51 to 75 of 941 ISO/IEC 27001 Jobs in the UK

be part of the leadership team responsible for protecting a rapidly expanding global enterprise. The OT Manager, Cybersecurity, will audit the Industrial Control System / Operational Technology (ICS / OT) environment and perform risk / vulnerability assessments leading to the development of an enterprise strategy / design plan. The OT Manager, Cybersecurity, will lead the team on implementation (hands-on configuration) of the enterprise ICS / OT systems Additional responsibilities include research, classification, and root cause analysis of security events that occur within the environment. The ideal candidate will have security industry knowledge that … performing security assessments in an OT environment. Excellent leadership skills as this is a people manager role. Strong understanding of cybersecurity frameworks for ICS / OT environments Strong understanding of OT network communication protocols and industrial networking topologies. Familiarity with NIST (National Institute of Standards and Technology) Special Publication More ❯

be part of the leadership team responsible for protecting a rapidly expanding global enterprise. The OT Manager, Cybersecurity, will audit the Industrial Control System / Operational Technology (ICS / OT) environment and perform risk / vulnerability assessments leading to the development of an enterprise strategy / design plan. The OT Manager, Cybersecurity, will lead the team on implementation (hands-on configuration) of the enterprise ICS / OT systems Additional responsibilities include research, classification, and root cause analysis of security events that occur within the environment. The ideal candidate will have security industry knowledge that … performing security assessments in an OT environment. Excellent leadership skills as this is a people manager role. Strong understanding of cybersecurity frameworks for ICS / OT environments Strong understanding of OT network communication protocols and industrial networking topologies. Familiarity with NIST (National Institute of Standards and Technology) Special Publication More ❯

email, calls, support tickets) Contextual Understanding: Understand the customer's business context and how their compliance questions relate to their use of our products / services or their broader GRC strategy Information Dissemination: Clearly articulate complex compliance concepts to both technical and non-technical customer stakeholders Relationship Building: Build … assessment process, and Annex A controls accurately Strong familiarity and understanding of ISO 42001 (Artificial Intelligence Management Systems) and its core principles / requirements. Must be able to discuss its objectives and key components Exceptional communication skills (written and verbal), with a proven ability to explain complex … a sense of belonging for future and current Mironeers around the world, and foster an environment where everyone can collaborate and embrace differences. Resume / CV Resume / CV Attach File types: pdf, doc, docx, txt, rtf File size: max 2MB Cover Letter Attach File types: pdf, doc More ❯

developing mitigation strategies. Conducting security code reviews and offering guidance to ensure a secure-by-design approach. Ensuring products meet key regulatory standards (ISO 27001, NIST 800 series, JSPs, Def Stans). Authoring vital security documentation, including RMADS and Security Assurance Documents. … Performing penetration testing and coordinating remediation efforts. What You Bring: A solid understanding of security frameworks such as ISO 27001 / 2, ISO 31000, NIST 800-30 / 37 / 53. Hands-on experience with Defence Standards (JSPs, HMG, Def Stan … / 139). Strong knowledge of security testing tools and techniques. Excellent communication skills — able to explain complex risks and solutions clearly. A proactive, problem-solving mindset with a high level of personal integrity and professional ethics. Experience with NIST standards. (this is an absolute must) You'll Succeed More ❯

for the better. The role is hybrid and will require 2 days a week on site in London. As the Group Information Security Analyst / Officer, you will: Lead and maintain security accreditations: Successfully manage Cyber Essentials, Cyber Essentials Plus, and ISO 27001 certifications. Deliver … comprehensive training: Develop and deliver engaging training on ISO 27001, cybersecurity awareness, AI, and data protection. Stay ahead of threats: Continuously monitor and adapt to emerging cybersecurity threats, ensuring robust governance and safeguarding measures. Manage business continuity: Oversee Business Continuity Planning (BCP) and Disaster Recovery Plans. … and maintain a strong security posture. ISMS management: Coordinate the improvement and maintenance of the Information Security Management System (ISMS) in line with ISO 27001 and Cyber Essentials. Experience Required: Information Security Management: Extensive experience in implementing and maintaining ISMS and achieving ISO 27001 More ❯

