76 to 100 of 547 Remote ISO/IEC 27001 Jobs

processes and activities Support the Head of Security and Infrastructure across all functional areas within the security department Liaise with with our Privacy, Governance, Infrastructure, IT Operations, and Product / Engineering teams on all security matters Ensure tools are running correctly Ensure the integrity of our data Investigate Events of Interest (EoIs) Act upon alerts Continuous learning development Documentation … demonstrate knowledge and commitment to cybersecurity: CompTIA Security+ Certified Ethical Hacker (CEH) CompTIA Network+ ISO 27001 Foundation or Practitioner AWS Certified Security Familiarity with TCP / IP, DNS, firewalls, VPNs, and VLANs. Basic experience with SIEMs and security logs Understanding of vulnerability management practices Understanding of penetration testing, Threat Hunting, Red Teaming methodologies Familiarity with More ❯

ensuring compliance with security standards, managing incidents, and collaborating with internal and external stakeholders. Key Responsibilities : Lead and manage the Cyber Security Operations team. Ensure compliance with security standards (ISO27001, NCSC CAF). Manage security incidents and vulnerabilities. Collaborate with third-party suppliers and internal teams. Provide expert advice on security technologies and processes. Requirements : Proven team leadership experience.Strong knowledge … 2.Engaging and building relationships with a range of stakeholders to support delivery of business outcomes. 3.Developing, implementing, and maintaining effective control monitoring activities, ensuring compliance with Information Security Standards ISO27001, NHS DSPT, NCSC CAF 4.Experience of managing security technologies including; firewalls, anti-malware, IDS / IPS, web filtering, email filtering, SIEM, patch management, MDM, DLP 5.Designing and recommending appropriate … deliver organisational goals and objectives 3.Engaging and building relationships with a range of stakeholders to support delivery of business outcomes. 4.Experience & Demonstratable knowledge of Information Security practices such as ISO27001, DSPT.CAF, ITHC, Monitoring and auditing. 5.The production of ICT security reports / MI for relevant parties 6.Experience in security due diligence and security assurance reviews of 3rd party suppliers. More ❯

making Handle sensitive and confidential data in accordance with internal policies and compliance requirements Assist in the review and tracking of Third-Party Security Assessments Provide support for ISO audit activity and on-site auditor coordination when required Essential skills and experience - Strong skills … in Microsoft Excel, including pivot tables, charts, and data cleaning Proficient in Power BI for creating dashboards and reporting security metrics Working knowledge of international standards and frameworks, including: ISO27001, ISO27017, GDPR, Cyber Essentials Plus High attention to detail and a structured, analytical approach to problem-solving Ability to communicate clearly and professionally with both technical and non-technical stakeholders … in a regulated environment or working with cyber security standards Exposure to information governance, risk, or privacy practices Familiarity with ticketing systems or risk management tools Experience supporting ISO audits or assisting in audit preparation Previous experience in a Junior Cyber Security Analyst, Information Security Assistant, or similar entry-level security role What the client offers - A supportive More ❯

search of the best people to join our ever-growing talented team. Responsibilities: Design and maintain a robust technology control testingframework aligned with risk management standards (e.g.,NIST, ISO 27001, COBIT, ITIL). Develop and update testing methodologies, ensuring theyaddress key risks related to IT infrastructure, cybersecurity,cloud services, and software development. Establish and maintain control … operational processes, riskframeworks, and regulatory requirements. Proficiency in using governance, risk, and compliance(GRC) tools and control testing platforms. Familiarity with IT control frameworks such as NISTCybersecurity Framework, ISO 27001, and COBIT. Proficiency with GRC platforms and testing tools (e.g., RSAArcher, ServiceNow, or LogicGate). Advanced knowledge of data analysis tools (e.g., Excel,SQL) and reporting More ❯

roles, ideally in a hybrid cloud environment Strong technical understanding of cloud security, particularly AWS Experience leading incident response and security operations Familiarity with compliance standards such as ISO 27001, SOC 2, HIPAA, GDPR Excellent communication skills; able to influence both technical and non-technical stakeholders Project management capabilities and experience delivering key security initiatives More ❯

