23 of 23 ISO 22301 Jobs in the UK

Internal Auditor - ISO 27001 Location: Portsmouth (Hybrid - 1 day per week onsite) Contract: initial 12-month FTC We're seeking an Internal Auditor with experience as a lead auditor or certified in ISO 27001 to support our integrated management system and drive continuous improvement across information security and quality standards. Key Responsibilities Audit Delivery - Plan and conduct risk … based audits (ISO 27001 & ISO 9001), both onsite and remotely, assessing processes, controls, and compliance. Reporting & Recommendations - Produce clear reports highlighting non-conformances, risks, and opportunities, with actionable recommendations and timelines. Follow-Up & Closure - Work with stakeholders to agree corrective actions, track progress, and verify remediation. Management Reviews - Support quarterly reviews by compiling data, metrics, and reports. Policy … Documentation - Maintain audit procedures and ensure policies reflect current standards and best practice. Awareness & Training - Deliver workshops to strengthen understanding of ISO 27001 and related standards. Cross-Functional Projects - Contribute to supplier audits, business continuity exercises, and risk assessments. About You Essential: Experience auditing ISO 27001. Certified Internal Auditor (CIA, CISA, or ISO 27001 Lead Auditor). More ❯

Internal Auditor - ISO 27001 Location: Portsmouth (Hybrid - 1 day per week onsite) Contract: initial 12-month FTC We're seeking an Internal Auditor with experience as a lead auditor or certified in ISO 27001 to support our integrated management system and drive continuous improvement across information security and quality standards. Key Responsibilities Audit Delivery - Plan and conduct risk … based audits (ISO 27001 & ISO 9001), both onsite and remotely, assessing processes, controls, and compliance. Reporting & Recommendations - Produce clear reports highlighting non-conformances, risks, and opportunities, with actionable recommendations and timelines. Follow-Up & Closure - Work with stakeholders to agree corrective actions, track progress, and verify remediation. Management Reviews - Support quarterly reviews by compiling data, metrics, and reports. Policy … Documentation - Maintain audit procedures and ensure policies reflect current standards and best practice. Awareness & Training - Deliver workshops to strengthen understanding of ISO 27001 and related standards. Cross-Functional Projects - Contribute to supplier audits, business continuity exercises, and risk assessments. About You Essential: Experience auditing ISO 27001. Certified Internal Auditor (CIA, CISA, or ISO 27001 Lead Auditor). More ❯

Information Security Specialist (ISO Certified) About the Role Our client, a leading organisation in Berkshire, is seeking an experienced Information Security Specialist with in-depth knowledge of ISO 9001, ISO 14001, ISO 22301, ISO 27001, and PCI-DSS compliance. This role will be central to designing, implementing, and maintaining best-in-class security and … compliance frameworks, ensuring that all information assets and operational processes are safeguarded to the highest standards. Key Responsibilities Develop, implement, and maintain compliance with ISO , and PCI-DSS standards. Conduct risk assessments, security audits, and vulnerability testing across systems and processes. Lead incident response activities, ensuring rapid and effective mitigation. Collaborate with internal stakeholders and external auditors to achieve … and maintain certifications. Deliver organisation-wide security and compliance awareness training. Monitor and report on security performance, providing actionable recommendations. Essential Skills & Qualifications ISO 27001 Lead Implementer or Lead Auditor certification (or equivalent). Demonstrable experience managing compliance for ISO , and PCI-DSS. Strong understanding of governance, risk management, and regulatory compliance. Proficiency with security monitoring tools and More ❯

maintenance and enhancement of the buildings, including efficiency, quality and fabric across the site, ensuring that all buildings are maintained in compliance with industry best practice, legislation and relevant ISO standards, that they are energy efficient and serve our teams and customers perfectly. The role takes ownership of delivering building management projects aiming at continuous improvement of service quality … and generator power, etc. • Ensure Business Continuity and disaster recovery plans are documented, tested, implemented and maintained with the DC Buildings Manager. Previous experience of working to and within ISO regulated processes and procedures like • ISO 9001, ISO 27001, ISO 22301, BS OHSAS 18001 H&S, ISO 50001, ISO 14001, ISO 45001. More ❯

in a client-facing advisory or consulting capacity. Proven experience delivering crisis tabletop exercises and facilitating executive-level crisis discussions. Strong understanding of cyber incident response frameworks (e.g., NIST, ISO 22301, ISO 27035) and business continuity principles. Excellent communication and presentation skills with experience speaking at conferences or industry events. Familiarity with cyber crisis management technologies and More ❯

other tools. You will assist with supplier onboarding and documentation alongside the Legal and Procurement teams. You’ll support with compliance monitoring, helping to ensure certified standards, such as ISO 27001, ISO 22301 and others, are maintained, all whilst learning how risk is identified, assessed, and managed in a real-world setting. The six apprenticeship modules within More ❯

other tools. You will assist with supplier onboarding and documentation alongside the Legal and Procurement teams. You'll support with compliance monitoring, helping to ensure certified standards, such as ISO 27001, ISO 22301 and others, are maintained, all whilst learning how risk is identified, assessed, and managed in a real-world setting. The six apprenticeship modules within More ❯

