126 to 150 of 474 ISO/IEC 27001 Jobs in the UK excluding London

including NIST, PCI-DSS, GDPR, COBIT, ISO 27001 and Cyber Essential compliance to any new or existing programme of work. Prepare and support internal and / or external compliance audit activities. Manage remediation of any audit (internal & External) non-conformities. Ensure security policies (on a risk-based approach) are produced, signed off by relevant stakeholders … up-to-date knowledge of legal & regulatory requirements impacting Technology and Operations and its Partners. Apply comprehensive knowledge of legal, regulatory obligations, and industry best practices (e.g., NIST, COBIT, ISO27001, PAS 555) to ensure compliance with technology standards. Schedule and review risk and compliance audits; direct issues to appropriate resources for investigation and resolution. Our people make us who we … our customers. LI-KS1 Possess one of the Risk or security certifications (CISSP, CRISC, CISM). Have good knowledge and practical experience of NIST, PCI-DSS, GDPR, COBIT, ISO 27001, or Cyber Essentials. Previous experience in a similar role, with the ability to work in a dynamic and changing environment. Excellent team player who can influence More ❯

management framework, ensuring effective identification, assessment, and remediation of risks. Conduct detailed risk and control assessments across business units, projects, vendors, and IT systems, aligning with standards like ISO 27001, NIST CSF, and CIS Controls. Manage and enhance Third-Party Risk Management, including cybersecurity assessments of external partners and suppliers. Collaborate with stakeholders to develop and … practices, while fostering strong relationships to embed a risk-aware culture across the organisation. Experience you will have: Expertise in cybersecurity risk frameworks and compliance, including CIS Controls, ISO 27001, NIST CSF, GDPR, SOX, and PCI. Strong technical and analytical skills, with the ability to assess risks, identify gaps, and propose mitigation strategies across IT systems More ❯

management framework, ensuring effective identification, assessment, and remediation of risks. Conduct detailed risk and control assessments across business units, projects, vendors, and IT systems, aligning with standards like ISO 27001, NIST CSF, and CIS Controls. Manage and enhance Third-Party Risk Management, including cybersecurity assessments of external partners and suppliers. Collaborate with stakeholders to develop and … practices, while fostering strong relationships to embed a risk-aware culture across the organisation. Experience you will have: Expertise in cybersecurity risk frameworks and compliance, including CIS Controls, ISO 27001, NIST CSF, GDPR, SOX, and PCI. Strong technical and analytical skills, with the ability to assess risks, identify gaps, and propose mitigation strategies across IT systems More ❯

management framework, ensuring effective identification, assessment, and remediation of risks. Conduct detailed risk and control assessments across business units, projects, vendors, and IT systems, aligning with standards like ISO 27001, NIST CSF, and CIS Controls. Manage and enhance Third-Party Risk Management, including cybersecurity assessments of external partners and suppliers. Collaborate with stakeholders to develop and … practices, while fostering strong relationships to embed a risk-aware culture across the organisation. Experience you will have: Expertise in cybersecurity risk frameworks and compliance, including CIS Controls, ISO 27001, NIST CSF, GDPR, SOX, and PCI. Strong technical and analytical skills, with the ability to assess risks, identify gaps, and propose mitigation strategies across IT systems More ❯

or civilian). Strong stakeholder engagement skills and the ability to explain technical risks in simple terms. Familiarity with security frameworks or policies such as JSP440, NCSC guidance, ISO 27001, Cyber Essentials or similar. Ability to travel and work on-site at secure locations. Qualifications and Training: SC clearance is essential (DV desirable). If you … hold or are working towards qualifications like CISSP, CISM, CompTIA Security+ or ISO 27001 that’s great – if not are client will help you work towards them. Degree-level education is advantageous but not essential if you have equivalent experience. More ❯

will be directly responsible for continued success of the entire Aforza product suite. As such, the ideal candidate must be hands-on, flexible, and used to working in startup / scale up environments, where every employee has a direct impact on the company's success. All of Aforza's cloud applications, microservice and websites are hosted on Google Cloud … with IaC tools such as Terraform Strong understanding of authentication and authorization protocols such as OAuth 2.0, OIDC, SAML etc Experience with SQL and NoSQL databases Experience with Docker / Kubernetes Knowledge of security and IAM best practices You might not have all of the above, but don't let that stop you. We're excited to hear from … benefits, including: Work on cutting edge technologies with world leading customers Stock options 25 days PTO & bank holiday Pension Private health cover & income protection Flexible hours and hybrid remote / office working Fantastic, brand new office space in the heart of Cardiff city centre Our Interview Process Director, Cloud Infrastructure Cardiff / Remote (UK only) About Aforza Aforza More ❯