Information Security / Information Privacy SME (Contract) Location: Central London (Hybrid – 2 days onsite per week) Contract: Inside IR35 or Umbrella Engagement Duration: 6–12 months (with potential extension) Industry: Private Banking / Wealth Management Role Overview: We are seeking a highly experienced Information Security / Information Privacy Subject Matter Expert (SME) to support a leading private … and ISO 27001 audits. Stay current on emerging threats, regulatory changes, and industry best practices. Required Skills & Experience: Proven experience in Information Security, Cybersecurity, and / or Information Privacy. Deep understanding of regulatory frameworks: GDPR, DPA 2018, ISO 27001, NIST , and FCA guidelines. Strong knowledge of security controls, data lifecycle management … sector is essential. Demonstrated ability to engage with C-level stakeholders and influence decision-making. Relevant certifications preferred: CISSP, CISM, CISA, ISO 27001 Lead Implementer / Auditor, CIPM, or similar. Excellent written and verbal communication skills. More ❯

Information Security / Information Privacy SME (Contract) Location: Central London (Hybrid - 2 days onsite per week) Contract: Inside IR35 or Umbrella Engagement Duration: 6-12 months (with potential extension) Industry: Private Banking / Wealth Management Role Overview: We are seeking a highly experienced Information Security / Information Privacy Subject Matter Expert (SME) to support a leading private … and ISO 27001 audits. Stay current on emerging threats, regulatory changes, and industry best practices. Required Skills & Experience: Proven experience in Information Security, Cybersecurity, and / or Information Privacy. Deep understanding of regulatory frameworks: GDPR, DPA 2018, ISO 27001, NIST , and FCA guidelines. Strong knowledge of security controls, data lifecycle management … sector is essential. Demonstrated ability to engage with C-level stakeholders and influence decision-making. Relevant certifications preferred: CISSP, CISM, CISA, ISO 27001 Lead Implementer / Auditor, CIPM, or similar. Excellent written and verbal communication skills. Reasonable Adjustments: Respect and equality are core values to us. We are proud of the diverse and inclusive community More ❯

role in managing security incidents, audits, and vulnerability programs, while mentoring junior team members and helping shape the future of cybersecurity at Skillcast. Key Responsibilities: - Coordinate SOC 2, ISO 27001, and Cyber Essentials audits – including documentation, evidence management, gap analysis, and communication with auditors - Administer and enhance Azure Sentinel SIEM – including data source configuration, detection rule … stakeholder coordination, and remediation tracking - Implement and manage security controls across Azure and Kubernetes environments, ensuring scalable and secure architecture - Work closely with DevOps to embed security in CI / CD pipelines and infrastructure-as-code processes - Enforce security policies, standards, and procedures aligned with frameworks like ISO 27001 and NIST - Monitor and report on … You: - Bachelor’s degree in Cybersecurity, Computer Science, Information Technology, or related field - 5+ years of experience in cybersecurity and IT infrastructure roles - Hands-on experience with Azure, Kubernetes / Docker, and CI / CD security practices - Proficient in SIEM platforms (especially Azure Sentinel) and vulnerability management tools - Strong knowledge of incident response, infrastructure hardening, and cloud security More ❯

role in managing security incidents, audits, and vulnerability programs, while mentoring junior team members and helping shape the future of cybersecurity at Skillcast. Key Responsibilities: - Coordinate SOC 2, ISO 27001, and Cyber Essentials audits – including documentation, evidence management, gap analysis, and communication with auditors - Administer and enhance Azure Sentinel SIEM – including data source configuration, detection rule … stakeholder coordination, and remediation tracking - Implement and manage security controls across Azure and Kubernetes environments, ensuring scalable and secure architecture - Work closely with DevOps to embed security in CI / CD pipelines and infrastructure-as-code processes - Enforce security policies, standards, and procedures aligned with frameworks like ISO 27001 and NIST - Monitor and report on … You: - Bachelor’s degree in Cybersecurity, Computer Science, Information Technology, or related field - 5+ years of experience in cybersecurity and IT infrastructure roles - Hands-on experience with Azure, Kubernetes / Docker, and CI / CD security practices - Proficient in SIEM platforms (especially Azure Sentinel) and vulnerability management tools - Strong knowledge of incident response, infrastructure hardening, and cloud security More ❯

Operations Centre (SOC). - Support compliance with relevant standards (e.g. ISO 27001, NIST, UK GDPR). - Review security aspects of tenders and conduct third-party / vendor risk assessments to ensure alignment with organisational security requirements. - Perform additional security-related tasks as directed by the Head of Information Security You will Ideally have - - Proven experience … endpoint, and cloud security. - Ability to assess and communicate technical vulnerabilities in business terms. - Experience working with or within a SOC environment. - Familiarity with risk management frameworks?(e.g. ISO 27005, NIST RMF). - Excellent communication and reporting skills. - Relevant certifications (e.g. CISSP, CISM, CRISC, CEH). - Experience with GRC tools and risk registers. - Knowledge of regulatory requirements and … You will always however hear from us by phone if we are able to take your CV forward to the next stage. You can also follow us at Twitter / Facebook / LinkedIn or via our website . More ❯

