successful delivery of initiatives and projects within the Risk and Compliance environment Addressing findings from risks or audits Maintaining an accurate record of risks, events, and issues in the ISMS Supporting internal and external audit investigations Ensuring audit activities are conducted according to standards Working independently with clearly defined processes Using performance metrics to improve output Providing out-of-hours More ❯
policies, standards, and recognised best practices Identify principal InformationSecurity risks and issues across group Collaborate closely with Group CISO Assist in administering the Group's InfoSec ManagementSystem (ISMS) Manage ISO 27001 certification and associated compliance activities Engage with IT SecOps teams Participate in security-related exercises Oversee audit processes and client management responsibilities Analyse pertinent security metrics What More ❯
Birmingham, West Midlands, England, United Kingdom
Robert Walters
policies, standards, and recognised best practices Identify principal InformationSecurity risks and issues across group Collaborate closely with Group CISO Assist in administering the Group's InfoSec ManagementSystem (ISMS) Manage ISO 27001 certification and associated compliance activities Engage with IT SecOps teams Participate in security-related exercises Oversee audit processes and client management responsibilities Analyse pertinent security metrics What More ❯
their accounts. Work with the Director of Sales Ops & Customer Success to maintain and optimise the tech stack. Compliance & Security Maintain a solid understanding of InformationSecurityManagement Systems (ISMS) and ensure compliance with data protection policies and regulations. About you: Experience: Proven experience as a strategic IT advisor to senior clients, ideally as a TAM, Solutions Consultant, or Engineer. More ❯
their accounts. Work with the Director of Sales Ops & Customer Success to maintain and optimise the tech stack. Compliance & Security Maintain a solid understanding of InformationSecurityManagement Systems (ISMS) and ensure compliance with data protection policies and regulations. About you: Experience: Proven experience as a strategic IT advisor to senior clients, ideally as a TAM, Solutions Consultant, or Engineer. More ❯
their accounts. Work with the Director of Sales Ops & Customer Success to maintain and optimise the tech stack. Compliance & Security Maintain a solid understanding of InformationSecurityManagement Systems (ISMS) and ensure compliance with data protection policies and regulations. About you: Experience: Proven experience as a strategic IT advisor to senior clients, ideally as a TAM, Solutions Consultant, or Engineer. More ❯
London, South East, England, United Kingdom Hybrid / WFH Options
Picture More
robust informationsecurity and privacy practices across global operations. Conduct security risk assessments, support incident response, and contribute to audits and compliance initiatives. Maintain and enhance the firm’s ISMS and Business Continuity frameworks. Complete client cyber due diligence and collaborate closely with internal stakeholders. What You'll Bring: Proven experience in informationsecurity and risk management. Strong working knowledge More ❯
London, South East, England, United Kingdom Hybrid / WFH Options
Michael Page Technology
simplify technology governance, policies, and processes to reflect a modern, strategic IT function. Embed frameworks such as: ISO/IEC 27001: The international standard for informationsecuritymanagement systems (ISMS), ensuring data confidentiality, integrity, and availability. ITIL (Information Technology Infrastructure Library): A framework for standardising IT service management practices and aligning them with business needs. Shift IT's organisational role More ❯
Northwich, Cheshire, England, United Kingdom Hybrid / WFH Options
Teemz Ltd
detection and diagnosis using industry standard network monitoring and management tools, such as Logic Monitor. Ensure that you are familiar with the Company's Business ManagementSystem and InformationSecurityManagementSystem and comply with the requirements of those frameworks. Ensure that the area of control remains ISO9001 and GDPR compliant and drive awareness and compliance through the entire span More ❯
Bristol, Avon, South West, United Kingdom Hybrid / WFH Options
Alexander Mae (Bristol) Ltd
IEC 27001 , ISO/IEC 42001 and Cyber Essentials PLUS standards. In this role you will be responsible for maintaining, auditing, and continuously improving their InformationSecurityManagementSystem (ISMS), overseeing compliance initiatives, coordinating with internal teams, and ensuring the organization remains audit-ready. Additionally you will be implementing (alongside the technical and sales team) a Compliance as a Service … maintain their ISO Certifications. Key Responsibilities: Instrumental in the building of a new Team to deliver CaaS and supporting services. Develop, implement, and maintain the InformationSecurityManagementSystem (ISMS) aligned with ISO/IEC 27001 and Cyber Essentials PLUS standards. Lead internal audits, gap assessments, and risk assessments for ISO 27001 and Cyber Essentials PLUS. Coordinate and manage external … Statement of Applicability (SoA) , Risk Treatment Plans , and supporting documentation. Identify compliance gaps and lead remediation activities. Oversee incident management, business continuity, and data protection processes as part of ISMS requirements. Stay current on changes to ISO 27001 and Cyber Essentials PLUS frameworks, regulatory expectations, and cybersecurity threats. Develop and deliver security and compliance awareness training across the organisation. Collaborate More ❯
Milton Keynes, England, United Kingdom Hybrid / WFH Options
MHA
Security to interpret cyber risk assessments, maintain the risk register, and shape training content that addresses emerging threats and control gaps. Process & Reporting Oversight Maintain IT SecurityManagementSystem (ISMS) documentation, support the upkeep of standard operating procedures, and generate data-driven training dashboards for senior stakeholders, focusing on completion rates, behavioural impact, and ROI. Cross-Functional Enablement Work with More ❯
Milton Keynes, Buckinghamshire, England, United Kingdom Hybrid / WFH Options
MHA
Security to interpret cyber risk assessments, maintain the risk register, and shape training content that addresses emerging threats and control gaps. Process & Reporting Oversight Maintain IT SecurityManagementSystem (ISMS) documentation, support the upkeep of standard operating procedures, and generate data-driven training dashboards for senior stakeholders, focusing on completion rates, behavioural impact, and ROI. Cross-Functional Enablement Work with More ❯
