251 to 275 of 595 ISO/IEC 27001 Jobs in the UK

and enterprise networks. Implement secure identity and access management using Azure AD and Microsoft Entra. Consulting & Advisory: Provide expert guidance to clients on cybersecurity best practices, compliance (e.g., ISO 27001, NIST), and risk mitigation. Conduct assessments and audits of existing network and cloud security postures. Deliver workshops and training sessions on M365 and Azure security capabilities. … automation tools. Excellent communication and stakeholder management skills. Preferred Certifications: Microsoft Certified: Azure Network Engineer Associate Microsoft Certified: Cybersecurity Architect Expert Microsoft Certified: Security Operations Analyst Associate Cisco CCNA / CCNP (with cybersecurity focus) CompTIA Security+ or equivalent More ❯

Security Architect - SC / DV Cleared Are you a detail-driven Technical Security Architect with 2-3 years' experience and a passion for designing secure, scalable solutions? We're looking for a proactive individual to join our growing cybersecurity team. You'll help shape and implement robust security architecture across enterprise environments, embedding best practice from design to delivery. … controls Recommend security tools and ensure alignment with frameworks like NIST, ISO 27001, and MOD standards What you bring: 2-3 years' experience in security / solution architecture or a technical cyber role Solid grasp of Zero Trust, Defence in Depth, and Secure by Design principles Hands-on knowledge of tools like HashiCorp Vault, SIEM … s on offer? Competitive salary up to £65,000 10% company bonus 27 days annual leave + bank holidays Extra time off for Reservists Hybrid working (onsite 2 days / week in the South West - expenses covered) Be based anywhere in the UK but must have willingness to travel to customer sites (most work is South West based) Please More ❯

and development teams. Key Responsibilities: Design and implement security controls across containerised environments using Kubernetes and OpenShift Ensure secure configuration and access management within GitLab version control and CI / CD pipelines Integrate and secure telemetry tools including Cribl, Elastic, Splunk, Fluentd, and Syslog Conduct threat modelling, vulnerability assessments, and risk analysis for the telemetry pipeline Collaborate with DevOps … of security architecture, policies, and incident response procedures Required Skills & Experience: Strong hands-on experience with Kubernetes and OpenShift in secure production environments Proficiency in GitLab and secure CI / CD pipeline practices Familiarity with telemetry and logging tools: Cribl, Elastic, Splunk, Fluentd, and Syslog Deep understanding of networking protocols, firewalls, VPNs, and security principles Experience with security frameworks … e.g., NIST, ISO 27001) and compliance requirements Knowledge of container security tools (e.g., Aqua, Twistlock, Trivy) and vulnerability scanners Excellent analytical and communication skills Preferred Qualifications: Certifications such as CISSP, CISM, CKS (Certified Kubernetes Security Specialist), or equivalent Experience in building MVPs or working in startup-like environments Familiarity with cloud security (AWS, Azure, GCP More ❯

and development teams. Key Responsibilities: Design and implement security controls across containerised environments using Kubernetes and OpenShift Ensure secure configuration and access management within GitLab version control and CI / CD pipelines Integrate and secure telemetry tools including Cribl, Elastic, Splunk, Fluentd, and Syslog Conduct threat modelling, vulnerability assessments, and risk analysis for the telemetry pipeline Collaborate with DevOps … of security architecture, policies, and incident response procedures Required Skills & Experience: Strong hands-on experience with Kubernetes and OpenShift in secure production environments Proficiency in GitLab and secure CI / CD pipeline practices Familiarity with telemetry and logging tools: Cribl, Elastic, Splunk, Fluentd, and Syslog Deep understanding of networking protocols, firewalls, VPNs, and security principles Experience with security frameworks … e.g., NIST, ISO 27001) and compliance requirements Knowledge of container security tools (e.g., Aqua, Twistlock, Trivy) and vulnerability scanners Excellent analytical and communication skills Preferred Qualifications: Certifications such as CISSP, CISM, CKS (Certified Kubernetes Security Specialist), or equivalent Experience in building MVPs or working in startup-like environments Familiarity with cloud security (AWS, Azure, GCP More ❯

focus on operational excellence and continuous improvement. Experience with service management and ticketing systems (e.g., ServiceNow, ConnectWise, Freshservice). Excellent communication, stakeholder management, and problem-solving abilities. ITIL Intermediate / Practitioner certification or equivalent. Experience with ISO 27001 or other compliance frameworks. Background in integrating AI / chatbot or automation tools into helpdesk environments. More ❯

