51 to 71 of 71 ISO 27001 Lead Auditor Jobs in the UK

organisation on a Head of Cyber Governance, Risk & Compliance (GRC) 📍 London or Edinburgh | Hybrid We’re looking for an experienced Head of Cyber Governance, Risk & Compliance (GRC) to lead a global team responsible for strengthening and harmonising the organisation’s cybersecurity control framework. Reporting directly to the CISO, you’ll manage a team of six covering governance … and maturity across global operations. This is a key leadership role for a strategic yet hands-on cyber risk professional with strong knowledge of frameworks such as NIST, ISO 27001, CPMI-IOSCO, and the CRI Cyber Risk Profile. What you’ll do Lead and develop a global GRC team, ensuring effective … global jurisdictions (US, UK, EU, Japan). Excellent communication skills — able to simplify complexity for executive audiences. Highly organised, documentation-focused, and detail-oriented. Certifications: CISM (essential), CRISC, ISO 27001 Lead Implementer / Auditor, CISSP or CGEIT (advantageous), DORA / NIST CSF training desirable. Join a forward-thinking More ❯

organisation on a Head of Cyber Governance, Risk & Compliance (GRC) 📍 London or Edinburgh | Hybrid We’re looking for an experienced Head of Cyber Governance, Risk & Compliance (GRC) to lead a global team responsible for strengthening and harmonising the organisation’s cybersecurity control framework. Reporting directly to the CISO, you’ll manage a team of six covering governance … and maturity across global operations. This is a key leadership role for a strategic yet hands-on cyber risk professional with strong knowledge of frameworks such as NIST, ISO 27001, CPMI-IOSCO, and the CRI Cyber Risk Profile. What you’ll do Lead and develop a global GRC team, ensuring effective … global jurisdictions (US, UK, EU, Japan). Excellent communication skills — able to simplify complexity for executive audiences. Highly organised, documentation-focused, and detail-oriented. Certifications: CISM (essential), CRISC, ISO 27001 Lead Implementer / Auditor, CISSP or CGEIT (advantageous), DORA / NIST CSF training desirable. Join a forward-thinking More ❯

organisation on a Head of Cyber Governance, Risk & Compliance (GRC) 📍 London or Edinburgh | Hybrid We’re looking for an experienced Head of Cyber Governance, Risk & Compliance (GRC) to lead a global team responsible for strengthening and harmonising the organisation’s cybersecurity control framework. Reporting directly to the CISO, you’ll manage a team of six covering governance … and maturity across global operations. This is a key leadership role for a strategic yet hands-on cyber risk professional with strong knowledge of frameworks such as NIST, ISO 27001, CPMI-IOSCO, and the CRI Cyber Risk Profile. What you’ll do Lead and develop a global GRC team, ensuring effective … global jurisdictions (US, UK, EU, Japan). Excellent communication skills — able to simplify complexity for executive audiences. Highly organised, documentation-focused, and detail-oriented. Certifications: CISM (essential), CRISC, ISO 27001 Lead Implementer / Auditor, CISSP or CGEIT (advantageous), DORA / NIST CSF training desirable. Join a forward-thinking More ❯

you enjoy simplifying regulatory challenges, designing pragmatic governance models, and influencing security strategy at scale this could be your next move. Key Responsibilities Translate international standards (NIST CSF, ISO 27001, GDPR, SOC 2, PCI DSS, CSA CCM) into actionable policies and controls. Design and implement unified compliance frameworks across cloud, hybrid, and enterprise systems. … Lead internal and external audits, certification readiness, and regulatory assurance activities. Conduct risk assessments, control testing, and third-party assurance programs. Stay ahead of evolving regulations, standards, and automation opportunities. Prepare and deliver executive-level compliance reports and dashboards. Mentor junior consultants and collaborate closely with cross-functional teams. What We’re Looking For 6–8+ years … knowledge of compliance automation tools (ServiceNow GRC, OneTrust, Archer, or similar). Excellent communication and stakeholder management skills, including C-level engagement. Preferred Certifications CISM, CISA, CRISC, CISSP, ISO 27001 Lead Implementer / Auditor, CCSK, AWS Security Specialty, GDPR Practitioner. If you’re a cybersecurity professional passionate about More ❯