engagements and delivering valuable services to clients Skills/Must have: Extensive experience in InformationSecurity Governance, Risk, and Compliance (GRC) Experience contributing to an InformationSecurityManagementSystem (ISMS) certified to ISO27001 standards Knowledge of the Cyber Essentials Plus Scheme, GDPR, and Data Protection Act (2018) Strong communication skills and the ability to build relationships with internal and external More ❯
and data privacy standards. What You’ll Be Doing: Partner with senior stakeholders to develop, implement, and manage the overall enterprise security strategy Implement a governance system for the ISMS Identify protection goals, objectives and metrics consistent with corporate strategic plan and work with CIO to prioritize security initiatives and spending based on appropriate risk management Provide subject matter expertise More ❯
Stockport, Lancashire, United Kingdom Hybrid / WFH Options
zyncgroup.io
that align with clients unique goals and requirements. In this role you will be responsible for: Developing and formulatingsecurity concepts Establishment, development and implementation of informationsecuritymanagement systems (ISMS) Coordinatingthe deployment of protective measures Conducting risk analyses This role is remote from anywhere in Germany with travel to client site. Essential: Several years experience workingwithISMS - including developing from scratch More ❯
Kettering, Northamptonshire, East Midlands, United Kingdom
E.surv Limited
to date at all times Highlight to the line manager any concerns regarding conflicting duties or areas of responsibility. Operate within the processes, policies and standards of e.Surv informationsecuritymanagementsystem, aligned to ISO27001 Adhere to all policies and operating procedures of the IT department. Being an active member of the team. Knowledge and Expertise Essential: Extensive experience gained More ❯
robust informationsecurity and privacy practices across global operations. Conduct security risk assessments, support incident response, and contribute to audits and compliance initiatives. Maintain and enhance the firm's ISMS and Business Continuity frameworks. Complete client cyber due diligence and collaborate closely with internal stakeholders. More ❯
Pirton, Hertfordshire, United Kingdom Hybrid / WFH Options
Picture More Ltd
robust informationsecurity and privacy practices across global operations. Conduct security risk assessments, support incident response, and contribute to audits and compliance initiatives. Maintain and enhance the firm's ISMS and Business Continuity frameworks. Complete client cyber due diligence and collaborate closely with internal stakeholders. More ❯
Manchester, Lancashire, United Kingdom Hybrid / WFH Options
TalkTalk Telecom Group PLC
Security function within PXC's Technology and Security Business Unit. Reporting directly into the Head of Security Risk Management and Governance, you will be responsible for management of InformationSecurityManagementSystem and maintain compliance with the respective security standards. Key Responsibilities Working cross-functionally, this role is pivotal to the successful management and maintenance of PXC's several information … Audit teams and facilitate our response to our external auditors. Responsibilities will include: Maintain and continually improve PXC's external compliance, including mergers & acquisition's, InformationSecurityManagementSystem (ISMS) and compliance regime for security certifications (TSA, ISO27001, PCI, Cyber Essentials, External Audit IT General Controls). Oversee and manage the process for responding to incoming customer security questionnaires, as More ❯
closely with stakeholders to ensure compliance and security best practice across the business. You will also assist with maintaining and improving the company’s accredited InformationSecurityManagementSystem (ISMS), with a particular focus on ISO 27001 and Cyber Essentials Plus requirements. In addition, you will help mentor team members, providing guidance and support to develop their skills, and work More ❯
security architecture and implement IT security guidelines You will internally consult and advise on security best practices Required Skills: You have Professional English language skills You are experienced in (ISMS-based) risk management You have previously managed informationsecurity projects You have a solid understanding of IT, security and cloud architecture Desired Skills: You have German language knowledge Company Benefits More ❯
effectively in a fast-paced environment, under pressure. Familiarity with a major public cloud platform, such as Microsoft Azure or AWS. Experience working within an InformationSecurityManagementSystem (ISMS) or framework (Cyber Essentials, ISO 27001), Quality Standards (ISO9001, AS9100), Military Cyber Security Standards (DEF-STD 05-138). Familiarity with IT Service Management (ITSM) principles and ticketing systems. Certifications More ❯
Newport, Gwent, Wales, United Kingdom Hybrid / WFH Options
Yolk Recruitment Ltd
technical depth with strategic influence. Key Responsibilities Define and embed Security Architecture Principles to guide all programmes, projects, and changes Develop and maintain ISO27001-compliant security policies and an ISMS framework Create reference architectures for Identity and Privileged Access Management Provide architecture reviews for all new systems and major changes to existing ones Support the redevelopment and testing of the More ❯
they are and what they bring to the table, supporting one another as we continue to deliver for our customers. LI-KS1 Create & Maintain an informationsecuritymanagementsystem (ISMS) capable of demonstrating compliance against internal security requirements and external commitments including certification and regulatory requirements. Provide subject matter expertise in the application of established standards including NIST, PCI-DSS More ❯
Winchester, Hampshire, United Kingdom Hybrid / WFH Options
Arqiva
Work. Life. Smarter. Our commitment to a flexible and hybrid working culture As a GRC Analyst you will: Support the development and maintenance of our InformationSecurityManagementSystem (ISMS) including policies, objectives, and risk assessments Assist with internal audits and help prepare for external audits to maintain compliance with ISO27001 and other standards Help identify and assess informationsecurity … risks, working closely with the Cyber Risk Manager Provide guidance to colleagues on basic security best practices and requirements Contribute to reporting on the ISMS performance and improvement plans Support continual improvement initiatives and track progress Keep up to date with key trends and changes in informationsecurity and ISO standards Help maintain and update the security controls library What More ❯