301 to 325 of 824 ISO/IEC 27001 Jobs in the UK

including NIST, PCI-DSS, GDPR, COBIT, ISO 27001 and Cyber Essential compliance to any new or existing programme of work. Prepare and support internal and / or external compliance audit activities. Manage remediation of any audit (internal & External) non-conformities. Ensure security policies (on a risk-based approach) are produced, signed off by relevant stakeholders … up-to-date knowledge of legal & regulatory requirements impacting Technology and Operations and its Partners. Apply comprehensive knowledge of legal, regulatory obligations, and industry best practices (e.g., NIST, COBIT, ISO27001, PAS 555) to ensure compliance with technology standards. Schedule and review risk and compliance audits; direct issues to appropriate resources for investigation and resolution. Our people make us who we … our customers. LI-KS1 Possess one of the Risk or security certifications (CISSP, CRISC, CISM). Have good knowledge and practical experience of NIST, PCI-DSS, GDPR, COBIT, ISO 27001, or Cyber Essentials. Previous experience in a similar role, with the ability to work in a dynamic and changing environment. Excellent team player who can influence More ❯

and management response is well defined. Engage risk review and assurance activities across existing suppliers. Provide IT and business advice on aspects of security standards and regulations such as ISO27001, NIST CSF, PCI DSS, NISD and NIS2. Engage with I&T system owners to provide training in relation to information security, cyber resilience, phishing, and facilitation of cyber scenario desktop … standards, controls and consequences across both IT and manufacturing environments in manufacturing or similar industries. Experience working with information security standards and frameworks such as and regulations such as ISO27001, NIST CSF, PCI DSS, NISD and NIS2. Proven analytical, problem-solving, planning, project delivery and supplier work packages management skills. Demonstrable experience of engaging across all levels of a company … in relation to information and cyber security risks. Working towards or achieved professional certifications (ISO27001 lead, ISC2, CISM or CRISC) advantageous. Benefits Competitive salary Company bonus Pension scheme Life assurance Income protection 25 days holiday plus bank holidays Electric Car / Bike to Work schemes More ❯

Security Architect (London | Hybrid | Cloud, NIST, SABSA) A leading global financial services firm is hiring an Enterprise Security Architect for a permanent position based in London (2 days onsite / week) . Key Tech & Frameworks: Cloud Security (SaaS, IaaS, Infrastructure) SABSA, NIST CSF, ISO 27001 / 2, SP 800-53, SANS Top 20 Risk More ❯

driven operations and cost efficiency Technology Governance & Operating Model Standardise and simplify technology governance, policies and processes to reflect a modern IT function Embed frameworks including ISO / IEC 27001 for information security management and ITIL for service management Transform IT from a back-office support service to an integrated business enabler Change More ❯

security services from internal, shared, and external resources and you would act as a trusted advisor to executives across the region. You will drive compliance across standards including ISO 27001, SOC2, PCI, SOX, GDPR, and others while managing a high-performing InfoSec team (both direct and matrixed). You will need to be a seasoned InfoSec … with a proven track record of influencing executive stakeholders and delivering secure, compliant outcomes in a complex, regulated financial services environments. You will have a strong knowledge of ISO, NIST, PCI-DSS … SOX, COBIT, GDPR, and related frameworks, expertise in IT risk, audit, and regulatory compliance and professional certifications (CISSP, CISM, or CISA) or willingness to obtain. Experience working under FCA / SMCR and / or EU regulatory frameworks is essential. Salary to £115,000 + Benefits. London based with European travel. Hybrid working. More ❯

