76 to 100 of 2,845 ISO/IEC 27001 Jobs in the UK

to safeguard critical information assets across the organization. Key Responsibilities: Drive and maintain a robust Cyber Security strategy in line with business objectives and regulatory requirements (e.g., FCA, ISO 27001, NIST). Lead security operations, including monitoring, incident response, and vulnerability assessments. Ensure top-tier security for Azure Cloud environments, including Microsoft Defender, Sentinel, and Entra … risk management and threat detection to minimize vulnerabilities. Lead the Security Operations Center (SOC) for continuous monitoring and response. Develop and implement technical security solutions (e.g., firewalls, encryption, IDS / IPS). Ensure effective security awareness programs and training. Collaborate across teams to integrate secure design practices and enhance security posture. Report regularly on security incidents, performance metrics, and … a must. Technical Expertise : Proficiency in Microsoft Azure security (Defender, Sentinel, Azure AD, Entra ID) and risk management. Strong knowledge of security standards such as NIST, ISO / IEC 27000 series, and SOC 2. Familiar with regulatory compliance, including FCA standards and data protection laws. Certifications : CISSP, CISM, or CISA certifications are a plus. Personal More ❯

all areas related to Release and Change Management. Also, support the organisation’s information security posture by implementing, maintaining, and monitoring security controls, ensuring compliance with relevant standards (e.g., ISO27001, Cyber Essentials), and contributing to the secure operation of IT systems and services. This role offers hybrid working with a minimum of 3 days based from our Head Office in … Pension Cycle to work scheme Option to join our employee benefits scheme The Person: Essential Criteria: Bachelor’s degree (minimum 2:1) from a leading academic institution (BSc Information / Cyber Security) Experience … working within an IT security role Familiarity with MS Operating Systems, M365, and Azure GCSE or equivalent in Maths and English (Grade C / 4) Experience working in ISO27001, Cyber Security Essentials, or other Security framework environments. The role will be offered subject to a satisfactory DBS check. Flexibility to work occasional weekends and out of hours Desirable Criteria More ❯

all areas related to Release and Change Management, and support the organization’s information security posture by implementing, maintaining, and monitoring security controls, ensuring compliance with relevant standards (e.g., ISO27001, Cyber Essentials), and contributing to the secure operation of IT systems and services. This role offers hybrid working with a minimum of 3 days based from our Head Office in … statutory holidays. Free Car Parking Pension Cycle to work scheme Option to join our employee benefits scheme The Person Essential Criteria: Bachelor’s degree (minimum 2:1) in Information / Cyber Security from a leading academic institution. Experience working … within an IT security role. Familiarity with MS Operating Systems, M365, and Azure. GCSE or equivalent in Maths and English (Grade C / 4). Experience working in ISO27001, Cyber Security Essentials, or other security framework environments. The role will be offered subject to a satisfactory DBS check. Flexibility to work occasional weekends and out of hours. Desirable Criteria More ❯

Contract (Maternity Cover) 18 months Must have experience working on Tenable.IO, analysed vulnerabilities form penetration testing reports, work with vendors to remediate vulnerabilities, has patch management experience, has patched / worked on windows, Linux and Azure cloud systems, analyse and remediate SOC / NOC alerts. Our Client is a globally recognised, successful bank who provide world-class services … to various institutions and individuals. Offering a comprehensive range of retail and corporate financial services / products, this thriving business boasts over 10 million active customers in over 700 business locations. Due to business requirements, we are now looking to acquire the services of an experienced Senior Compliance Officer, Monitoring & Assurance. Please note that this is a hybrid role … vulnerability scoring systems (CVSS / CMSS) Incident / Response & Forensic Management Skills IT Technical Admin Support - Azure, Oracle Cloud Infrastructure (OCI Cloud) Microsoft Windows Support & administration, CE+, ISO27001 Email and Information Security Filtering / Monitoring Solutions, Egress Hands on experience on Linux and Mac Administration Support Good understanding of Windows and Linux patching Seniority level Seniority level More ❯

