1 to 25 of 238 Remote ISO/IEC 27001 Jobs in the UK excluding London

GRC / Governance / Risk / Compliance / Information Security / Infosec / ISO GRC / Governance / Risk / Compliance / Information Security / Infosec / ISO Information Security Analyst Liverpool City Centre … keen eye for detail. A proactive mindset and willingness to learn and grow in the role. Benefits: 25 days holiday + BH Enhanced maternity / paternity packages Employee wellbeing support including counselling sessions and CBT programmes Company pension and life assurance Recognition and reward platform, regular socials, and long … service awards Important Notes: Sponsorship isn’t available GRC / Governance / Risk / Compliance / Information Security / Infosec / ISO GRC / Governance / Risk / Compliance / Information Security / Infosec / ISO More ❯

all about? The Information Security Analyst is primarily responsible for ensuring compliance with information security frameworks such as Cyber Essentials, Cyber Essentials Plus, ISO 27001, ISO 27701, ISO 42001, GDPR, and DORA. This role focuses on internal audits, regulatory compliance, and readiness … standards, and risk management processes. Audit Preparation: Assist internal control owners in scoping appropriate evidence and preparing for external audits. Gap Assessments: Facilitate and / or conduct internal gap assessments and audit readiness evaluations for frameworks such as ISO 27001, GDPR, and DORA. Framework Tracking … sexual orientation or any other category protected by law. Apply for this job indicates a required field First Name Last Name Email Phone Resume / CV Enter manually Accepted file types: pdf, doc, docx, txt, rtf LinkedIn Profile Do you have any first-degree relatives (spouse, parent, child, sibling More ❯

code reviews, provide guidance on secure libraries and frameworks. Standards & Compliance Ensure products meet regulatory and defence standards (ISO 27001 / 27005, NIST 800-30 / 53, JSP 440 / 604, Def Stan 05-series). Lead the creation and maintenance of security … execute penetration tests and automated vulnerability scans; validate fixes. Oversee third-party security assessments as required. Continuous Improvement Drive security tooling and automation (CI / CD integration, SAST / DAST). Stay ahead of emerging threats and security technologies; evangelise best practices across teams. Qualifications & Experience Proven experience … in product or application security within defence, government, or security-cleared environments. Deep knowledge of risk management frameworks (ISO 27001 / 2 / 5 / 31000, NIST 800-series) and Defence Standards (JSPs, Def Stan 05-138 / 139). Hands-on More ❯

code reviews, provide guidance on secure libraries and frameworks. Standards & Compliance Ensure products meet regulatory and defence standards (ISO 27001 / 27005, NIST 800-30 / 53, JSP 440 / 604, Def Stan 05-series). Lead the creation and maintenance of security … execute penetration tests and automated vulnerability scans; validate fixes. Oversee third-party security assessments as required. Continuous Improvement Drive security tooling and automation (CI / CD integration, SAST / DAST). Stay ahead of emerging threats and security technologies; evangelise best practices across teams. Qualifications & Experience Proven experience … in product or application security within defence, government, or security-cleared environments. Deep knowledge of risk management frameworks (ISO 27001 / 2 / 5 / 31000, NIST 800-series) and Defence Standards (JSPs, Def Stan 05-138 / 139). Hands-on More ❯

and Experience Required Knowledge of HMG standards (including MOD-specific JSP, Def Stan 05-138, Def Stan ). An understanding of MOD ISN 23 / 09 Secure by Design. Knowledge of security frameworks, such as ISO / IEC 27001, NIST … NIST 800-53 or OWASP. Experience of working with risk management frameworks and methodologies (e.g., ISO 27001 / 2, ISO27005 / 31000, NIST 800-30, NIST 800-53) Why Join? You'll gain exposure to cutting-edge defence technology and intelligence insights, alongside good … salary & benefits . The client offers flexible working options, with some hybrid / remote working. Apply now to be immediately considered for this fantastic opportunity. More ❯