security services from internal, shared, and external resources and you would act as a trusted advisor to executives across the region. You will drive compliance across standards including ISO 27001, SOC2, PCI, SOX, GDPR, and others while managing a high-performing InfoSec team (both direct and matrixed). You will need to be a seasoned InfoSec … with a proven track record of influencing executive stakeholders and delivering secure, compliant outcomes in a complex, regulated financial services environments. You will have a strong knowledge of ISO, NIST, PCI-DSS … SOX, COBIT, GDPR, and related frameworks, expertise in IT risk, audit, and regulatory compliance and professional certifications (CISSP, CISM, or CISA) or willingness to obtain. Experience working under FCA / SMCR and / or EU regulatory frameworks is essential. Salary to £115,000 + Benefits. London based with European travel. Hybrid working. #J-18808-Ljbffr More ❯

to join AppCheck in a new role focused on developing our Asset Management product offering, which brings together existing capabilities as well as developing substantially new features and UX / UI. We’re looking for an experienced Product Manager who can liaise with commercial leadership, customers and technical teams, while building the product roadmap and driving progress towards and … PM) role will be responsible for the end-to-end lifecycle of this capability, leading on the discovery, development, launch, and post-launch of the product and new features / enhancements post-launch. Key Accountabilities: Realising Customer Needs. The PM will be accountable for developing insights into our customers, the risks that they manage, and discover new opportunities to … of working in an organisation using Agile Software Development practices such as XP and Continuous Delivery. Experience of managing and prioritising effort across multiple deliverables that are in scoping / development. Knowledge & Skills: Strong communication skills with the ability to use data and narrative to drive action and decision with both internal / external stakeholders and delivery teams. More ❯

Key Responsibilities Collaborate with IT, legal, and policy teams to develop, manage, and ensure compliance with industry regulations and internal policies Implement and support information security and privacy standards / frameworks (e.g. ISO 27001, NIST, CIS) Work directly with engineering teams and architects to review system and data architectures in line with best practices Analyse … non-technical audiences Manage stakeholder expectations across projects with a pragmatic, agile, and solution-oriented approach Key Skills & Experience In-depth knowledge of cybersecurity frameworks such as NIST, ISO 27001, and CIS Proven experience in a similar governance-focused role involving internal controls, risk management, and audit readiness Strong ability to bridge the gap between technical More ❯

Cyber Security Operations Centre (SOC) Consultant L ondon / Cheltenham - Hybrid Salary £45k - 60k YOU MUST HOLD ACTIVE SECURITY CLEARANCE IN THE UK!!!! THANKS A fast-growing, values-driven consultancy seeks a skilled professional with deep expertise in Cyber Security Operations Centre (SOC) practices. This role is ideal for someone with a strong ability to analyse and enhance SOC … of SOC best practices, incident response, and regulatory frameworks (e.g., GDPR, NIST, ISO 27001). Hands-on experience with security technologies such as SIEM, IDS / IPS, EDR, etc. Excellent communication skills, including the ability to explain technical topics to non-technical audiences Apply here or reach out to r.kelly@ltharper.com More ❯

Cyber Security Operations Centre (SOC) Consultant L ondon / Cheltenham - Hybrid Salary £45k - 60k YOU MUST HOLD ACTIVE SECURITY CLEARANCE IN THE UK!!!! THANKS A fast-growing, values-driven consultancy seeks a skilled professional with deep expertise in Cyber Security Operations Centre (SOC) practices. This role is ideal for someone with a strong ability to analyse and enhance SOC … of SOC best practices, incident response, and regulatory frameworks (e.g., GDPR, NIST, ISO 27001). Hands-on experience with security technologies such as SIEM, IDS / IPS, EDR, etc. Excellent communication skills, including the ability to explain technical topics to non-technical audiences Apply here or reach out to r.kelly@ltharper.com More ❯

to understand client needs and position appropriate cybersecurity services Deliver technical presentations and demos that communicate the value and scope of our services (e.g., penetration testing, red teaming, DORA / ISO compliance, etc.) Support the preparation of proposals, statements of work (SOWs), and RFP / RFI responses Scope and define technical requirements and resource estimates for … role within cybersecurity or IT services Understanding of the cyber threat landscape Familiarity with AWS, Azure, or Google Cloud. Understanding of Cyber Services markets e.g. Penetration Testing, Red Team / Purple Team, Adversary Simulation, risk and compliance frameworks ISO 27001, NIST, DORA, CREST. TIBER etc.) Willingness to travel to regular F2F end user meetings Familiarity More ❯

