101 to 125 of 446 Remote ISO/IEC 27001 Jobs

trends. Partner with teams across the globe to design, implement, and test security tools and controls. Lead the journey to achieving and maintaining ISO 27001 certification. Stay sharp on cybersecurity developments, translating new risks and regulations into meaningful action. Drive cultural change by creating impactful cybersecurity … You Bring to the Table We're looking for a curious, thoughtful, and detail-oriented professional. Hands-on experience implementing and auditing against ISO 27001 standards. A solid foundation in enterprise-level Information Security practices. Strong analytical skills and a calm approach under competing demands. Familiarity … 2010. For the purposes of the Conduct Regulations 2003, when advertising permanent vacancies we are acting as an Employment Agency, and when advertising temporary / contract vacancies we are acting as an Employment Business. More ❯

or lead auditor in all matters relating to Digital Assurance (SOC 1 / 2 / 3, ISAE 3402, ISAE3000) and Certification (ISO27001). On a daily basis, your job will consist of communicating and keeping close contact with our clients, creating and presenting commercial offers, managing financials … / budget and leading attestation and / or certification engagements within a project team of approximately 2-5 people. Within our team, we strongly believe in a cooperative, supporting and knowledge sharing mindset and as such knowledge sharing to members is considered a key responsibility. You will be … least 5 to 6 years of practical experience in IT attestation reports (SOC 1 / 2 / 3, ISAE3402 and ISAE3000) and ISO27001 certification audits. Any additional certification (ISO lead auditor, CISA, CISM, CIPP / e, CIPT, CIPM, CISSP, or other) or knowledge / More ❯

cyber resilience controls to embedded systems. It would be desirable, but not essential , if you also had one or more of: Practical experience of ISO27001 / 27004 / 27005 or NIST Risk Management Framework (RMF); Knowledge of UK / NATO Information Assurance / Accreditation frameworks; Knowledge … of EASA / FAA Airworthiness Certification frameworks; Awareness of current crypto technologies, Key Management Systems & practical COMSEC; Chartered Engineer status with a recognised body; Awarded or looking to achieve an NCSC Certified Cyber Professional (CCP) recognition; Awareness of Information Security (INFOSEC), Communications Security (COMSEC), Transmission Security (TRANSEC), Product Safety … and their inter-relationship; Experience of producing and delivering training / awareness material within a corporate environment; Familiarity with incident investigation and implementation of an investigation process such as used by the Air Accidents Investigation Branch (AAIB). Why Leonardo? The business, primarily based in Luton, has a rich More ❯

improving our ability to prevent, detect, respond to, and recover from cyber incidents which could disrupt critical water and waste services, or compromise information / data. What you'll be doing as a Cyber Resilience Analyst: Support the development, testing, and refinement of cyber incident response planning. Ensuring the … Resilience, Compliance, and Operations with aligning incident management plans and training with industry standards, including the NIS Directive, Cyber Essentials, and ISO / IEC 27001. Advise on best practices for compliance with national and international resilience frameworks. Working pattern: Monday to Friday 36 hours Necessary … role: Deep understanding of incident response methodologies (cyber preferred- including detection, containment, remediation, and recovery). Experience in coordinating the delivery of incident exercising / testing and embedding improvements. Proficiency in incident management tools and cybersecurity technologies. Ability to engage and educate stakeholders at all levels. Proven experience in More ❯

create and ensure compliance with industry regulations and company-specific policies. Implementing and maintaining Information Security and Privacy Standards and Frameworks, such as ISO 27001, NIST, and CIS. Reviewing system and data architectures alongside engineering teams and architects, recommending best practices. Assessing vulnerabilities, articulating their impact … technical stakeholders. Managing and supporting project stakeholder expectations with a flexible, pragmatic approach. Cyber Governance Analyst Requirements: Strong knowledge of cybersecurity frameworks (e.g., ISO 27001, NIST, CIS). Proven experience in a similar role, supporting governance, monitoring controls, and managing risks. Ability to assess and articulate … for enhanced flexibility. We are an equal opportunities employer and welcome applications from all suitably qualified persons regardless of their race, sex, disability, religion / belief, sexual orientation or age. More ❯

