24 of 24 ISO/IEC 27001 Jobs in Yorkshire

standards, ensuring compliance with emerging global AI regulations, and building trust in our AI solutions. A primary focus will be leading the implementation and upkeep of ISO / IEC 42001 certification for AI Management Systems while embedding AI governance, risk management, and lifecycle processes into our wider assurance framework. You will act as the key … collaborate with product, customer, and technology teams to strengthen our compliance posture and enhance adoption. Required Qualifications & Experience Proven experience delivering ISO certifications (e.g., ISO / IEC 42001 , ISO 27001 , or similar standards). Strong knowledge of AI governance, risk management, and model lifecycle assurance frameworks. Familiarity with ISO … dependent upon your experience, qualifications and training. If you wish to apply, please read our Privacy Notice describing how we may process, disclose and store your personal data: roberthalf.com / gb / en / privacy-notice. JBRP1_UKTJ More ❯

Information Security Manager (3 days / week, permanent pro-rata) Location: Leeds-hybrid (on-site 1-2 day / week, typically Mon / Tue) Reports to: VP, Information Security Team: 5 in security (within a wider UK tech org of ~25, multi-region) We’re looking for a hands-on InfoSec Manager to take pressure off the … shape the control environment, and keep the security operations and compliance moving at speed. You’ll blend GRC and technical oversight , working closely with two security engineers (vuln scanning / IDS, external pen-test liaison) and two GRC specialists. What you’ll do Drive and extend ISO 27001 implementation / maintenance (UK certified; expanding … to Madrid and Manila ). Support SOC 2 Type 2 maintenance (already accredited)—expert level not required. Oversee SIEM operations with the tech team: ensure log ingestion / coverage , daily monitoring, and follow-up. Guide vulnerability management, alert triage (Alert Logic), and external pen-test cycles. Keep evidence flows tight: client questionnaires, audit responses, security awareness, and user access More ❯

security perspective. Policy, Procedure, and Guidance Oversight Review, update, and enforce security policies, standards, and guidance (e.g. Acceptable Use, Incident Response, Remote Access). Ensure compliance with NCSC, ISO 27001, NIST, Cyber Essentials, and GDPR frameworks. Clarify security roles and responsibilities across departments. Support Information Governance and Data … Protection teams on policy alignment and compliance. Technical Review and Oversight Lead or oversee reviews of system architectures, applications, cloud services (IaaS, PaaS, SaaS), and network security. Assess IAM / PAM implementations and M365 / Azure / Active Directory configurations. Conduct or oversee penetration testing, vulnerability assessments, and threat modelling. Review and approve technical designs and solution … security standpoint. Assurance, Compliance, and Audit Develop and maintain an IT Security Assurance Framework. Lead internal and external audits, accreditation, and certification activities (e.g. PSN, Cyber Essentials Plus, ISO 27001). Monitor compliance with standards and respond to audit findings. Analyse SIEM outputs, threat intelligence feeds, and monitoring tools. Performance Monitoring and Reporting Define and track More ❯

New and existing systems, applications, and infrastructure. Cloud service configurations (IaaS, SaaS, PaaS). Network architecture, including firewalls, VPNs, and segmentation. Identity and Access Management (IAM) implementations, including PIM / PAM. Security configurations in Microsoft 365, Azure, Active Directory, etc. Conduct or oversee vulnerability assessments, penetration tests, and threat modelling. Review and approve technical designs and solution architectures from … a security standpoint. Assurance, Compliance, and Audit Develop and maintain the IT Security Assurance Framework. Lead or coordinate internal / external audits and security assessments. Track and report on compliance with standards and regulatory requirements. Work with internal and external partners to deliver accreditation or certification activities (e.g., PSN, Cyber Essentials Plus, ISO 27001). … You will always however hear from us by phone if we are able to take your CV forward to the next stage. You can also follow us at Twitter / Facebook / LinkedIn or via our website www.essentialemploy.co.uk. More ❯

