151 to 175 of 397 Remote ISO/IEC 27001 Jobs

Location: Bristol, GB, BS16 1EJ Onsite or Hybrid: Job Title: Cyber Security Lead Location: Warrington, Bristol or Leicester Compensation: Up to £58,104 + Benefits Role Type: Full time / Permanent Role ID: SF66104 At Babcock we're working to create a safe and secure world, together, and if you join us, you can play your part as a … out of the ordinary. We are looking for a Cyber Security expert with proven working experience within a complex organisation responsible for critical defence programmes. Closely working with government / MOD client, programme partners, and design collaborators, you will ensure the highest standards of cybersecurity across all stages of development. Day-to-day, you'll have the following responsibilities … entries, Risk Balance Cases, Information Asset Owner forms, Supplier Assurance Questionnaires. Experienced in relevant Security Policy and Cyber Security Frameworks including the GovS 007, MOD Secure by Design (SbD), ISO27001 - Information Security Management Systems, NIST, NCSC IA Guidance Qualifications for the Cyber Security Lead Educated to degree level or holds a relevant professional qualification or equivalent experience. Security Clearance The More ❯

to address specific client needs. Collaborate with clients to design and implement risk mitigation strategies and incident response plans. Provide expert guidance to clients on frameworks (GDPR, NIST, ISO, HIPAA) and related strategies, with a focus on cyber security. Conduct thorough assessments … of clients' existing security programs, identifying gaps and vulnerabilities. Develop and implement effective framework policies, procedures, and standards that align with clients' goals and industry best practices. Conduct tabletops / workshops with clients discussing information security best practices, incident response, and the threat landscape. Advise clients on compliance requirements, such as GDPR, HIPAA, NIST, ISO 27001 More ❯

based infrastructure (e.g., Microsoft Windows Server, M365). • Monitor system performance and ensure high availability and reliability. • Implement and maintain backup and disaster recovery solutions. Network & Connectivity • Support LAN / WAN infrastructure across multiple sites. • Troubleshoot network issues and optimise performance. • Manage firewalls, VPNs, and network security, collaborating with MSPs / Vendors as required. Cloud & Systems Administration • Manage … Desirable • Experience of Fortinet Vendor products (Fortigate appliances, FortiAnalyser and FortiManager. • Experience of file server migrations to M365 • Experience of migration from hybrid environments to cloud-only (e.g. AD / Entra ID and Exchange / Exchange Online) • Experience with scripting (PowerShell). • Knowledge of ITIL practices. • Exposure to compliance frameworks (Cyber Essentials, ISO 27001 More ❯

equivalent experience). Relevant certifications (e.g., CCNA, CCNP, CISSP, etc.) are highly desirable. Technical Skills: Strong experience with Windows and enterprise level Linux systems. Proficiency in networking protocols (TCP / IP, DNS, DHCP, etc.) and network security practices. Hands-on experience with firewalls, IDS / IPS, and VPN configurations. Experience with virtualization (VMware, Hyper-V, etc.). Familiarity … with various security tool sets such as SIEM solutions, DLP, Endpoint Protection. Experience implementing disaster recovery and business continuity plans. Familiarity with compliance and security frameworks (NIST, ISO 27001, etc). Knowledge of zero-trust architecture and secure remote access solutions. Soft Skills: Strong analytical and troubleshooting skills. Excellent communication and collaboration abilities. Ability to prioritize … DefStan, NATO) would be advantageous. Candidates must be UK Nationals with a bility to satisfy Security Clearance requirements. Candidates should also have the flexibility to participate in the 24 / 7 On Call Support rota for our UK customer, which usually necessitates being available to provide remote assistance 2 weeks in every month. Equal Opportunity Employer Flatirons Solutions is More ❯

on our careers page 2. Submit an up-to-date CV 3. Submit a cover letter setting out briefly why your suitable for the based on the key skills / competencies required (maximum 1,000 words) Selection process 1. Monday 11 and Tuesday 19 August - Longlisted candidates will be invited to an initial telephone interview with either the Director … programmes which will require an open and agile approach to delivering great, innovative security Compliance and Process o Management of the Cyber Essentials and CE+ certification process. o Maintaining ISO27001:2022 compliance. o Establish and run the review and improvement of the NAO's Disaster Recovery plans. o Ensuring our technical policies stay relevant and fit for purpose, and maintaining … them in line with ISO27001 requirements, NCSC best practise, and alignment with HMG standards. o Support in develop and implement a Product Assurance framework with the GRC team. Own the process to deliver meaningful assurance as we integrate new products into the environment. o Reviewing and managing the Information Asset Inventory assessments, assessing the technical control performance across our technology More ❯

meantime! We are a friendly bunch and pride ourselves in having a strong culture and adhering to our values of resourcefulness, ambition, thoughtfulness and integrity. We really value work / life balance and we embrace a flat hierarchy structure company-wide. Join us and you'll learn fast about cutting-edge tech and work with some of the brightest … resolution of priority issues. Maintain a robust cyber incident response plan, including coordinating necessary responses to incidents and security investigations. Requirements Extensive practical experience implementing and maintaining an ISO 27001 compliant ISMS. Demonstrable experience with PCI DSS compliance, including preparing for and undergoing assessments. Familiarity with information security frameworks (e.g., NIST, CIS). Proficiency in risk More ❯

