1 to 25 of 58 ISO/IEC 27001 Jobs in Yorkshire

Job Title: Cyber Security Test Analyst Location: Sheffield, UK (3 days / week Onsite) Duration: 6months+ Banking Client Experience required Job Summary: Required Experience Proven experience in software testing, preferably within Privileged Access Management (PAM) or Identity & Access Management (IAM). Experience with PAM solutions such as CyberArk, BeyondTrust, Delinea (Thycotic), or Microsoft PAM. Strong understanding of IAM principles … . Proficiency in test management tools such as JIRA Strong problem-solving skills and attention to detail. Excellent communication and collaboration skills. Desirable: Experience working within an Agile (Scrum / Kanban) environment. Knowledge of CI / CD pipelines and DevSecOps practices. Experience with Cloud security testing (AWS, Azure, or Google Cloud). Certifications such as ISTQB, CISSP, CISM … or CyberArk Defender are a plus. Knowledge of security compliance standards (e.g., ISO 27001, GDPR, NIST, PCI-DSS). Kind Regards -- Priyanka Sharma Senior Delivery Consultant Office: 02033759240 Email: psharma@vallumassociates.com More ❯

PAM Test Analyst Sheffield - 3 days in the office mandatory Until 30 / 11 / 2025 £350-395 per day - Umbrella only Would you like to join a global leader in consulting, technology services and digital transformation? Our client is at the forefront of innovation to address the entire breadth of opportunities in the evolving world of cloud … . Proficiency in test management tools such as JIRA Strong problem-solving skills and attention to detail. Excellent communication and collaboration skills. Desirable: Experience working within an Agile (Scrum / Kanban) environment. Knowledge of CI / CD pipelines and DevSecOps practices. Experience with Cloud security testing (AWS, Azure, or Google Cloud). Certifications such as ISTQB, CISSP, CISM … or CyberArk Defender are a plus. Knowledge of security compliance standards (e.g., ISO 27001, GDPR, NIST, PCI-DSS). All profiles will be reviewed against the required skills and experience. Due to the high number of applications we will only be able to respond to successful applicants in the first instance. We thank you for your More ❯

SIEM) Experience with public cloud security (AWS, Azure, GCP) and an understanding of security best practices in those environments Understanding of enterprise security standards and frameworks such as ISO 27001, NIST CSF, OWASP Top … Strong communication skills, with an ability to convey technical security issues to non-technical stakeholders Exposure to security architecture frameworks (e.g., TOGAF, SABSA) Hands-on experience with CI / CD security, container security, or secure application design Familiarity with vulnerability management and threat modelling techniques Security certifications such as CISSP, CISA, or equivalent (or working towards) Why join us More ❯

failure. Essential Skills & Experience: At least 2 years of hands-on experience in information security or IT infrastructure within an enterprise environment. Familiarity with security standards such as ISO 27001, Cyber Essentials, GDPR, and Data Protection Act. Experience with Microsoft O365 Security solutions and network security operations. Understanding of security testing principles, including vulnerability scanning, risk … apply now. Keywords: Information Security Consultant, IT Security Consultant, Cybersecurity Specialist, Microsoft O365 Security, Enterprise Security Jobs, Information Security Leeds, IT Risk Management, Security Incident Response, Vulnerability Management, ISO 27001, GDPR Compliance, Security Awareness, Disaster Recovery and Business Continuity. More ❯