recognised, top-tier bank who provide world-class services to various institutions and individuals. Offering a comprehensive range of retail and corporate financial services / products, this thriving business with over 10 million active customers in over 700 business locations is the oldest African bank in the UK. Due … holder will work very closely with all third-party vendors involved in the remediation process. The job holder will also prepare the necessary MI / Dashboard reports for the relevant stakeholders and alleviate the workload of the IT Service desk function when required. The primary responsibilities of the role … CMSS) Incident / Response & Forensic Management Skills IT Technical Admin Support - Azure, Oracle Cloud Infrastructure (OCI Cloud) Microsoft Windows Support & administration, CE+, ISO27001 Email and Information Security Filtering / Monitoring Solutions, Egress Hands on experience on Linux and Mac Administration Support Good understanding of Windows and Linux More ❯

recognised, top-tier bank who provide world-class services to various institutions and individuals. Offering a comprehensive range of retail and corporate financial services / products, this thriving business with over 10 million active customers in over 700 business locations is the oldest African bank in the UK. Due … holder will work very closely with all third-party vendors involved in the remediation process. The job holder will also prepare the necessary MI / Dashboard reports for the relevant stakeholders and alleviate the workload of the IT Service desk function when required. The primary responsibilities of the role … CMSS) Incident / Response & Forensic Management Skills IT Technical Admin Support - Azure, Oracle Cloud Infrastructure (OCI Cloud) Microsoft Windows Support & administration, CE+, ISO27001 Email and Information Security Filtering / Monitoring Solutions, Egress Hands on experience on Linux and Mac Administration Support Good understanding of Windows and Linux More ❯

with Security, Networking, and Systems teams to ensure secure and efficient connectivity across the organization. Maintain and troubleshoot core security systems including firewalls, IDS / IPS, VPN gateways, vulnerability scanners, SIEM platforms, and security monitoring tools. Diagnose and resolve system and network issues, working across teams to remediate security … Engineering, with a focus on enterprise-scale infrastructure. In-depth expertise with Microsoft security platforms including Azure AD Conditional Access, Microsoft Defender for Endpoint / Cloud, Microsoft Sentinel, and Microsoft Purview. Strong understanding of Zero Trust principles and cloud security best practices across hybrid environments. Hands-on experience designing … 3+ years of experience with secure deployment, management, and migration of cloud and on-prem platforms in a hybrid network model. Proficient in LAN / WAN routing, switching, VLANs, and core protocols such as DNS, DHCP, HTTP / S, SNMP, NetFlow, and TACACS. Hands-on experience with Palo More ❯

with Security, Networking, and Systems teams to ensure secure and efficient connectivity across the organization. Maintain and troubleshoot core security systems including firewalls, IDS / IPS, VPN gateways, vulnerability scanners, SIEM platforms, and security monitoring tools. Diagnose and resolve system and network issues, working across teams to remediate security … Engineering, with a focus on enterprise-scale infrastructure. In-depth expertise with Microsoft security platforms including Azure AD Conditional Access, Microsoft Defender for Endpoint / Cloud, Microsoft Sentinel, and Microsoft Purview. Strong understanding of Zero Trust principles and cloud security best practices across hybrid environments. Hands-on experience designing … 3+ years of experience with secure deployment, management, and migration of cloud and on-prem platforms in a hybrid network model. Proficient in LAN / WAN routing, switching, VLANs, and core protocols such as DNS, DHCP, HTTP / S, SNMP, NetFlow, and TACACS. Hands-on experience with Palo More ❯

team at Prevail Partners. The ideal candidate will bring deep technical knowledge of information security risks, controls and frameworks - with practical experience managing ISO 27001-compliant systems and embedding secure practices across dynamic operational environments. You will work closely with the Counter Intelligence and Security Lead … sensitive technology solutions. Key Responsibilities Security Strategy & Governance Lead the continued development of Prevail's Information Security Management System (ISMS) in alignment with ISO 27001, driving forward maturity and integration with wider business goals. Serve as the lead advisor on information security, ensuring risk-based decision … project work. Support leadership in meeting regulatory, contractual, and reputational requirements in relation to information security. Qualifications Demonstrable experience leading or managing an ISO 27001-aligned ISMS, with a track record of successful implementation or certification. Strong understanding of information security risk management, governance, and technical More ❯