Information Security Delivery Manager IR35 Status: Inside IR35 Rate: £700 / day Contract Length: Initial 6 months Office Location: Central London Hybrid Model: 3 days per week in office, 2 days remote About the Role: We are seeking an experienced Information Security Delivery Manager to lead the end-to-end delivery of critical security projects for a global leader … development, financial planning, and stage-gate approvals. Collaborate with cross-functional teams (Cybersecurity, IT, Audit) to identify risks, remediate gaps, and ensure compliance. Oversee third-party engagements, including RFPs / RFIs and vendor performance. Align projects with industry frameworks (NIST, ISO 27001) and leverage technologies like IAM (SailPoint), cloud security, SIEM, and MS Defender. Report … to senior leadership and interface with PMO, Finance, and Portfolio teams. Required Experience: 5+ years in delivering complex InfoSec projects (financial / trading sector preferred). Proven expertise in IAM, cloud security, vulnerability management, and third-party risk. Certifications: PRINCE2, MSP, PMP, or APM (CISM / CRISC / ITIL desirable). Strong stakeholder management and experience in More ❯

Information Security Delivery Manager IR35 Status: Inside IR35 Rate: £700 / day Contract Length: Initial 6 months Office Location: Central London Hybrid Model: 3 days per week in office, 2 days remote About the Role: We are seeking an experienced Information Security Delivery Manager to lead the end-to-end delivery of critical security projects for a global leader … development, financial planning, and stage-gate approvals. Collaborate with cross-functional teams (Cybersecurity, IT, Audit) to identify risks, remediate gaps, and ensure compliance. Oversee third-party engagements, including RFPs / RFIs and vendor performance. Align projects with industry frameworks (NIST, ISO 27001) and leverage technologies like IAM (SailPoint), cloud security, SIEM, and MS Defender. Report … to senior leadership and interface with PMO, Finance, and Portfolio teams. Required Experience: 5+ years in delivering complex InfoSec projects (financial / trading sector preferred). Proven expertise in IAM, cloud security, vulnerability management, and third-party risk. Certifications: PRINCE2, MSP, PMP, or APM (CISM / CRISC / ITIL desirable). Strong stakeholder management and experience in More ❯

network services in line with design and security policies. Monitoring and administering the installation and integration of corporate network communications, including routers, switches, firewalls, DMZ, servers, telephony and LAN / WAN communication services. Managing the IP space across the organisation ensuring VLANs, IP Subnet, DNS, DHCP, VPNs, and VoIP traffic is well designed, secure and optimised. Ensuring best practices … security. Planning lifecycle renewals, "hotswap" procedures and emergency hardware failure protocols. Providing regular service status updates to line management and agree and monitor service availability targets. Ensuring the active / active WAN bandwidth and connectivity services are sufficient, balanced and perform efficiently. Planning and testing failover of critical operational services. Researching latest networking developments and recommend any actions that … accreditation is preferred. Experience in a Technical IT role maintaining secure networks in a MS Windows environment in a multi-disciplined organisation. Expert knowledge of and experience in LAN / WAN / VLAN communications, VPN configuration and enterprise wireless networking. Experience of Dell switches with fibre is preferable. CCNA / CCNP accreditation is a bonus but is More ❯

network services in line with design and security policies. Monitoring and administering the installation and integration of corporate network communications, including routers, switches, firewalls, DMZ, servers, telephony and LAN / WAN communication services. Managing the IP space across the organisation ensuring VLANs, IP Subnet, DNS, DHCP, VPNs, and VoIP traffic is well designed, secure and optimised. Ensuring best practices … security. Planning lifecycle renewals, 'hotswap' procedures and emergency hardware failure protocols. Providing regular service status updates to line management and agree and monitor service availability targets. Ensuring the active / active WAN bandwidth and connectivity services are sufficient, balanced and perform efficiently. Planning and testing failover of critical operational services. Researching latest networking developments and recommend any actions that … accreditation is preferred. Experience in a Technical IT role maintaining secure networks in a MS Windows environment in a multi-disciplined organisation. Expert knowledge of and experience in LAN / WAN / VLAN communications, VPN configuration and enterprise wireless networking. Experience of Dell switches with fibre is preferable. CCNA / CCNP accreditation is a bonus but is More ❯

