1 to 25 of 164 ISO/IEC 27001 Jobs in West Yorkshire

in security audits, identifying vulnerabilities, and ensuring adherence to security policies. • Develop and enforce GCP security hardening measures (network segmentation, access controls, encryption, GDPR / ISO 27001 compliance). • Design and implement ETL pipelines for marketing data into BigQuery for Looker. • Optimise BigQuery data models … as a Cloud Engineer, specialising in GCP. • Proven background in marketing data environments, understanding infrastructure needs for marketing analytics and CDPs. • Demonstrable experience leading / contributing to security audits, vulnerability assessments, and compliance initiatives (GDPR, ISO 27001) within GCP. • Expertise in IaC with a strong … Terraform. • Profound understanding of GCP networking, security services, and IAM. • Proficiency in scripting (Python, Bash, Go). • Experience with containerisation (Docker) and orchestration (Kubernetes / GKE) is desirable. • Strong understanding of monitoring and logging tools. • Excellent problem-solving and communication skills. • Relevant GCP certifications are highly advantageous. Infrastructure Engineer More ❯

in security audits, identifying vulnerabilities, and ensuring adherence to security policies. • Develop and enforce GCP security hardening measures (network segmentation, access controls, encryption, GDPR / ISO 27001 compliance). • Design and implement ETL pipelines for marketing data into BigQuery for Looker. • Optimise BigQuery data models … as a Cloud Engineer, specialising in GCP. • Proven background in marketing data environments, understanding infrastructure needs for marketing analytics and CDPs. • Demonstrable experience leading / contributing to security audits, vulnerability assessments, and compliance initiatives (GDPR, ISO 27001) within GCP. • Expertise in IaC with a strong … Terraform. • Profound understanding of GCP networking, security services, and IAM. • Proficiency in scripting (Python, Bash, Go). • Experience with containerisation (Docker) and orchestration (Kubernetes / GKE) is desirable. • Strong understanding of monitoring and logging tools. • Excellent problem-solving and communication skills. • Relevant GCP certifications are highly advantageous. Infrastructure Engineer More ❯

in security audits, identifying vulnerabilities, and ensuring adherence to security policies. • Develop and enforce GCP security hardening measures (network segmentation, access controls, encryption, GDPR / ISO 27001 compliance). • Design and implement ETL pipelines for marketing data into BigQuery for Looker. • Optimise BigQuery data models … as a Cloud Engineer, specialising in GCP. • Proven background in marketing data environments, understanding infrastructure needs for marketing analytics and CDPs. • Demonstrable experience leading / contributing to security audits, vulnerability assessments, and compliance initiatives (GDPR, ISO 27001) within GCP. • Expertise in IaC with a strong … Terraform. • Profound understanding of GCP networking, security services, and IAM. • Proficiency in scripting (Python, Bash, Go). • Experience with containerisation (Docker) and orchestration (Kubernetes / GKE) is desirable. • Strong understanding of monitoring and logging tools. • Excellent problem-solving and communication skills. • Relevant GCP certifications are highly advantageous. Infrastructure Engineer More ❯

providers, and outsourced services. Ensure compliance with DORA’s outsourcing requirements, including due diligence, contract oversight, and continuity planning. Audit & Assurance: Participate in internal / external audits (ISO 27001, SOC 2) and regulatory examinations, focusing on third-party and outsourcing compliance. Remediate gaps in processes … risks tied to third-party dependencies, outsourcing, and ICT disruptions. Quantify risks using methodologies. Technical Compliance & Security: Advise on vulnerability management, endpoint security (EDR / XDR), and cloud compliance. Good understanding on IAM (Identity and Access Management) strategies, including role-based access control (RBAC) and privileged access management (PAM … for: Experience: 5+ years in GRC roles; financial services or banking experience is a strong plus. Understanding of GDPR, DORA, PCI DSS, and outsourcing / third-party risk requirements. Hands-on experience with ISO 27001 implementation and third-party risk tools. Proficiency in IAM (Identity More ❯

providers, and outsourced services. Ensure compliance with DORA’s outsourcing requirements, including due diligence, contract oversight, and continuity planning. Audit & Assurance: Participate in internal / external audits (ISO 27001, SOC 2) and regulatory examinations, focusing on third-party and outsourcing compliance. Remediate gaps in processes … risks tied to third-party dependencies, outsourcing, and ICT disruptions. Quantify risks using methodologies. Technical Compliance & Security: Advise on vulnerability management, endpoint security (EDR / XDR), and cloud compliance. Good understanding on IAM (Identity and Access Management) strategies, including role-based access control (RBAC) and privileged access management (PAM … for: Experience: 5+ years in GRC roles; financial services or banking experience is a strong plus. Understanding of GDPR, DORA, PCI DSS, and outsourcing / third-party risk requirements. Hands-on experience with ISO 27001 implementation and third-party risk tools. Proficiency in IAM (Identity More ❯

