24 of 24 ISO/IEC 27002 (supersedes ISO/IEC 17799) Jobs in the UK

Birmingham, Bristol, Manchester, Reading, St Albans Business Line Enabling Functions Job Type Permanent / FTC Date published 07-Aug-2025 19967 Connect to your Industry Deloitte Technology works at the forefront of technology development and processes to support and protect Deloitte around the world. In this truly global environment, we operate not in "what is" but rather "what … initiatives and advise internal clients on applicability and interpretation of the standards' requirements Develop and maintain compliance mapping of Deloitte standards' requirements to ISO 27002 Collaborate with team members and other Deloitte cybersecurity teams to ensure alignment Foster continuing maturity of the Policies & Standards team, using newer technologies such as Artificial Intelligence and Machine … Required Qualifications: Bachelor's degree (or equivalent) in cybersecurity, information systems, computer science, or other technology-related field, or equivalent experience Proven combined experience in the information security / cybersecurity domain, with a focus on policies and standards, or cybersecurity governance and risk management Strong ability to clearly communicate complex cybersecurity statements to technical and non-technical audiences More ❯

Birmingham, Bristol, Manchester, Reading, St Albans Business Line Enabling Functions Job Type Permanent / FTC Date published 07-Aug-2025 19967 Connect to your Industry Deloitte Technology works at the forefront of technology development and processes to support and protect Deloitte around the world. In this truly global environment, we operate not in "what is" but rather "what … initiatives and advise internal clients on applicability and interpretation of the standards' requirements Develop and maintain compliance mapping of Deloitte standards' requirements to ISO 27002 Collaborate with team members and other Deloitte cybersecurity teams to ensure alignment Foster continuing maturity of the Policies & Standards team, using newer technologies such as Artificial Intelligence and Machine … Required Qualifications: Bachelor's degree (or equivalent) in cybersecurity, information systems, computer science, or other technology-related field, or equivalent experience Proven combined experience in the information security / cybersecurity domain, with a focus on policies and standards, or cybersecurity governance and risk management Strong ability to clearly communicate complex cybersecurity statements to technical and non-technical audiences More ❯

Birmingham, Bristol, Manchester, Reading, St Albans Business Line Enabling Functions Job Type Permanent / FTC Date published 07-Aug-2025 19967 Connect to your Industry Deloitte Technology works at the forefront of technology development and processes to support and protect Deloitte around the world. In this truly global environment, we operate not in "what is" but rather "what … initiatives and advise internal clients on applicability and interpretation of the standards' requirements Develop and maintain compliance mapping of Deloitte standards' requirements to ISO 27002 Collaborate with team members and other Deloitte cybersecurity teams to ensure alignment Foster continuing maturity of the Policies & Standards team, using newer technologies such as Artificial Intelligence and Machine … Required Qualifications: Bachelor's degree (or equivalent) in cybersecurity, information systems, computer science, or other technology-related field, or equivalent experience Proven combined experience in the information security / cybersecurity domain, with a focus on policies and standards, or cybersecurity governance and risk management Strong ability to clearly communicate complex cybersecurity statements to technical and non-technical audiences More ❯

Birmingham, Bristol, Manchester, Reading, St Albans Business Line Enabling Functions Job Type Permanent / FTC Date published 07-Aug-2025 19967 Connect to your Industry Deloitte Technology works at the forefront of technology development and processes to support and protect Deloitte around the world. In this truly global environment, we operate not in "what is" but rather "what … initiatives and advise internal clients on applicability and interpretation of the standards' requirements Develop and maintain compliance mapping of Deloitte standards' requirements to ISO 27002 Collaborate with team members and other Deloitte cybersecurity teams to ensure alignment Foster continuing maturity of the Policies & Standards team, using newer technologies such as Artificial Intelligence and Machine … Required Qualifications: Bachelor's degree (or equivalent) in cybersecurity, information systems, computer science, or other technology-related field, or equivalent experience Proven combined experience in the information security / cybersecurity domain, with a focus on policies and standards, or cybersecurity governance and risk management Strong ability to clearly communicate complex cybersecurity statements to technical and non-technical audiences More ❯