If you're ready to make an impact in Cyber Security, this role is for you! Responsibilities: Ensure protection of information assets and technologies Participate in security audits like ISO27001, ISO27701, ISO20000, NIST-CSF, and IASME Governance Conduct and document internal audits for our clients Deliver security awareness training, including public speaking engagements Manage Third-Party Risk Management (TPRM) including … services to clients Skills / Must have: Extensive experience in Information Security Governance, Risk, and Compliance (GRC) Experience contributing to an Information Security Management System (ISMS) certified to ISO27001 standards Knowledge of the Cyber Essentials Plus Scheme, GDPR, and Data Protection Act (2018) Strong communication skills and the ability to build relationships with internal and external stakeholders Hands-on … experience in ISO27001 implementation and auditing Eligibility for Security Clearance Certifications Preferred: ISO / IEC 27001 Lead Implementer ISO / IEC 27001 Internal Auditor CISM / CISSP Salary & Benefits: £55,000 - £65,000 base salary per annum Salary Sacrifice pension scheme Private Medical Insurance Buy More ❯

failure. Essential Skills & Experience: At least 2 years of hands-on experience in information security or IT infrastructure within an enterprise environment. Familiarity with security standards such as ISO 27001, Cyber Essentials, GDPR, and Data Protection Act. Experience with Microsoft O365 Security solutions and network security operations. Understanding of security testing principles, including vulnerability scanning, risk … apply now. Keywords: Information Security Consultant, IT Security Consultant, Cybersecurity Specialist, Microsoft O365 Security, Enterprise Security Jobs, Information Security Leeds, IT Risk Management, Security Incident Response, Vulnerability Management, ISO 27001, GDPR Compliance, Security Awareness, Disaster Recovery and Business Continuity. More ❯

failure. Essential Skills & Experience: At least 2 years of hands-on experience in information security or IT infrastructure within an enterprise environment. Familiarity with security standards such as ISO 27001, Cyber Essentials, GDPR, and Data Protection Act. Experience with Microsoft O365 Security solutions and network security operations. Understanding of security testing principles, including vulnerability scanning, risk … apply now. Keywords: Information Security Consultant, IT Security Consultant, Cybersecurity Specialist, Microsoft O365 Security, Enterprise Security Jobs, Information Security Leeds, IT Risk Management, Security Incident Response, Vulnerability Management, ISO 27001, GDPR Compliance, Security Awareness, Disaster Recovery and Business Continuity. More ❯

strong emphasis on operational security and incident response. Extensive knowledge of IT risk management, threat intelligence, IAM and vulnerability management. Familiarity with key regulatory and compliance frameworks, including ISO 27001, GDPR, NIST, and CyberEssentials. Ability to articulate complex technical risks in clear, actionable terms to business stakeholders. This is an exciting opportunity to lead a future More ❯

SOC Analyst required for my client based near Leeds for a permanent role. Salary £35-60k DOE Hours: 8am - 4.30pm / 9.30am - 6pm Following probation 1 week in 4 you will be required to be on call 6pm - 8am (home based) where you will receive additional remuneration + overtime. This includes weekends. The Role: As a SOC Analyst … analytical & communication skills (explaining risks to clients is key!) Bonus if you have: Microsoft certs (SC-200, SC-100, AZ-500) Experience with automation (Logic Apps, Power Automate, PowerShell / Python) Exposure to compliance frameworks (NIST, ISO 27001, Cyber Essentials) Familiarity with other SIEMs (Splunk, QRadar, LogRhythm) #SOC #MicrosoftSentinel #CyberSecurityJobs #ThreatDetection #WeAreHiring #MSSP More ❯

in designing and maintaining secure practices across Microsoft 365, Azure, and broader security operations. Working within a small, agile security team, you'll also contribute to regulatory compliance (ISO 27001, GDPR, Cyber Essentials+), risk assessments, vulnerability management, and stakeholder engagement at all levels. Experience of Interest: * Practical experience implementing Microsoft Entra ID Governance (or similar Okta … on and demonstrable use of Microsoft Purview for compliance, data classification, and DLP * Strong security operations knowledge across M365 and Azure environments * Awareness of regulatory frameworks such as ISO 27001, GDPR, NIST, Cyber Essentials+ * Comfortable working with senior IT, Compliance and Risk stakeholders Interested? Send your CV or reach out for a confidential conversation. Email More ❯