and maintenance of our Information Security Management System (ISMS) including policies, objectives, and risk assessments Assist with internal audits and help prepare for external audits to maintain compliance with ISO27001 and other standards Help identify and assess information security risks, working closely with the Cyber Risk Manager Provide guidance to colleagues on basic security best practices and requirements Contribute to … to confidentiality and professionalism Qualifications A bachelor's degree in computer science, information technology, cyber security, or a related field Experience and knowledge Familiarity with information security frameworks, especially ISO27001 (2013 or 2022) Basic understanding of risk management principles and security controls Interest in developing expertise in auditing, compliance, and risk Desirable (nice to have) Knowledge of other standards or … to become a specialist in your field or climb to the top, we'll support you every step of the way. Job Info Job Identification 23936 Posting Date 07 / 01 / 2025, 09:07 AM Job Schedule Full time Locations 64 Newman Street, London, GT LON, W1T 3EF, GB Crawley Court, Winchester, HANTS, SO21 2QA, GB More ❯

and maintenance of our Information Security Management System (ISMS) including policies, objectives, and risk assessments Assist with internal audits and help prepare for external audits to maintain compliance with ISO27001 and other standards Help identify and assess information security risks, working closely with the Cyber Risk Manager Provide guidance to colleagues on basic security best practices and requirements Contribute to … to confidentiality and professionalism Qualifications A bachelor's degree in computer science, information technology, cyber security, or a related field Experience and knowledge Familiarity with information security frameworks, especially ISO27001 (2013 or 2022) Basic understanding of risk management principles and security controls Interest in developing expertise in auditing, compliance, and risk Desirable (nice to have) Knowledge of other standards or … to become a specialist in your field or climb to the top, we'll support you every step of the way. Job Info Job Identification 23936 Posting Date 07 / 01 / 2025, 09:07 AM Job Schedule Full time Locations 64 Newman Street, London, GT LON, W1T 3EF, GB Crawley Court, Winchester, HANTS, SO21 2QA, GB More ❯

with business and technical teams to ensure security controls are implemented and effective Assist in preparing for and responding to regulatory audits and compliance reviews (e.g., NIST CSF, ISO 27001, DORA, GDPR. ITGC) Maintain and update the information security risk register with appropriate scenarios and control frameworks Conduct regular control testing, evaluation and reporting findings to … progressive experience in information security risk management, risk management, or compliance Strong understanding of information security frameworks (e.g., ISO 27001, NIST) Experience with GRC tools / platforms Excellent organisational, communication, and documentation skills Ability to work independently and cross-functionally in a fast-paced environment Industry certifications such as CISA, CRISC, CISSP, CISMis preferred Our More ❯

grow. This is a cross-functional, hands-on role with a strong strategic lens -you'll own our information security posture end-to-end, ensuring we maintain our ISO 27001 accreditation, while preparing for other relevant accreditations (such as SOC2 and Cyber Essentials). You'll proactively manage risks and help create a secure environment where … ll Do Information Security Leadership Own and evolve our ISMS (Information Security Management System), ensuring it remains fit for purpose as we scale. Maintain and advance compliance across ISO 27001, SOC2, Cyber Essentials, GDPR, and any emerging frameworks (e.g. PCI DSS, AI governance), ensuring we are audit-ready. Identify, assess, and mitigate security risks across infrastructure … handling. Secure Tooling and IT Ops Oversight Guide secure configuration and ongoing management of tools like Kandji, Twingate, and 1Password. Oversee secure onboarding and offboarding workflows from a systems / access perspective, reducing risk during personnel changes. Partner with internal stakeholders to manage vendor selection and SaaS procurement, balancing usability, security and cost. Proactively monitor access controls, audit trails More ❯

SOC Tier 3 Analyst 6 Month contract initially Based: Remote / Reading - Hybrid. Max 3 days p / w onsite. Rate: Market rates p / d (via Umbrella company) We have a great opportunity with a world leading organisation where you will be provided with all of the support and development to succeed. A progressive organisation where … actions are taken to block further attacks. 5. Compliance and Risk Management: o Ensure all incident response activities align with industry standards, regulations, and best practices (e.g., NIST, ISO 27001, GDPR, HIPAA). o Work with legal and compliance teams to manage incidents within the scope of data privacy laws and regulations. Key Skills & Experience: o … methods. o Strong experience in handling complex cyber incidents (e.g., APTs, ransomware, data breaches). o Hands-on experience with SIEM platforms (e.g., Splunk, ArcSight, LogRhythm) and endpoint detection / response (EDR) tools. *Certifications (Preferred ): o Certified Information Systems Security Professional (CISSP) o Certified Incident Handler (GCIH, EC-Council) o Certified Forensic Computer Examiner (CFCE) o GIAC Certified Forensic More ❯