Birmingham, Bristol, Manchester, Reading, St Albans Business Line Enabling Functions Job Type Permanent / FTC Date published 07-Aug-2025 19967 Connect to your Industry Deloitte Technology works at the forefront of technology development and processes to support and protect Deloitte around the world. In this truly global environment, we operate not in "what is" but rather "what … initiatives and advise internal clients on applicability and interpretation of the standards' requirements Develop and maintain compliance mapping of Deloitte standards' requirements to ISO 27002 Collaborate with team members and other Deloitte cybersecurity teams to ensure alignment Foster continuing maturity of the Policies & Standards team, using newer technologies such as Artificial Intelligence and Machine … Required Qualifications: Bachelor's degree (or equivalent) in cybersecurity, information systems, computer science, or other technology-related field, or equivalent experience Proven combined experience in the information security / cybersecurity domain, with a focus on policies and standards, or cybersecurity governance and risk management Strong ability to clearly communicate complex cybersecurity statements to technical and non-technical audiences More ❯

affecting products Your skillset may include: Knowledge of HMG standards (including MOD-specific JSP, Def Stan 05-138, Def Stan 05-139) An understanding of MOD ISN 23 / 09 Secure by Design Knowledge of security frameworks, such as ISO / IEC 27001, NIST 800-30, NIST … or OWASP Working with risk management frameworks and methodologies (e.g., ISO 27001 / 2, ISO27005 / 31000, NIST 800-30, NIST 800-53) Please reach out to Lewis Dunn @ ARM if you are interested or simply have some questions - E: or DD: Disclaimer: This vacancy is being advertised by either Advanced Resource More ❯

affecting products Your skillset may include: Knowledge of HMG standards (including MOD-specific JSP, Def Stan 05-138, Def Stan 05-139) An understanding of MOD ISN 23 / 09 Secure by Design Knowledge of security frameworks, such as ISO / IEC 27001, NIST 800-30, NIST … or OWASP Working with risk management frameworks and methodologies (e.g., ISO 27001 / 2, ISO27005 / 31000, NIST 800-30, NIST 800-53) Please reach out to Lewis if you are interested or simply have some questions - E: or DD: (phone number removed) Disclaimer: This vacancy is being advertised by either Advanced More ❯

SLA’s and KPI’s for our customers leveraging vulnerability and assessment tools such as Qualys and Microsoft’s EDR offering. Analyse vulnerability test reports and provide remediation / mitigation plans to the team. Integrate with our vendors and security providers to identify the most up-to-date information on the latest vulnerabilities and deliver key awareness and … s Operation team to plan and implement internal security adoption across all our platforms including our hosted cloud platform, aligning to CE+, ISO 27001 / 27002 and ITIL. With the Technical Services Manager, identify and implement the best practice security posture for LIMA’s Managed Services Engineers when working with customers and … with technical accreditations or demonstrable experience in security and vulnerability remediation technologies: Security Tooling: OWASP ZAP, Nmap, Wireshark Assessment Tooling: Nessus, Qualys, etc Remediation Tooling: Microsoft Endpoint Management / Intune Microsoft Security / Compliance: MFA,?Conditional Access, SSPR, DLP, IPM, IRM, DKIM, MCAS Application packaging for automated deployment Intermediate scripting experience utilising PowerShell or Python You More ❯

Lead Implementer or Auditor certification (essential). Demonstrated experience in an Information Security or IT Governance role. Strong knowledge of frameworks like ISO 27001 / 27002, NIST, GDPR, and related standards. Proven ability to manage audits, compliance reporting, and security training programs. Excellent stakeholder management, communication, and analytical skills. This is an … reach out directly with your CV and a good time to speak at oloveland@planet-pharma.co.uk . About Planet Pharma: Planet Pharma is an American parented Employment Business / Agency that provides global staffing services with its head-quarters in Chicago and our EMEA regional office located in Central London. We have invested significantly in creating a robust … international platform that enables us to work compliantly in 30+ countries with a current network of 2500+ active contractors globally as well as a very strong permanent / direct hire recruitment offering. Our specialist knowledge and close relationships with our clients and the wider industry really makes us unique in our field. Just recently we were recognised by More ❯

current need sits within the energy sector and is for a EMEA-wide IT management system. The main responsibilities will be to support their client in maintaining ISO 27001 certification, and be compliant with … DORA, NIS 2, GDPR, etc. Requirements: * ISO 27001 Lead Implementer or Auditor certification * Strong knowledge of frameworks like ISO 27001 / 27002, CAF, eCAF, NIST, GDPR * Client and stakeholder management The client is looking for someone with direct experience with utility providers or experience working with providers via More ❯

current need sits within the energy sector and is for a EMEA-wide IT management system. The main responsibilities will be to support their client in maintaining ISO 27001 certification, and be compliant with … DORA, NIS 2, GDPR, etc. Requirements: ISO 27001 Lead Implementer or Auditor certification Strong knowledge of frameworks like ISO 27001 / 27002, CAF, eCAF, NIST, GDPR Client and stakeholder management The client is looking for someone with direct experience with utility providers or experience working with providers via More ❯