architecture, ETL pipelines, and automation frameworks to accelerate digital transformation across centralized modules. Provide technical leadership and mentorship to architects, developers, and DevOps engineers; conduct architecture reviews, ensure HLD / LLD / TSD documentation, and enforce compliance with TOGAF, ISO 27001, and GDPR. Partner with CXOs, product heads, and delivery leaders to align technology … decisions with strategic business outcomes, fostering a culture of DevSecOps, CI / CD automation, and Infrastructure as Code (IaC) for continuous modernization, operational excellence, and measurable ROI. Required Qualifications Bachelors or Masters degree in Computer Science, Engineering, or a related discipline. 15+ years of experience in enterprise software engineering and architecture, including 8+ years in architectural leadership roles. Proven … ability to translate complex business goals into scalable architectural blueprints, guide cross-functional teams, and communicate architectural vision effectively to executive stakeholders. Technology Stack Architecture & Frameworks: TOGAF, Microservices, REST / GraphQL APIs, Event-driven Design Programming: Java, Groovy, Spring Boot, Spring Cloud, Spring Data JPA, Spring Security, Hibernate Frontend / UI: ReactJS, HTML5, CSS3, jQuery CCM Platforms: Quadient More ❯

Oversight Review and update security policies, procedures, standards, and guidance regularly (e.g., acceptable use, remote access, incident response, etc.). Ensure alignment with frameworks such as NCSC guidance, ISO 27001, NIST, Cyber Essentials, and GDPR. Develop and communicate clear roles and responsibilities for information security across departments. Support Information Governance and Data Protection with policy harmonisation … New and existing systems, applications, and infrastructure. Cloud service configurations (IaaS, SaaS, PaaS). Network architecture, including firewalls, VPNs, and segmentation. Identity and Access Management (IAM) implementations, including PIM / PAM. Security configurations in Microsoft 365, Azure, Active Directory, etc. Conduct or oversee vulnerability assessments, penetration tests, and threat modelling. Review and approve technical designs and solution architectures from … a security standpoint. Assurance, Compliance, and Audit Develop and maintain the IT Security Assurance Framework. Lead or coordinate internal / external audits and security assessments. Track and report on compliance with standards and regulatory requirements. Work with internal and external partners to deliver accreditation or certification activities (e.g., PSN, Cyber Essentials Plus, ISO 27001). More ❯

failure. Essential Skills & Experience: At least 2 years of hands-on experience in information security or IT infrastructure within an enterprise environment. Familiarity with security standards such as ISO 27001, Cyber Essentials, GDPR, and Data Protection Act. Experience with Microsoft O365 Security solutions and network security operations. Understanding of security testing principles, including vulnerability scanning, risk … apply now. Keywords: Information Security Consultant, IT Security Consultant, Cybersecurity Specialist, Microsoft O365 Security, Enterprise Security Jobs, Information Security Leeds, IT Risk Management, Security Incident Response, Vulnerability Management, ISO 27001, GDPR Compliance, Security Awareness, Disaster Recovery and Business Continuity. More ❯

Job Title: Senior Digital Analyst Salary: Up to £60,000 + Excellent Benefits Package Location: Huddersfield (Hybrid) Key Skills: Reporting, GA4, A / B Testing Summary A new role has opened up for a Senior Digital Analyst with PowerBI / Looker, GA4 and experience with A / B Testing to join a media-focused business. The role … any changes made. Your responsibilities will cover: Build dashboards and reports Use Excel for advanced formulas, pivot tables and data validation Create a test and learn framework using A / B testing methodologies Collaborate with the marketing team to define reporting frameworks Use data insights to support forecasts and budgets Familiarity with marketing tools and analytics platforms Ensure compliance … policies (ISO 27001) Key Skills PowerBI / Looker A / B Testing GA4 SQL Previous experience working within marketing is preferred Benefits 30 Days Holiday + Bank Holidays 2 Weeks Remote Work Retail Discounts Cycle To Work Company Pension Sick Pay Office Socials Please note: we are unable to accept candidates who require sponsorship More ❯