architects and engineers to support the implementation, optimisation, and operation of the IDAM platform. Define and enhance identity governance policies , ensuring alignment with ISO 27001, GDPR, and NIST frameworks. Provide compliance reports and risk assessments , helping to mitigate identity-related security risks. Act as an IDAM … the ‘customer’ for an IDAM solution , influencing technical teams and ensuring the platform meets business needs. Familiarity with compliance and security standards like ISO 27001, GDPR, and NIST . Strong stakeholder management skills , working with security teams, IT leaders, and engineers. Experience in IAM management, identity … Work Scheme : Save up to 42% on bikes, including electric options. Medicash : Reclaim costs on dental, physio, and optical treatments. Employee Assistance Programme : 24 / 7 confidential support for you and your family. Carbon-Free Travel : Discounts on electric and hybrid vehicles. Learning & Development : Support for professional training and More ❯

ideal candidate will possess the following: Proven experience working with information security controls and regulatory standards (e.g., NIST, ISO 27001 / 2, COBIT). Experience in developing and maintaining Information Security policies and standards that support an improvement in security culture. A passion for driving More ❯

to liaise effectively with internal teams and external partners. Detail-oriented with the ability to track and manage multiple tasks simultaneously. Familiarity with ISO 9001, ISO 27001, and ISO 14001 standards is a plus. Why Join Us? At our client, you'll More ❯

to liaise effectively with internal teams and external partners. Detail-oriented with the ability to track and manage multiple tasks simultaneously. Familiarity with ISO 9001, ISO 27001, and ISO 14001 standards is a plus. ### Why Join Us? At our client, you More ❯

London, United Kingdom Posted on 24 / 02 / 2025 Job Description: Security Testing Engineer Location: Remote with occasional travel as required Employment Type: Permanent About the Role Scrumconnect Consulting is looking for a Security Testing Engineer to ensure the security, resilience, and compliance of GOV.UK digital services … GOV.UK digital services. Identify security vulnerabilities through static and dynamic application security testing (SAST & DAST) . Ensure security testing is seamlessly integrated into CI / CD pipelines and DevSecOps processes. Define security requirements and best practices, aligning with government security policies . 2. Functional & Non-Functional Security Testing Conduct … Burp Suite, Nessus, Metasploit, Nikto, or equivalent . Experience in API security testing using Postman, SoapUI, or REST-Assured . Strong understanding of CI / CD security, DevSecOps, and cloud security best practices (Azure, AWS, GCP) . Ability to simulate attack scenarios and conduct penetration testing on applications and More ❯

The Information Security Director develops, shapes, and maintains Sycurio's information security capability, driving the attainment and maintenance of the ISO27001, PCI-DSS, and SOC2 compliance. They are the subject matter expert on all things regarding security and compliance, owning the information risk management processes. They are the thought leader … relevant parties and providing assurance of policies, procedures, and systems. Develop, maintain, and expand the information security management system ('ISMS') to optimise compliance for ISO27001, PCI-DSS, and SOC2. Identify gaps in the information security capability, both technical and operational, and propose remediation and mitigation plans and solutions. Responsible for … or related field (Master's preferred). Industry certifications such as CISSP, CISM, CISA, or equivalent. Experience: 10+ years of information security experience. Financial / Fintech services / payments desirable. Deep knowledge of security frameworks (PCI, ISO 27001, NIST) and regulations (GDPR, CCPA). More ❯

and has a generous rollover, 11 company paid Holidays, and 401(k) with immediate contribution. Where you'll work: This is a hybrid onsite / remote opportunity where you will report to the customer location in Falls Church, VA and have the flexibility to work from home based on … monitoring, analyzing, and mitigating security threats. The individual in this position will operate within a cross-functional team that supports secure data productization, AI / ML initiatives, automation engineering, and overall pipeline optimization. In this position you will: Implement and maintain security policies, standards, and procedures to protect organizational … coordinate with relevant stakeholders, and document findings for continuous improvement. Collaborate with cross-functional teams to integrate security best practices into data pipelines, AI / ML models, and automated workflows. Perform periodic risk assessments, suggest mitigations, and track remediation efforts to ensure compliance with industry regulations. Work with DevOps More ❯

27001, Cyber Essentials , and internal policies. ✔ User Support : Resolve 2nd-line issues for workstations, networks, and peripherals. ✔ Disaster Recovery : Execute backup / recovery plans and respond to outages. ✔ Security Patching : Manage updates for endpoints, firewalls, and EDR tools (e.g., CrowdStrike, Microsoft Defender ). ✔ Account Management : Administer … user access rights in line with security policies. Skills & Experience ✅ 5+ years in desktop / server support, networking, or security operations. ✅ Technical Proficiency : Microsoft / VMware / Cloud technologies. Firewalls, SIEM (e.g., Microsoft Sentinel ), and EDR tools. WAN / LAN and endpoint security (patch management, AV More ❯