FirstBank UK is a globally recognised, top-tier bank who provide world-class services to various institutions and individuals. Offering a comprehensive range of retail and corporate financial services / products, this thriving business with over 10 million active customers in over 700 business locations is the oldest African bank in the UK. Due to business requirements, we are … implementation within SLA. The job holder will work very closely with all third-party vendors involved in the remediation process. The job holder will also prepare the necessary MI / Dashboard reports for the relevant stakeholders and alleviate the workload of the IT Service desk function when required. The primary responsibilities of the role is to perform daily assessment … vulnerability scoring systems (CVSS / CMSS) Incident / Response & Forensic Management Skills IT Technical Admin Support - Azure, Oracle Cloud Infrastructure (OCI Cloud) Microsoft Windows Support & administration, CE+, ISO27001 Email and Information Security Filtering / Monitoring Solutions, Egress Hands on experience on Linux and Mac Administration Support Good understanding of Windows and Linux patching In return we offer More ❯

internally and externally as a trusted SME Security incident management and response, security changes, problem and risk management, security risk and threat assessments Delivery of security awareness training Governance / oversight of any other security services within scope (including but not limited to: SOC services, vulnerability and patch management, threat intelligence, digital forensics, GRC) Security reporting (including elements of … a representative and welcoming environment, for everyone. Your skills and experience Our ideal candidate will have experience in security incident management investigations, and possess a good knowledge of Information / Cyber Security and Security Assurance with an ability to demonstrate understanding of security from different perspectives i.e., across people, processes and technology. The ability to identify and drive continuous … right person can translate complex technical information for a variety of audiences. Hold, or be working towards, a relevant security qualification such as CISM, CISSP, GSLC (GIAC), CCP (ISSM), ISO27001, GIS A working knowledge of ISO standards (e.g. ISO 27001) Working knowledge of other security frameworks / standards / regulations, such as More ❯

TPDD playbook including onboarding, periodic review, and offboarding. Integrate tooling for evidence collection and continuous monitoring. Align vendor controls with SOC 2, ISO 27001, GDPR / UK GDPR, and upcoming regulations. Metrics & Audit Support Track and publish key metrics including turnaround times, risk severity, and SLA adherence. Provide audit artefacts and metrics for internal / … GRC, or vendor risk management. Experience issuing or responding to security questionnaires and DDQs. Solid knowledge of ISO 27001 Annex A, SOC 2, and GDPR / CCPA. Strong communication skills, capable of translating technical risks for varied audiences. Right to work in the UK / EU and ability to pass background checks. Desirable Certifications … CRISC, CISSP, CISA, ISO 27001 Lead Auditor. Familiarity with SaaS / cloud platforms (AWS, Azure, GCP). Understanding of secure software supply chains (SBOM, SLSA). Benefits As a leader in employee engagement and people management, there are fantastic benefits and rewards at Causeway. We strive, year on year, to achieve recognition as an award More ❯

offering that is fully integrated into the SDLC, providing our customers the ability to build faster and stay secure by automating the control assurance activities revolving around the CI / CD workflows and providing evidence as a service. According to Gartner, by 2026, 70% of enterprises will have integrated compliance as code into their DevOps toolchains, reducing risk management … convert specific customer requirements into extensible and reusable platform capability. It would be desirable , but not essentia l, if you also had one or more of Practical experience of ISO27001 / 27004 / 27005 or NIST Risk Management Framework (RMF); Experience in security accreditation e.g. PCI-DSS, FedRAMP, SSDF (NIST SP800-218), FISMA / NIST SP800 … e.g. Certified Information System Security Professional (CISSP), Cloud Certified Security Professional (CCSP) What you will do Own the “why” for your product. Understand and synthesize the corporate objectives, customer / user pains, industry trends, current customer / user behavior, and anything else that can provide context to drive the product team’s decision-making. Partner with design, engineering More ❯

offering that is fully integrated into the SDLC, providing our customers the ability to build faster and stay secure by automating the control assurance activities revolving around the CI / CD workflows and providing evidence as a service. According to Gartner, by 2026, 70% of enterprises will have integrated compliance as code into their DevOps toolchains, reducing risk management … convert specific customer requirements into extensible and reusable platform capability. It would be desirable , but not essentia l, if you also had one or more of Practical experience of ISO27001 / 27004 / 27005 or NIST Risk Management Framework (RMF); Experience in security accreditation e.g. PCI-DSS, FedRAMP, SSDF (NIST SP800-218), FISMA / NIST SP800 … e.g. Certified Information System Security Professional (CISSP), Cloud Certified Security Professional (CCSP) What You Will Do Own the “why” for your product. Understand and synthesize the corporate objectives, customer / user pains, industry trends, current customer / user behavior, and anything else that can provide context to drive the product team’s decision-making. Partner with design, engineering More ❯

