226 to 250 of 916 ISO/IEC 27001 Jobs in the UK

particularly in IT Compliance, IT Risk Management, and Vendor Management—is desirable. Strong knowledge of IT risk management frameworks and standards such as ISO 27001 and NIST. Proven experience in developing and implementing risk management strategies, policies, and procedures. Relevant certifications such as CRISC, CISA, CGEIT … or ISO 27001 Implementer. Previous experience in a financial services environment is advantageous. Additional risk qualifications with an IT specialism would be beneficial. Solid academic background with strong analytical and problem-solving skills. Proficiency in Microsoft Office, particularly Excel, Word, and PowerPoint. Tradition do not accept More ❯

particularly in IT Compliance, IT Risk Management, and Vendor Management—is desirable. Strong knowledge of IT risk management frameworks and standards such as ISO 27001 and NIST. Proven experience in developing and implementing risk management strategies, policies, and procedures. Relevant certifications such as CRISC, CISA, CGEIT … or ISO 27001 Implementer. Previous experience in a financial services environment is advantageous. Additional risk qualifications with an IT specialism would be beneficial. Solid academic background with strong analytical and problem-solving skills. Proficiency in Microsoft Office, particularly Excel, Word, and PowerPoint. Tradition do not accept More ❯

risk assessments to identify vulnerabilities, focusing on protecting customer data and financial systems. Regulatory Compliance: Ensure compliance with regulations and standards like GDPR, ISO 27001, CQuest, SOC 2, and FCA and PRA guidelines. Effectiveness Monitoring: Monitor and assess the effectiveness of security controls, policies, and procedures. … and track security incidents and breaches, ensuring appropriate mitigation and response strategies. About you: - Information Security Frameworks: Familiarity with frameworks such as NIST, ISO 27001, SOC 2, and GDPR. Financial Sector Requirements: Knowledge of specific information security needs for financial institutions and building societies. Security Controls … role and to support your future career aspirations. For all full-time roles we work a 35-hour working week to promote a work / life balance, we want you to be at your best inside and outside of work. A friendly and inclusive culture where teams genuinely strive More ❯

and contemporary contextual cybersecurity risks. Developing and operating our ISMS, and all that this entails: You will also be responsible for maintaining our ISO 27001 and Cyber Essentials certifications-and other security-related compliance accreditations as may be required. We are a scaling business, staying lean … EBA Guidelines). Has a comprehensive understanding of what it takes to comply with cyber security industry standards and frameworks in practise (e.g. ISO 27001, NIST CSF, SP 800-53, NCSC CAF, Cyber Essentials). Has a thorough understanding of cyber security threat and risk with … development Regular socials to unwind and have some fun Apply for this job indicates a required field First Name Last Name Email Phone Resume / CV Accepted file types: pdf, doc, docx, txt, rtf LinkedIn Profile What are your salary expectations for this role? What is your notice period More ❯

Director of Information Security – FinTech / SaaS 📍 London (Remote-first, with occasional office travel) 💰 £95,000 – £115,000 + Bonus + Potential Equity We’re partnered with a fast-growing FinTech / SaaS business on the search for a Director of Information Security —a strategic hire to lead … Responsibilities Lead the development and execution of the overall security strategy Own and manage risk across infrastructure, applications, and data Drive compliance efforts (ISO 27001, SOC 2, etc.) and support audit readiness Build security awareness across the company, including training and best practices Work closely with … a scaling business Hands-on knowledge of cloud (AWS, GCP or Azure), application security, and security tooling Familiarity with compliance frameworks such as ISO 27001, SOC 2, and GDPR Excellent communication skills with the ability to influence both technical and non-technical stakeholders A strategic mindset More ❯

Director of Information Security – FinTech / SaaS 📍 London (Remote-first, with occasional office travel) 💰 £95,000 – £115,000 + Bonus + Potential Equity We’re partnered with a fast-growing FinTech / SaaS business on the search for a Director of Information Security —a strategic hire to lead … Responsibilities Lead the development and execution of the overall security strategy Own and manage risk across infrastructure, applications, and data Drive compliance efforts (ISO 27001, SOC 2, etc.) and support audit readiness Build security awareness across the company, including training and best practices Work closely with … a scaling business Hands-on knowledge of cloud (AWS, GCP or Azure), application security, and security tooling Familiarity with compliance frameworks such as ISO 27001, SOC 2, and GDPR Excellent communication skills with the ability to influence both technical and non-technical stakeholders A strategic mindset More ❯

in security design and assurance, particularly within large-scale IT and OT environments. Security Frameworks: Strong understanding of security frameworks such as NIST, ISO 27001, IEC 62443 (for OT), TOGAF, or SABSA. IT & OT Security: IT Role: Expertise in securing enterprise IT environments, cloud More ❯