and management response is well defined. Engage risk review and assurance activities across existing suppliers. Provide IT and business advice on aspects of security standards and regulations such as ISO27001, NIST CSF, PCI DSS, NISD and NIS2. Engage with I&T system owners to provide training in relation to information security, cyber resilience, phishing, and facilitation of cyber scenario desktop … standards, controls and consequences across both IT and manufacturing environments in manufacturing or similar industries. Experience working with information security standards and frameworks such as and regulations such as ISO27001, NIST CSF, PCI DSS, NISD and NIS2. Proven analytical, problem-solving, planning, project delivery and supplier work packages management skills. Demonstrable experience of engaging across all levels of a company … in relation to information and cyber security risks. Working towards or achieved professional certifications (ISO27001 lead, ISC2, CISM or CRISC) advantageous. Benefits Competitive salary Company bonus Pension scheme Life assurance Income protection 25 days holiday plus bank holidays Electric Car / Bike to Work schemes More ❯

DevOps, or infrastructure engineering role. Strong hands-on experience with Docker and Docker Swarm in a production environment. Proficiency with core AWS services: EC2, S3, CloudWatch, IAM, ELB, ECS / Fargate, and RDS. Solid understanding of Linux server environments, command-line operations, and scripting. Experience in supporting real-time or mission-critical systems (security, IoT, or similar sectors). … Familiarity with log aggregation, monitoring, and alerting tools (e.g., ELK, Prometheus, Grafana). Good understanding of networking, VPNs, load balancing, DNS, and firewalls. Comfortable with Git and CI / CD workflows. Excellent troubleshooting skills and structured problem-solving approach. Strong written and verbal communication skills. Desirable / Nice to Have: Experience with Microsoft Azure cloud services. Background or … of security certifications or industry compliance (e.g., ISO 27001, SOC 2) is a plus. Experience with Kubernetes or OpenShift for container orchestration. Familiarity with CI / CD pipelines and automation tools (e.g., GitHub Actions, Jenkins). Exposure to monitoring tools like Prometheus, Grafana, or ELK stack. Experience supporting enterprise customers in a B2B SaaS or More ❯

DevOps, or infrastructure engineering role. Strong hands-on experience with Docker and Docker Swarm in a production environment. Proficiency with core AWS services: EC2, S3, CloudWatch, IAM, ELB, ECS / Fargate, and RDS. Solid understanding of Linux server environments, command-line operations, and scripting. Experience in supporting real-time or mission-critical systems (security, IoT, or similar sectors). … Familiarity with log aggregation, monitoring, and alerting tools (e.g., ELK, Prometheus, Grafana). Good understanding of networking, VPNs, load balancing, DNS, and firewalls. Comfortable with Git and CI / CD workflows. Excellent troubleshooting skills and structured problem-solving approach. Strong written and verbal communication skills. Desirable / Nice to Have: Experience with Microsoft Azure cloud services. Background or … of security certifications or industry compliance (e.g., ISO 27001, SOC 2) is a plus. Experience with Kubernetes or OpenShift for container orchestration. Familiarity with CI / CD pipelines and automation tools (e.g., GitHub Actions, Jenkins). Exposure to monitoring tools like Prometheus, Grafana, or ELK stack. Experience supporting enterprise customers in a B2B SaaS or More ❯

to expand their team with individuals who have demonstrable experience in one or more of the following domains: Security Assurance : Delivering compliance and security assurance frameworks such as ISO 27001, NIST, and Cyber Essentials. You'll tailor and apply these standards based on the … client's environment, risk profile, and regulatory needs. Security Architecture : Enhancing enterprise or application-level security through designing or implementing architecture aligned to best practices (e.g., CIS Benchmarks, NIST, ISO27001, COBIT). Generative AI Security : Supporting the secure design and responsible adoption of Gen AI technologies across business and IT functions, aligned with emerging regulations like the EU AI Act … in one or more key cybersecurity areas such as security architecture, security operations, risk management, SOC operations, security education and awareness, or software security. Knowledge of core frameworks like ISO27001, NIST CSF, and CIS Controls; and awareness of regulations such as NIS2, DORA, or FCA and Bank of England standards. Understanding of how Generative AI will impact cybersecurity at both More ❯