Andover, United Kingdom Posted on 16 / 04 / 2025 Duration: Initial 6 month contract with possible extension Location: Hybrid - Andover (onsite 2 days per fortnight) Rate: Day rate inside IR35, PAYE via a payroll company Role / Duties / Responsibilities As a principal analyst, there … is an expectation of operating in line with SFIA5 - to be proactive and develop their own work; Check / inform the SOC manager in terms of priority / progress and raise risk / dependency as needed. SOC Support, Development and Maturation (SFIA Level 5) deliverables include but … support and, if necessary, action on Security Incidents raised and typical associated SOC Level 2 duties. Support 1st line analyst triage and escalation. Build / Develop Use Cases - Develop use case and facilitation, threat modelling and translation of operational requirements into SOC SIEM tool. Focus on insider threat and More ❯

to replace legacy on-premises applications, further reinforcing it as the single data source for our business users. Hybrid working Inside IR35 Key Deliverables / Responsibilities Lead the development of Dynamics 365 CRM solutions and integrated systems To act as the conduit for work requirements to more junior devs … visualisation using available platforms, such as PowerBI, CRM Dashboards and SSRS Participate in all aspects of the platform's development life cycle Key Skills / Experience Led the Development and support of Microsoft Dynamics 365 Development of CRM extensions and plugins with C# and JavaScript Development experience using Web … Platform (Power Apps, Power Automate etc.) Data analysis skills to assist in the troubleshooting of data related problems to provide resilient fixes Desirable Skills / Experience Simego synchronisation Power BI Microsoft SQL / SSIS / SSRS PowerShell Microsoft SharePoint Understanding of ISO 27001 More ❯

Here at Action For Humanity (AFH), we are looking for Senior Architect / Architect - Information Security to join us at our International Office in Manchester. You will join us on a full-time basis and in return you will receive a competitive annual salary. AFH is an INGO that … emergencies and critical needs through humanitarian, development and peace-building action, helping affected communities survive, recover and build a better future. The Senior Architect / Architect - Information Security will lead the design and implementation of security frameworks within a Microsoft-centric environment. The ideal candidate will have extensive hands … compliance with security policies. Support secure DevOps (DevSecOps) methodologies in IT and software development environments. What we are looking for in our Senior Architect / Architect - Information Security: Education Microsoft Certifications: Microsoft Certified: Cybersecurity Architect Expert, Microsoft Certified: Security, Compliance, and Identity Fundamentals (SC-900), Microsoft Certified: Azure Security More ❯

Security NI / GB / ROI Fully Remote Corporate Security Engineer (GRC) TL;DR: We're seeking a Corporate Security Engineer to l ead our GRC, Regulatory and Internal Corporate security efforts to help keep Cloudsmith - a world-class, security-first company powering the future of software delivery … You'll be responsible for leading our Governance, Risk and Compliance programme, ensuring we achieve and maintain industry best practices and standards such as ISO27001, SOC2 and others as Cloudsmith expands and meets its customers' requirements. Additionally, you will be responsible for ensuring the secure configuration, hardening, and monitoring of … vendors Cloudsmith utilises are also adhering to best practices. Key Responsibilities Governance, Risk and Compliance Help Cloudsmith maintain and expand its regulatory Frameworks, including ISO27001, SOC2 and other industry-leading standards, to define our security-first best practices and lead by example for our customers. (Utilising Vanta) Lead Vendor Security More ❯

Main duties of the job Software Development & System Integration Design, develop, and maintain web-based internal & public facing applications and interfaces using Python (Django / Flask / Streamlit) and modern web frameworks. Develop and maintain RESTful / GraphQL APIs and system integrations to enable seamless data exchange … tools that support data processing and analytics workflows. DevOps & Cloud Infrastructure Deploy and manage applications on the Azure cloud platform. Implement and manage CI / CD pipelines to ensure smooth deployment processes. Automate infrastructure provisioning using Infrastructure as Code (IaC) tools where required. Monitor system performance and troubleshoot application … our future opportunities and continue our transformation journey. Benefits Flexible working hours Hybrid working Living Wage Employer NHS Pension Scheme NHS Blue light card / discount scheme Career development Generous holiday entitlement, long service enhancements and the option to purchase additional leave Wellbeing schemes Person Specification Experience Essential Experience More ❯