you enjoy simplifying regulatory challenges, designing pragmatic governance models, and influencing security strategy at scale this could be your next move. Key Responsibilities Translate international standards (NIST CSF, ISO 27001, GDPR, SOC 2, PCI DSS, CSA CCM) into actionable policies and controls. Design and implement unified compliance frameworks across cloud, hybrid, and enterprise systems. … Lead internal and external audits, certification readiness, and regulatory assurance activities. Conduct risk assessments, control testing, and third-party assurance programs. Stay ahead of evolving regulations, standards, and automation opportunities. Prepare and deliver executive-level compliance reports and dashboards. Mentor junior consultants and collaborate closely with cross-functional teams. What We’re Looking For 6–8+ years … knowledge of compliance automation tools (ServiceNow GRC, OneTrust, Archer, or similar). Excellent communication and stakeholder management skills, including C-level engagement. Preferred Certifications CISM, CISA, CRISC, CISSP, ISO 27001 Lead Implementer / Auditor, CCSK, AWS Security Specialty, GDPR Practitioner. If you’re a cybersecurity professional passionate about More ❯

you enjoy simplifying regulatory challenges, designing pragmatic governance models, and influencing security strategy at scale this could be your next move. Key Responsibilities Translate international standards (NIST CSF, ISO 27001, GDPR, SOC 2, PCI DSS, CSA CCM) into actionable policies and controls. Design and implement unified compliance frameworks across cloud, hybrid, and enterprise systems. … Lead internal and external audits, certification readiness, and regulatory assurance activities. Conduct risk assessments, control testing, and third-party assurance programs. Stay ahead of evolving regulations, standards, and automation opportunities. Prepare and deliver executive-level compliance reports and dashboards. Mentor junior consultants and collaborate closely with cross-functional teams. What We’re Looking For 6–8+ years … knowledge of compliance automation tools (ServiceNow GRC, OneTrust, Archer, or similar). Excellent communication and stakeholder management skills, including C-level engagement. Preferred Certifications CISM, CISA, CRISC, CISSP, ISO 27001 Lead Implementer / Auditor, CCSK, AWS Security Specialty, GDPR Practitioner. If you’re a cybersecurity professional passionate about More ❯

you enjoy simplifying regulatory challenges, designing pragmatic governance models, and influencing security strategy at scale this could be your next move. Key Responsibilities Translate international standards (NIST CSF, ISO 27001, GDPR, SOC 2, PCI DSS, CSA CCM) into actionable policies and controls. Design and implement unified compliance frameworks across cloud, hybrid, and enterprise systems. … Lead internal and external audits, certification readiness, and regulatory assurance activities. Conduct risk assessments, control testing, and third-party assurance programs. Stay ahead of evolving regulations, standards, and automation opportunities. Prepare and deliver executive-level compliance reports and dashboards. Mentor junior consultants and collaborate closely with cross-functional teams. What We’re Looking For 6–8+ years … knowledge of compliance automation tools (ServiceNow GRC, OneTrust, Archer, or similar). Excellent communication and stakeholder management skills, including C-level engagement. Preferred Certifications CISM, CISA, CRISC, CISSP, ISO 27001 Lead Implementer / Auditor, CCSK, AWS Security Specialty, GDPR Practitioner. If you’re a cybersecurity professional passionate about More ❯

you enjoy simplifying regulatory challenges, designing pragmatic governance models, and influencing security strategy at scale this could be your next move. Key Responsibilities Translate international standards (NIST CSF, ISO 27001, GDPR, SOC 2, PCI DSS, CSA CCM) into actionable policies and controls. Design and implement unified compliance frameworks across cloud, hybrid, and enterprise systems. … Lead internal and external audits, certification readiness, and regulatory assurance activities. Conduct risk assessments, control testing, and third-party assurance programs. Stay ahead of evolving regulations, standards, and automation opportunities. Prepare and deliver executive-level compliance reports and dashboards. Mentor junior consultants and collaborate closely with cross-functional teams. What We’re Looking For 6–8+ years … knowledge of compliance automation tools (ServiceNow GRC, OneTrust, Archer, or similar). Excellent communication and stakeholder management skills, including C-level engagement. Preferred Certifications CISM, CISA, CRISC, CISSP, ISO 27001 Lead Implementer / Auditor, CCSK, AWS Security Specialty, GDPR Practitioner. If you’re a cybersecurity professional passionate about More ❯