providers, and outsourced services. Ensure compliance with DORA’s outsourcing requirements, including due diligence, contract oversight, and continuity planning. Audit & Assurance: Participate in internal / external audits (ISO 27001, SOC 2) and regulatory examinations, focusing on third-party and outsourcing compliance. Remediate gaps in processes … risks tied to third-party dependencies, outsourcing, and ICT disruptions. Quantify risks using methodologies. Technical Compliance & Security: Advise on vulnerability management, endpoint security (EDR / XDR), and cloud compliance. Good understanding on IAM (Identity and Access Management) strategies, including role-based access control (RBAC) and privileged access management (PAM … for: Experience: 5+ years in GRC roles; financial services or banking experience is a strong plus. Understanding of GDPR, DORA, PCI DSS, and outsourcing / third-party risk requirements. Hands-on experience with ISO 27001 implementation and third-party risk tools. Proficiency in IAM (Identity More ❯

This role will be crucial in expanding and maintaining our cloud infrastructure, developing microservices, and ensuring a robust security posture in line with ISO 27001 standards. This is an exciting opportunity to contribute to a company at the … forefront of the energy transition. Key Responsibilities: Design, implement, and manage cloud infrastructure on platforms such as Azure or AWS, Develop and maintain CI / CD pipelines to automate software deployment and infrastructure management. Code and deploy microservices using appropriate programming languages and frameworks. Implement and maintain robust monitoring … but AWS or GCP considered). Experience with IaC tooling via Terraform or OpenTofu, Experience with containerization technologies (Docker, Kubernetes). Experience with CI / CD tools (e.g., Jenkins, GitLab CI, Azure DevOps). Proficiency in at least one scripting language (e.g., Bash). Understanding of networking concepts and More ❯

This role will be crucial in expanding and maintaining our cloud infrastructure, developing microservices, and ensuring a robust security posture in line with ISO 27001 standards. This is an exciting opportunity to contribute to a company at the … forefront of the energy transition. Key Responsibilities: Design, implement, and manage cloud infrastructure on platforms such as Azure or AWS, Develop and maintain CI / CD pipelines to automate software deployment and infrastructure management. Code and deploy microservices using appropriate programming languages and frameworks. Implement and maintain robust monitoring … but AWS or GCP considered). Experience with IaC tooling via Terraform or OpenTofu, Experience with containerization technologies (Docker, Kubernetes). Experience with CI / CD tools (e.g., Jenkins, GitLab CI, Azure DevOps). Proficiency in at least one scripting language (e.g., Bash). Understanding of networking concepts and More ❯

This role will be crucial in expanding and maintaining our cloud infrastructure, developing microservices, and ensuring a robust security posture in line with ISO 27001 standards. This is an exciting opportunity to contribute to a company at the … forefront of the energy transition. Key Responsibilities: Design, implement, and manage cloud infrastructure on platforms such as Azure or AWS, Develop and maintain CI / CD pipelines to automate software deployment and infrastructure management. Code and deploy microservices using appropriate programming languages and frameworks. Implement and maintain robust monitoring … but AWS or GCP considered). Experience with IaC tooling via Terraform or OpenTofu, Experience with containerization technologies (Docker, Kubernetes). Experience with CI / CD tools (e.g., Jenkins, GitLab CI, Azure DevOps). Proficiency in at least one scripting language (e.g., Bash). Understanding of networking concepts and More ❯

and influence. What You'll Be Working On: You’ll support key client projects across a diverse and exciting portfolio, including: Framework Compliance : ISO 27001, NIST, PCI-DSS Security Assurance : Audit, controls assessment, reporting Third-Party Risk Assurance : Vendor risk reviews, supply chain assessments Cloud Security … to finish. You’ll Need: Proven experience in a security consulting role (client-facing or internal consulting) Strong understanding of Information Security frameworks (ISO 27001, NIST, PCI-DSS) Hands-on experience delivering security assessments, audits, or assurance reviews Awareness or experience with cloud platforms (Azure, AWS … personal development, mentoring, and continuous learning Growth Journey: Join at an exciting time — with plans to double headcount and expand services Certifications (Required): ISO 27001 Lead Auditor CISSP or CISM More ❯

and influence. What You'll Be Working On: You’ll support key client projects across a diverse and exciting portfolio, including: Framework Compliance : ISO 27001, NIST, PCI-DSS Security Assurance : Audit, controls assessment, reporting Third-Party Risk Assurance : Vendor risk reviews, supply chain assessments Cloud Security … to finish. You’ll Need: Proven experience in a security consulting role (client-facing or internal consulting) Strong understanding of Information Security frameworks (ISO 27001, NIST, PCI-DSS) Hands-on experience delivering security assessments, audits, or assurance reviews Awareness or experience with cloud platforms (Azure, AWS … personal development, mentoring, and continuous learning Growth Journey: Join at an exciting time — with plans to double headcount and expand services Certifications (Required): ISO 27001 Lead Auditor CISSP or CISM More ❯

