13 of 13 ISO 27001 Lead Implementer Jobs in the UK

Remote My Customer is looking for an experienced GRC Analyst to join the organisation to strengthen governance, risk, and compliance practices and will lead the delivery of ISO 27001 certification within the next 12 months . The GRC Analyst will focus … maintaining current ISO and SOC 2 standards within the business. Technical understanding would be beneficial but not essential. Knowledge of the requirements of the above standards in relation to contracts and vendor relationships is essential. Key Skills & Experience from the GRC Analyst: Proven experience ...

support the existing IT Security Manager to improve and maintain their governance, risk and compliance (GRC) capability and help us continually improve our ISO 27001 Information Security Management System (ISMS). The role is full-time, with a hybrid working pattern usually around … expertise across both public and private sector programmes-particularly UK government and construction. Own and improve our ISMS: Develop, implement and maintain our ISO 27001 aligned ISMS, report on control effectiveness and drive continuous improvement. Run regular security risk assessments and gap analyses ...

including: Security Frameworks & Audits: Lead the management and continuous improvement of security frameworks (e.g., ISO / IEC 27001, Cyber Essentials ). Drive all certification and re-certification efforts, including Cyber Essentials Plus and ISO 27001 … Bring: Experience & Knowledge 5+ years of hands-on experience in information security governance, risk, and compliance (GRC). Proven ability to lead and maintain ISO 27001 programs. Demonstrated success with certification efforts and compliance standards across EMEA, the Americas, and Asia ...

What You'll Be Doing Own and manage all information security incidents & organisational risks Maintain and evolve our Information Security Management System (ISMS) Lead policy creation, updates, and compliance tracking Drive continuous improvement of security practices and behaviours Ensure compliance with ISO 27001 … incident management, risk governance, and practical InfoSec delivery Ability to embed security into modern software development and cloud environments Strong knowledge of ISO 27001, Cyber Essentials Plus, and UK regulatory requirements Excellent communication skills—confident translating security for all audiences Comfortable working remotely ...

start on or before Monday, 23 rd February.In order to be suitable for this position you must have proven experience of implementing ISO 27001 and have a solid understanding of NIS 2 and PCI DSS. You will ideally be a certified ISO … 27001 Lead Implementer and must have proven implementation and audit experience. You will have a detailed knowledge of risk methodologies, coupled with technical experience of systems, networks and security architectures which will enable you to evaluate risk and assess the effectiveness ...

ONLYKey Responsibilities Lead and continuously improve The organisation's third-party cyber risk assurance process, covering onboarding, risk assessment, due diligence, and ongoing monitoring. Develop and maintain a robust vendor criticality assessment model, ensuring assurance activities are aligned to supplier risk level. Define and own due diligence … certifications such as CISSP, CISM, CRISC, ISO 27001 Lead Implementer / Lead Auditor, or equivalent. Experience working in regulated industries and applying regulatory expectations to third-party assurance programmes. Proven experience designing, executing, and improving ...

advice. You’ll join a high‐performing, non‐hierarchical team where your expertise will be valued and your development actively supported. You will lead and deliver cyber security projects across domains such as risk management, governance, security architecture, and operations. This role is ideal for someone … combines deep cyber expertise with strong consulting skills and the ability to translate technical issues into business impact. Lead end‐to‐end delivery of cyber security engagements, from planning through execution and reporting. Assess client cyber maturity, identify risks, and evaluate control effectiveness. Design pragmatic, business‐aligned ...

Cyber Architect, or vCISO Experience designing and governing vulnerability management programmes Relevant certifications such as Microsoft 365 Fundamentals, Azure Fundamentals, CISSP or CISM, ISO 27001 Lead Implementer / Auditor, SABSA, or similar What’s on Offer Competitive salary ...

Cyber Architect, or vCISO Experience designing and governing vulnerability management programmes Relevant certifications such as Microsoft 365 Fundamentals, Azure Fundamentals, CISSP or CISM, ISO 27001 Lead Implementer / Auditor, SABSA, or similar Whats on Offer Competitive salary ...

client is hiring for an experienced Third-Party Risk Management (TPRM) Consultant to lead and support client engagements across the Insurance sector, advising on the design, implementation, and optimisation of third-party risk management programmes. You will ideally be a TPRM Subject Matter Expert with a strong … hybrid basis with 3 days in the office per week. Salary ranges between £55K - £63K + Bonus + Full Benefits. Responsibilities: * Lead and deliver TPRM advisory engagements for Insurance clients, including programme design, maturity assessments, and regulatory gap analysis * Design and enhance end-to-end TPRM frameworks ...

processes. Managing digital access requests + supporting Joiner / Mover / Leaver processes to maintain secure access controls. Security Certifications (CISSP, CISM, CCSP, ISO 27001 Lead Auditor / Implementer), or similar. Experience of Critical National Infrastructure ...

processes. Managing digital access requests + supporting Joiner / Mover / Leaver processes to maintain secure access controls. Security Certifications (CISSP, CISM, CCSP, ISO 27001 Lead Auditor / Implementer), or similar. Experience of Critical National Infrastructure ...

seeking an experiencedData Compliance Lead to drive our organisation’s compliance, governance, and data protection strategy. This role will play a key part in ensuring our business meets regulatory obligations, maintains strong security practices, and embeds compliance-by-design across all operations and product lines.This … organisation’s Data Protection Officer (DPO) and act as the main point of contact for regulatory bodies such as the ICO. Lead compliance activities across key frameworks including GDPR, HIPAA, ISO27001, Cyber Essentials Plus, and emerging standards. Manage and evolve the organisation’s Information Security Management System ...