vulnerabilities, and suggest improvements. Stay updated on security trends, threats, and best practices. Skills & Qualifications: Mandatory: BSc Degree or equivalent experience Certifications such as CCNA, CCNP, CWNP, ISA / IEC 62443, GICSP (highly desirable) Experience in Control System Network Design Engineering Understanding of IEC62443 and IEC27001 / 2 standards Knowledge of automation … Familiarity with industrial communication protocols (Modbus, DNP3, OPC) and security implications Experience in writing network specifications Experience with multiple system implementation projects and control platforms Experience in upgrades / replacements in automation / control projects Strong knowledge of engineering practices, standards, and procedures Knowledge of modern automation tools, methodologies, and security considerations in OT environments Organized … detail-oriented, inquisitive Desirable: Experience with Rockwell, Honeywell, Schneider PLC / SCADA systems Familiarity with telecom protocols, satellite communications, radio-link tech Experience with OT Intrusion Detection Systems With over 90 years of combined experience, NES Fircroft is a leading engineering staffing provider across multiple sectors worldwide, offering comprehensive support from visas to benefits and accommodation. More ❯

the audience. Ability to work with others effectively, with 3rd parties, internal teams, promoting knowledge sharing within and across teams. A good understanding of security frameworks including ISO27001 / 2, Cyber Essentials Plus, CIS Top 20, Data Protection Act 2018, OWASP Top 10. Have or be working towards relevant industry certification such as CISSP, CISM, CRISC or similar. More ❯

studies & cyber design documentation. Resolve engineering issues by applying standards and best practices. Skills & Qualifications: Minimum BSc degree or equivalent experience. Certifications such as CCNA, CCNP, CWNP, ISA / IEC 62443, or GICSP are highly desirable. Experience in Control System Network Design Engineering. Understanding of IEC62443 Cyber Security standards. Knowledge of IEC27001 / 2 Information Security Management. Familiarity with industrial communication protocols (e.g., Modbus, DNP3, OPC) & their security implications. Experience with multiple system implementations & control platforms. Experience in brownfield upgrades / replacements. Strong knowledge of engineering practices, standards, and codes. Understanding of automation & control applications and tools. Knowledge of physical security & cybersecurity interplay in OT environments. Good awareness of safety … standards & regulations for OT. Proficiency with current industry technologies & software tools. Detail-oriented, organized, inquisitive. Desirable: Experience with Rockwell, Honeywell, Schneider PLC / SCADA systems. Familiarity with telecom protocols, satellite, & radio-link technologies. Experience with OT Intrusion Detection Systems. With over 90 years of combined experience, NES Fircroft is a leading engineering staffing provider across multiple sectors worldwide. More ❯

Applying cybersecurity principles to solution design Working directly with customers, particularly on large or complex accounts Navigating regulatory frameworks such as NIST CSF, ISO 27002, and CIS Controls Developing scalable, compliant solutions across cloud platforms Integrating systems using APIs and web services Gathering requirements and translating them into technical outcomes Aligning solutions with product More ❯

a security or risk management role. An excellent understanding of enterprise information security and in-depth knowledge of standards including Cyber Essentials, ISO 27001, 27002 etc., Data Protection Act and the General Data Protection Regulation. Good understanding of security testing principles, including experience of penetration testing, identifying, resolving and reporting risks. Technical security experience … with the following - Microsoft core OS; Networking; Security operations; Penetration testing / Security Auditing; Forensics; Security architecture. Technical expertise of Cisco security products, specifically ASA firewalls, AnyConnect, VPN and clientless portal. A good understanding of normal network infrastructure such as VPNs, firewalls, switches, routers, LANs etc. Experience of formal document creation, such as the creation of reports or More ❯

to deliver holistic, customer centric cyber security services and consultancy support that continually evolves to emerging technologies and the ever-changing threat and risk landscape to support HMRC / HMG business needs. This is an exciting time to be part of our active and encouraging cyber security community, working within HMRC and across HMG. Job description As a … the business and drive organisational objectives. You will influence policy and lead on technical and business change. You may also be required to take responsibility for a CSTS / Cyber GSEC Capability and form an integral part of our SLT. Broadly, we would expect the successful candidate to align with the Government Security Professional Framework for one or … cyber risks for the business and influence appropriate decisions in keeping with the HMRC and HMG risk appetite. Responsibilities Lead and develop the technical security expertise and capability / services of the CSTS / Cyber GSEC Technical team and drive learning and development strategy. Be the nominated Security Programme Lead, driving the delivery and development of More ❯

to deliver holistic, customer centric cyber security services and consultancy support that continually evolves to emerging technologies and the ever-changing threat and risk landscape to support HMRC / HMG business needs. This is an exciting time to be part of our active and encouraging cyber security community, working within HMRC and across HMG. Job description As a … the business and drive organisational objectives. You will influence policy and lead on technical and business change. You may also be required to take responsibility for a CSTS / Cyber GSEC Capability and form an integral part of our SLT. Broadly, we would expect the successful candidate to align with the Government Security Professional Framework for one or … cyber risks for the business and influence appropriate decisions in keeping with the HMRC and HMG risk appetite. Responsibilities Lead and develop the technical security expertise and capability / services of the CSTS / Cyber GSEC Technical team and drive learning and development strategy. Be the nominated Security Programme Lead, driving the delivery and development of More ❯

