8 of 8 Remote ISO 27001 Lead Implementer Jobs in the UK

integrated and resold by some of the world's leading business communications vendors, as well as major payment service providers. We are currently looking for a GRC & Audit Lead to join our UK team. THE OPPORTUNITY: PCI Pal's Information Security team requires a dynamic and proactive individual to lead all Governance, Risk and … agile and innovative team and are responsible for ensuring that the confidentiality, integrity and availability (CIA) of our internal, external environments, and client solutions are always maintained. The Lead GRC & Audit function will be focused on ownership of all Information Security GRC, Audit and project initiatives, including proactive cross-functional collaboration with other variety of business stakeholders. … requirements are suitably managed, maintained and matured. YOU WILL BE RESPONSIBLE FOR: Managing, maintaining, and maturing the already established audit lifecycles for the following frameworks: PCI DSS v4.0, ISO 27001:2022, ISO 9001:2015, ISO 14001:2015, Cyber Essentials, Cyber Essentials Plus, SOC2 Type 1 – 3 & HIPAA Working More ❯

for an experienced Information Security Analyst to join our client who will play a key role in driving compliance, governance, and continual improvement across key security frameworks including ISO 27001, PCI DSS, and Cyber Essentials Plus. Key Responsibilities: * Lead on the operation and continual improvement of the Information Security Management System … ISMS) * Coordinate internal and external audit readiness for ISO 27001, PCI DSS, and Cyber Essentials Plus * Draft and update information security policies, procedures, and technical standards * Work with procurement and commercial teams to support supplier assurance and risk assessment * Contribute to tender responses and bid processes, ensuring security and compliance requirements are met * Promote … legislation and standards relating to information and cyber security Key Skills & Experience: Essential: * Background in IT, Cyber Security, Information Systems, or a related discipline * Strong working knowledge of ISO 27001, PCI DSS, and Cyber Essentials Plus * Proven ability to support and prepare for audits, including evidence collation and audit readiness * Excellent attention to detail More ❯

plans (BCP). You will work closely with colleagues in IT to enhance the technology & control frameworks regarding information security compliance & cyber threat security. Risk & Compliance You will lead the development, implementation, and continuous improvement of our Information Security Management System (ISMS) in line with ISO 27001 and other regulatory standards. … Incident & Breach Management, Risk & Control Management, Vendor & System Assurance. What you'll need to succeed You will ideally have the following experience and qualifications:Professional certifications such as ISO 27001 Lead Implementer / Auditor as well as hands-on experience with auditing and maintaining accreditation for ISO 27001:2022 You will have a strong background in enterprise risk management, information governance, compliance, and risk assessment. Excellent communication skills – both written and verbal are required – with the ability to influence and educate. Knowledge of Cyber Essentials & SOC2 or other relevant standards would also be beneficial. What you'll get in return Salary More ❯

assurance, or information security , this position provides exposure to high-impact projects within a collaborative, forward-thinking environment. Key Responsibilities Governance & Compliance: Support and maintain compliance frameworks, including ISO 27001, CAF, and other relevant standards. Risk Management: Identify, assess, and monitor security risks, ensuring effective mitigation and continuous improvement within the ISMS. Audit & Assurance … functions to support security governance objectives. Skills & Experience Essential: Experience within GRC, assurance, risk management , or information security . Understanding of risk assessment methodologies and compliance frameworks (e.g. ISO 27001, CAF, NIST). Strong communication and reporting skills, with the ability to produce clear, concise documentation. Excellent organisation and prioritisation skills with attention to … Knowledge of GDPR , Data Protection Act 2018 , or similar legislation. Degree in Cybersecurity, Information Security, or a related field . Professional certifications such as CISA , CISM , CISSP , or ISO 27001 Lead Implementer / Auditor . Benefits Competitive salary and comprehensive benefits package. Flexible hybrid working arrangements. Access to More ❯

assurance, or information security , this position provides exposure to high-impact projects within a collaborative, forward-thinking environment. Key Responsibilities Governance & Compliance: Support and maintain compliance frameworks, including ISO 27001, CAF, and other relevant standards. Risk Management: Identify, assess, and monitor security risks, ensuring effective mitigation and continuous improvement within the ISMS. Audit & Assurance … functions to support security governance objectives. Skills & Experience Essential: Experience within GRC, assurance, risk management , or information security . Understanding of risk assessment methodologies and compliance frameworks (e.g. ISO 27001, CAF, NIST). Strong communication and reporting skills, with the ability to produce clear, concise documentation. Excellent organisation and prioritisation skills with attention to … Knowledge of GDPR , Data Protection Act 2018 , or similar legislation. Degree in Cybersecurity, Information Security, or a related field . Professional certifications such as CISA , CISM , CISSP , or ISO 27001 Lead Implementer / Auditor . Benefits Competitive salary and comprehensive benefits package. Flexible hybrid working arrangements. Access to More ❯

our company, or if you have not taken steps to pursue Chartered Cyber Security Professional (ChCSP) status. This is a senior role for an experienced consultant who can lead engagements, provide authoritative advice, and help shape our cyber security services. You will work primarily in Audit & Assurance and Risk & Compliance, with the opportunity to contribute to Incident … Response where needed. There will also be opportunities to define and lead other areas of cyber security. What youll be doing Lead and deliver client engagements across governance, risk and compliance (GRC), including audits, assessments and improvement plans aligned to frameworks such as ISO / IEC 27001 … NCSC CAF, and PCI DSS. Lead independent assurance, review and test security policies, procedures and controls; identify gaps; and recommend pragmatic remediation strategies. Develop and present security strategies that enhance resilience and reduce risk, tailored to client environments. Engage stakeholders, facilitate workshops, brief senior leaders, and build trusted relationships across client and supplier teams. Produce high-quality More ❯

with a great benefit package also. This Information Security Analyst (GRC) role would suit someone with experience with information security risk assessments, reporting risks and who holds the ISO 27001 lead implementer / auditor certification. Any other certifications that you hold will be beneficial. Experience dealing with non More ❯

stakeholders and establish yourself as a core member of their security function. Take ownership of client-specific Security Improvement Plans, ensuring risks are reduced and resilience is increased. Lead governance and oversight activities, including risk reviews, board-level reporting, and mentoring client teams. Carry out security reviews across cloud, hybrid, and on-premises environments, identifying vulnerabilities and … improvement areas. Work closely with SOC teams to review threat hunting outcomes and ensure remediation of poor practices. Provide guidance on compliance and frameworks such as ISO 27001, Cyber Assessment Framework (CAF), and Cyber Essentials. Contribute to incident readiness and response as part of the Cyber Security Incident Response Team (CSIRT). Actively contribute … board level. Hands-on experience with cloud and hybrid architectures, audits, and security assessments. Incident response and crisis management experience is a plus. Holding CISSP / CISM ISO27001 Lead implementer What’s on Offer Salary up to £80,000 Fully remote role with flexibility to travel to client sites when required Opportunity to work More ❯