of our legacy systems to the Microsoft cloud. Your responsibilities will include: Evaluate and enhance existing IT systems, management procedures, and security protocols to ensure robust protection. Oversee ISO 27001 and other key accreditations by collaborating with internal teams and external auditors. Manage information security requests and compliance reports, ensuring adherence to GDPR and other relevant … have the opportunity to leverage your existing skills while developing new ones, contributing to the strategic security objectives of the Company and ensuring adherence to critical accreditations, including ISO 27001, GDPR, Cyber Essentials, and PCI DSS. The successful candidate will demonstrate: Strong analytical skills with a meticulous approach to identifying and resolving security issues. Excellent verbal … attitude towards learning and developing expertise in information security. Happy to travel occasionally to other sites as required. Desirable Experience: Demonstrable expertise in external audit, compliance, and security processes (ISO27001, GDPR, Cyber Essentials and PCI DSS). Microsoft accreditation or other recognised certifications (e.g. Microsoft Learning, CISA, CISM, CRISC, CCSP) would be very beneficial. Benefits: £25,000 - £35,000 salary More ❯

a wide range of infrastructure improvements. From migrating to Azure AD and Intune, to rolling out Defender across the business and helping push toward Cyber Essentials Plus and ISO 27001 compliance; there's a lot going on, and you'll be in the thick of it. Alongside cloud migration work, you'll also be involved in … telephony platforms in a business environment Exposure to cloud migrations, ideally Azure (some AWS experience also fine) Experience supporting enterprise platforms like IIS & SQL Familiarity with compliance standards (ISO 27001, Cyber Essentials, NIST) There's no on call requirement, though some flexibility around out of hours work may occasionally be needed. This is a genuinely varied More ❯

down to the successful candidate. You can expect: Design and manage scalable, secure cloud environments using Azure Bicep, ARM, or Terraform Lead the implementation of DevSecOps practices including CI / CD, secrets management, zero-trust security, and vulnerability management Develop secure cloud-native architectures including microservices, containers, and serverless patterns Ensure compliance with industry security and privacy standards ( e.g. … ISO 27001, SOC 2, GDPR) Secure containerised environments, including Kubernetes and Docker Collaborate with developers to integrate secure deployment pipelines across the SDLC Support deployments in client environments, including on-prem and multi-cloud Continuously improve infrastructure processes for performance, reliability, and security Where you'll be stretched (and thrive): We're growing fast: That means … skillsyou'll need to succeed in this role Deep experience in Azure infrastructure (with IaC using Bicep, ARM, or Terraform) Hands-on knowledge of DevSecOps tooling and techniques (CI / CD, secrets management, threat modelling) Experience implementing security standards across cloud and hybrid environments Familiarity with container security ( e.g. Docker, Kubernetes) A strong understanding of compliance frameworks such as More ❯

Flexible, Hybrid working available. Join us as an Information Security Officer! You'll play a central role in shaping and implementing our security strategy, ensuring it aligns with ISO 27001 standards. You'll manage and monitor risks, maintain compliance with legal and regulatory requirements, and lead our response to cyber incidents, including simulations and investigations. Your … and assessments, while promoting a strong security culture through awareness initiatives and tailored training programs. What we are looking for: Professional certifications such as CISSP, CISM, CISA, CCSP, ISO 27001 Implementor, or equivalent. Strong knowledge of information security, risk management, and data protection-ideally within the financial sector. Proven ability to build effective relationships with stakeholders More ❯

Information Security Analyst Hull / Hybrid A great opportunity for an Information Security Analyst to join one of the UK’s leading enterprise manufacturing businesses. You will join a company that has experienced year on year growth and is looking to hire due to the expansion of the team. You will be part of a business driving innovation in … the business is investing in to grow and become a critical function within its IT landscape. You will play a key role in the organisation’s journey to ISO 27001 and CES, and be instrumental in implementing the GDPR, DLP compliance and security awareness initiatives. To be successful in this role you must have the following … experience: At least 3 years’ experience working as an Information Security Analyst Strong understanding of ISO 27001 Experience GDPR Compliance Experience of Microsoft environment Security certifications such as CISM are a bonus The role is based in Hull and has a two stage interview process that can be wrapped up within a week. Please apply or More ❯