Ensure Endpoint security compliance, including Mobile Device Management. Organise audits, external and internal vulnerability scans, web, infrastructure and application penetration tests and ensure remediation of any issues. Assisting with ISO27001 & Cyber Essentials Plus certifications and GDPR compliance. Provide ad-hoc assistance in monitoring and maintaining IT infrastructure (servers, networks, & endpoints). Monitor and report on service metrics to ensure expected … a similar role. Candidates should possess the ability to communicate effectively with technical and non-technical colleagues at all levels in the organisation. Essential Previous experience within a cyber / information security role. Strong knowledge and understanding of security risk assessment, including security testing principles and tools. Network, operating system, application and organisational security concepts. An investigative and analytical … . Desirable Windows server environments (Active Directory, DNS). Understanding of key security technology such as firewalls, proxies, SIEM, and IDPS concepts Experience with security frameworks and standards, including ISO27001 and Cyber Essentials Plus. Datacentre experience (server installation, troubleshooting, cabling). Networking (firewalls, switches & access points). Familiarity with ITIL principles and standards. How to Apply: If you’re ready More ❯

Job Title: Cyber Security Test Analyst Location: Sheffield, UK (3 days / week Onsite) Duration: 6months+ Banking Client Experience required Job Summary: Required Experience Proven experience in software testing, preferably within Privileged Access Management (PAM) or Identity & Access Management (IAM). Experience with PAM solutions such as CyberArk, BeyondTrust, Delinea (Thycotic), or Microsoft PAM. Strong understanding of IAM principles … . Proficiency in test management tools such as JIRA Strong problem-solving skills and attention to detail. Excellent communication and collaboration skills. Desirable: Experience working within an Agile (Scrum / Kanban) environment. Knowledge of CI / CD pipelines and DevSecOps practices. Experience with Cloud security testing (AWS, Azure, or Google Cloud). Certifications such as ISTQB, CISSP, CISM … or CyberArk Defender are a plus. Knowledge of security compliance standards (e.g., ISO 27001, GDPR, NIST, PCI-DSS). Kind Regards -- Priyanka Sharma Senior Delivery Consultant Office: 02033759240 Email: psharma@vallumassociates.com More ❯

in touch today! Responsibilities: Conducting regular security assessments and vulnerability testing. Developing and implementing security policies and procedures. Monitoring network traffic for unusual activity and potential threats using SOC / SIEM solutions. Responding to security breaches and carrying out forensic investigations. Ensuring compliance with industry standards and regulations, including ISO 27001 and GDPR. Delivering security … use of best-of-breed products. Collaborating with the IT team to design and implement secure network architectures. Generating automated security reports tailored for executive-level clients. Required Skills / Qualifications: A Bachelor's degree in Cyber Security, Information Technology, or a related field. A minimum of three years' experience in a cyber security role, infrastructure, or advanced third … line support. Strong knowledge of security frameworks and standards such as ISO 27001 and GDPR. Expertise in Microsoft 365, SharePoint, Azure architecture, security, and Entra. Proficiency in security tools and technologies, including firewalls, identity management, and layered security stacks. Experience in incident response and forensic analysis. Excellent problem-solving, analytical, and communication skills. Relevant certifications (e.g. More ❯

Social network you want to login / join with: Chief Information Security Officer, london (city of london) col-narrow-left Client: SR2 | Socially Responsible Recruitment | Certified B Corporation Location: london (city of london), United Kingdom Job Category: Other - EU work permit required: Yes col-narrow-right Job Views: 6 Posted: 26.06.2025 Expiry Date: 10.08.2025 col-wide Job Description: Chief … approach to GRC, risk management, threat mitigation, and compliance frameworks. Key Responsibilities Design and implement a scalable GRC framework tailored to the business, addressing risk management, compliance standards (ISO 27001, NIST, SOC 2, etc.), and internal governance controls. Security Strategy: Develop and execute a long-term cybersecurity strategy aligned with business goals, balancing innovation and risk. … be provided when applying for a job. Eurojobs.com is not responsible for any external website content. All applications should be made via the 'Apply now' button. Created on 26 / 06 / 2025 by JR United Kingdom #J-18808-Ljbffr More ❯