and influence. What You'll Be Working On: You’ll support key client projects across a diverse and exciting portfolio, including: Framework Compliance : ISO 27001, NIST, PCI-DSS Security Assurance : Audit, controls assessment, reporting Third-Party Risk Assurance : Vendor risk reviews, supply chain assessments Cloud Security … to finish. You’ll Need: Proven experience in a security consulting role (client-facing or internal consulting) Strong understanding of Information Security frameworks (ISO 27001, NIST, PCI-DSS) Hands-on experience delivering security assessments, audits, or assurance reviews Awareness or experience with cloud platforms (Azure, AWS … personal development, mentoring, and continuous learning Growth Journey: Join at an exciting time — with plans to double headcount and expand services Certifications (Required): ISO 27001 Lead Auditor CISSP or CISM More ❯

through our risk management framework and ensuring key risks are reported to the CISO. Performing regular internal security audits aligned to ISO / IEC 27001 and SOC2 controls. Developing our security awareness training programme aligned with internal security policies. Comfortable engaging with customers … NCSC CAF), supporting processes and toolsets. Ability to breakdown and solve complex problems across multiple domains and successfully lead the recovery of major and / or complex security incidents. Knowledge and experience of threat hunting and problem-solving through reviewing logs and identifying anomalous activities. More ❯

through our risk management framework and ensuring key risks are reported to the CISO. Performing regular internal security audits aligned to ISO / IEC 27001 and SOC2 controls. Developing our security awareness training programme aligned with internal security policies. Comfortable engaging with customers … NCSC CAF), supporting processes and toolsets. Ability to breakdown and solve complex problems across multiple domains and successfully lead the recovery of major and / or complex security incidents. Knowledge and experience of threat hunting and problem-solving through reviewing logs and identifying anomalous activities. More ❯

through our risk management framework and ensuring key risks are reported to the CISO. Performing regular internal security audits aligned to ISO / IEC 27001 and SOC2 controls. Developing our security awareness training programme aligned with internal security policies. Comfortable engaging with customers … NCSC CAF), supporting processes and toolsets. Ability to breakdown and solve complex problems across multiple domains and successfully lead the recovery of major and / or complex security incidents. Knowledge and experience of threat hunting and problem-solving through reviewing logs and identifying anomalous activities. More ❯

controls, and preparing for audits while also providing consultation on PCI requirements to Engineering, SecOps, and Architecture teams. Additionally, the role will support ISO 27001, SOC 2 Type 2, and other certification audits, assist with security assurance activities such as design reviews and client security questions … identify areas of improvement. Stay up to date with PCI DSS standard updates and ensure timely adaptation of new requirements. Manage and support ISO 27001 and SOC 2 Type 2 certification processes, ensuring evidence gathering, control validation, and audit preparation. Assist in responding to client security … Strong understanding of PCI DSS requirements, controls, and assessment processes. Hands-on experience with security controls, cloud environments, and security architecture. Experience with ISO 27001, SOC 2 Type 2, or other security frameworks. Proven ability to work effectively with senior leadership, auditors, external partners, and cross More ❯

controls, and preparing for audits while also providing consultation on PCI requirements to Engineering, SecOps, and Architecture teams. Additionally, the role will support ISO 27001, SOC 2 Type 2, and other certification audits, assist with security assurance activities such as design reviews and client security questions … identify areas of improvement. Stay up to date with PCI DSS standard updates and ensure timely adaptation of new requirements. Manage and support ISO 27001 and SOC 2 Type 2 certification processes, ensuring evidence gathering, control validation, and audit preparation. Assist in responding to client security … Strong understanding of PCI DSS requirements, controls, and assessment processes. Hands-on experience with security controls, cloud environments, and security architecture. Experience with ISO 27001, SOC 2 Type 2, or other security frameworks. Proven ability to work effectively with senior leadership, auditors, external partners, and cross More ❯

controls, and preparing for audits while also providing consultation on PCI requirements to Engineering, SecOps, and Architecture teams. Additionally, the role will support ISO 27001, SOC 2 Type 2, and other certification audits, assist with security assurance activities such as design reviews and client security questions … identify areas of improvement. Stay up to date with PCI DSS standard updates and ensure timely adaptation of new requirements. Manage and support ISO 27001 and SOC 2 Type 2 certification processes, ensuring evidence gathering, control validation, and audit preparation. Assist in responding to client security … Strong understanding of PCI DSS requirements, controls, and assessment processes. Hands-on experience with security controls, cloud environments, and security architecture. Experience with ISO 27001, SOC 2 Type 2, or other security frameworks. Proven ability to work effectively with senior leadership, auditors, external partners, and cross More ❯

