1 to 25 of 84 ISO 27001 Lead Implementer Jobs in the UK

dedicated Cyber Security? We have an exciting opportunity for an Information Security Consultant looking to elevate their career. We're looking for someone with hands-on experience in ISO 27001 implementation and auditing, and expertise in NIST to drive our Compliance Team's service offerings forward. Work with a innovative, industry-leading Cyber Security … to build relationships with internal and external stakeholders Hands-on experience in ISO27001 implementation and auditing Eligibility for Security Clearance Certifications Preferred: ISO / IEC 27001 Lead Implementer ISO / IEC 27001 Internal Auditor CISM / CISSP Salary & Benefits More ❯

information security , Risk Management, or Compliance is a plus. Certifications (Highly Valued) CISSP (Certified Information Systems Security Professional) CISM (Certified Information Security Manager) CISA (Certified Information Systems Auditor) ISO 27001 Lead Auditor / Implementer CRISC (Certified in Risk and Information Systems Control) GDPR Certification (e.g., IAPP CIPP / … Experience Requirements: 3-5+ years of experience in Information Security, Compliance, or IT Risk Management. Experience with regulatory frameworks in UK & EU : GDPR (General Data Protection Regulation) ISO 27001 (Information Security Management Systems) Cyber Essentials Plus (UK government-backed security framework) DORA (Digital Operational Resilience Act) - EU financial sector PCI-DSS (if handling … Key Skills & Technical Knowledge: Deep understanding of data protection laws (UK GDPR, EU GDPR, DPA 2018) . Familiarity with risk management frameworks like NIST CSF, CIS Controls, and ISO 27005 . Experience with cyber security tools (e.g., SIEM, Malware Protection, Firewalls and others) is a plus. Strong reporting and communication skills-ability to brief executives and regulators. More ❯

opportunities for improvement directly to senior management. Responsibilities : Cyber Security Strategy & Governance Implement and refine the organisation’s cyber security strategy, aligned with business objectives and risk appetite. Lead the development and maintenance of a comprehensive Information Security Management System (ISMS). Define and review metrics and KPIs to monitor the effectiveness of security controls. Policy Management … relevant security frameworks, data protection laws (e.g. GDPR), and industry standards. Manage internal and external security audits, penetration tests, and vulnerability assessments. Maintain records of security incidents and lead post-incident reviews and continuous improvements. Drive an organisation-wide security awareness program to foster a proactive security culture. Deliver targeted training for teams and departments based on … budgeting. Qualifications : Proven experience in a similar Information Security Management or Cyber Risk role. Strong understanding of information security principles, risk management frameworks, and industry best practices (e.g. ISO 27001, NIST, CIS). Demonstrated experience in drafting and implementing security policies and procedures. Strong communication skills with the ability to engage both technical and More ❯

manage internal and external Security Working Groups. Support Serco Defence projects and design activities, ensuring compliance with MOD Secure by Design, HMG policy, NCSC guidance, NIST 800, and ISO 27001. Advise on technical requirements and compliance with formal contract security schedules (Security Aspects Letters) and recommend security technologies and controls. Provide advice and guidance to maintain existing … cyber security compliances (e.g., ISO 27001, Cyber Essentials Plus), MOD certifications, and HMG security controls. Adopt a proactive approach to security management and assurance coordination, ensuring smooth running of scheduled activities and gaining trust of key stakeholders. Engage with external audit and assurance providers, scope test plans, help stakeholders interpret test results, and support … breaches. What you’ll need: In-depth knowledge and experience with MOD policies and standards, including Secure by Design, JSP 440, and DefStan 05-138 / DCPP. ISO27001 Lead Implementer / Auditor, CISSP or CISM. Strong understanding of data protection compliance and relevant privacy certifications. Proficiency in risk management using recognised frameworks like NIST. More ❯