Required Knowledge of HMG standards (including MOD-specific JSP, Def Stan 05-138, Def Stan 05 139). An understanding of MOD ISN 23 / 09 Secure by Design. Knowledge of security frameworks, such as ISO / IEC 27001, NIST … NIST 800-53 or OWASP. Experience of working with risk management frameworks and methodologies (e.g., ISO 27001 / 2, ISO27005 / 31000, NIST 800-30, NIST 800-53) Why Join? You'll gain exposure to cutting-edge defence technology and intelligence insights, alongside good … salary & benefits . The client offers flexible working options, with some hybrid / remote working. Apply now to be immediately considered for this fantastic opportunity. More ❯

Information Security Engineer Hybrid: Remote / Bristol Reporting to: Joe Mathews - VP of Technology Salary: £45,000 - £50,000 About Us Duel is a SaaS company on a mission to make Brand Advocacy the industry standard playbook for building brilliant retail brands. It was founded by world record breaking … a timely manner. Learn and implement security monitoring and automation solutions to detect and respond to threats. Help manage security tooling, including SIEM, IDS / IPS, and vulnerability scanning solutions. Work closely with engineers to support secure coding practices and help embed security considerations early in the development process. … as Secureframe, Drata, or Vanta. Experience working with pen testing and bug bounties a plus. Basic understanding of security tools such as SIEM, IDS / IPS, and vulnerability management solutions. Experience or knowledge of cloud security (AWS, GCP, or Azure). Awareness of security best practices in application and More ❯

posture. You’ll work with industry-leading frameworks like Cyber Essentials (CE), Cyber Essentials Plus (CE+), NIST 2, ISO 27001 / 223001, DORA , and more. This is the perfect opportunity if you’re looking for more autonomy, rapid career growth, and a dynamic environment —far … and principal consultants as needed. Lead and contribute to diverse security projects, including third-party risk management, mergers and acquisitions, security policy development, ISO 27001 implementation, audits and compliance (NIS 2, DORA), risk assessments, remediation programs, and more. Lead, manage, and deliver full cyber security engagements … Bring as a Senior Cyber Security Consultant: 2+ years of information security consulting Experience of Governance, Risk, and Compliance (GRC) frameworks such as ISO 27001, ISO 223001, NIST, DORA and other regulatory standards. Experience conducting Cyber Essentials and Cyber Essentials Plus assessments and guiding More ❯

knowledge sharing across teams. What We’re Looking For Technical Experience & Knowledge Experience with risk management frameworks and methodologies such as ISO / IEC 27001 / 2, ISO27005 / 31000, NIST 800-30, NIST 800-53. Strong understanding of security … standards and frameworks including OWASP, Secure by Design principles, and MOD-specific guidelines (e.g., JSP, Def Stan 05-138 / 139). Familiarity with HMG security principles and assurance frameworks is advantageous. Comfortable using threat modelling tools and implementing mitigation strategies. Experience with NIST standards. (this is an absolute More ❯

be part of the leadership team responsible for protecting a rapidly expanding global enterprise. The OT Manager, Cybersecurity, will audit the Industrial Control System / Operational Technology (ICS / OT) environment and perform risk / vulnerability assessments leading to the development of an enterprise strategy / design plan. The OT Manager, Cybersecurity, will lead the team on implementation (hands-on configuration) of the enterprise ICS / OT systems Additional responsibilities include research, classification, and root cause analysis of security events that occur within the environment. The ideal candidate will have security industry knowledge that … performing security assessments in an OT environment. Excellent leadership skills as this is a people manager role. Strong understanding of cybersecurity frameworks for ICS / OT environments Strong understanding of OT network communication protocols and industrial networking topologies. Familiarity with NIST (National Institute of Standards and Technology) Special Publication More ❯

developing mitigation strategies. Conducting security code reviews and offering guidance to ensure a secure-by-design approach. Ensuring products meet key regulatory standards (ISO 27001, NIST 800 series, JSPs, Def Stans). Authoring vital security documentation, including RMADS and Security Assurance Documents. … Performing penetration testing and coordinating remediation efforts. What You Bring: A solid understanding of security frameworks such as ISO 27001 / 2, ISO 31000, NIST 800-30 / 37 / 53. Hands-on experience with Defence Standards (JSPs, HMG, Def Stan … / 139). Strong knowledge of security testing tools and techniques. Excellent communication skills — able to explain complex risks and solutions clearly. A proactive, problem-solving mindset with a high level of personal integrity and professional ethics. Experience with NIST standards. (this is an absolute must) You'll Succeed More ❯