Cyber Security Engineer Reports to: Director / VP of Security Architecture & Engineering About Strada Global Strada Global is a leading provider of HR and payroll services, empowering businesses worldwide with innovative technology and secure, scalable solutions. As we continue to evolve, cybersecurity is at the core of our strategy, ensuring the protection of critical data, customer trust, and regulatory … and network security. Configure and maintain security tools, including SIEM, EDR, WAFs, firewalls, IAM, and vulnerability management platforms. Collaborate with infrastructure and DevOps teams to embed security into CI / CD pipelines. Lead the deployment of zero-trust architectures, security automation, and monitoring solutions. Support security incident detection, investigation, and response alongside the SOC and Red Team. Threat & Vulnerability … Extensive hands-on experience in cybersecurity engineering, security operations, or cloud security. Strong knowledge of Azure security controls, IAM, and cloud-native security services. Experience with endpoint security, SIEM / SOAR, network security, and automation tools. Familiarity with scripting (Python, PowerShell) and infrastructure-as-code (Terraform, Ansible). Deep understanding of vulnerability management, penetration testing, and security hardening. Knowledge More ❯

Lead threat monitoring, detection, and response using cloud-native security solutions such as Microsoft Defender, Sentinel, and SIEM platforms. Ensure compliance with cloud security frameworks and regulatory requirements (ISO 27001, NIST, GDPR, SOC2, FCA). Conduct regular security risk assessments, penetration tests, and vulnerability management across cloud services. Oversee endpoint security, cloud network and API security … Azure: Strong experience managing Microsoft 365 (Exchange, SharePoint, Teams), Azure cloud infrastructure, and security tools such as Microsoft Defender and Sentinel. Security & Compliance: Deep knowledge of security frameworks (ISO 27001, NIST, CIS), compliance requirements (GDPR, SOC2), and risk management best practices. Identity & Access Management (IAM): Expertise in Azure AD, MFA, Conditional Access, Single Sign-On (SSO … rd party operational infrastructure vendor management - i.e management of managed service partners, Migration of Legacy VM based estates to SaaS and Cloud services platforms, Legacy tech to Azure knowledge / experience, Prior to the last 5 years, a technical infrastructure engineering level background, working on Windows Server, AD , SQL environments, Firewalls / SDWAN, and Networks (WAN & / More ❯

Social network you want to login / join with: Chief Information Security Officer, london col-narrow-left Client: SR2 | Socially Responsible Recruitment | Certified B Corporation Location: london, United Kingdom Job Category: Other - EU work permit required: Yes col-narrow-right Job Views: 6 Posted: 26.06.2025 Expiry Date: 10.08.2025 col-wide Job Description: Chief Information Security Officer (CISO) ? Location: London … approach to GRC, risk management, threat mitigation, and compliance frameworks. Key Responsibilities Design and implement a scalable GRC framework tailored to the business, addressing risk management, compliance standards (ISO 27001, NIST, SOC 2, etc.), and internal governance controls. Security Strategy: Develop and execute a long-term cybersecurity strategy aligned with business goals, balancing innovation and risk. … years in a senior leadership or CISO role . Demonstrable experience building and scaling a GRC function in a complex environment. Deep knowledge of information security standards (ISO 27001, NIST, CIS), risk frameworks (COSO, FAIR), and regulatory obligations (GDPR, PCI-DSS, SOX). Proven track record of managing enterprise-level security programs, including incident response and More ❯