opportunities for improvement directly to senior management. Responsibilities : Cyber Security Strategy & Governance Implement and refine the organisation’s cyber security strategy, aligned with business objectives and risk appetite. Lead the development and maintenance of a comprehensive Information Security Management System (ISMS). Define and review metrics and KPIs to monitor the effectiveness of security controls. Policy Management … relevant security frameworks, data protection laws (e.g. GDPR), and industry standards. Manage internal and external security audits, penetration tests, and vulnerability assessments. Maintain records of security incidents and lead post-incident reviews and continuous improvements. Training & Awareness Drive an organisation-wide security awareness program to foster a proactive security culture. Deliver targeted training for teams and departments … budgeting. Qualifications : Proven experience in a similar Information Security Management or Cyber Risk role. Strong understanding of information security principles, risk management frameworks, and industry best practices (e.g. ISO 27001, NIST, CIS). Demonstrated experience in drafting and implementing security policies and procedures. Strong communication skills with the ability to engage both technical and More ❯

opportunities for improvement directly to senior management. Responsibilities : Cyber Security Strategy & Governance Implement and refine the organisation’s cyber security strategy, aligned with business objectives and risk appetite. Lead the development and maintenance of a comprehensive Information Security Management System (ISMS). Define and review metrics and KPIs to monitor the effectiveness of security controls. Policy Management … relevant security frameworks, data protection laws (e.g. GDPR), and industry standards. Manage internal and external security audits, penetration tests, and vulnerability assessments. Maintain records of security incidents and lead post-incident reviews and continuous improvements. Training & Awareness Drive an organisation-wide security awareness program to foster a proactive security culture. Deliver targeted training for teams and departments … budgeting. Qualifications : Proven experience in a similar Information Security Management or Cyber Risk role. Strong understanding of information security principles, risk management frameworks, and industry best practices (e.g. ISO 27001, NIST, CIS). Demonstrated experience in drafting and implementing security policies and procedures. Strong communication skills with the ability to engage both technical and More ❯

opportunities for improvement directly to senior management. Responsibilities : Cyber Security Strategy & Governance Implement and refine the organisation’s cyber security strategy, aligned with business objectives and risk appetite. Lead the development and maintenance of a comprehensive Information Security Management System (ISMS). Define and review metrics and KPIs to monitor the effectiveness of security controls. Policy Management … relevant security frameworks, data protection laws (e.g. GDPR), and industry standards. Manage internal and external security audits, penetration tests, and vulnerability assessments. Maintain records of security incidents and lead post-incident reviews and continuous improvements. Training & Awareness Drive an organisation-wide security awareness program to foster a proactive security culture. Deliver targeted training for teams and departments … budgeting. Qualifications : Proven experience in a similar Information Security Management or Cyber Risk role. Strong understanding of information security principles, risk management frameworks, and industry best practices (e.g. ISO 27001, NIST, CIS). Demonstrated experience in drafting and implementing security policies and procedures. Strong communication skills with the ability to engage both technical and More ❯

expertise in information security to provide strategic guidance to clients on GRC activities, as well as on achieving their cyber and information security objectives. You will take the lead in managing technical consulting engagements and contribute to the successful delivery of complex security programs. Responsibilities Apply a strong knowledge of the cyber threats, hazards, risks, controls, and … cyber security threats and regulatory requirements relevant to their organisation. Design and deliver information security, cyber resilience and maturity assessments tailored to customer’s organisational and compliance needs. Lead and advise customers on the design, implementation and adoption of information security policies, procedures. Understand relevant frameworks for managing different areas of Information security, risk management and data … GRC initiatives to strengthen and manage information security frameworks Possess strong stakeholder engagement and management skills Hold relevant academic or professional certifications e.g. CISM, CISSP, PCIRM, MSc, ISO27001 (lead implementer / auditor), CIPPE Have the right to work in the UK and are eligible for UK security clearance What we look for in our More ❯