recognised, top-tier bank who provide world-class services to various institutions and individuals. Offering a comprehensive range of retail and corporate financial services / products, this thriving business with over 10 million active customers in over 700 business locations is the oldest African bank in the UK. Due … holder will work very closely with all third-party vendors involved in the remediation process. The job holder will also prepare the necessary MI / Dashboard reports for the relevant stakeholders and alleviate the workload of the IT Service desk function when required. The primary responsibilities of the role … CMSS) Incident / Response & Forensic Management Skills IT Technical Admin Support - Azure, Oracle Cloud Infrastructure (OCI Cloud) Microsoft Windows Support & administration, CE+, ISO27001 Email and Information Security Filtering / Monitoring Solutions, Egress Hands on experience on Linux and Mac Administration Support Good understanding of Windows and Linux More ❯

We are searching for a detail-oriented and experienced part-time Compliance Officer to support and maintain compliance frameworks across ISO 9001 (Quality Management), ISO 14001 (Environmental Management) and ISO 27001 (Information Security Management). The role is critical in ensuring our … remote position with office visits circa 2 or 3 times per month and during audit periods. Key Responsibilities: Monitor and maintain compliance with ISO 9001, 14001 and 27001 standards … Conduct internal audits and support external audit preparations Maintain documentation, records, and procedures as per ISO requirements Support risk assessments and corrective / preventive actions (CAPA) Collaborate with teams to ensure ongoing adherence to environmental, quality, and information security policies Assist in staff training and awareness programs More ❯

Role: Security Architect (Cloud) Location: Edinburgh / Glasgow / Sheffield / Manchester / Birmingham Working Pattern: 3 days on-site, 2 days WFH Summary Oscar are kicking off the search for an experienced Security Architect contractor to work with a well-known, high end consultancy. The … CNAPP platforms such as Wiz, Prisma Cloud, Orca or Aqua. Strong knowledge of public cloud platforms. Familiar with compliance frameworks such as NIST, ISO 27001 and how they apply to cloud applications. The ability to run risk assessments and threat … modelling for cloud-native applications. Excellent communication skills with the ability to translate technical concepts to business stakeholders. Role: Security Analyst (Cloud) Location: Edinburgh / Glasgow / Sheffield / Manchester / Birmingham Working Pattern: 3 days on-site, 2 days WFH Apply now More ❯

Role: Security Architect (Cloud) Location: Edinburgh / Glasgow / Sheffield / Manchester / Birmingham Working Pattern: 3 days on-site, 2 days WFH Summary Oscar are kicking off the search for an experienced Security Architect contractor to work with a well-known, high end consultancy. The … CNAPP platforms such as Wiz, Prisma Cloud, Orca or Aqua. Strong knowledge of public cloud platforms. Familiar with compliance frameworks such as NIST, ISO 27001 and how they apply to cloud applications. The ability to run risk assessments and threat … modelling for cloud-native applications. Excellent communication skills with the ability to translate technical concepts to business stakeholders. Role: Security Analyst (Cloud) Location: Edinburgh / Glasgow / Sheffield / Manchester / Birmingham Working Pattern: 3 days on-site, 2 days WFH Oscar Associates (UK) Limited is More ❯