Compliance Analyst (Information Assurance) Location: Teesside Department: Digital / ICT Contract Type: Permanent Salary: Up to £45,000 per annum, depending on experience About the Role We're looking for a proactive and detail-focused Compliance Analyst to support our information assurance and data protection efforts. This is a great opportunity for someone with a solid foundation in GDPR … documentation skills. A collaborative approach and the ability to work across departments. Desirable (but not essential) Experience with tools like OneTrust , Varonis , or similar platforms. Certifications such as CIPP / E , CIPM , or ISO 27001 Lead Implementer . Exposure to security projects or risk management frameworks Benefits: Competitive salary and performance bonuses. Comprehensive health, dental … and vision insurance. Generous pension scheme. Opportunities for professional development and continuous learning. Flexible working hours and remote work options. Employee discounts and perks. Permanent / Hybrid Working / Monday - Friday Next Steps? If you would like to know anything more about this role or even just want to hear what other DevOps, Cloud and Security positions I More ❯

Job Title: SOC Analyst - Microsoft Sentinel Specialist Location: Leeds Reports To: SOC Manager / Head of Managed Security Services Package: £55,000 - £60,000 About Us We're a top-tier cybersecurity MSP and trusted advisor to organizations across industries, delivering cutting-edge security solutions and 24 / 7 protection. With a strong focus on Microsoft security technologies … . Knowledge of compliance frameworks: ISO 27001, NIST, Cyber Essentials . Experience with other SIEMs (Splunk, QRadar, etc.). Scripting (PowerShell, Python) for custom detection / response workflows. Eames Consulting is acting as an Employment Agency in relation to this vacancy. More ❯

job requisition id R Job Description: Product Manager - Threat Exposure Primary location: Salford (M50 3SP), Staines (TW18 3DZ), London (EC2R 7HJ), Leeds(LS5 3BF) or Brighton (BN1 4FY) Flexible / Hybrid working options. Permanent Starting from £70,000 (NEG - depending on exp. & location) 10% Bonus+ fantastic benefits Full time 37.5 hours We consider all types of flexibility, including locations … from operational service owners Collaborate with Cyber Defence Engineering to design and deliver solutions Manage and prioritise engineering backlog using agile methodologies Oversee tooling lifecycle, including renewals and PoC / PoV activities Manage vendor relationships and ensure best practice usage Optimise tool configuration for maximum value Track total cost of ownership in collaboration with Finance Define technology roadmaps and … to support delivery Coordinate with IT teams for enterprise-wide tool deployment Maintain accurate documentation and team processes Establish functional reporting and KPIs for delivery and improvement Key Skills / Qualifications needed for this role: Degree-level education or equivalent experience / training Relevant cybersecurity certifications (e.g., OSCP, CISSP, GCTI, GREM, CEH); Agile / PM certifications desirable More ❯

Head. Work across multiple business functions, supporting both on-prem and cloud environments (primarily AWS , with some GCP and Azure ). Apply knowledge of security frameworks such as ISO 27001 and NIST to ensure compliance and assurance. Maintain a calm, focused approach under pressure, especially when dealing with sensitive or high-stakes projects. About You Strong … management skills. Able to lead by influence, not authority, and support a high-performing team culture. Technical Skills Cloud Platforms: AWS (primary), GCP, Azure (basic familiarity) Security Frameworks: ISO 27001, NIST Tools: Jira, Confluence, GitHub, Microsoft Teams, Slack Methodologies: Agile, DevSecOps Other: Strong understanding of data flows, integration patterns, and secure system design Carbon60, Lorien & SRG More ❯