approval, candidates may be permitted to start the role prior to clearance being fully completed. Role Overview: We are seeking a highly experienced Senior Information Assurance Consultant to lead the development and implementation of security management processes for a new, high-profile service. This role will be instrumental in establishing and integrating a comprehensive Information Security Management … working on a critical and impactful programme. As the role involves working with sensitive information, eligibility for SC clearance or holding active SC clearance is essential. Key Responsibilities: Lead the design and implementation of security management processes for a new service offering. Develop and maintain a unified ISMS aligned with ISO / IEC 27001, NIST, PRISMA, and CoBIT frameworks. Conduct gap analyses and risk assessments to ensure compliance with relevant security standards and regulatory requirements. Collaborate with stakeholders across technical and business teams to embed security best practices throughout the service lifecycle. Provide expert guidance on information assurance, governance, and risk management strategies. Support audit and certification activities, ensuring More ❯

approval, candidates may be permitted to start the role prior to clearance being fully completed. Role Overview: We are seeking a highly experienced Senior Information Assurance Consultant to lead the development and implementation of security management processes for a new, high-profile service. This role will be instrumental in establishing and integrating a comprehensive Information Security Management … working on a critical and impactful programme. As the role involves working with sensitive information, eligibility for SC clearance or holding active SC clearance is essential. Key Responsibilities: Lead the design and implementation of security management processes for a new service offering. Develop and maintain a unified ISMS aligned with ISO / IEC 27001, NIST, PRISMA, and CoBIT frameworks. Conduct gap analyses and risk assessments to ensure compliance with relevant security standards and regulatory requirements. Collaborate with stakeholders across technical and business teams to embed security best practices throughout the service lifecycle. Provide expert guidance on information assurance, governance, and risk management strategies. Support audit and certification activities, ensuring More ❯

approval, candidates may be permitted to start the role prior to clearance being fully completed. Role Overview: We are seeking a highly experienced Senior Information Assurance Consultant to lead the development and implementation of security management processes for a new, high-profile service. This role will be instrumental in establishing and integrating a comprehensive Information Security Management … working on a critical and impactful programme. As the role involves working with sensitive information, eligibility for SC clearance or holding active SC clearance is essential. Key Responsibilities: Lead the design and implementation of security management processes for a new service offering. Develop and maintain a unified ISMS aligned with ISO / IEC 27001, NIST, PRISMA, and CoBIT frameworks. Conduct gap analyses and risk assessments to ensure compliance with relevant security standards and regulatory requirements. Collaborate with stakeholders across technical and business teams to embed security best practices throughout the service lifecycle. Provide expert guidance on information assurance, governance, and risk management strategies. Support audit and certification activities, ensuring More ❯

approval, candidates may be permitted to start the role prior to clearance being fully completed. Role Overview: We are seeking a highly experienced Senior Information Assurance Consultant to lead the development and implementation of security management processes for a new, high-profile service. This role will be instrumental in establishing and integrating a comprehensive Information Security Management … working on a critical and impactful programme. As the role involves working with sensitive information, eligibility for SC clearance or holding active SC clearance is essential. Key Responsibilities: Lead the design and implementation of security management processes for a new service offering. Develop and maintain a unified ISMS aligned with ISO / IEC 27001, NIST, PRISMA, and CoBIT frameworks. Conduct gap analyses and risk assessments to ensure compliance with relevant security standards and regulatory requirements. Collaborate with stakeholders across technical and business teams to embed security best practices throughout the service lifecycle. Provide expert guidance on information assurance, governance, and risk management strategies. Support audit and certification activities, ensuring More ❯