Management Systems and Audit Manager, you will collaborate with cross-functional teams to support the continuous improvement. Support the maintenance of existing external ISO accreditation's and the support attainment of new ISO accreditation's to support the business strategy. Key Responsibilities: Support in the implementation … of National Security Solutions Audit Schedule Support in the maintenance of existing ISO accreditation's Support in the attainment of new ISO accreditations as required Maintain the company's Integrated Management System (IMS) Audit Schedule to ensure compliance with regulatory requirements and industry standards (e.g. ISO … benefits including private health care, career development opportunities and performance bonuses. For a comprehensive list of benefits, speak to our recruitment team. Essential qualifications / experience: ISO 9001 Lead auditor Detailed knowledge of ISO 9001, ISO 27001, ISO More ❯

investments. What you will do: Drive the company's information security strategy, ensuring alignment with GDPR, ISO 27001, DORA, PSD2 / 3, and other relevant regulations Identify and address local and entity-specific security requirements to maintain rigorous standards Conduct regular risk identification and develop … Develop and maintain security policies, standards, and incident response protocols Support business continuity and disaster recovery planning for seamless resilience Lead and oversee internal / external security audits to ensure transparency and accountability Partner with engineering and ICT teams to embed secure-by-design principles in products and infrastructure … with ISO 27001, NIST, and cybersecurity best practices Risk & Governance : Skilled in conducting risk assessments, defining mitigation strategies, and creating / enforcing security policies Good technical understanding of IT infrastructure, software development, hardware, data flows, change management, and BC / DR-and how they More ❯

Onsite a Week) Start: ASAP Responsibilities: Security Leadership: Own and lead info security, align with business. ISO 27001 & ISMS: Maintain / evolve certification and ISMS. Risk & Compliance: Risk assessments, remediation, audits, GDPR compliance. Policies & Training: Create / manage policies, deliver security training. Security Operations … Implement controls (access, encryption, logging), lead incident response, manage pen tests / vulnerabilities. Customer / Vendor Security: Support security questionnaires / due diligence, review vendor security. Requirements: 3-5 years hands-on info security or IT risk / compliance. SaaS or fast-paced startup / scale-up experience. Good ISO 27001 knowledge (certification maintenance / achievement). Understanding of cloud (AWS preferred) and SaaS security risks. Hands-on with endpoint protection, SIEM, DLP, IAM, SSO. Clear understanding of GDPR. Familiarity with security tooling (endpoint, SSO / IAM, monitoring More ❯

operational security, and environmental sustainability. Key Responsibilities: Develop, implement, and maintain quality assurance policies and systems. Ensure compliance with relevant quality standards (e.g., ISO 9001, Six Sigma). Oversee the development and enforcement of security policies, including data security and physical security measures. Ensure compliance with relevant security … frameworks (e.g., ISO 27001, GDPR, etc.). Develop and manage the environmental management system (EMS) in line with relevant standards (e.g., ISO 14001). Ensure compliance with environmental regulations, permits, and reporting requirements. ABOUT YOU Skills and Competencies A strong understanding of integrated management … systems (IMS) and relevant regulatory frameworks (ISO 9001, ISO 27001, ISO 14001). Experience conducting internal and external audits for quality, security, and environmental compliance. Education: A higher education course at UK level 4 or above in any related field such as More ❯

requirements. Assisting in the maintenance of M&A playbooks based on company security standards, procedures, and best practices including account management, tenant management, information / IP protection management, proxy server management, security ingress / egress management, domain trusts posture, SSL / IPsec, security incident and event management … SIEM), data protection (DLP, encryption), and password / key management, vulnerability / threat assessment. Collaborating with security team members to develop all M&A security requirements for all hardware and software computing platforms, environments and solutions including developing and or modifying existing policies, procedures, hardening guides, based on … on areas of highest IT and cyber risk, to continuously improve on controls or automate compliance activities. Maintaining ongoing communication with the business, external / internal auditors as it relates to alignment on audit planning, walkthroughs / testing, audit requests, impact assessments, and deficiency evaluation of IT controls More ❯