Security Leadership & Strategy Define and implement the company's security strategy across AI, blockchain, and cloud environments. Establish policies, standards, and governance frameworks aligned with industry best practices (ISO 27001, NIST, SOC2). Lead incident response, risk assessment, and threat modelling programmes. Build and mentor a world-class security team. AI Data Security Protect proprietary AI … GDPR, SOC2, ISO, PCI-DSS, and crypto-specific frameworks. Lead risk assessments for third-party vendors and service providers. Work with legal and compliance teams on KYC / AML security for crypto services. Essential Skills & Experience 15+ years of progressive experience in Information Security, with a minimum of 7-8 years focused on cybersecurity. Proven track record … Deep knowledge of blockchain protocols, smart contracts (Solidity, Rust), cryptography, and custody systems. Strong expertise in cloud security, DevSecOps, and secure software development lifecycle (SSDLC). Understanding of AI / ML systems security, including model attacks and data integrity risks. Relevant certifications preferred: CISSP, CISM, CISA, CEH, OSCP, CCSK, or blockchain security certifications. Desirable Skills & Experience Exceptional communication: Ability More ❯

engineering teams on cloud security. Lead security architecture reviews, risk assessments, and controls for enterprise applications and cloud platforms (AWS, Azure, GCP). Implement DevSecOps practices, including secure CI / CD pipelines and infrastructure-as-code templates. Ensure compliance with frameworks such as NIST CSF, ISO 27001, PCI DSS, and CSA CCM. Essential Skills & Experience … AWS, Azure, GCP), multi-cloud preferred. Deep financial services security knowledge and regulatory experience. Expertise in IAM, network, data, application, container security, SIEM, and Zero Trust. DevSecOps and CI / CD security implementation experience. Relevant certifications desirable (CISSP, CCSP, AWS Security Specialty, Azure Security, GCP Security). Desirable Skills Strong communication, leadership, and stakeholder management skills. Strategic thinking and More ❯

engineering teams on cloud security. Lead security architecture reviews, risk assessments, and controls for enterprise applications and cloud platforms (AWS, Azure, GCP). Implement DevSecOps practices, including secure CI / CD pipelines and infrastructure-as-code templates. Ensure compliance with frameworks such as NIST CSF, ISO 27001, PCI DSS, and CSA CCM. Essential Skills & Experience … AWS, Azure, GCP), multi-cloud preferred. Deep financial services security knowledge and regulatory experience. Expertise in IAM, network, data, application, container security, SIEM, and Zero Trust. DevSecOps and CI / CD security implementation experience. Relevant certifications desirable (CISSP, CCSP, AWS Security Specialty, Azure Security, GCP Security). Desirable Skills Strong communication, leadership, and stakeholder management skills. Strategic thinking and More ❯

critical illness insurance, dental insurance, life assurance flex and partner cover. Retail savings scheme Online GP service, cycle to work scheme, gym membership discounts and many more! Location: Buttershaw / Hybrid Working (1-2 days in the office a week Bradford) Work type: 12-month fixed term contract. 37 hours per week, Monday Friday. We have an exciting opportunity … is taken away. But for us, its so much more than this. We look after communities, protect the environment, and plan to look after Yorkshires water, today, tomorrow 24 / 7, 365 days a year. We provide essential water and wastewater services to every corner of the Yorkshire region, and play a key role in the regions health, wellbeing … Stay current with GRC trends, standards, and best practices Assist in managing the Security GRC Framework Collaborate with stakeholders, auditors, and vendors Support compliance activities (CAF, SEMD, PCI DSS, ISO27001) Monitor and report on security compliance and incidents Conduct controls testing and coordinate audit findings Advise on compliance matters and manage policy exemptions Liaise with Data Protection team on GDPR More ❯

to the role? Knowledge of IT controls and technical solutions. Preferably have a relevant information security related qualification such as CISA, ISO 27001 lead auditor / implementer. Knowledge of the relevant regulatory requirements around Information Security, Resilience and Third Party Management. Competent skills in communication, report writing, data analysis and training & facilitation. Independently minded and More ❯