team at Prevail Partners. The ideal candidate will bring deep technical knowledge of information security risks, controls and frameworks - with practical experience managing ISO 27001-compliant systems and embedding secure practices across dynamic operational environments. You will work closely with the Counter Intelligence and Security Lead … sensitive technology solutions. Key Responsibilities Security Strategy & Governance Lead the continued development of Prevail's Information Security Management System (ISMS) in alignment with ISO 27001, driving forward maturity and integration with wider business goals. Serve as the lead advisor on information security, ensuring risk-based decision … work. Support leadership in meeting regulatory, contractual, and reputational requirements in relation to information security. Minimum Qualifications Demonstrable experience leading or managing an ISO 27001-aligned ISMS, with a track record of successful implementation or certification. Strong understanding of information security risk management, governance, and technical More ❯

ROLE OVERVIEW / / We’re looking for a Developer to join the Development team within our Technology department. If you thrive on solving complex challenges, enjoy learning modern technologies, and value building secure, maintainable solutions, this role is for you. This is an exciting opportunity to help … law firm that's great but not essential. We're most interested in your skills, mindset, and ability to deliver quality outcomes. KEY RESPONSIBILITIES / / The key responsibilities of this role are set out below and there may be others which are not listed. You may be … solutions that support business processes and reporting needs. Conduct code reviews on other people's solutions to ensure quality, security, and maintainability. CANDIDATE PROFILE / / Essential Skills and Knowledge Proven experience developing with Azure Integration Services, including Logic Apps, Service Bus, Function Apps, API Management, and Data More ❯

Role: Security Architect (Cloud) Location: Edinburgh / Glasgow / Sheffield / Manchester / Birmingham Working Pattern: 3 days on-site, 2 days WFH Summary Oscar are kicking off the search for an experienced Security Architect contractor to work with a well-known, high end consultancy. The … CNAPP platforms such as Wiz, Prisma Cloud, Orca or Aqua. Strong knowledge of public cloud platforms. Familiar with compliance frameworks such as NIST, ISO 27001 and how they apply to cloud applications. The ability to run risk assessments and threat … modelling for cloud-native applications. Excellent communication skills with the ability to translate technical concepts to business stakeholders. Role: Security Analyst (Cloud) Location: Edinburgh / Glasgow / Sheffield / Manchester / Birmingham Working Pattern: 3 days on-site, 2 days WFH Apply now More ❯

Role: Security Architect (Cloud) Location: Edinburgh / Glasgow / Sheffield / Manchester / Birmingham Working Pattern: 3 days on-site, 2 days WFH Summary Oscar are kicking off the search for an experienced Security Architect contractor to work with a well-known, high end consultancy. The … CNAPP platforms such as Wiz, Prisma Cloud, Orca or Aqua. Strong knowledge of public cloud platforms. Familiar with compliance frameworks such as NIST, ISO 27001 and how they apply to cloud applications. The ability to run risk assessments and threat … modelling for cloud-native applications. Excellent communication skills with the ability to translate technical concepts to business stakeholders. Role: Security Analyst (Cloud) Location: Edinburgh / Glasgow / Sheffield / Manchester / Birmingham Working Pattern: 3 days on-site, 2 days WFH Oscar Associates (UK) Limited is More ❯

our continued growth, we are seeking an experienced Information Security Manager. In this role, you will be responsible for ensuring our ongoing compliance with ISO27001 and Cyber Essentials Plus, including the management of quarterly external audits and the facilitation of Integrated Management System (IMS) meetings. You will also oversee our … functionally across multiple teams. You can influence people of all grades to deliver the right outcomes. Security Management. IT management (ITILv4). Continuous Monitoring / Threat Alerts. Managing security incidents and non-conformances. Experience with Data protection duties and GDPR. Desirable (CISM) certification or CISSP desirable to have. We … Vitality medical insurance. Workplace Pension 5% employer contribution. Group Life Assurance. Cycle scheme. 5 days a year for approved Training. WFH equipment allowance. Buy / Sell Holiday. 2 days paid volunteering days. Other benefits: Flexible working. Work on exciting projects - make a difference. Empowered to make decisions. Encouraged to More ❯