Senior Infrastructure Engineer / IT Manager Glasgow - Hybrid (3 days in the office) FPSG seek an experienced Infrastructure Engineer / hands-on IT Manager to join an exciting market sector leader in Glasgow City Centre, to take ownership for the maintenance, enhancement and security for core systems. The … Sen Engineer / IT Manager will have responsibility for maintaining IT systems, policies and processes across all locations internationally. Driving system improvements and owning planning, deployment and security, also monitoring, maintaining and innovating multi-site infrastructure. The successful candidate will have key responsibilities including the following: Provide IT support … across all locations Implement / maintaining group-wide IT policies and processes (inc ISO 27001 and Soc2) Maintenance and improvement of infrastructure of critical business systems Managing Windows Server, Active Directory, LAN / WAN, Microsoft O365 Taking ownership for infrastructure improvement such as Cloud More ❯

latest security trends, vulnerabilities, and emerging threats, and provide recommendations for improvements. Required Skills & Experience: Networking Expertise: Strong understanding of network protocols, including TCP / IP, DNS, DHCP, and routing. Experience with firewalls, VPNs, IDS / IPS systems, and network traffic analysis. Cloud Security: Deep experience securing cloud … Center, and identity management solutions like Azure Active Directory. Cisco Meraki: Hands-on experience configuring and managing Cisco Meraki firewalls, switches, and other networking / security appliances. Palo Alto Networks / Panorama: Expertise with Palo Alto Networks firewalls, including configuration, management, and troubleshooting of security policies and threat … to improve response efficiency. Automation & Scripting: Proficient in scripting languages such as Python, PowerShell, or Bash to automate tasks and security operations. Preferred Qualifications / Not Essential: Certifications: CISSP (Certified Information Systems Security Professional) CISM (Certified Information Security Manager) CISA (Certified Information Systems Auditor) Azure certifications (e.g., Microsoft Certified More ❯

IT Manager (Infrasructure) Glasgow, Scotland Glasgow - Hybrid (3 days in the office) FPSG seek an experienced Infrastructure Engineer / hands-on IT Manager to join an exciting market sector leader in Glasgow City Centre, to take ownership for the maintenance, enhancement and security for core systems. The IT Manager … monitoring, maintaining and innovating multi-site infrastructure. The successful candidate will have key responsibilities including the following: Provide IT support across all locations Implement / maintaining group-wide IT policies and processes (inc ISO 27001 and Soc2) Maintenance and improvement of infrastructure of critical business … systems Managing Windows Server, Active Directory, LAN / WAN, Microsoft O365 Taking ownership for infrastructure improvement such as Cloud, SaaS, IaaS Supplier management, IT procurement and managing IT operational budget. To be successful in the role, your career will include the following: A proven track record of IT infrastructure More ❯

reviews and ensure secure-by-design principles. Conduct threat modelling exercises to identify and mitigate potential risks. Ensure compliance with security regulations such as ISO27001, NIST 800-30 / 37 / 53, JSP 440, 604, and Defence Standards. Develop and maintain security documentation (e.g., RMADS, Security Assurance Documents … vulnerability assessments, and remediation activities. The Person Key Skills & Experience: Strong knowledge of risk management frameworks and methodologies (ISO 27001 / 2, ISO27005 / 31000, NIST 800-30, NIST 800-53). Experience with defence and government security standards (JSPs, Def Stan … / 139). Proficiency in security testing tools, technologies, and techniques. Ability to analyze and mitigate security vulnerabilities effectively. Strong problem-solving, decision-making, and communication skills. Qualifications & Requirements: Degree in Cybersecurity, Computer Science, or a related field (or equivalent experience). Industry certifications such as CISSP, OSCP, CEH More ❯

reviews and ensure secure-by-design principles. Conduct threat modelling exercises to identify and mitigate potential risks. Ensure compliance with security regulations such as ISO27001, NIST 800-30 / 37 / 53, JSP 440, 604, and Defence Standards. Develop and maintain security documentation (e.g., RMADS, Security Assurance Documents … vulnerability assessments, and remediation activities. The Person Key Skills & Experience: Strong knowledge of risk management frameworks and methodologies (ISO 27001 / 2, ISO27005 / 31000, NIST 800-30, NIST 800-53). Experience with defence and government security standards (JSPs, Def Stan … / 139). Proficiency in security testing tools, technologies, and techniques. Ability to analyze and mitigate security vulnerabilities effectively. Strong problem-solving, decision-making, and communication skills. Qualifications & Requirements: Degree in Cybersecurity, Computer Science, or a related field (or equivalent experience). Industry certifications such as CISSP, OSCP, CEH More ❯