Advocate for and embed DataOps principles across data workflows. Partner with other technology functions to solve shared challenges and streamline processes. Ensure compliance with security and quality frameworks, including ISO 27001, BS 10012, ISO 50001, and ISO 22301 . Skills & Experience Strong SQL expertise, with the ability to write and optimise complex queries. Hands-on experience More ❯

with internal stakeholders, clients, and external auditors Prepare for audits, including gathering pre-audit information and supporting documentation Run operational audit programmes covering Security (e.g., PCI-DSS, ISAE 3402, ISO/IEC 27001, ENS), Business Continuity (e.g., ISO 22301, KRITIS), and ESG/Sustainability (e.g., ISO 14001, EcoVadis) Evaluate internal compliance and implement risk management strategies … Audit, or a related discipline Ideally professionally qualified in Audit or GRC (e.g., CRISC, Lead Auditor Certificate) Experienced in audit, compliance, or risk management (minimum 1 year) Knowledgeable about ISO standards and audit techniques, with experience in Security, Business Continuity, and Sustainability programmes Strong analytical skills, including data analysis and reporting Confident in managing stakeholders and reporting findings to More ❯

with internal stakeholders, clients, and external auditors Prepare for audits, including gathering pre-audit information and supporting documentation Run operational audit programmes covering Security (e.g., PCI-DSS, ISAE 3402, ISO/IEC 27001, ENS), Business Continuity (e.g., ISO 22301, KRITIS), and ESG/Sustainability (e.g., ISO 14001, EcoVadis) Evaluate internal compliance and implement risk management strategies … Audit, or a related discipline Ideally professionally qualified in Audit or GRC (e.g., CRISC, Lead Auditor Certificate) Experienced in audit, compliance, or risk management (minimum 1 year) Knowledgeable about ISO standards and audit techniques, with experience in Security, Business Continuity, and Sustainability programmes Strong analytical skills, including data analysis and reporting Confident in managing stakeholders and reporting findings to More ❯

as required Contract Type: Permanent & Full-time Salary: Competitive + Benefits About the Role As a Senior ISO27001 Consultant, you will lead client engagements to design, implement, and maintain ISO frameworks, supporting clients through gap analysis, remediation, certification readiness, and continual improvement. You'll collaborate with senior stakeholders across industries to deliver strategic advisory and hands-on implementation of … information security governance, risk management, and compliance Key Responsibilities Lead ISO 27001 implementation projects from initial assessment through to certification Conduct gap analysis tailored to private sector risk profiles and commercial priorities Facilitate risk assessments in accordance with ISO 27005 or recognised equivalents Draft, review, and update ISMS documentation including policies and procedures Advise on and oversee technical … administrative, and physical control implementation per ISO 27001 Annex A Deliver internal audits and lead clients through Stage 1 and Stage 2 certification audits Establish ISMS performance monitoring and reporting mechanisms Provide targeted training to embed a security-first culture Experience Required Proven experience in ISO27001 implementation and auditing Strong understanding of ISMS frameworks and private sector regulatory requirements More ❯

Applied knowledge of security architectures, operating systems & networking architectures, technologies & the OSI Model. Strong working knowledge of Cloud Security & Risk applied to all service models. Working knowledge of appropriate ISO standards including 27001, 27002, 27005, 270017, 27018, 22301. Good working knowledge of Cryptography including symmetric & asymmetric encryption systems, infrastructure, risks, weaknesses and mitigations. Working knowledge of penetration testing skills More ❯

Applied knowledge of security architectures, operating systems & networking architectures, technologies & the OSI Model. Strong working knowledge of Cloud Security & Risk applied to all service models. Working knowledge of appropriate ISO standards including 27001, 27002, 27005, 270017, 27018, 22301. Good working knowledge of Cryptography including symmetric & asymmetric encryption systems, infrastructure, risks, weaknesses and mitigations. Working knowledge of penetration testing skills More ❯

and stakeholders The Candidate: Minimum of 3 Years experience in similar roles within contact centre. Public Sector or BPO experience is a plus Basic understanding of frameworks like ISO27001, ISO22301, PCI-DSS v4.0, Cyber Essentials+, GDPR, ITHC Confident communicator at all organisational levels Strong analytical skills and ability to produce high-quality documentation The Package: Base salary: up to More ❯