you will drive cloud transformation, leading multiple high-performance DevOps teams to build secure, scalable, and cost-efficient cloud solutions. Your expertise in CI / CD, Infrastructure as Code (IaC), cloud security, and automation will shape mission-critical applications across various units and projects. Collaborating with business stakeholders, solution … systems, including IAM policy design, access management, encryption standards, and compliance audits. . Design, implement, and manage various DevOps tools and technologies, including CI / CD platforms (Jenkins, GitLab CI), configuration management tools (Ansible, Puppet), and containerization technologies (Docker, ECS, Kubernetes). . Monitor system performance, identify bottlenecks, and … SOC2, GDPR, and NIST frameworks. . Collaborate with Solution Architects: Work closely with solution architects to design scalable, secure, and cost-efficient cloud systems / applications, ensuring DevOps methodologies align with business objectives. . Lead DevOps Team & Define Best Practices: Take ownership of designing and implementing DevOps frameworks, optimizing More ❯

Management Systems and Audit Manager, you will collaborate with cross-functional teams to support the continuous improvement. Support the maintenance of existing external ISO accreditation's and the support attainment of new ISO accreditation's to support the business strategy. Key Responsibilities: Support in the implementation … of National Security Solutions Audit Schedule Support in the maintenance of existing ISO accreditation's Support in the attainment of new ISO accreditations as required Maintain the company's Integrated Management System (IMS) Audit Schedule to ensure compliance with regulatory requirements and industry standards (e.g. ISO … benefits including private health care, career development opportunities and performance bonuses. For a comprehensive list of benefits, speak to our recruitment team. Essential qualifications / experience: ISO 9001 Lead auditor Detailed knowledge of ISO 9001, ISO 27001, ISO More ❯

ITL UK Requisition ID: 132349BR Role - Consultant (JL5) Technology - Cyber Security Consulting & Advisory Location - London (UK) Business Unit - Cyber Security, Cyber C&A, IOT / OT Team Compensation - Competitive (including bonus) Job Description Today, the corporate landscape is dynamic and the world ahead is full of possibilities! None of … different phases of the Cyber security consulting lifecycle. You will be intensely involved in being a highly skilled Cybersecurity Engineer with expertise in OT / IoT security to join our team. The successful candidate will play a critical role in securing Operational Technology (OT) environments, including Industrial Control Systems … 27001, and NIS2 frameworks. Vulnerability & Risk Management: Perform vulnerability analysis and penetration testing, and implement risk mitigation strategies tailored for ICS / SCADA and IoT environments. IT-OT Integration: Work closely with IT, engineering, and operational teams to integrate OT security solutions seamlessly with existing enterprise More ❯

but not limited to: Technical & organizational security controls Cyber and digital transformation activities Remediation workstreams and roadmaps Policy & process implementation Information Security Maturity Audits / CMMI Certification or alignment with recognised industry standards Compliance with applicable regulations & legislation Building and implementing governance & risk management processes Design implementation and testing … of security tooling BC / DR & Incident response capability building and testing Production of threat intelligence reports and research Supply Chain Risk Management Consultants must possess and be able to demonstrate credibility and experience as well as currency in these fundamental skill sets. Consultants will work with industry-leading … provide reporting and feedback when required. Support, when necessary, the development of opportunities by contributing as an SME in response to client RFPs and / or the construction of proposal documents and responses. Develop timely, accurate reporting that can convey technical findings to non-technical audiences at all levels More ❯

to the Head of Cybersecurity and work within our specialist Cybersecurity Practice. In this role, you will provide cybersecurity assurance within a complex marine / defence engineering programme, supporting the development and delivery of cyber-resilient systems. This is a consultancy role focused on integrating cybersecurity into programme controls … Engineering, or a related technical or defence-focused discipline. Recognised cybersecurity certifications: CompTIA, CISSP, CISM, CRISC, ISO 27001 Lead Auditor / Implementer, or equivalent. Familiarity with MOD, maritime, or defence-specific frameworks: JSPs, DEFSTAN, NIST, IEC 62443, IMO or ISO / IEC 27001. SC clearance (or eligibility to obtain SC as a minimum) is required; DV clearance is desirable depending on the programme needs. Essential skills Strong understanding of cybersecurity assurance principles, risk management, and regulatory compliance in defence or safety-critical environments. Proven ability to produce and More ❯