Security Assurance Roles - Consultant to Lead Level | £50,000-£75,000+ | UK (Midlands / North, Flexible Hybrid) We're currently working with a fast-growing cyber security consultancy that has just secured a significant piece of work. As part of this expansion, they are recruiting multiple roles across Security Assurance at various levels, from Consultant through to Senior and … their security posture. What We're Looking For Experience in cyber security, ideally with a focus on security assurance or risk A strong understanding of frameworks such as ISO 27001, NIST, CISA, CISSP, CISM, etc Experience working with or within supply chains, CNI, government, or highly regulated industries Excellent stakeholder … management and communication skills SC or DV Clearance is ESSENTIAL Salary & Benefits Salaries range from £50,000 to £75,000+, depending on level and experience Strong benefits package (buy / sell holiday, private medical, competitive pension, etc) Clear progression paths and opportunities for growth Reasonable Adjustments: Respect and equality are core values to us. We are proud of the More ❯

we’ll teach you everything you need to know on that front What’s In It For You?: Excellent company culture and training – check us out on Glassdoor – 4.5 / 5 stars! A supportive, positive, inspiring, and fun environment The opportunity to sell a best-in-class software / SaaS product in the high-growth cyber industry. Highly … competitive base salary plus £1,500 Christmas bonus. Realistically earn £10-20K commission / £35-50K OTE in your first year (depending on starting salary and target) Our top SDR's earn £60-70K OTE. Build up to £60-90K OTE in year 2-3+, as you progress to Account Executive and beyond. Great … office. Excellent training and significant opportunities for career progression. The Day to Day Role: Day to day you’ll seek out new business opportunities primarily through phone-based prospecting / cold-calling, as well as LinkedIn and email. You’ll speak with IT / technology leadership and heads of information security, with the view to arranging demos of More ❯

sales? Let’s talk — we can offer fast progression and big opportunities. What’s In It For You?: Excellent company culture and training – check us out on Glassdoor – 4.5 / 5 stars! A supportive, positive, inspiring, and fun environment The opportunity to sell a best-in-class software / SaaS product in the high-growth cyber industry. Highly … competitive base salary plus £1,500 Christmas bonus. Realistically earn £10-20K commission / £35-50K OTE in your first year (depending on starting salary and target) Our top SDR's earn £60-70K OTE. Build up to £60-90K OTE in year 2-3+, as you progress to Account Executive and beyond. Great … office. Excellent training and significant opportunities for career progression. The Day to Day Role: Day to day you’ll seek out new business opportunities primarily through phone-based prospecting / cold-calling, as well as LinkedIn and email. You’ll speak with IT / technology leadership and heads of information security, with the view to arranging demos of More ❯

Hands-On): - Cloud & Modern Workplace: Microsoft 365, Azure AD, Intune, Teams, Conditional Access- On-Premise Infrastructure: Windows Server, VMware, Hyper-V, DNS, DHCP, Active Directory- Security & Compliance: Cyber Essentials+, ISO27001, Firewalls, SIEM, EDR, VPN- Remote Monitoring & Management (RMM): Patch Management, NAble, Proactive Monitoring- Licensing Models: Microsoft CSP, NCE, OV, SPLA, Volume Licensing This is a brilliant opportunity for a results More ❯

Hands-On): - Cloud & Modern Workplace: Microsoft 365, Azure AD, Intune, Teams, Conditional Access - On-Premise Infrastructure: Windows Server, VMware, Hyper-V, DNS, DHCP, Active Directory - Security & Compliance: Cyber Essentials+, ISO27001, Firewalls, SIEM, EDR, VPN - Remote Monitoring & Management (RMM): Patch Management, NAble, Proactive Monitoring - Licensing Models: Microsoft CSP, NCE, OV, SPLA, Volume Licensing This is a brilliant opportunity for a results More ❯