and stakeholders The Candidate: Minimum of 3 Years experience in similar roles within contact centre. Public Sector or BPO experience is a plus Basic understanding of frameworks like ISO27001, ISO22301, PCI-DSS v4.0, Cyber Essentials+, GDPR, ITHC Confident communicator at all organisational levels Strong analytical skills and ability to produce high-quality documentation The Package: Base salary: up to More ❯

and stakeholders The Candidate: Minimum of 3 Years experience in similar roles within contact centre. Public Sector or BPO experience is a plus Basic understanding of frameworks like ISO27001, ISO22301, PCI-DSS v4.0, Cyber Essentials+, GDPR, ITHC Confident communicator at all organisational levels Strong analytical skills and ability to produce high-quality documentation The Package: Base salary: up to More ❯

experienced Assurance and Certification Manager to work with their leading MSP client Responsibilities: Lead the development, implementation, and continuous improvement of assurance, compliance, and certification frameworks. Manage and sustain ISO accreditations (e.g., ISO 9001, 14001, 27001, and others) and integrate emerging AI standards into organisational processes. Conduct comprehensive internal and external audits, risk assessments, and compliance gap analyses … organisational ecosystem. Qualifications & Experience: A minimum of five years' experience in assurance, certification, compliance, and internal audit management. Demonstrable expertise in achieving and maintaining accreditation for standards such as ISO 9001, 27001, 14001, EcoVadis, 45001, 22301, 20000, and emerging AI standards. Proven track record conducting audits, risk assessments, and gap analyses across diverse geographies. Experience in technical IT … delivery or complex product environments preferred. Recognised professional certifications such as CIA, CISA, ISO Lead Auditor, or equivalent qualifications are highly desirable. Key Skills & Attributes: Attention to Detail: Exceptional thoroughness and accuracy in navigating complex standards and compliance landscapes. Problem-Solving Ability: Analytical mindset to perform risk evaluations and develop effective solutions. Continuous Improvement: Growth-focused with a commitment More ❯

risk and compliance technical assessments of all applicable standards, policies, regulation, and legislation compliance Creation of security standards and requirements documents for projects and activities to be based on ISO 27001, NIST 800-53 and ISO 22301. Review risks, propose mitigation actions and solutions, and assisting ongoing risk treatment activity. Assist the security testing process from scoping, planning More ❯

risk and compliance technical assessments of all applicable standards, policies, regulation, and legislation compliance Creation of security standards and requirements documents for projects and activities to be based on ISO 27001, NIST 800-53 and ISO 22301. Review risks, propose mitigation actions and solutions, and assisting ongoing risk treatment activity. Assist the security testing process from scoping, planning More ❯

risk and compliance technical assessments of all applicable standards, policies, regulation, and legislation compliance Creation of security standards and requirements documents for projects and activities to be based on ISO 27001, NIST 800-53 and ISO 22301. Review risks, propose mitigation actions and solutions, and assisting ongoing risk treatment activity. Assist the security testing process from scoping, planning More ❯

in a Business related subject area. Previously worked within LSEG. Demonstrable record of people management Strong solid understanding of information security compliance frameworks, standards, and auditing practices, such as ISO 27001, 9001, 22301, SOC 1 or 2, PCI DSS 4.0, NIST, Swift and Cyber Essentials Plus ensuring continued certification and attestation. ABOUT US: LSEG (London Stock Exchange Group More ❯

agendas. Provide support to the annual completion of Director packs. Support in building a consistent BCM methodology across Group, aligned to Corporate BCM strategy and external bodies, such as ISO22301 and the BCIs Good Practice Guidelines and adopt standardised terminology, promoting across the business in line with the BCIs glossary. Support the completion of BCM related induction and E+A training … advantageous Fluent in English, other languages advantageous but not a requirement Willingness to train in a relevant BCM professional qualification and knowledge of relevant globally recognised standard in BCM (ISO22301), BCI GPG as well as other regulations (e.g. DORA). Proven track record of working in a fast-paced environment with attention to detail a must Good working knowledge of More ❯

Network Security products and initiatives as well as deep Microsoft Azure security knowledge. The Consultant will also support the renewing and gaining of Cyber Security accreditations such as ISO27001, ISO22301, NCSC CAF & NIST. This is a remote-first role, with very occasional on-site meetings. Required Skills & Experience * Excellent Microsoft Security stack knowledge * Demonstrable experience of reviewing, restructuring and hardening … and network configuration * Robust technical documentation skills * Ability to appraise current Security posture and recommend actions and initiatives to mature cyber posterity * Knowledge of key Cyber Security accreditations (e.g. ISO, NIST, CAF) * Microsoft certifications (e.g. AZ-500, Security Fundamentals, SC-900) For more information or immediate consideration for this opportunity, please contact Charlie Grant at CPS Group UK on More ❯