to the Head of Cybersecurity and work within our specialist Cybersecurity Practice. In this role, you will provide cybersecurity assurance within a complex marine / defence engineering programme, supporting the development and delivery of cyber-resilient systems. This is a consultancy role focused on integrating cybersecurity into programme controls … Engineering, or a related technical or defence-focused discipline. Recognised cybersecurity certifications: CompTIA, CISSP, CISM, CRISC, ISO 27001 Lead Auditor / Implementer, or equivalent. Familiarity with MOD, maritime, or defence-specific frameworks: JSPs, DEFSTAN, NIST, IEC 62443, IMO or ISO / IEC 27001. SC clearance (or eligibility to obtain SC as a minimum) is required; DV clearance is desirable depending on the programme needs. Essential skills Strong understanding of cybersecurity assurance principles, risk management, and regulatory compliance in defence or safety-critical environments. Proven ability to produce and More ❯

investments. What you will do: Drive the company's information security strategy, ensuring alignment with GDPR, ISO 27001, DORA, PSD2 / 3, and other relevant regulations Identify and address local and entity-specific security requirements to maintain rigorous standards Conduct regular risk identification and develop … Develop and maintain security policies, standards, and incident response protocols Support business continuity and disaster recovery planning for seamless resilience Lead and oversee internal / external security audits to ensure transparency and accountability Partner with engineering and ICT teams to embed secure-by-design principles in products and infrastructure … with ISO 27001, NIST, and cybersecurity best practices Risk & Governance : Skilled in conducting risk assessments, defining mitigation strategies, and creating / enforcing security policies Good technical understanding of IT infrastructure, software development, hardware, data flows, change management, and BC / DR-and how they More ❯

from various types of business disruptions. Participates in project-wise training and communications. Produce monthly and quarterly slides for resilience forums Submit monthly exercise / testing data to HS2 Compile and submit quarterly return for HS2 on SCS resilience capability The Ideal Candidate Required Qualifications & Skills Proven experience in … Security Management, Business Continuity, Risk Management, or other resilience disciplines Prior experience in Business Continuity / HILP (High Impact, Low Probability) risk management functions in large infrastructure / equivalent projects desired. Current subject matter expertise of Business Continuity processes and best practice Understanding of Incident Management practices. Strong … 14001:2015 Environmental Management System with guidance for use", OHSAS 18001:2017 Occupational Health and Safety Management Systems and ISO / IEC 27001:2013 Information Security Management System, Policies, Plans, Procedures and Processes, and statutory requirements as they affect the Joint More ❯

CISSP (Certified Information Systems Security Professional) CISM (Certified Information Security Manager) CISA (Certified Information Systems Auditor) ISO 27001 Lead Auditor / Implementer CRISC (Certified in Risk and Information Systems Control) GDPR Certification (e.g., IAPP CIPP / E, CIPM for data protection compliance) Experience Requirements … years of experience in Information Security, Compliance, or IT Risk Management. Experience with regulatory frameworks in UK & EU : GDPR (General Data Protection Regulation) ISO 27001 (Information Security Management Systems) Cyber Essentials Plus (UK government-backed security framework) DORA (Digital Operational Resilience Act) - EU financial sector PCI … understanding of data protection laws (UK GDPR, EU GDPR, DPA 2018) . Familiarity with risk management frameworks like NIST CSF, CIS Controls, and ISO 27005 . Experience with cyber security tools (e.g., SIEM, Malware Protection, Firewalls and others) is a plus. Strong reporting and communication skills-ability to More ❯

Onsite a Week) Start: ASAP Responsibilities: Security Leadership: Own and lead info security, align with business. ISO 27001 & ISMS: Maintain / evolve certification and ISMS. Risk & Compliance: Risk assessments, remediation, audits, GDPR compliance. Policies & Training: Create / manage policies, deliver security training. Security Operations … Implement controls (access, encryption, logging), lead incident response, manage pen tests / vulnerabilities. Customer / Vendor Security: Support security questionnaires / due diligence, review vendor security. Requirements: 3-5 years hands-on info security or IT risk / compliance. SaaS or fast-paced startup / scale-up experience. Good ISO 27001 knowledge (certification maintenance / achievement). Understanding of cloud (AWS preferred) and SaaS security risks. Hands-on with endpoint protection, SIEM, DLP, IAM, SSO. Clear understanding of GDPR. Familiarity with security tooling (endpoint, SSO / IAM, monitoring More ❯