Enterprise Risk Management Framework. Ensuring compliance with applicable legislation, regulatory requirements, and business obligations, as well as adherence to the most current frameworks and standards (e.g., Licence 4, ISO 27001, WLA:SCS, PCI-DSS, and DPA 2018). Coordinating and participating in internal and external security and privacy audits. This includes ensuring necessary evidence is available … concepts, standards, frameworks, and technologies Good knowledge of UK Data Protection legislation and its underlying principles Experience in managing security governance and compliance obligations (e.g., DPA, PCI-DSS, ISO 27001) The ability to work independently with minimal supervision, as well as effectively contribute to larger, more complex project teams Strong communication skills, with the ability to … technical, complex, or sensitive issues and risks to a diverse audience and align them with broader governance frameworks Formal education or certifications in Information Security, such as a BSc / MSc in Information Security, or certifications like CISM, CISSP, or equivalent What’s In It For You? Amazing company to work for. Competitive benefits. For further information on this More ❯

processes, and systems. - Assess and remediate gaps in security practices and influence operational teams to adopt security-first approaches. - Drive adherence to industry standards and frameworks such as ISO 27001, NIST, or similar. - Provide expert input to enhance security frameworks, policies, and procedures. - Lead and support security awareness initiatives across business units. What We’re Looking … For - Strong understanding of information security principles, particularly in GRC. - Hands-on experience with ISO 27001, NIST, or similar standards. - Excellent communication and stakeholder engagement skills - able to translate technical security concepts into clear business language. - Proven ability to embed governance and compliance into large, complex organisations. - Ability to balance technical, operational, and business priorities. Why More ❯

standards and product specifications, especially regarding regulatory compliance and Cyber security. Ensure compliance with industry standards and regulatory requirements specific to fire alarm and life safety devices (EN54\UL864\ISO27001\CE). Implement best practices in coding, testing, and documentation. Develop and refine measurable software development processes to enhance efficiency and quality. Collaborate with R&D team section managers to … Degree level in Engineering, preferably with a Software focus. Experience Considerable proven experience managing development teams of 10-15 engineers within an electronic product segment, ideally regulatory controlled. Knowledge / Skills Management Proven experience leading and managing software development teams of various sizes, with a track record as an exceptional people manager. Ability to mentor, coach, motivate, and develop … design documents that comprehensively describe the product design and functionality. Certification Experience in designing products for a regulatory controlled market and ensuring compliance with those standards including ISO9001 and ISO27001 / NIST or other relevant security frameworks. This is an excellent opportunity to become part of the key engineering team within a developing business with its culture shaped by More ❯

computing. You have Excellent experience in cyber security and in particular IT and OT cyber security and risk management and strong understanding of cyber security frameworks (e.g., NIST, ISO 27001, IEC 62443, CIS Controls) and NIS Regulations. In-depth understanding of cyber security products, services, systems and solutions and exposure to multiple, diverse technologies … and analytics, cyber security and more. Flexible benefits to fit your life Enjoy discounts on private healthcare and gym memberships. Wellbeing benefits like a free online GP and 24 / 7 counselling service. Interest-free loans on tech and transport season tickets, or a new bike with our Cycle to Work scheme. As well as generous family entitlements such More ❯

computing. You have Excellent experience in cyber security and in particular IT and OT cyber security and risk management and strong understanding of cyber security frameworks (e.g., NIST, ISO 27001, IEC 62443, CIS Controls) and NIS Regulations. In-depth understanding of cyber security products, services, systems and solutions and exposure to multiple, diverse technologies … and analytics, cyber security and more. Flexible benefits to fit your life Enjoy discounts on private healthcare and gym memberships. Wellbeing benefits like a free online GP and 24 / 7 counselling service. Interest-free loans on tech and transport season tickets, or a new bike with our Cycle to Work scheme. As well as generous family entitlements such More ❯

computing. You have Excellent experience in cyber security and in particular IT and OT cyber security and risk management and strong understanding of cyber security frameworks (e.g., NIST, ISO 27001, IEC 62443, CIS Controls) and NIS Regulations. In-depth understanding of cyber security products, services, systems and solutions and exposure to multiple, diverse technologies … and analytics, cyber security and more. Flexible benefits to fit your life Enjoy discounts on private healthcare and gym memberships. Wellbeing benefits like a free online GP and 24 / 7 counselling service. Interest-free loans on tech and transport season tickets, or a new bike with our Cycle to Work scheme. As well as generous family entitlements such More ❯

computing. You have Excellent experience in cyber security and in particular IT and OT cyber security and risk management and strong understanding of cyber security frameworks (e.g., NIST, ISO 27001, IEC 62443, CIS Controls) and NIS Regulations. In-depth understanding of cyber security products, services, systems and solutions and exposure to multiple, diverse technologies … and analytics, cyber security and more. Flexible benefits to fit your life Enjoy discounts on private healthcare and gym memberships. Wellbeing benefits like a free online GP and 24 / 7 counselling service. Interest-free loans on tech and transport season tickets, or a new bike with our Cycle to Work scheme. As well as generous family entitlements such More ❯