Social network you want to login / join with: Chief Information Security Officer, slough col-narrow-left Client: SR2 | Socially Responsible Recruitment | Certified B Corporation Location: slough, United Kingdom Job Category: Other - EU work permit required: Yes col-narrow-right Job Views: 3 Posted: 26.06.2025 Expiry Date: 10.08.2025 col-wide Job Description: Chief Information Security Officer (CISO) ? Location: London … approach to GRC, risk management, threat mitigation, and compliance frameworks. Key Responsibilities Design and implement a scalable GRC framework tailored to the business, addressing risk management, compliance standards (ISO 27001, NIST, SOC 2, etc.), and internal governance controls. Security Strategy: Develop and execute a long-term cybersecurity strategy aligned with business goals, balancing innovation and risk. … years in a senior leadership or CISO role . Demonstrable experience building and scaling a GRC function in a complex environment. Deep knowledge of information security standards (ISO 27001, NIST, CIS), risk frameworks (COSO, FAIR), and regulatory obligations (GDPR, PCI-DSS, SOX). Proven track record of managing enterprise-level security programs, including incident response and More ❯

control testing. Knowledge of internal audit methodologies, including risk assessment, execution, and reporting. Proficiency in industry standards and frameworks (e.g., NIST 800-53, ISO 27001 / 27002). Familiarity with privacy regulations (e.g., GDPR, CCPA) and breach notification laws. Experience with sector-specific frameworks (e.g., HIPAA, PCI). Technical Skills Proficiency with security tools (SailPoint … we value yours. Experian's culture, people, and environments are main differentiators. We take our people's agenda very seriously. We focus on what matters; diversity and inclusion, work / life balance, flexible work, development, engagement, collaboration, wellness, rewards & recognitions, volunteering the list goes on! Our benefits include: Medical, life and dental insurance, Asociacion Solidarista, International Share Save Plan … Flex Work / Work from home, Paid time off, Annual Performance Bonus, Education Reimbursement, Family Bonding, Bereavement Leave, Referral Program, and more. Experian Careers - Creating a better tomorrow together Find out what its like to work for Experian by clicking here Experian is proud to be an Equal Opportunity and Affirmative Action employer. Our goal is to create a More ❯

Social network you want to login / join with: Infrastructure and Security Engineer, London Client: Location: London, United Kingdom Job Category: Other EU work permit required: Yes Job Reference: f2624fb961fe Job Views: 6 Posted: 22.06.2025 Expiry Date: 06.08.2025 Job Description: Role Profile Reports to: Head of Infrastructure, Network and Cyber Security Key Relationships: Digital Transformation and Tech, Retail, Facilities … to ensure compliance and security standards. Educate teams and promote a security-first culture. Experience and Qualifications Microsoft infrastructure expertise: Windows Server, Active Directory, Microsoft 365, Azure. Networking: LAN / WAN / WIFI, TCP / IP, Cisco firewalls, switches, routing. Database management: SQL Server basics. Virtualization: VMware vSphere, ESXi, vCenter. Scripting: PowerShell. Hardware: Dell servers and storage. … Security: Azure security tools, compliance frameworks. Threat and incident management: vulnerability assessment, threat protection. Patch and endpoint management. Backup and disaster recovery tools. Monitoring tools experience. Cisco certifications (CCNA / CCNP / CCIE). Microsoft certifications (e.g., MCSA, AZ-104). Azure Security certifications (e.g., AZ-500) a plus. Security standards knowledge (ISO 27001 More ❯

based on your skills and experience — talk with your recruiter to learn more. Base pay range Direct message the job poster from Vallum Associates Location: Sheffield, UK (3 days / week Onsite) Duration: 6months+ Banking Client Experience required Job Summary: Required Experience Proven experience in software testing, preferably within Privileged Access Management (PAM) or Identity & Access Management (IAM). … SoapUI). Proficiency in test management tools such as JIRA Strong problem-solving skills and attention to detail. Excellent communication and collaboration skills. Experience working within an Agile (Scrum / Kanban) environment. Knowledge of CI / CD pipelines and DevSecOps practices. Experience with Cloud security testing (AWS, Azure, or Google Cloud). Certifications such as ISTQB, CISSP, CISM … or CyberArk Defender are a plus. Knowledge of security compliance standards (e.g., ISO 27001, GDPR, NIST, PCI-DSS). Kind Regards -- Senior Delivery Consultant Office: 02033759240 Email: psharma@vallumassociates.com Seniority level Seniority level Mid-Senior level Employment type Employment type Contract Job function Job function Analyst Industries Banking Referrals increase your chances of interviewing at Vallum More ❯