levels are fully understood. Focus on building relationships and growing business with the customer, identifying new opportunities for the business. Your Profile Essential skills / knowledge / experience: Skilled in architecture design for systems and the underlying security infrastructure (i.e. firewalls). Holder a recognised, current security certificate … e.g., CISSP / CISM). Experienced in managing operational security activities. Solid understanding of regulatory and compliance requirements, including security frameworks such as NISTCSF, ISO 27001 and GDPR. Demonstrable experience with security technologies and architectures. Previous experience advising software development teams and agile delivery methods. … low latency applications. Good communication and negotiation skills. A team player. Result oriented. Possess good problem-solving skills, planning and organizing skills. Desirable skills / knowledge / experience: Experience of designing security architecture within the retail sector. Rewards & Benefits TCS is consistently voted a Top Employer in the More ❯

levels are fully understood. Focus on building relationships and growing business with the customer, identifying new opportunities for the business. Your Profile Essential skills / knowledge / experience: Skilled in architecture design for systems and the underlying security infrastructure (i.e. firewalls). Holder a recognised, current security certificate … e.g., CISSP / CISM). Experienced in managing operational security activities. Solid understanding of regulatory and compliance requirements, including security frameworks such as NISTCSF, ISO 27001 and GDPR. Demonstrable experience with security technologies and architectures. Previous experience advising software development teams and agile delivery methods. … low latency applications. Good communication and negotiation skills. A team player. Result oriented. Possess good problem-solving skills, planning and organizing skills. Desirable skills / knowledge / experience: Experience of designing security architecture within the retail sector. Rewards & Benefits TCS is consistently voted a Top Employer in the More ❯

levels are fully understood. Focus on building relationships and growing business with the customer, identifying new opportunities for the business. Your Profile Essential skills / knowledge / experience: Skilled in architecture design for systems and the underlying security infrastructure (i.e. firewalls). Holder a recognised, current security certificate … e.g., CISSP / CISM). Experienced in managing operational security activities. Solid understanding of regulatory and compliance requirements, including security frameworks such as NISTCSF, ISO 27001 and GDPR. Demonstrable experience with security technologies and architectures. Previous experience advising software development teams and agile delivery methods. … low latency applications. Good communication and negotiation skills. A team player. Result oriented. Possess good problem-solving skills, planning and organizing skills. Desirable skills / knowledge / experience: Experience of designing security architecture within the retail sector. Rewards & Benefits TCS is consistently voted a Top Employer in the More ❯

How you will contribute: Lead and manage a small team of Information Security Analysts, providing direction, support and development. Own and maintain our ISO 27001 Information Security Management System (ISMS), ensuring compliance and continuous improvement. Drive the implementation of Cyber Essentials Plus and other key security … for security compliance and manage associated risks. What you will bring: Proven experience managing an ISO 27001 ISMS and achieving / maintaining certification. Strong understanding of Cyber Essentials Plus and experience implementing it. Solid knowledge of information security principles, risk management and compliance. Experience leading More ❯

How you will contribute: Lead and manage a small team of Information Security Analysts, providing direction, support and development. Own and maintain our ISO 27001 Information Security Management System (ISMS), ensuring compliance and continuous improvement. Drive the implementation of Cyber Essentials Plus and other key security … for security compliance and manage associated risks. What you will bring: Proven experience managing an ISO 27001 ISMS and achieving / maintaining certification. Strong understanding of Cyber Essentials Plus and experience implementing it. Solid knowledge of information security principles, risk management and compliance. Experience leading More ❯

How you will contribute: Lead and manage a small team of Information Security Analysts, providing direction, support and development. Own and maintain our ISO 27001 Information Security Management System (ISMS), ensuring compliance and continuous improvement. Drive the implementation of Cyber Essentials Plus and other key security … for security compliance and manage associated risks. What you will bring: Proven experience managing an ISO 27001 ISMS and achieving / maintaining certification. Strong understanding of Cyber Essentials Plus and experience implementing it. Solid knowledge of information security principles, risk management and compliance. Experience leading More ❯

to a cloud environment, ideally AWS is ideal. So what do you need to be successful in this role? Industry experience in an Information / Cyber Security role Experience in information security management: This includes using industry-standard frameworks like NIST CSF, ISO 27001, or … SOC2 Familiarity with SDLC Knowledge of completing security audits i.e Cyber Essentials or ISO 27001 Technical knowledge and experience in Windows, AWS, Active Directory, Firewalls and MITRE Att&ck. Ability to commit to one day per week at their Stockport office If this sounds like you More ❯