approval, candidates may be permitted to start the role prior to clearance being fully completed. Role Overview: We are seeking a highly experienced Senior Information Assurance Consultant to lead the development and implementation of security management processes for a new, high-profile service. This role will be instrumental in establishing and integrating a comprehensive Information Security Management … working on a critical and impactful programme. As the role involves working with sensitive information, eligibility for SC clearance or holding active SC clearance is essential. Key Responsibilities: Lead the design and implementation of security management processes for a new service offering. Develop and maintain a unified ISMS aligned with ISO / IEC 27001, NIST, PRISMA, and CoBIT frameworks. Conduct gap analyses and risk assessments to ensure compliance with relevant security standards and regulatory requirements. Collaborate with stakeholders across technical and business teams to embed security best practices throughout the service lifecycle. Provide expert guidance on information assurance, governance, and risk management strategies. Support audit and certification activities, ensuring More ❯

approval, candidates may be permitted to start the role prior to clearance being fully completed. Role Overview: We are seeking a highly experienced Senior Information Assurance Consultant to lead the development and implementation of security management processes for a new, high-profile service. This role will be instrumental in establishing and integrating a comprehensive Information Security Management … working on a critical and impactful programme. As the role involves working with sensitive information, eligibility for SC clearance or holding active SC clearance is essential. Key Responsibilities: Lead the design and implementation of security management processes for a new service offering. Develop and maintain a unified ISMS aligned with ISO / IEC 27001, NIST, PRISMA, and CoBIT frameworks. Conduct gap analyses and risk assessments to ensure compliance with relevant security standards and regulatory requirements. Collaborate with stakeholders across technical and business teams to embed security best practices throughout the service lifecycle. Provide expert guidance on information assurance, governance, and risk management strategies. Support audit and certification activities, ensuring More ❯

approval, candidates may be permitted to start the role prior to clearance being fully completed. Role Overview: We are seeking a highly experienced Senior Information Assurance Consultant to lead the development and implementation of security management processes for a new, high-profile service. This role will be instrumental in establishing and integrating a comprehensive Information Security Management … working on a critical and impactful programme. As the role involves working with sensitive information, eligibility for SC clearance or holding active SC clearance is essential. Key Responsibilities: Lead the design and implementation of security management processes for a new service offering. Develop and maintain a unified ISMS aligned with ISO / IEC 27001, NIST, PRISMA, and CoBIT frameworks. Conduct gap analyses and risk assessments to ensure compliance with relevant security standards and regulatory requirements. Collaborate with stakeholders across technical and business teams to embed security best practices throughout the service lifecycle. Provide expert guidance on information assurance, governance, and risk management strategies. Support audit and certification activities, ensuring More ❯

approval, candidates may be permitted to start the role prior to clearance being fully completed. Role Overview: We are seeking a highly experienced Senior Information Assurance Consultant to lead the development and implementation of security management processes for a new, high-profile service. This role will be instrumental in establishing and integrating a comprehensive Information Security Management … working on a critical and impactful programme. As the role involves working with sensitive information, eligibility for SC clearance or holding active SC clearance is essential. Key Responsibilities: Lead the design and implementation of security management processes for a new service offering. Develop and maintain a unified ISMS aligned with ISO / IEC 27001, NIST, PRISMA, and CoBIT frameworks. Conduct gap analyses and risk assessments to ensure compliance with relevant security standards and regulatory requirements. Collaborate with stakeholders across technical and business teams to embed security best practices throughout the service lifecycle. Provide expert guidance on information assurance, governance, and risk management strategies. Support audit and certification activities, ensuring More ❯

approval, candidates may be permitted to start the role prior to clearance being fully completed. Role Overview: We are seeking a highly experienced Senior Information Assurance Consultant to lead the development and implementation of security management processes for a new, high-profile service. This role will be instrumental in establishing and integrating a comprehensive Information Security Management … working on a critical and impactful programme. As the role involves working with sensitive information, eligibility for SC clearance or holding active SC clearance is essential. Key Responsibilities: Lead the design and implementation of security management processes for a new service offering. Develop and maintain a unified ISMS aligned with ISO / IEC 27001, NIST, PRISMA, and CoBIT frameworks. Conduct gap analyses and risk assessments to ensure compliance with relevant security standards and regulatory requirements. Collaborate with stakeholders across technical and business teams to embed security best practices throughout the service lifecycle. Provide expert guidance on information assurance, governance, and risk management strategies. Support audit and certification activities, ensuring More ❯