environments. If you enjoy simplifying regulatory challenges, designing pragmatic governance models, and influencing security strategy at scale this could be your next move. Translate international standards (NIST CSF, ISO 27001, GDPR, SOC 2, PCI DSS, CSA CCM) into actionable policies and controls. Design and implement unified compliance frameworks across cloud, hybrid, and enterprise systems. … Lead internal and external audits, certification readiness, and regulatory assurance activities. Conduct risk assessments, control testing, and third-party assurance programs. Prepare and deliver executive-level compliance reports and dashboards. 68+ years experience in cybersecurity governance, risk, and compliance. Strong background in GDPR and data protection frameworks (European experience preferred). Hands-on experience with major cloud … environments (AWS, Azure, or GCP). Strong knowledge of compliance automation tools (ServiceNow GRC, OneTrust, Archer, or similar). CISM, CISA, CRISC, CISSP, ISO 27001 Lead Implementer / Auditor, CCSK, AWS Security Specialty, GDPR Practitioner. If youre a cybersecurity professional passionate about compliance and looking to take on More ❯

a fast-paced environment, and want to make real impact at Europe’s leading frozen food company. Responsibilities: Overseeing cyber security governance efforts, ensuring alignment with frameworks like ISO 27001, NIST, NIS2 and GDPR, and regulatory standards. Identify, assess, and mitigate security risks across the organisation. Implement and maintain risk management processes, ensuring effective … skillset required for this position are: Graduate level in Cyber Security, Computer Science or similar. CRISC, CISM, CRM, CISA, CCP Practitioner SIRA, ISO / IEC 27001 Lead Auditor, or similar. 3-5 years’ experience in cyber governance, risk and compliance roles, preferably in the FMCG sector. What More ❯

in regulated or high-availability environments (e.g., aviation, manufacturing, critical infrastructure) is advantageous but not essential. Desirable certifications: CISSP, CISM, or CISA. SABSA, TOGAF, or other architecture certifications. ISO 27001 Lead Auditor / Implementer. Azure cloud certifications. Why join our client: You’ll be part of a forward More ❯

in regulated or high-availability environments (e.g., aviation, manufacturing, critical infrastructure) is advantageous but not essential. Desirable certifications: CISSP, CISM, or CISA. SABSA, TOGAF, or other architecture certifications. ISO 27001 Lead Auditor / Implementer. Azure cloud certifications. Why join our client: You’ll be part of a forward More ❯

in regulated or high-availability environments (e.g., aviation, manufacturing, critical infrastructure) is advantageous but not essential. Desirable certifications: CISSP, CISM, or CISA. SABSA, TOGAF, or other architecture certifications. ISO 27001 Lead Auditor / Implementer. Azure cloud certifications. Why join our client: You’ll be part of a forward More ❯

Architect – Key Skills Required Active and valid SC clearance (mandatory) Proven experience in security governance, risk, and architecture Strong understanding of security assurance frameworks Demonstrable experience as an ISO 27001 Lead Auditor or similar Excellent communication, reporting, and stakeholder engagement skills Desirable / Bonus CISSP, CISM, CISP, TOGAF More ❯

confidence. Your impact is visible: safeguarding revenue, supporting market expansion, and enhancing company reputation for digital trust. My client is a leading Telecoms provider, looking for an experienced Lead Security Compliance Manager - responsible for leading the ongoing management, improvement, and compliance of the Information Security Management System (ISMS) across a complex technology environment. Acting as the go … Security, and Internal Audit teams. Continually improve the ISMS and compliance regime, including mergers / acquisitions. Analyse and interpret emerging compliance standards; bridge any gaps to maintain alignment. Lead preparation and coordination of external audits, ensuring efficient and effective execution. Evaluate maturity of NIST controls and support resilience activities. Document and manage Ofcom queries relating to the … Telecom Security Act (TSA). Qualifications & Professional Skills Essential: ISO27001 Lead Auditor / Implementer, PCI Implementer, CISA. Highly desirable: ISO22301 Lead Auditor / Implementer, CISSP, CISM, CRISC. Telecoms experience and TSA awareness highly valued. Robert Walters Operations Limited is an employment business and employment agency and welcomes applications More ❯