Search by keywords and / or using the filtering options This is an exceptional opportunity to join a dynamic and rapidly growing global technology team at a pivotal moment in our cloud transformation journey. As Director of Azure Cloud Services, you will take on a senior leadership role with the autonomy to shape strategy, drive innovation, and lead cutting … enable cloud-native development. Lead the integration of Azure AI services (e.g., Azure OpenAI, Cognitive Services, Machine Learning) into business processes and applications. Global Operations & Service Delivery Oversee 24 / 7 global cloud operations, ensuring high availability, performance, and reliability. Implement and manage service support models within a managed service environment, including SLAs, incident management, and escalation procedures. Drive … IT leadership, with 5+ years focused on Azure cloud strategy and operations. Proven experience managing global cloud environments and distributed teams. Strong expertise in Azure services, cloud architecture, AI / ML integration, and managed service operations. Excellent leadership, communication, and stakeholder engagement skills. Strong financial acumen for cloud cost optimisation and budgeting. Demonstrated ability to develop modern cloud services More ❯

candidates with advanced degree or relevant industry qualifications (e.g., CISA, CRISC, CISM) Strong academic background and mathematical acumen Experience with industry standard IT risk management frameworks (e.g., NIST, ISO 27001, Cyber Essentials, COBIT, COSO) 10+ years' experience in the IT Risk sector (Risk Management, External Audit, Internal Audit), preferably … with a strong understanding of the insurance industry Excellent Microsoft Office skills, in particular Microsoft Excel, PowerPoint and PowerBI Experience working with Financial Regulators across multiple jurisdictions (e.g., PRA / FCA, CBI, BMA, FSRM) Must be a strong critical thinker who can interrogate the data to ensure it makes sense and provide challenge when required Must be able to More ❯

to take ownership of the security function from day one and grow it into a broader leadership role as the company scales. What You'll Be Doing Secure CI / CD pipelines, container workflows, infra-as-code, and deployment tooling Define and enforce access controls, auditing, and logging for internal services Evaluate and manage security tools (EDR, vulnerability scanners … SCA, etc.) Own and manage internal authentication (SSO, MFA, identity lifecycle) Secure endpoints, laptops, and internal systems Lead security awareness and employee training programs Drive SOC 1 / 2 and other compliance frameworks Build internal security policies, playbooks, and operational processes Manage relationships with vendors, auditors, and pentesters We're Looking For Someone Who Has 5+ years of hands … engineering, ideally in a SaaS environment A CISSP or similar certification Strong knowledge of cloud security, secure software development, and common vulnerabilities Proven experience securing production environments and CI / CD systems Familiarity with security compliance frameworks (SOC 2, ISO 27001) Experience deploying and operationalising security tools Excellent communication skills and the ability to collaborate More ❯

skills. Essential skills & experience: Experience working in security operations, SOC, or incident response. Knowledge of SIEM tools, vulnerability management, and log analysis. Understanding of security frameworks such as ISO 27001, NIST, or PCI DSS. Strong communication skills to engage with IT teams, business stakeholders, and non-technical staff. Ability to work independently at … Heron Foods while remaining aligned to Group Information Security. Desirable: Hands-on exposure to security tooling (e.g., EDR, SIEM, vulnerability scanners). Experience supporting audits and compliance activities. Scripting / automation skills (e.g., PowerShell, Python) to streamline tasks. Why Join Us? At B&M and Heron Foods, we are on a journey to strengthen our cyber resilience. This role More ❯

skills. Essential skills & experience: Experience working in security operations, SOC, or incident response. Knowledge of SIEM tools, vulnerability management, and log analysis. Understanding of security frameworks such as ISO 27001, NIST, or PCI DSS. Strong communication skills to engage with IT teams, business stakeholders, and non-technical staff. Ability to work independently at … Heron Foods while remaining aligned to Group Information Security. Desirable: Hands-on exposure to security tooling (e.g., EDR, SIEM, vulnerability scanners). Experience supporting audits and compliance activities. Scripting / automation skills (e.g., PowerShell, Python) to streamline tasks. Why Join Us? At B&M and Heron Foods, we are on a journey to strengthen our cyber resilience. This role More ❯

IT / Technical Account Manager Salary: Up to £45,000 + Company Car or Car Allowance + Performance-Based Bonus Based in Frome About Them At my client, they are more than just a Managed Service Provider (MSP) - they are a dedicated partner in the success of their clients. They believe in the power of technology to revolutionise businesses … hybrid role encompasses account management, technical consultation, and strategic planning-offering a unique opportunity to influence how clients leverage technology to achieve their objectives. Key Responsibilities for the IT / Technical Account Manager Client Relationship Management: Cultivating and maintaining strong, lasting relationships with clients, serving as the primary point of contact. Technical Advisory: Leveraging an understanding of IT environments … to advise on strategy, infrastructure, and improvements, grounded in best practices (Cyber Essentials, ISO 27001, Microsoft 365). Quarterly Business Reviews: Leading meaningful QBRs to assess performance, uncover opportunities, and create a technology roadmap aligned with business objectives. Customer Success: Proactively identifying opportunities to enhance client businesses, recommending additional services that foster growth and security. Proposal More ❯