Head of Information Security to join the team. The right candidate for this role will have extensive experience of the implementation and maintenance of various information security standards including: ISO27001, CyberEssentials (Plus), GDPR, NIST etc - you would also naturally be the person leading responses to audit and information requests too. You will ideally have worked with a company of a … heavily tech focussed as well as using a lot of SAAS products. Key skills and experience required: Excellent leadership and stakeholder engagement. Detailed understanding of information security frameworks (ISO 27001, GDPR, Cyber Essentials Plus), and how to implement, apply and maintain them Incident investigation, reporting, and post-incident review capabilities. Design, implementation, and maintenance of ISMS More ❯

scripting experience (or strong willingness to learn) Familiarity with Git workflows and YAML configuration Understanding of GitOps principles (or a willingness to learn) Awareness of information security practices (ISO 27001 exposure is a plus) Ability to work both independently and collaboratively in a fast-paced environment Proactive mindset: eager to learn, improve, automate, and use AI More ❯

business goals and regulations Leading and developing the cyber security operations team Overseeing threat monitoring, incident response, and vulnerability management Managing compliance with frameworks such as Cyber Essentials, NIST, ISO27001, GDPR, and GovAssure Acting as the primary point of contact for cyber matters internally and externally, including regulators and industry forums Representing Cyber Security at board committees and senior management … security operations teams Excellent stakeholder management skills, including board-level engagement The ability to represent the organisation externally with authority and credibility Benefits Competitive salary and benefits package Hybrid / flexible working arrangements Generous annual leave and pension Inclusive, collaborative culture with senior-level visibility Please apply / enquire today to learn more about how you can take More ❯

delivery and customer satisfaction. Champion consistent proactiveness across the service function, driving continuous improvement (trend analysis, ect). Oversee and continuously improve service desk operations in line with ITIL, ISO27001, and other relevant frameworks. Monitor performance through KPIs and metrics, identifying improvement areas and coaching team members to meet targets. Own the service management framework including incident, request, problem, and … and take ownership of problem management and escalation processes. Ensure team training aligns with evolving service requirements and technology trends. Service Desk Manager Requirements Proven experience managing IT support / service desk teams in a mid-to-large scale environment. Strong knowledge of IT … service management (ITSM), including ITIL, incident management, problem management, and change management. Practical experience with ITSM tools and platforms. Deep understanding of service delivery processes and frameworks such as ISO27001, NIST, or Cyber Essentials. Excellent communication, leadership, and stakeholder management skills. Ability to work under pressure, manage conflicting priorities, and deliver results to deadlines and budgets. Strong analytical and problem More ❯

maintain ERP configurations and integrations, primarily using IFS and SnapLogic, to support business processes and ensure seamless data flow across systems. Write clean, functional, and maintainable code using PL / SQL, .NET, JavaScript, Python, or similar languages, contributing to secure and resilient software solutions. Adhere to coding standards. Collaborate with Technical Architects and the IT Senior Developer to develop … control and peer reviews, documentation, release management, and the successful transition of solutions into service with appropriate hypercare. Contribute to innovation and solution design, including prototyping, exploring low-code / no-code options, and identifying … opportunities to improve software delivery. Ensure quality and compliance across the development lifecycle, working closely with Test Analysts to validate solutions. Ensure adherence to standards and regulation including to ISO27001, PCI DSS, and GDPR. Partner with support teams to resolve development issues impacting live services, occasionally supporting Out of Hours (OOH) operations. Mentor and upskill colleagues, including IT, Change, and More ❯

/ IP, IPv4, IPv6 Customer service and communication skills Project management and documentation Hands-on experience with Cisco, Fortinet, Huawei, and other vendors Security standards and compliance (ISO9001, ISO27001) Ability to work independently and under pressure Please apply or email (url removed More ❯