incidents and vulnerabilities. Collaborate with third-party suppliers and internal teams. Provide expert advice on security technologies and processes. Requirements: Proven team leadership experience.Strong knowledge … of security technologies (firewalls, IDS / IPS, SIEM).Relevant qualifications (CISSP, CISM, etc.). Apply now to make a significant impact on NHS BSA's cyber security strategy! What do we offer?o 27 days leave (increasing with length of service) plus 8 bank holidayso Flexible working (we are happy to discuss options such as compressed hours)o Hybrid … people connected to care. Job description Job responsibilities In this role, you are accountable for 1. As the Security operations team lead you will support the Infrastructure Services Manager / Head of Cyber Security & infrastructure Services ensuring NHSBSA systems security is managed and appropriate access control and monitoring on all systems is maintained. 2. To work with NHSBSA staff More ❯

safer operations. 🔍 What You’ll Do: →Plan and deliver audits across infrastructure, cloud, cybersecurity, and third-party risks →Evaluate ITGCs, application controls, and compliance with SOX, GDPR, NIST, ISO 27001 →Partner with international teams to scope audits and execute testing →Deliver clear, actionable reports to senior stakeholders →Monitor remediation efforts and support integrated audits →Stay ahead More ❯

safer operations. 🔍 What You’ll Do: →Plan and deliver audits across infrastructure, cloud, cybersecurity, and third-party risks →Evaluate ITGCs, application controls, and compliance with SOX, GDPR, NIST, ISO 27001 →Partner with international teams to scope audits and execute testing →Deliver clear, actionable reports to senior stakeholders →Monitor remediation efforts and support integrated audits →Stay ahead More ❯