Multi-Factor Authentication (MFA), File Access Management, Attribute-Based Access Control (ABAC), Role-Based Access Control (RBAC). Ensure the IAM solution aligns with regulatory compliance (e.g., GDPR, ISO 27001) and internal security policies. Manage project timelines and resource allocations, ensuring delivery within scope and quality expectations. Facilitate technical workshops and documentation, including high-level and … as Terraform, GitLab, Jira, Confluence and Ansible for infrastructure automation is advantageous. Excellent communication and stakeholder management skills across technical and non-technical audiences. Experience working in Agile and / or ITIL environments. Ability to lead cross-functional teams and manage multiple workstreams simultaneously. It would be great if you had: Bachelor’s degree in computer science, Information Security … life assurance, pension, and generous flexible benefits fund (3% of base salary) Although this role is advertised as full-time, we believe that flexibility at work can promote work / life balance, increase your motivation, reduce stress and improves performance and productivity. We support different ways of working and can offer a range of flexible working arrangements. So, if More ❯

Multi-Factor Authentication (MFA), File Access Management, Attribute-Based Access Control (ABAC), Role-Based Access Control (RBAC). Ensure the IAM solution aligns with regulatory compliance (e.g., GDPR, ISO 27001) and internal security policies. Manage project timelines and resource allocations, ensuring delivery within scope and quality expectations. Facilitate technical workshops and documentation, including high-level and … as Terraform, GitLab, Jira, Confluence and Ansible for infrastructure automation is advantageous. Excellent communication and stakeholder management skills across technical and non-technical audiences. Experience working in Agile and / or ITIL environments. Ability to lead cross-functional teams and manage multiple workstreams simultaneously. It would be great if you had: Bachelor’s degree in computer science, Information Security … life assurance, pension, and generous flexible benefits fund (3% of base salary) Although this role is advertised as full-time, we believe that flexibility at work can promote work / life balance, increase your motivation, reduce stress and improves performance and productivity. We support different ways of working and can offer a range of flexible working arrangements. So, if More ❯

integrate with LLM APIs (e.g., Gemini, Azure OpenAI) and internal systems. Implement advanced front-end security features including token handling, session management, data masking, and audit logging. Translate UX / UI designs into modular, reusable components aligned with enterprise design systems. Integrate front-end applications with REST / GraphQL APIs, WebSockets, and backend services. Collaborate with AI engineers … Ensure compliance with cybersecurity and data privacy standards through secure coding practices and regular code reviews. Deploy applications to GCP (Firebase, Cloud Run) and Azure App Services using CI / CD pipelines hardened for security and compliance. Participate in code reviews, technical design discussions, and architecture planning sessions. Required Knowledge, Skills & Experience Proven experience building secure, production-grade front … end applications in regulated environments (e.g., finance, healthcare, government). Strong proficiency in modern JavaScript / TypeScript frameworks (React, Next.js) and responsive UI development. Demonstrated ability to build front-end applications from scratch in greenfield or innovation lab settings. Experience developing interactive UIs, dashboards, chat interfaces, and data visualizations for AI-powered tools. Skilled in integrating front-end applications More ❯

integrate with LLM APIs (e.g., Gemini, Azure OpenAI) and internal systems. Implement advanced front-end security features including token handling, session management, data masking, and audit logging. Translate UX / UI designs into modular, reusable components aligned with enterprise design systems. Integrate front-end applications with REST / GraphQL APIs, WebSockets, and backend services. Collaborate with AI engineers … Ensure compliance with cybersecurity and data privacy standards through secure coding practices and regular code reviews. Deploy applications to GCP (Firebase, Cloud Run) and Azure App Services using CI / CD pipelines hardened for security and compliance. Participate in code reviews, technical design discussions, and architecture planning sessions. Required Knowledge, Skills & Experience Proven experience building secure, production-grade front … end applications in regulated environments (e.g., finance, healthcare, government). Strong proficiency in modern JavaScript / TypeScript frameworks (React, Next.js) and responsive UI development. Demonstrated ability to build front-end applications from scratch in greenfield or innovation lab settings. Experience developing interactive UIs, dashboards, chat interfaces, and data visualizations for AI-powered tools. Skilled in integrating front-end applications More ❯