approval, candidates may be permitted to start the role prior to clearance being fully completed. Role Overview: We are seeking a highly experienced Senior Information Assurance Consultant to lead the development and implementation of security management processes for a new, high-profile service. This role will be instrumental in establishing and integrating a comprehensive Information Security Management … working on a critical and impactful programme. As the role involves working with sensitive information, eligibility for SC clearance or holding active SC clearance is essential. Key Responsibilities: Lead the design and implementation of security management processes for a new service offering. Develop and maintain a unified ISMS aligned with ISO / IEC 27001, NIST, PRISMA, and CoBIT frameworks. Conduct gap analyses and risk assessments to ensure compliance with relevant security standards and regulatory requirements. Collaborate with stakeholders across technical and business teams to embed security best practices throughout the service lifecycle. Provide expert guidance on information assurance, governance, and risk management strategies. Support audit and certification activities, ensuring More ❯

approval, candidates may be permitted to start the role prior to clearance being fully completed. Role Overview: We are seeking a highly experienced Senior Information Assurance Consultant to lead the development and implementation of security management processes for a new, high-profile service. This role will be instrumental in establishing and integrating a comprehensive Information Security Management … working on a critical and impactful programme. As the role involves working with sensitive information, eligibility for SC clearance or holding active SC clearance is essential. Key Responsibilities: Lead the design and implementation of security management processes for a new service offering. Develop and maintain a unified ISMS aligned with ISO / IEC 27001, NIST, PRISMA, and CoBIT frameworks. Conduct gap analyses and risk assessments to ensure compliance with relevant security standards and regulatory requirements. Collaborate with stakeholders across technical and business teams to embed security best practices throughout the service lifecycle. Provide expert guidance on information assurance, governance, and risk management strategies. Support audit and certification activities, ensuring More ❯

on HSS Hire's legacy, we're blending innovation and customer-driven solutions to focus on sustainability. We're looking for an experienced Information Security & Compliance Officer to lead and evolve our security and compliance framework, protecting our customers, our data, and our business as we scale. The impact you’ll have: You’ll be the heart … regulations, ensuring our platform is resilient, secure, and trusted by every customer and supplier. A typical day: Develop and own our Information Security Management System (ISMS) aligned with ISO 27001 Maintain security policies, control frameworks, and ensure compliance with UK GDPR, Cyber Essentials Plus, PCI-DSS, and DPA Conduct risk assessments, manage our risk … register, and lead remediation actions Oversee security tooling and controls, from endpoint protection to vulnerability management Support platform and IT teams on secure design, deployments, and third-party risk Lead incident response efforts, from root cause analysis to post-incident reviews Deliver training and awareness programmes that embed a culture of security across the More ❯

Job Introduction We are seeking a skilled and motivated Information Security Lead to support the strategic and operational delivery of information security and infrastructure controls across our digital estate. Reporting to the Head of Information Security and Enterprise Architecture, this role is responsible for driving compliance with cyber and data protection standards (including DSPT, CE+, and CAF … robust security practices across business-as-usual operations and new service transitions. Working within the Information Security and Architecture team, the postholder will serve as a senior technical lead across key domains, including cyber assurance, infrastructure security, policy development, and risk mitigation. You will collaborate with technical teams, service management, suppliers, and transformation programmes to deliver a … vulnerability management. Practical experience supporting compliance with regulatory and best practice frameworks, including: Data Security and Protection Toolkit (DSPT) Cyber Essentials Plus (CE+) Cyber Assessment Framework (CAF) or ISO 27001 Ability to assess security risks, develop mitigation plans, and communicate recommendations to technical and non-technical audiences. Familiarity with NHS and public sector data More ❯