Purview, Secure Score, DLP and compliance tools) and Azure Security Stack (including Microsoft Defender for Cloud, Microsoft Sentinel, Azure AD etc). Solid understanding of security frameworks (e.g., ISO 27001, Cyber Essentials, NIST, GDPR etc). Experience with vulnerability scanning, risk assessment, and remediation planning. Strong communication skills with the ability to work with both technical More ❯

to join AppCheck in a new role focused on developing our Asset Management product offering, which brings together existing capabilities as well as developing substantially new features and UX / UI. We’re looking for an experienced Product Manager who can liaise with commercial leadership, customers and technical teams, while building the product roadmap and driving progress towards and … PM) role will be responsible for the end-to-end lifecycle of this capability, leading on the discovery, development, launch, and post-launch of the product and new features / enhancements post-launch. Key Accountabilities: Realising Customer Needs. The PM will be accountable for developing insights into our customers, the risks that they manage, and discover new opportunities to … of working in an organisation using Agile Software Development practices such as XP and Continuous Delivery. Experience of managing and prioritising effort across multiple deliverables that are in scoping / development. Knowledge & Skills: Strong communication skills with the ability to use data and narrative to drive action and decision with both internal / external stakeholders and delivery teams. More ❯

Key Responsibilities Collaborate with IT, legal, and policy teams to develop, manage, and ensure compliance with industry regulations and internal policies Implement and support information security and privacy standards / frameworks (e.g. ISO 27001, NIST, CIS) Work directly with engineering teams and architects to review system and data architectures in line with best practices Analyse … non-technical audiences Manage stakeholder expectations across projects with a pragmatic, agile, and solution-oriented approach Key Skills & Experience In-depth knowledge of cybersecurity frameworks such as NIST, ISO 27001, and CIS Proven experience in a similar governance-focused role involving internal controls, risk management, and audit readiness Strong ability to bridge the gap between technical More ❯

Job Title: Risk Manager-( ITSA, BIA, EIM, DR) Location: Sheffield (3 days / week Onsite) Duration: 6months+ Banking Client Experience required Job Summary: We are seeking a skilled and experienced Risk Manager with strong expertise in Information Technology Self-Assessment (ITSA) to support our banking client in identifying, assessing, and mitigating IT-related risks. The ideal candidate will have … Risk Management within the banking or financial services sector. -In-depth knowledge of ITSA, BIA, EIM, DR, and Cyber Security collaboration. -Strong understanding of regulatory requirements (e.g., FFIEC, ISO 27001, NIST, GDPR, etc.). -Familiarity with IT governance frameworks such as COBIT, ITIL, and risk frameworks like COSO or ISO 31000. -Experience conducting or More ❯

from you, 8% from us optional additional matched 3% contributions, e.g. 6% from you, 11% from us) 25 days annual leave plus flexible bank holidays (option to buy / sell 5 days) Private Medical Cover Healthcare cash plan 6x salary death in service Paid volunteering day A personal GP service enabling you to get a video consultation with an … the cyber security risks linked to different technologies and how to manage them effectively. Working knowledge of security domains, auditing standards and frameworks, and risk analysis frameworks including ISO 27001, Cyber Essentials, etc Good verbal communication skills, including the ability to present information and communicate clearly with both technical and non-technical team members, as well … to deliver positive change, display ambition to push themselves and be determined when faced with a challenge, whilst ensuring members best interests are at the core. Closing Date: 13 / 07 / More ❯

/ Tools: Microsoft Office Suite Project Management Software (e.g., Microsoft Project, JIRA) Cloud Platforms (e.g., AWS, Azure) Certifications & Standards: Recognised Project Management qualification (e.g., PRINCE2, PMP) ISO9001 and ISO27001 standards compliance. More ❯

Information Security Analyst Hull / Hybrid A great opportunity for an Information Security Analyst to join one of the UK’s leading enterprise manufacturing businesses. You will join a company that has experienced year on year growth and is looking to hire due to the expansion of the team. You will be part of a business driving innovation in … the business is investing in to grow and become a critical function within its IT landscape. You will play a key role in the organisation’s journey to ISO 27001 and CES, and be instrumental in implementing the GDPR, DLP compliance and security awareness initiatives. To be successful in this role you must have the following … experience: At least 3 years’ experience working as an Information Security Analyst Strong understanding of ISO 27001 Experience GDPR Compliance Experience of Microsoft environment Security certifications such as CISM are a bonus The role is based in Hull and has a two stage interview process that can be wrapped up within a week. Please apply or More ❯