cloud architectures and strategies on GCP. Evaluate and recommend security tools, services and configurations to strengthen cloud security posture. Ensure compliance with security standards and frameworks such as ISO 27001, NIST, CIS, GDPR and others. Lead threat modelling, risk assessments, and security reviews for GCP infrastructure and applications. Define and enforce Identity and Access Management (IAM … engagement skills. Job Information Job Reference: JO-50 Salary: £365 - £370.00 per day + inside IR35 ,full remote Salary per: day Job Duration: 1 year Job Start Date: 07 / 07 / 2025 Job Industries: Cloud Infrastructure & EUC Job Locations: Greater London Job Types: Contract Apply for this Job Name Please enter your full name. Email Enter a More ❯

securities - as well as traditional financial instruments too. Our vision is to develop a truly digital capital markets ecosystem that bridges traditional and crypto markets, leveraging tokenisation and blockchain / DLT / Web3.0 technologies. The Role Archax has reached a growth point in its development and an opportunity has arisen for an experienced Systems & Support Engineer to join … must have experience in a firm that has delivered product to external customers. Knowledge and Experience Required: 2-3 years + experience as a hands-on Technical Support Engineer / Application Support Analyst Hands on experience administering Linux and Windows estates Excellent problem-solving and communication skills Networking knowledge Hands-on experience administering Office365 platform and applications Understanding and … experience with the administration of SQL databases Experience with task automation, leveraging Python, Bash and / or PowerShell Experience with monitoring tools - PRTG, Grafana, OpenSearch, Prometheus. Beneficial Experience: Hands-on experience with Amazon Web Services Hands-on experience with Kubernetes / containerised environments Experience with No-Code tools such as Retool or Appsmith Experience with SOC2 / More ❯

London, United Kingdom Posted on 01 / 07 / 2025 Scrumconnect is a trusted digital delivery partner to UK government departments and public sector bodies. We specialise in building user-centred digital services that improve lives. Our multidisciplinary teams bring together experienced technologists, designers, researchers, and strategists to solve complex challenges and drive meaningful impact in the public … or case management platforms Knowledge of GDPR, Cyber Essentials, ISO 27001, and public sector security best practices Experience with Agile and DevOps practices, including CI / CD, Kubernetes, Terraform, and IaC Understanding of data modelling and AI-driven process automation Why Join Scrumconnect This role offers a unique opportunity to drive digital innovation and improve More ❯

Job Title: Risk Manager-( ITSA, BIA, EIM, DR) Location: Sheffield (3 days / week Onsite) Duration: 6months+ Banking Client Experience required Job Summary: We are seeking a skilled and experienced Risk Manager with strong expertise in Information Technology Self-Assessment (ITSA) to support our banking client in identifying, assessing, and mitigating IT-related risks. The ideal candidate will have … Risk Management within the banking or financial services sector. -In-depth knowledge of ITSA, BIA, EIM, DR, and Cyber Security collaboration. -Strong understanding of regulatory requirements (e.g., FFIEC, ISO 27001, NIST, GDPR, etc.). -Familiarity with IT governance frameworks such as COBIT, ITIL, and risk frameworks like COSO or ISO 31000. -Experience conducting or More ❯