Job Description Secure and maintain the IT infrastructure, including networks, servers, and cloud environments. Implement, monitor, and manage security solutions such as firewalls, IDS / IPS, and endpoint protection. Conduct vulnerability assessments on the infrastructure. Ensure compliance with regulatory requirements (e.g., GDPR, ISO 27001) and … and intrusion detection systems. Desirable Experience in a manufacturing or industrial environment, Operational Technologies. Knowledge of security frameworks and compliance requirements (e.g., NIST, ISO 27001, GDPR). Experience with SIEM solutions, endpoint security, and identity & access management. Ability to conduct risk assessments and develop mitigation strategies. More ❯

trends. Partner with teams across the globe to design, implement, and test security tools and controls. Lead the journey to achieving and maintaining ISO 27001 certification. Stay sharp on cybersecurity developments, translating new risks and regulations into meaningful action. Drive cultural change by creating impactful cybersecurity … You Bring to the Table We're looking for a curious, thoughtful, and detail-oriented professional. Hands-on experience implementing and auditing against ISO 27001 standards. A solid foundation in enterprise-level Information Security practices. Strong analytical skills and a calm approach under competing demands. Familiarity … 2010. For the purposes of the Conduct Regulations 2003, when advertising permanent vacancies we are acting as an Employment Agency, and when advertising temporary / contract vacancies we are acting as an Employment Business. More ❯

cyber resilience controls to embedded systems. It would be desirable, but not essential , if you also had one or more of: Practical experience of ISO27001 / 27004 / 27005 or NIST Risk Management Framework (RMF); Knowledge of UK / NATO Information Assurance / Accreditation frameworks; Knowledge … of EASA / FAA Airworthiness Certification frameworks; Awareness of current crypto technologies, Key Management Systems & practical COMSEC; Chartered Engineer status with a recognised body; Awarded or looking to achieve an NCSC Certified Cyber Professional (CCP) recognition; Awareness of Information Security (INFOSEC), Communications Security (COMSEC), Transmission Security (TRANSEC), Product Safety … and their inter-relationship; Experience of producing and delivering training / awareness material within a corporate environment; Familiarity with incident investigation and implementation of an investigation process such as used by the Air Accidents Investigation Branch (AAIB). Why Leonardo? The business, primarily based in Luton, has a rich More ❯

regulatory requirements (e.g., ISO 27001, NIS2, GDPR). Oversee risk management frameworks, including enterprise risk, cyber risk, and third-party / vendor risk. Collaborate cross-functionally with Security, Legal, Operations, and senior stakeholders to embed a culture of risk-aware decision making. Lead internal audits … leadership role within a tech, managed services, or regulated environment. Strong understanding of risk management, compliance frameworks, and international regulatory landscapes. Familiarity with ISO 27001, NIST, GDPR, DORA, NIS2, and other relevant standards. Excellent communication skills and the ability to … influence senior stakeholders. Fluent English is required; Spanish or German is a plus. Based in Spain or open to relocating, with flexibility for hybrid / remote work. Why Join? Be part of a fast-scaling European digital leader with ambitious growth plans. Influence strategy at the highest level while More ❯

Promote security awareness and help drive a risk-aware culture across the business Provide expert guidance to ensure alignment with security frameworks (e.g. ISO 27001, NIST) Support audit, regulatory compliance, and governance efforts Influence adoption of secure solutions across both strategic and operational initiatives What They … and stakeholder engagement skills Familiarity with cloud and hybrid security models Understanding of regulatory compliance (e.g., GDPR, PCI DSS) Knowledge of frameworks like ISO 27001, NIST, CIS, or COBIT If keen please apply More ❯

and implement information security policies, standards, and guidance in collaboration with stakeholders. Ensure compliance with industry standards such as NIST CSF, PCI-DSS, ISO 27001, and SOC 2. Coordinate responses to internal and external audits and liaise with key stakeholders. Develop and deliver security policy awareness … regulated industry. Experience in developing and implementing information security policies, standards and procedures. Familiarity with security standards such as NIST CSF, PCI-DSS, ISO 27001, and SOC2. Strong skills in security metrics and reporting. Ability to engage collaboratively with technical and non-technical stakeholders. Excellent written More ❯