of outputs and outcomes and provide reporting and feedback when required. Support, when necessary, the development of opportunities by contributing as an SME in response to client RFPs and / or the construction of proposal documents and responses. Develop timely, accurate reporting that can convey technical findings to non-technical audiences at all levels when necessary. When required, work … with the Director of Cyber Advisory and Head Consultant to continuously improve capability, enhance & integrate service offerings, and build the Professional Services team Skills / Must have: 5 years in a client-facing information / cyber security / GRC role Professional certifications including but not limited to CISSP, CCSP, CISM, CRISC, CISA, CDPSE. Experience in auditing and … implementing security standards such as ISO 27001 / 2, NIST CSF, and others. Exceptional verbal, written communication, and presentation skills. Ability to articulate technical requirements to non-technical audiences. Proven self-management skills and ability to work on multiple assignments concurrently. Ability to travel to meet business needs. Benefits: Opportunity to work with high-profile More ❯

you will act as an outsourced Chief Information Security Officer, delivering tailored security advice, overseeing cyber risk management, and supporting clients through regulatory and audit readiness processes (e.g., ISO 27001, SOC 2). You will also play a key role in shaping and expanding our security advisory services. Key Responsibilities Serve as a trusted security advisor … to FCA-regulated financial services clients. Provide strategic guidance aligned with FCA , PRA , SYSC , and GDPR requirements. Lead and support risk assessments , security posture reviews , and audit preparations (ISO 27001, SOC 2). Communicate effectively with board-level stakeholders and senior leadership. Collaborate with the sales team to evolve existing services and design new offerings. Support … term fractional retainer model for vCISO services. Required Experience & Skills Proven experience advising FCA-regulated firms . Deep knowledge of SYSC , GDPR , and at least one audit framework ( ISO 27001 or SOC 2 ). Strong client-facing and communication skills, with the ability to engage C-level and board stakeholders . Demonstrated ability to deliver pragmatic More ❯

with senior stakeholders across the business while working closely with Technology Services colleagues to implement procedural and technical aspects of Security Operations, including liaison and engagement with the MSSP / SOC. What will you be doing? In this role, you will play a key role in implementing, optimizing, and maintaining the cloud infrastructure, ensuring robust performance, high availability, and … Automation Proven experience working with AWS and Azure, managing Virtual machines, Cloud Apps and Virtual Networking Strong background in on-prem technologies like vSphere, Active Directory and Exchange, WAN / LAN Strong troubleshooting skills and diagnostic abilities for BAU escalations An aptitude for Security and a keen eye for detail. Ideally but not mandatory - Load Balancing, IP Telephony and … will have a proven track record in cloud infrastructure with a sound understanding of security (anti-virus, firewalls, access control, etc.) and ideally bring knowledge of Cyber Essentials Plus, ISO27001, CIS, OR NIST. Your Benefits If flexible working is important to you, then look no further! At StepChange, we are proud of our culture and our commitment to flexible working. More ❯

member firms and stakeholders in the global firm to participate in the Technology Standards and Maturity Assessment with the objective to assess the member firm's overall IT capability / maturity and to help them establish their own priorities. Keep abreast of new and emerging technologies being deployed and ensure risk assessment processes are appropriately applied and advise on … decisions with technology risk impacts as new activities and other change management / transformational initiatives. Leverage available technical resources / tools to research; expand technology risk knowledge to enhance work product, to remain up to date on member firms and line of businesses hot topics while sharing the technology risk knowledge amongst the team where applicable. Advise member … programme process including the use of ServiceNow Integrated Risk Management module to support integrated IT risk Management processes. An understanding of the principals around CMMI, COBIT, ITIL, PMI, Prince2, ISO27001, SOC2. Cybersecurity or IT Risk Management experience which should include either control testing or compliance assessment experience. A strong understanding of system development life cycles approaches and concepts (CMMI knowledge More ❯