Job Title: Cyber Security Lead Location: West Midlands, United Kingdom Salary: £62,000 - £73,000 (depending on experience) + Bonus + Excellent Benefits Clearance: Must be a British National and SC Cleared or Eligible ________________________________________ About the Role: We are seeking a proactive and experienced Cyber Security Lead to drive and enhance our organisation's … across the business. You will work closely with the Security Operations Centre (SOC), senior stakeholders, and cross-functional teams to maintain a secure and resilient environment. ________________________________________ Key Responsibilities: * Lead the response to cyber security incidents, ensuring timely resolution and root cause analysis. * Oversee the development and implementation of information security compliance and assurance programmes. * Ensure alignment with … ISO 27001, NIST, and other relevant security frameworks. * Collaborate with the SOC to monitor, detect, and respond to cyber threats. * Manage governance, risk, and compliance (GRC) activities, including risk assessments and mitigation strategies. * Promote a security-first culture through internal training and mentoring. * Communicate cyber risks, strategies, and progress effectively to stakeholders. * Stay informed More ❯

development organisations and banks to move money to, from, and across often hard-to-reach markets. Job Description The Security GRC (Governance, Risk & Compliance) Manager will take the lead in developing, implementing, and continuously improving our global security governance, risk, and compliance programs. You’ll play a critical role in maintaining and achieving key security certifications, driving … is the role for you. Responsibilities: Security Frameworks: Lead the management and continuous improvement of security frameworks such as ISO / IEC 27001, NIST CSF, and others as required. Certifications & Audits: Oversee and drive certification and re-certification efforts for Cyber Essentials Plus, SOC 2 Type 2, and other relevant … and legal teams with RFPs and security-related queries. Qualifications 5+ years of hands-on experience in information security governance, risk, and compliance. Deep experience leading and maintaining ISO 27001, NIST CSF, and SOC 2 Type 2 programs. Proven track record with certification efforts like Cyber Essentials Plus and local / regional compliance standards More ❯

s Global Security Office is committed to delivering the highest standards of security and compliance. We are seeking a highly skilled and motivated Information Security Risk Manager to lead on A&M wide information security risk management program and join our dynamic and growing team based in either our London or Tampa office. Position Summary: The Information … focused on managing and maintaining the Global Security Office Information Security Risk Register, its supporting processes, governance and reporting requirements. The successful candidate requires a strong understanding of ISO 27001 security controls, exposure to the OnSpring GRC Tool and can effectively assess and communicate technical security requirements to teams across the firm. Key Responsibilities … Risk Management Leadership and Oversight: Working to A&M Policy and industry standards and lead the end-to-end information security risk management process, ensuring risks are proactively identified, assessed, recorded, and mitigated. Assess and prioritize security risks based on enterprise-wide impact, likelihood, and mitigation strategies. Act as a trusted security advisor, working cross-functionally with More ❯

Job Title: Cyber Security Lead Location: West Midlands, United Kingdom Salary: 62,000 - 73,000 (depending on experience) + Bonus + Excellent Benefits Clearance: Must be a British National and SC Cleared or Eligible About the Role: We are seeking a proactive and experienced Cyber Security Lead to drive and enhance our organisation's … across the business. You will work closely with the Security Operations Centre (SOC), senior stakeholders, and cross-functional teams to maintain a secure and resilient environment. Key Responsibilities: Lead the response to cyber security incidents, ensuring timely resolution and root cause analysis. Oversee the development and implementation of information security compliance and assurance programmes. Ensure alignment with … ISO 27001, NIST, and other relevant security frameworks. Collaborate with the SOC to monitor, detect, and respond to cyber threats. Manage governance, risk, and compliance (GRC) activities, including risk assessments and mitigation strategies. Promote a security-first culture through internal training and mentoring. Communicate cyber risks, strategies, and progress effectively to stakeholders. Stay informed More ❯