Supporting the implementation of security processes and requirements Providing security advice and guidance to the wider technical team Liaising with stakeholders in relation to security issues and providing remediation / improvement recommendations Supporting Octopus Energy Group's audit & compliance automation programs, enabling easy demonstration of compliance as we scale Working with the wider Security team to set the security … aren't subject matter experts Experience producing or supporting the delivery of security awareness programs in different business environments Knowledge of industry and regulatory security standards, such as ISO 27001, SOC2, and GDPR A good candidate will have experience in at least some of the areas mentioned, we're not expecting any candidate to be an … What will help: Security certifications (any of the famous abbreviations) Security qualifications (e.g. apprenticeships or degrees) Experience working in organisations that maintain ISO 27001 and / or SOC 1 and SOC 2 type II certifications A wider understanding of technology, especially AWS (or other CSPs) A background in a technical role or technical knowledge through More ❯

with third-party vendor assessments and internal audits Contribute to the ongoing improvement of security processes What We’re Looking For: Experience in IT security or within a SOC / NOC environment Strong knowledge of Microsoft Defender, EDR, and network architecture Understanding of security frameworks (e.g., MITRE ATT&CK, NIST, ISO 27001) Excellent communication and More ❯

Architect (Security), you'll work directly with major enterprise customers, playing a strategic role in advisory, design, and technical delivery. What you'll do Provide expert guidance across SASE / SSE, PAM, detection, and data centre security technologies Lead customer engagements, providing advisory services, architecture guidance, roadmap planning, and solution governance Define and document high-level solution designs, technical … architecture engagements at the enterprise level Expertise in Secure Access Service Edge (SASE) and Secure Service Edge (SSE), especially with Zscaler Experience in at least three enterprise Zscaler SSE / SASE projects Ability to provide presales advisory, requirements gathering, and high-level solution design Strong understanding of Zscaler architecture and troubleshooting Broad knowledge across IAM, SSO, MFA, PAM, and … IDaaS Strong background in core security technologies such as firewalls, IDS / IPS, endpoint protection, and encryption Comfortable working with cloud platforms and designing secure architectures across Azure, AWS, or Google Cloud Ability to lead technical conversations, influence customer decisions, and deliver trusted advisory services Existing SC clearance or eligibility to apply Desirable Skills & Certifications Familiarity with industry security More ❯

Degree in Computer Science, Information Security, or a related field, or equivalent practical experience Solid background in IT security and infrastructure operations Experience with security tools (e.g., SIEM, IDS / IPS, endpoint security) Familiarity with ISO 27001, GDPR, or other compliance framework. Security certifications (e.g., CISSP, Security+, CEH) are an advantage C1+German and good English More ❯

Head of Engineering Location: Cheshire Full Time: Permanent Hybrid / Remote Salary: Up to £120k DOE We are seeking an experienced Head of Engineering to lead the technology strategy, innovation, and cybersecurity initiatives for our client's software company. The ideal candidate will have deep expertise in software development, cloud architecture, and cybersecurity. You will be responsible for driving … Own the cybersecurity strategy and ensure compliance with relevant standards (e.g. ISO 27001, GDPR). Implement risk assessments, zero-trust architecture, encryption, MFA, and 24 / 7 monitoring. Manage AWS infrastructure with a focus on performance, resilience, and cost-efficiency. Oversee disaster recovery, business continuity, secure APIs, and leverage AI-driven monitoring, SIEM, and endpoint … protection. Promote CI / CD, DevOps automation, and security testing to ensure high availability across global systems. Collaborate with Product, Support, and Sales teams to deliver value-driven solutions. Build strong relationships with regulators, insurers, and operators to align technology with industry needs. Recruit, mentor, and lead a high-performing engineering team. Foster an agile, delivery-focused culture that More ❯

Architect (Security), you'll work directly with major enterprise customers, playing a strategic role in advisory, design, and technical delivery. What you'll do Provide expert guidance across SASE / SSE, PAM, detection, and data centre security technologies Lead customer engagements, providing advisory services, architecture guidance, roadmap planning, and solution governance Define and document high-level solution designs, technical … architecture engagements at the enterprise level Expertise in Secure Access Service Edge (SASE) and Secure Service Edge (SSE), especially with Zscaler Experience in at least three enterprise Zscaler SSE / SASE projects Ability to provide presales advisory, requirements gathering, and high-level solution design Strong understanding of Zscaler architecture and troubleshooting Broad knowledge across IAM, SSO, MFA, PAM, and … IDaaS Strong background in core security technologies such as firewalls, IDS / IPS, endpoint protection, and encryption Comfortable working with cloud platforms and designing secure architectures across Azure, AWS, or Google Cloud Ability to lead technical conversations, influence customer decisions, and deliver trusted advisory services Existing SC clearance or eligibility to apply Desirable Skills & Certifications Familiarity with industry security More ❯