to deliver holistic, customer centric cyber security services and consultancy support that continually evolves to emerging technologies and the ever-changing threat and risk landscape to support HMRC / HMG business needs. This is an exciting time to be part of our active and encouraging cyber security community, working within HMRC and across HMG. Job description As a … the business and drive organisational objectives. You will influence policy and lead on technical and business change. You may also be required to take responsibility for a CSTS / Cyber GSEC Capability and form an integral part of our SLT. Broadly, we would expect the successful candidate to align with the Government Security Professional Framework for one or … cyber risks for the business and influence appropriate decisions in keeping with the HMRC and HMG risk appetite. Responsibilities Lead and develop the technical security expertise and capability / services of the CSTS / Cyber GSEC Technical team and drive learning and development strategy. Be the nominated Security Programme Lead, driving the delivery and development of More ❯

the business and drive organisational objectives. You will influence policy and lead on technical and business change. You may also be required to take responsibility for a CSTS / Cyber GSEC Capability and form an integral part of our SLT. Broadly, we would expect the successful candidate to align with the Government Security Professional Framework for one or … cyber risks for the business and influence appropriate decisions in keeping with the HMRC and HMG risk appetite. Responsibilities Lead and develop the technical security expertise and capability / services of the CSTS / Cyber GSEC Technical team and drive learning and development strategy. Be the nominated Security Programme Lead, driving the delivery and development of … technical security for high profile programmes and projects, working with programme leads / directors and have the technical credibility to represent our business at a range of high level governance, project and other boards. Act as an empowered deputy for the CSTS Deputy Director. You may be expected to undertake task management or line management responsibilities and will More ❯

against the increasing threat landscape. You will support pre-sales engagements through gaining an understanding of client requirements and in technical pre-sales discussions, ensuring the solution and / or service meets client expectations. Job Role Responsibilities Act as a subject matter expert on cybersecurity, the current threat landscape and keep up to date with trends and innovations … general advice and guidance Deliver technical training and enablement sessions to sales teams, partners, and customers, empowering stakeholders with the knowledge and skills needed to effectively position and / or sell Bechtle Security offerings Engage, alongside Account Managers, with customers to address technical challenges, provide solution recommendations, and overcome obstacles. Build strong relationships with customers based on trust … stages and handling preferred o Knowledge and / or experience using endpoint detection and threat management products Good knowledge and awareness of global Information Security Standards including ISO27002, CIS, NCSE CAF, NIST CSF Advisor in advanced cybersecurity services including SSE, SASE, SIEM, MDR / EDR Experience working with security frameworks and / or market More ❯

technology to meet business, production, & operational goals. Principal Network & Cyber Security Engineer responsibilities Provide expertise in Network Design, implementation, & testing for networks supporting Automation & Control Systems Solutions Identify / define the network requirements for Automation & Controls solutions Develop Detailed Network Architecture Create Network Dataflow Diagrams Produce Cybersecurity requirement specifications Develop Network Schedules (IP addresses, Data communication, server & VM … standardization of project workflows Skills & Qualifications Expected: BSc Degree or equivalent experience Experience in Control System Network Design Engineering Understanding of IEC62443 & IEC 27001 / 2 standards Knowledge of Automation & Control engineering disciplines Experience in writing Network specifications Experience with multiple system implementations & control platforms Experience in Brownfield upgrades & replacements Knowledge of Rockwell & Schneider … PLC / SCADA systems (advantageous) Thorough knowledge of engineering practices, standards, & procedures Knowledge of cybersecurity tools & standards Multi-sector & global project experience Problem-solving skills Desirable: Knowledge of process automation & real-time systems Experience with security governance, risk, & compliance controls Experience with vulnerability management & penetration testing tools Candidates must be eligible to work in the UK. With over More ❯

Sales, Cybersecurity or similar technical consultancy role (MSP / reseller experience preferred). Strong understanding of incident response, SOC operations, and endpoint security. Familiarity with security standards (ISO27002, CIS, NIST, CAF). Experience with technologies such as SSE, SASE, SIEM, MDR / EDR. Confident in customer-facing engagements and solution design. Excellent communication, documentation and stakeholder More ❯

Sales, Cybersecurity or similar technical consultancy role (MSP / reseller experience preferred). Strong understanding of incident response, SOC operations, and endpoint security. Familiarity with security standards (ISO27002, CIS, NIST, CAF). Experience with technologies such as SSE, SASE, SIEM, MDR / EDR. Confident in customer-facing engagements and solution design. Excellent communication, documentation and stakeholder More ❯