Our Security, Risk, and Compliance consultants will deliver architecture guidance, design and implement security controls on cloud projects, and consult with and enable customer / partner in cloud security domains and support ProServe field engagements as the security subject matter expert. AWS consultants will collaborate with customers and partners … when needed. A day in the life Working with customers to understand their business challenges around security "in" the cloud and to help design / architect technical solutions to address those business needs. Support Amazonians and customers across ASEAN region in ongoing projects as the field security SME to … why you'll find endless knowledge-sharing, mentorship and other career-advancing resources here to help you develop into a better-rounded professional. Work / Life Balance We value work-life harmony. Achieving success at work should never come at the expense of sacrifices at home, which is why More ❯

as part of critical vendor performance assessment ensuring operational resilience is maintained. In collaboration with GT, manage security systems, including firewalls, intrusion detection / prevention systems, and antivirus software. In collaboration with GT, Develop and test incident response plans and coordinate responses to security incidents and breaches Raise awareness … of cybersecurity issues among bank London employees; conduct annual training / workshops to educate staff on security best practices aligned with GT. Other Duties Maintain professional and technical knowledge (Conduct Rule 2) e.g. by attending educational workshops; read professional publications; benchmarking state-of-the-art practices etc where relevant. … work deliverables are in compliance with policies and regulatory requirements . Maintains quality service by establishing and enforcing organization standards. To act as second / third level support with GT for support related issues. To comply with all applicable FCA / PRA conduct rules. Compliance with all mandatory More ❯

begins. In this role you will be responsible for: Development, implementation, and ongoing enhancement of the ISMS in alignment with standards such as ISO 27001, BSI IT-Grundschutz or NIS2. Providing expert guidance and support to leadership and departments on all aspects of information security. Drafting … is remote in Germany. Essential: Relevant degree e.g. Computer Science, Cyber Security In depth knowledge of relevant security standards and frameworks such as ISO 27001, BSI IT-Grundschutz or NIS2. Strong experience implementing and enhancing ISMS. Knowledge of data protection. Good communication skills Minimum C1 German … over the world via them enjoying the products you help create, call or send your CV to for a response. Information Security Officer - Remote / Germany - Up to €110k DOE More ❯

Lead or support vulnerability analysis activities, including risk-based prioritisation and remediation tracking. Ensure alignment with global security standards and frameworks (e.g. NIST, ISO 27001, CIS). Partner with compliance, audit, and internal stakeholders to address regulatory requirements and support evidence gathering for audits. Leverage SIEM … Consultant, Risk Analyst, or GRC Specialist in enterprise environments—ideally within financial services. Strong working knowledge of security frameworks and standards: NIST CSF, ISO 27001, CIS, etc. Experience with security risk assessments, controls design, and compliance monitoring. Familiarity with vulnerability management practices and tools. Exposure to More ❯

Lead or support vulnerability analysis activities, including risk-based prioritisation and remediation tracking. Ensure alignment with global security standards and frameworks (e.g. NIST, ISO 27001, CIS). Partner with compliance, audit, and internal stakeholders to address regulatory requirements and support evidence gathering for audits. Leverage SIEM … Consultant, Risk Analyst, or GRC Specialist in enterprise environments—ideally within financial services. Strong working knowledge of security frameworks and standards: NIST CSF, ISO 27001, CIS, etc. Experience with security risk assessments, controls design, and compliance monitoring. Familiarity with vulnerability management practices and tools. Exposure to More ❯

security in processes and digital projects. Perform cybersecurity analysis , translating regulatory and business requirements into actionable tasks. Advise on frameworks such as NIST, ISO 27001, CIS Controls, CSA CCM. Support GRC activities , including risk assessments and compliance monitoring. Must-Have Experience & Skills: 5+ years in IT … security consulting or transformation roles. Proven delivery of complex, multi-site security projects globally. Deep knowledge of security frameworks (NIST, ISO 27001, CIS, CSA CCM). Strong understanding of GRC processes , vulnerability management, incident response, and SOC. Familiarity with DevSecOps , secure SDLC, disaster recovery, and BCP. More ❯