initiative delivery across game and platform development teams. Managing third-party penetration testing, red teaming, and security assessments. Driving the integration of secure development practices and automation within CI / CD workflows. Supporting compliance and audit activities through structured documentation and reporting. Coordinating vulnerability management and helping teams meet security SLAs. Collaborating with cross-functional stakeholders to embed security … experience of effective and efficient cyber security delivery, project management or security engineering. Strong understanding of vulnerability management, secure software development, and compliance frameworks (NIST CSF 2.0, GDPR, ISO 27001). Strong examples of cross-functional stakeholder management, being a knowledgeable bridge between technical cyber security teams and non-cyber security colleagues. Proven track record of More ❯

of functional and non-functional requirements across the three UK business units. Translate approved requirements into clear user stories, detailed acceptance criteria, and well-defined delivery plans within Jira / Confluence. Portfolio & Road-map Planning: Build and maintain a consolidated UK IT demand portfolio, strategically balancing new initiatives, essential technical debt reduction, and business-as-usual (BAU) activities. Facilitate … the UK. Demonstrable success in managing technology initiatives within complex, multi-platform environments (experience in e-commerce, shipping, or logistics is highly advantageous). Strong practical knowledge of Agile / Scrum methodologies, effective backlog management, proficient use of Jira / Confluence, understanding of API concepts, and awareness of UX / UI best practices. Hands-on experience establishing … e.g., sales performance, margin improvement, EBITDA contribution). Education & Certifications Bachelor’s degree in Computer Science, Information Systems, Business, or a related field. Desirable: Relevant certifications such as Agile / Scrum (e.g., PSM, CSM), ITIL, Prince2, security certifications (e.g., CISSP), or ISO 27001 awareness. Key Performance Indicators (KPIs) Project delivery performance (on-time / More ❯

per week Holiday – 23 days annual leave (excluding bank holidays) increasing by one day per each year of service (up to a maximum of 28 days) Location - Hybrid, Midlands / Greater London Area South / Home Counties About the IT Services Co-ordinator role We are TC Group, the fastest-growing top 20 accountancy firm in the UK. … businesses. We’re looking for an IT Services Co-ordinator to join our Central systems team. Based remotely, we are ideally looking for candidates around the Midlands, South, London / home counties area. As the Technology Services Co-ordinator, this role plays a pivotal role in ensuring the effective delivery of Technology and operational support services across the practice … Desks, Portals, MS Office, tools for Collaboration, Reporting, Project Management, tracking, Strong understanding of best practices IT Service operational workflows Awareness of some key relevant standards such as GDPR, ISO27001, ITIL service management and Project Management / Service frameworks Interpersonal Exceptional communication and relationship-building skills Strong problem-solving and conflict resolution abilities Organisational Effective time management and ability More ❯

Experience & Knowledge: 8+ years in Information Security with a strong architecture focus. Expert in lateral movement risks, network segmentation, and endpoint security. Deep familiarity with security frameworks: NIST, ISO 27001, Zero Trust. Extensive experience with Windows and Linux hardening. Skilled … in protocol analysis, network architecture, and infrastructure design. Technical Toolkit: Strong command of Azure Log Analytics, KQL, and Azure-based security tools. Scripting: Python, PowerShell, Shell. Experience with IDS / IPS, firewalls, SIEMs, and vulnerability management tools. Strong grasp of Active Directory, Azure AD, and identity access governance. Familiarity with secure infrastructure platforms: SQL Server, Oracle, HA clustering. More ❯