role is key in building and improving Primark's Cyber Security posture. Duties & Responsibilities Actively progress and improve Primark's cyber security posture with the delivery of agreed projects / initiatives aligned with industry best practice. Ensure project deliverables are aligned with the Cyber Roadmap with outcomes directly addressing strategic objectives / maturity gaps / audit points. … Advise and lead on solutions with our internal teams / outsourced partners, having a 'hands on approach' including the construction of business cases and contractual arrangements. Have a metric based approach with a structure to enable auditing and managing vendor performance. Coordinating resources, preparing delivery teams for kick-off and ensure effective completion of milestones, controlling scope and mitigating … defining, developing and managing implementation schedules Maintaining a roadmap of future initiatives, that effectively facilitates the prioritisation of delivery plans. Ensuring an ongoing focus on delivering the required quality / value for money and compliance with published standards and guidelines. Co-ordinates cross-functional team members, identifies resources needed, assigns and prioritises tasks / responsibilities and ensures deadlines More ❯

todeliver against agreed targets. Who we're looking for Ideally, you'll have experience leading within a risk management role and havea good knowledge of methodologies such as IEC 62443 and ISO 27005. Knowledge ofcontrol frameworks such as NIST, IEC 62443, ISO 27001, ITIL (InformationTechnology Infrastructure Library), and SABSA is More ❯

todeliver against agreed targets. Who we're looking for Ideally, you'll have experience leading within a risk management role and havea good knowledge of methodologies such as IEC 62443 and ISO 27005. Knowledge ofcontrol frameworks such as NIST, IEC 62443, ISO 27001, ITIL (InformationTechnology Infrastructure Library), and SABSA is More ❯

todeliver against agreed targets. Who we're looking for Ideally, you'll have experience leading within a risk management role and havea good knowledge of methodologies such as IEC 62443 and ISO 27005. Knowledge ofcontrol frameworks such as NIST, IEC 62443, ISO 27001, ITIL (InformationTechnology Infrastructure Library), and SABSA is More ❯

equipment and cloud systems Support and development of ServiceNow fault and customer management system Access controls updated for operational IT systems Assist in assembling, wiring and troubleshooting various electrical / electronic issues across a diverse array of equipment Perform periodic maintenance Conduct comprehensive and accurate testing Work with low-voltage and DC power systems in associated road safety technology … network diagrams, test plans, electronic schematics, blueprints, and wiring diagrams Maintain accurate logs of maintenance work using asset management systems Communicate findings and recommendations to engineers and supervisors Review / update of Business Continuity and Disaster Recovery (BCDR) Plans, based on testing and system changes What are the career prospects at Verra Mobility ? Verra Mobility are offering a permanent … Skills: It is essential that the IT Systems engineer technician apprentice has the following skills and personal qualities: GCSEs in maths and English with at least a grade C / 4 Demonstrated passion for technology including electronic componentry, networking and computer software Strong critical thinking and analytical skills Good understanding of IT, networking, software and operating systems, logic and More ❯

Social network you want to login / join with: Senior Cyber Security Analyst As a Senior Cyber Security Analyst , you will play a critical role in strengthening Thames Water's digital defences by maintaining and optimising security operations tools and processes. You'll focus on monitoring, analysing, and responding to cyber threats, while supporting the SOC team and ensuring … cyber risks, recommend actions, and ensure controls are proportionate and effective. Tool Performance & Optimisation : Monitor and improve the performance of SecOps tools such as Microsoft Sentinel, PAM, and EDR / XDR systems, including alert tuning and automation. SOC Support & Escalation : Act as a key contact and escalation point for the SOC team, providing guidance and mentoring to support operational … effectiveness. On-Call & Incident Readiness : Participate in a 24 / 7 / 365 on-call rota with MSSP partners, supporting out-of-hours investigations and maintaining incident readiness. Threat Hunting & Continuous Improvement : Perform proactive threat hunting, recommend new security controls, and contribute to continuous improvement of SecOps processes. Compliance & Documentation : Maintain security documentation, support GDPR, NIS, and ISO More ❯

The Cybersecurity team, within the IT department, is responsible for information and Cybersecurity. Responsibilities include information and cybersecurity risk management, and ensuring compliance to CAA, NIS and ISO27001 standards. The team also works closely with our majority shareholders, and partners, such as retailers, ground handlers, as well as suppliers, to ensure a joined-up approach to information and cyber security. … projects, and assisting with regulatory compliance to encourage continual enhancement of our IT security environment. Key responsibilities and accountabilities: * Endpoint monitoring and analysis. * Malware analysis and forensics research. * Understanding / differentiation of intrusion attempts and false positives. * Lead investigations into security breaches, incidents, or suspicious activities and provide incident reports to stakeholders. * Enforce security policies, procedures, and guidelines for … all IT systems and operations. * Provide recommendations for improving security practices to meet evolving regulatory and organisational needs. * Vulnerability identification & mitigation / remediation. * Advise incident responders & other teams on cybersecurity threats. * Triage security events and incidents and apply containment and mitigation / remediation strategies. * Collaborate with other IT teams to ensure seamless security integration with infrastructure, applications, and More ❯