Active Directory, and Azure AD Ability to understand and articulate interoperability between technologies and design pragmatic security solutions for the bank Effective collaboration with internal and external SMEs / partner organizations Experience with frameworks such as ISO 27001 / 2, SOC, NIST, or COBIT About You Skills Recognized leading security qualification or working towards More ❯

details About the role Are you driven by a strong sense of integrity and a passion for safeguarding digital infrastructure? We are looking for a proactive and experienced Cyber / Information Security Lead to join our 3C ICT Shared Services team. In this pivotal role, you will uphold the highest standards of confidentiality, integrity, and availability across our IT … 27001, Cyber Essentials Plus, and risk mitigation Relevant qualifications such as CISSP, CISM, Security+, or equivalent Strong technical understanding of network and application security, anti-virus / EDR, SIEM solutions, and vulnerability testing tools Excellent communication skills with the ability to explain complex technical issues to non-technical audiences A collaborative, analytical and proactive approach to More ❯

letter (maximum 1 A4 page) attached as a pdf document. Company: Information Governance Services Limited Job Title: Business Operations Manager Salary: £45,000 - £70,000 ( pro-rata) Full Time / Part Time: Part Time - 30 hours per week or Full Time 37.5 hours per week Contract: Permanent Start Date: Immediate Little about us We are a specialist data protection … Regulations (PECR); and Any new or developing data protection regulations. Lead IGS in obtaining compliance certification in areas of data protection and cyber security (e.g., Cyber Essentials and ISO 27001). Strategic planning Have a working understanding of data protection legislation and information governance practices to implement. Compile information from various sources to formulate a current More ❯

guiding clients through complex third-party audits. Key Responsibilities Cybersecurity Program Evaluation Lead cyber assurance engagements, assessing client cybersecurity programs for compliance with industry standards such as NIST, ISO 27001, and other relevant frameworks. Act as a trusted advisor, ensuring client cybersecurity postures are resilient, compliant, and in line with regulatory requirements. Vulnerability Assessment and Penetration … management, and regulatory compliance audits. Proven track record of leading cyber assurance engagements and guiding clients through risk management and compliance processes based on industry frameworks (e.g., NIST, ISO 27001). Expertise in managing third-party audits and ensuring regulatory compliance across audit lifecycles. In-depth understanding of regulatory frameworks, with hands-on experience delivering compliance … projects. Education & Certifications: Bachelor's or master's degree in information security, Computer Science, Engineering, or a related field. Relevant certifications such as CREST, OSCP, CISSP, CISM, CISA, ISO 27001 Lead Auditor, SANS, or other recognized credentials in cybersecurity, third-party risk management, and compliance auditing. Skills: Strong commercial acumen, with proven ability to generate new More ❯

and make sure to attach relevant documents. Key Responsibilities Cybersecurity Program Evaluation Lead cyber assurance engagements, assessing client cybersecurity programs for compliance with industry standards such as NIST, ISO 27001, and other relevant frameworks. Act as a trusted advisor, ensuring client cybersecurity postures are resilient, compliant, and in line with regulatory requirements. Vulnerability Assessment and Penetration … management, and regulatory compliance audits. Proven track record of leading cyber assurance engagements and guiding clients through risk management and compliance processes based on industry frameworks (e.g., NIST, ISO 27001). Expertise in managing third-party audits and ensuring regulatory compliance across audit lifecycles. In-depth understanding of regulatory frameworks, with hands-on experience delivering compliance … projects. Education & Certifications: Bachelor's or master's degree in information security, Computer Science, Engineering, or a related field. Relevant certifications such as CREST, OSCP, CISSP, CISM, CISA, ISO 27001 Lead Auditor, SANS, or other recognized credentials in cybersecurity, third-party risk management, and compliance auditing. Skills: Strong commercial acumen, with proven ability to generate new More ❯

which will direct you to our careers site. If you require any adjustments to assist you in applying, please contact We are seeking a proactive and detail-oriented IGA / IAM / PAM Analyst to join our Information Security team. In this role, you will help protect the data of our members and employees by supporting the governance … privilege principles. Audits and Reviews: Participate in regular audits and access reviews to meet regulatory requirements. System Administration: Administer access to core banking systems, cloud platforms (e.g., Microsoft 365 / Azure AD), and business applications. Secure Authentication: Support secure authentication solutions like single sign-on (SSO), multi-factor authentication (MFA), and identity federation for staff and partners. Documentation and … your best in your current role and to support your future career aspirations. For all full-time roles we work a 35-hour working week to promote a work / life balance, we want you to be at your best inside and outside of work. A friendly and inclusive culture where teams genuinely strive to do the right thing More ❯