security in processes and digital projects. Perform cybersecurity analysis , translating regulatory and business requirements into actionable tasks. Advise on frameworks such as NIST, ISO 27001, CIS Controls, CSA CCM. Support GRC activities , including risk assessments and compliance monitoring. Must-Have Experience & Skills: 5+ years in IT … security consulting or transformation roles. Proven delivery of complex, multi-site security projects globally. Deep knowledge of security frameworks (NIST, ISO 27001, CIS, CSA CCM). Strong understanding of GRC processes , vulnerability management, incident response, and SOC. Familiarity with DevSecOps , secure SDLC, disaster recovery, and BCP. More ❯

create and ensure compliance with industry regulations and company-specific policies. Implementing and maintaining Information Security and Privacy Standards and Frameworks, such as ISO 27001, NIST, and CIS. Reviewing system and data architectures alongside engineering teams and architects, recommending best practices. Assessing vulnerabilities, articulating their impact … technical stakeholders. Managing and supporting project stakeholder expectations with a flexible, pragmatic approach. Cyber Governance Analyst Requirements: Strong knowledge of cybersecurity frameworks (e.g., ISO 27001, NIST, CIS). Proven experience in a similar role, supporting governance, monitoring controls, and managing risks. Ability to assess and articulate … for enhanced flexibility. We are an equal opportunities employer and welcome applications from all suitably qualified persons regardless of their race, sex, disability, religion / belief, sexual orientation or age. More ❯

Hands-on experience with AWS cloud infrastructure - inc. AWS Security Services (CloudTrail, Guard Duty, WAF, IAM, Security Hub etc.) Knowledge of CI / CD including DevSecOps patterns and principles Key skills required for this role Security ENgineer Important Security Engineer Our client, a prominent organisation in the broadcast industry … technical vulnerabilities and support continued system maintenance to minimise technical debt Ensure visibility and reporting of cloud infrastructure compliance with security standards (e.g., ISO 27001, CIS) Develop requirements, design, and implement cloud security tools, focusing on threat detection and risks Identify, remediate, and report security vulnerabilities … security standards Support security design and architecture reviews Work closely with infrastructure teams on security design and control strategies Define and operate secure development / operations (DevOps) practices, including code scanning and Kubernetes security Implement system and device hardening policies and reporting Conduct technology-focused threat assessments to identify More ❯

closely with Engineering and IT teams to embed security at every stage of the development lifecycle Help maintain compliance with frameworks such as ISO 27001, GDPR, PCI DSS, and CIS benchmarks Contribute to evolving internal policies and promote awareness of good security practices across teams What … application security principles, with exposure to penetration testing or ethical hacking (CEH or similar certification is a plus) Awareness of industry frameworks like ISO 27001, CIS, or similar, and ideally holding a CISMP certification A proactive interest in cyber security trends, with a willingness to engage … Monthly Light’s Up and The Shine awards Relaxed dress code and modern office space (games area, chill-out areas, book club, free drinks / snacks) Onsite gym at HQ (including access to free HIIT & stretch classes) Strong learning and development culture #LI-Hybrid Remote Status: hybrid Location More ❯

of selling and leading cyber resilience and transformation projects Experience of the application of key cyber security standards and best practices such as ISO 27001, IEC 62443, NIS regulations and NIS CAF. Additional information Life At PA encompasses our peoples' experience at PA. It More ❯

Information Security Officer – Cybersecurity - Banking Excellent opportunity opens for an Information Security Officer / Information Security Assurance Officer with Financial Services experience to join a London based bank’s team, helping to ensure all information and cyber risks are identified, analysed, mitigated, and monitored, ensuring the smooth operation of … identified during audits or external assessments. Develop, review, and maintain information security governance documents, including policies, standards, frameworks, and procedures. Create and deliver Information / Cyber Security Awareness training, educating staff on best practices. Maintain comprehensive records and documentation of ISO activities. Provide regular updates and reports … prioritize tasks. Strong analytical and problem-solving skills. Proficiency in Microsoft Office. Interested? Please Apply! SOC ISO ISAO CISSP NIST CSF ISO27000 ISO27001 PCI DSS GDPR Cybersecurity Cyber Security Information Security Infosec Cybersec Risk Infrastructure ISMS More ❯