Drives organisation-wide security governance and cyber maturity through standards compliance, assurance reviews, and gap analysis, be that Arriva policies and standards or industry recognised certifications such as ISO / IEC 27001, Cyber Essentials, NIS CAF, NIST CSF, CIS Controls. Oversees the development of a scalable Operational Technology (OT) Security Assurance Framework, including … Awareness Programme, including training strategy, annual compliance training content, communications plan, roadshows, and ongoing engagement. Knowledge, skills & experience Practitioner qualifications e.g. CISSP certification, CESG Listed Advisor (CLAS), ISO27001 Lead Auditor, Certified Information Security Manager (CISM) Knowledge of all areas of Cyber Security Evidencable extensive experience in information security or IT governance roles, including proven … cultural change, and increased risk literacy across organisations. Familiarity with audit lifecycles, regulatory compliance, control assurance, and data protection including a deep understanding of security control frameworks (e.g., ISO / IEC 27001, Cyber Essentials, NIS CAF, NIST CSF, CIS Controls, PCI-DSS). Knowledge of all areas of IT Security, including cyber security More ❯

management practices is desirable. Whilst not essential, one of the following qualifications is highly desirable: CISMP – Certificate In Information Security Management Principles CISM – Certified Information Security Manager ISO27001 Lead Auditor ISO27005 Certificated Security Risk Manager CSMP – Certified Security Management Professional Whilst not essential, understanding / experience of UK MoD Defence Conditions would be beneficial. More ❯

technology consultancy delivering mission-critical solutions across government, defence, and regulated industries. Now, were looking for a Security & Compliance Officer to take our already strong governance frameworks and lead them to the next level. With ISO27001, ISO9001, Cyber Essentials+ and other accreditations under our belt, were now targeting the Industry Personnel Security Assurance (IPSA) standardand we need … readiness for external assessments Supporting our Security Controller with personnel vetting and supply chain assurance Investigating breaches and delivering real-world, effective remediations What Were Looking For ISO27001 Lead Auditor level expertise Experience in building and maturing compliance systems (not just maintaining them) Knowledge of the UK Government security regime Analytical mindset, strong communication … hand in hand. Youll be at the centre of compliance in a business where it really matters. If youre passionate about security, proactive about risk, and ready to lead from the frontwe want to hear from you. Apply now or reach out to our team for a confidential chat. More ❯

consultancy delivering mission-critical solutions across government, defence, and regulated industries. Now, we’re looking for a Security & Compliance Officer to take our already strong governance frameworks and lead them to the next level. With ISO27001, ISO9001, Cyber Essentials+ and other accreditations under our belt, we’re now targeting the Industry Personnel Security Assurance (IPSA) standard—and … for external assessments Supporting our Security Controller with personnel vetting and supply chain assurance Investigating breaches and delivering real-world, effective remediations What We’re Looking For ISO27001 Lead Auditor level expertise Experience in building and maturing compliance systems (not just maintaining them) Knowledge of the UK Government security regime Analytical mindset, strong communication … hand. You’ll be at the centre of compliance in a business where it really matters. If you’re passionate about security, proactive about risk, and ready to lead from the front—we want to hear from you. Apply now or reach out to our team for a confidential chat. More ❯

consultancy delivering mission-critical solutions across government, defence, and regulated industries. Now, we’re looking for a Security & Compliance Officer to take our already strong governance frameworks and lead them to the next level. With ISO27001, ISO9001, Cyber Essentials+ and other accreditations under our belt, we’re now targeting the Industry Personnel Security Assurance (IPSA) standard—and … for external assessments Supporting our Security Controller with personnel vetting and supply chain assurance Investigating breaches and delivering real-world, effective remediations What We’re Looking For ISO27001 Lead Auditor level expertise Experience in building and maturing compliance systems (not just maintaining them) Knowledge of the UK Government security regime Analytical mindset, strong communication … hand. You’ll be at the centre of compliance in a business where it really matters. If you’re passionate about security, proactive about risk, and ready to lead from the front—we want to hear from you. Apply now or reach out to our team for a confidential chat. More ❯

experienced security risk professional with a passion for driving strategic assurance activities in a complex organisation? We are looking for a number of Security Risk Assurance Consultant to lead a high-performing team in delivering risk-based assurance across people, processes, and technology. In this role, you will: Drive alignment between assurance activities and strategic risks Build … and the ability to interpret and communicate complex security risks to both technical and non-technical audiences. The following qualifications are desirable: CISM, CRISC, CISSP, CISA, CGEIT, ISO27001 Lead Auditor. Office locations include London / Birmingham / Manchester / Newcastle / Sheffield / Blackpool / Leeds with travel required 3 times per week. We are looking for More ❯