Network Infrastructure Security Manager - HYBRID WORKING Position Summary: We are seeking an experienced Infrastructure / Security Manager to lead our IT operations and cybersecurity initiatives. The ideal candidate will have a strong technical background, with the ability to combine hands-on technical expertise with leadership capabilities. Responsible for driving company IT security, and stability of all IT systems and … SIEM, MFA, PKI, DLP). Nessus VAPT reporting and remediation Strong expertise in: Microsoft technologies (Windows Server, Azure Active Directory) Virtualization platforms (VMware ESXi, Proxmox) Networking including Layer 2 / 3 switching, routing, VLANs, VPNs. Cloud environments (IBM Cloud,AWS, Azure) - deployments and architecture. Proficient in backup and disaster recovery technologies. Supporting end users Certifications (Preferred): Microsoft Certified Professional … AWS Certified Solutions Architect - Associate / Professional VMware Certified Professional (VCP) Due to the volume of applications received for positions, it will not be possible to respond to all applications and only applicants who are considered suitable for interview will be contacted. Proactive Appointments Limited operates as an employment agency and employment business and is an equal opportunities organisation More ❯

GRC Analyst – 6-month contract – London / Remote – Inside IR35 My Customer is looking for a GRC Analyst to join their Governance, Risk & Compliance (GRC) team. You will play a key role in strengthening their risk management processes, working primarily with Archer and other GRC tools to support risk assessment, compliance, and governance activities. In this role, you will … able to produce clear technical reports and risk documentation. Excellent stakeholder management, able to collaborate across technical and non-technical teams. Beneficial certifications: CISSP, CISA, CISM (or equivalent). ISO27001 / ISMS Accredited qualifications would be beneficial Experience working in financial sector would be beneficial Experience in ensuring internal IT system compliance against agreed standards Key Responsibilities of the … improve the security risk assessment framework, procedures, and workflows. Manage and update security questionnaires to align with compliance requirements, industry standards, and regulations. Conduct asset-level and third-party / vendor risk assessments. Analyse and document inherent and residual risks, providing clear recommendations. Produce detailed technical reports highlighting findings, control gaps, and proposed remediation plans. Drive remediation Perform periodic More ❯

in managing identity and access controls, including MFA and privileged access Participate in security awareness training initiatives and phishing simulations Support compliance efforts with industry standards such as ISO 27001, PCI-DSS, and GDPR Document security processes, incidents, and remediation steps Collaborate with IT and development teams to ensure secure system configurations and deployments Training Why More ❯

communication skills. Listens and communicates technical subjects to both technical and nontechnical audiences, flexes style to suit the needs of the audience A good understanding of security frameworks including ISO27001 / 2, Cyber Essentials Plus, CIS Top 20, Data Protection Act 2018, OWASP Top 10 Have a relevant industry certification such as CISSP, CISM, CRISC, BRMP or similarYou'll More ❯

Security Risk Analyst – 6-month contract – London / Remote – Inside IR35 My Customer is looking for a Security Risk Analyst to join their Governance, Risk & Compliance (GRC) team. You will play a key role in strengthening their risk management processes, working primarily with Archer and other GRC tools to support risk assessment, compliance, and governance activities. In this role … able to produce clear technical reports and risk documentation. Excellent stakeholder management, able to collaborate across technical and non-technical teams. Beneficial certifications: CISSP, CISA, CISM (or equivalent). ISO27001 / ISMS Accredited qualifications would be beneficial Experience working in financial sector would be beneficial Experience in ensuring internal IT system compliance against agreed standards Key Responsibilities of the … improve the security risk assessment framework, procedures, and workflows. Manage and update security questionnaires to align with compliance requirements, industry standards, and regulations. Conduct asset-level and third-party / vendor risk assessments. Analyse and document inherent and residual risks, providing clear recommendations. Produce detailed technical reports highlighting findings, control gaps, and proposed remediation plans. Drive remediation Perform periodic More ❯

A leading Fintech / Payments company is looking for a proactive and technically skilled Application Security Engineer / DevSecOps to champion secure development practices across our software delivery lifecycle. In this role, youll play a key part in identifying and reducing application-layer risks, integrating security into the development pipeline, and ensuring that security considerations are embedded throughout … to have set them up, you should have collaborated with developers to ensure code is scanned and critical vulnerabilities are blocked in the pipeline. Integrate security controls into CI / CD pipelines and development workflows. Manage and monitor SAST, DAST, and SCA tools to detect vulnerabilities early in the lifecycle. Conduct secure code reviews and support remediation efforts. Threat … of OWASP Top 10, secure coding principles, and threat modelling. Hands-on experience with SAST, DAST, SCA, and vulnerability management tools. Familiarity with cloud platforms (Azure or AWS), CI / CD pipelines, and DevOps processes. Strong communication skills and the ability to collaborate effectively across teams. Understanding of regulatory and security standards (ISO 27001, FCA More ❯