Cyber Security Engineer – MSP | £50,000–£60,000 + Benefits | Hybrid (London / Home Counties) Are you a rising star in cyber security looking to sharpen your skills across multiple environments? Join a fast growing MSP that delivers high-impact security solutions to a diverse client base across finance, legal, and SaaS sectors. We’re hiring a Cyber Security … ISO 27001, Cyber Essentials, etc.) Tech Environment: Microsoft 365 Defender, Intune, Azure Security Center Firewalls: Palo Alto, Fortinet, SonicWall SIEM: Sentinel, Splunk, or equivalent EDR / XDR solutions (Sophos, CrowdStrike, Defender) Scripting knowledge (PowerShell preferred) What We’re Looking For: 5 years’ experience in a cyber security role (ideally within an MSP or multi-client More ❯

Cyber Security Engineer – MSP | £50,000–£60,000 + Benefits | Hybrid (London / Home Counties) Are you a rising star in cyber security looking to sharpen your skills across multiple environments? Join a fast growing MSP that delivers high-impact security solutions to a diverse client base across finance, legal, and SaaS sectors. We’re hiring a Cyber Security … ISO 27001, Cyber Essentials, etc.) Tech Environment: Microsoft 365 Defender, Intune, Azure Security Center Firewalls: Palo Alto, Fortinet, SonicWall SIEM: Sentinel, Splunk, or equivalent EDR / XDR solutions (Sophos, CrowdStrike, Defender) Scripting knowledge (PowerShell preferred) What We’re Looking For: 5 years’ experience in a cyber security role (ideally within an MSP or multi-client More ❯

compliance (GRC) . This role is critical in shaping and enforcing security policies, driving enterprise-wide risk management, and ensuring ongoing compliance with frameworks such as SOC 2, ISO 27001, and other regulatory requirements . The ideal candidate is not only a technical expert but also a business-savvy leader who can align security strategy with … Responsibilities & Duties Governance, Risk & Compliance: Develop, implement, and maintain the company’s information security governance framework. Lead the strategy and execution for security compliance initiatives including SOC 2 , ISO 27001 , NIST , and other relevant standards. Oversee and manage the enterprise risk management program , including identification, assessment, and mitigation of information security risks. Regularly report to executive … frameworks and compliance standards (e.g., SOC 2, ISO 27001, HIPAA, NIST, GDPR). Proven experience managing or leading successful SOC 2 audits and other regulatory / compliance initiatives. Confident engaging with auditors and enterprise clients; experience representing security to financial institutions. Strong understanding of enterprise risk management methodologies. Technical background with knowledge of security operations More ❯

enforce security policies, procedures, and best practices. Provide cybersecurity awareness training and guidance to end users and internal teams. Participate in audits and ensure guidelines from industry standards (ISO 27001, NIST, SOC 2) are followed internally and best practices regularly reviewed. Proactively assess recovery capabilities, with the aim of minimizing business impact in case of incidents. … team. Occasional on-call support for critical incidents. Requirements Proven experience in a cybersecurity and IT infrastructure role. Strong knowledge of Microsoft and Cisco security stack. Familiarity with SIEM / SOAR / XDR platforms and incident response frameworks. Excellent understanding of network security, firewalls, VPNs, ZTA, endpoint protection, phishing and social media platforms. Experience with hybrid environments (on More ❯

enforce security policies, procedures, and best practices. Provide cybersecurity awareness training and guidance to end users and internal teams. Participate in audits and ensure guidelines from industry standards (ISO 27001, NIST, SOC 2) are followed internally and best practices regularly reviewed. Proactively assess recovery capabilities, with the aim of minimizing business impact in case of incidents. … team. Occasional on-call support for critical incidents. Requirements Proven experience in a cybersecurity and IT infrastructure role. Strong knowledge of Microsoft and Cisco security stack. Familiarity with SIEM / SOAR / XDR platforms and incident response frameworks. Excellent understanding of network security, firewalls, VPNs, ZTA, endpoint protection, phishing and social media platforms. Experience with hybrid environments (on More ❯