cloud security, incident management, intrusion detection, vulnerability and patch management, and other related concepts and technologies. Experience with security tools such as SIEM, EDR / XDR, forensics tools, firewalls, IDS / IPS, vulnerability management platforms, etc. Experience with computer incident response, including data collection, investigations, containment, and remediation … or a related information security or computer forensics certification. Experience with cloud environments, such as Microsoft Azure, Amazon AWS, Google GCP, etc. Physical Demands / Working Conditions Typical office environment. Work Schedule Monday to Friday 8:30am to 5:00pm. Required some nights and weekends. Team on-call participation … bargaining agreement. Salary Information Level 30 PSU Hiring Ranges Special Instructions to Applicants Along with the application, please submit a resume (and cover letter / optional). References will be checked at the finalist stage, please be prepared to provide contact information for three (3) professional references. UMass Amherst More ❯

be a great fit for this role if you have: Solid experience in DevOps and Platform Engineering . Git and version control workflows CI / CD tools (Jenkins, GitHub Actions, GitLab etc.) Container platforms (Docker, Kubernetes) Infrastructure-as-code (Terraform, Ansible, Pulumi, CloudFormation) Cloud platforms (AWS, Azure, GCP) Security … engineering tools and practices: SAST / DAST tools (Checkmarx, Veracode, SonarQube) Container security (Aqua, Snyk, Anchore) Programming and scripting languages (Python, Go, YAML, JSON etc.) A background in financial services or similar regulated industries. Familiarity with compliance frameworks, and security requirements (e.g., ISO 27001, SOC … market strategies. Excellent written and verbal communication skills, with the ability to translate complex technical topics to both technical and non-technical stakeholders. AWS / Azure / GCP certifications, CISSP, CISM, or other security certifications are a plus Perks & Benefits Competitive salary. Generous equity plan. Remote-first working More ❯

management; Reporting and query system for analytics; Clinical text analysis using NLP; Collaboration system; Practice networking; Patient portal; Occupational health portal; PACS system (MRI / X-ray / Ultrasound); and much more Position Summary We run on our own machines in high-security data centres as well as … of a varied career in software development. Web application development experience. A willingness to use the functional paradigm rather than OOP. Desirable: SQL Server / any relational databases. TypeScript / modern UI frameworks. Compliance: Medical Management Systems is ISO 27001:2013 accredited and maintains … various other standards to ensure best practice and DPA2018 / GDPR compliance. As part of your role, you will be expected to undertake information security training on an annual basis. Furthermore, you will need to maintain awareness of and follow company policies on secure information handling. Diversity: Medical Management More ❯

checks, and developing policies to enhance resilience against cyber threats. We're looking for someone with: At least two years' experience in security and / or IT infrastructure within an enterprise environment Knowledge of security frameworks like Cyber Essentials, ISO 27001, and GDPR Experience with … is a fantastic opportunity to join a fast-paced, forward-thinking organisation with ambitious growth plans. Please apply or contact Tom at (url removed) / (phone number removed) to discuss further. ECS Resource Group are an Equal Opportunity Employer, for more information please click the following link: (url removed … accordance with the Equality Act 2010, if you require an alternative form of application please click the following link: Flexible Application Process - (url removed) / work / flexible-application-process More ❯

sponsorships Location: Detroit, MI Salary Range: $120-150k with excellent employee benefits REQUIRED EDUCATION AND EXPERIENCE: • Relevant Bachelor's degree in Computer Science / Information Technology or equivalent education or work experience with an emphasis on Cyber Security. • 5+ years of prior relevant experience in Cyber Security management … to identify signs of intrusion or compromise • Developing security policies, procedures and guidelines that are compliant with federal regulations • SOC II Type II and / or ISO 27001:22 certification management • Providing technical support for computer networks, including firewalls, operating systems and applications, patch management … has your back. When you work at OpTech, not only do you get health and dental benefits, but you also have training opportunities, flexible / remote work options, growth opportunities, 401K and competitive pay. OpTech is an equal opportunity employer and it committed to creating a diverse environment. All More ❯

Key Areas of Responsibility: Regulatory Implementation & Frameworks Assist in establishing a comprehensive resilience framework that meets DORA standards and other recognised guidelines (e.g. ISO 22301, ISO 27001, NIST). Draft internal controls, policies, training content, and risk assessment methodologies. Contribute to core DORA workstreams More ❯

Key Areas of Responsibility: Regulatory Implementation & Frameworks Assist in establishing a comprehensive resilience framework that meets DORA standards and other recognised guidelines (e.g. ISO 22301, ISO 27001, NIST). Draft internal controls, policies, training content, and risk assessment methodologies. Contribute to core DORA workstreams More ❯