IT security strategies that align with evolving business objectives. Drafting, maintaining and implementing information security policies and Standard Operating Procedures (SOPs). Configuring and overseeing mobile security—MDM (MAM / BYOD)—to protect business continuity. Leading vulnerability assessments, penetration tests, firewall policy enforcement, and remediation efforts. Authoring compelling tender responses, clearly demonstrating technical capability and strategic value. Enhancing Microsoft … security leveraging Purview, Conditional Access, MFA to safeguard modern workplaces. Ensuring compliance with GDPR (DPA 2018), Cyber Essentials (Basic & Plus), and ISO 27001, supported by frameworks like NCSC and NIST. Operating around cybersecurity fundamentals: CIA (Confidentiality, Integrity, Availability), proactive threat prevention, and rapid incident response About You You’re … naturally aligned with MSP-style work, deeply familiar with security frameworks, and thrive at the intersection of strategy and execution. In addition to this, you must have experience in / exposure to: Background in MSP / MSSP environments. Proven history of facilitating workshops and supporting sales from warm leads through closure. Strong understanding of ITIL, CAB, and structured More ❯

executing IT security strategies that align with evolving business objectives. Drafting, maintaining and implementing information security policies and Standard Operating Procedures (SOPs). Configuring and overseeing mobile securityMDM (MAM / BYOD)to protect business continuity. Leading vulnerability assessments, penetration tests, firewall policy enforcement, and remediation efforts. Authoring compelling tender responses, clearly demonstrating technical capability and strategic value. Enhancing Microsoft … security leveraging Purview, Conditional Access, MFA to safeguard modern workplaces. Ensuring compliance with GDPR (DPA 2018), Cyber Essentials (Basic & Plus), and ISO 27001, supported by frameworks like NCSC and NIST. Operating around cybersecurity fundamentals: CIA (Confidentiality, Integrity, Availability), proactive threat prevention, and rapid incident response About You You're … naturally aligned with MSP-style work, deeply familiar with security frameworks, and thrive at the intersection of strategy and execution. In addition to this, you must have experience in / exposure to: Background in MSP / MSSP environments. Proven history of facilitating workshops and supporting sales from warm leads through closure. Strong understanding of ITIL, CAB, and structured More ❯

closely with development, operations, and executive teams to ensure security practices are understood and implemented across the organization. Compliance: Ensure security architectures comply with regulations such as GDPR, ISO 27001, NIST, and other relevant standards. Requirements Education: Bachelor's degree in Computer Science, Information Security, or a related field; Master's degree preferred. Experience: At least More ❯

to data protection, risk management, and regulatory standards. Qualifications: Necessary Qualifications include: Solid understanding of security protocols, cryptography, authentication, and authorization. Familiar with industry-recognized frameworks such as ISO 27001 and NIST Cybersecurity Framework (CSF). Adept at communicating and enforcing security measures across diverse teams and stakeholders. Broad technical knowledge across security, networking, web applications More ❯

information security, with a focus on network security and architecture. Strong knowledge of malicious lateral movement techniques and mitigation strategies. Experience with security frameworks and standards (e.g., NIST, ISO 27001). Excellent communication and leadership skills. Relevant certifications such as CISSP, CISM, or TOGAF are highly desirable. Previous job roles that may indicate success include Information … practices. Understanding of protocol analysis techniques. Experience with Azure Log Analytics, KQL, and Azure Alerts. Python, Shell, and PowerShell scripting. Experience with security tools and technologies (e.g., SIEM, IDS / IPS, NG Firewall capabilities, vulnerability scanners). Knowledge of Active Directory and Azure AD. Knowledge of application delivery and the infrastructures that enable it. Familiarity with SQL Server, Oracle … clustering / High Availability technologies, and secure administrative practices. More ❯

designing, implementing, and maintaining highly scalable and resilient cloud infrastructure to support our trading operations. The ideal candidate will have a strong background in cloud computing, automation, and CI / CD pipelines, ensuring high availability and performance for mission-critical systems. Key Responsibilities Cloud Infrastructure Management: Design, deploy, and maintain scalable and resilient infrastructure on AWS using Infrastructure-as … Code (IaC). Kubernetes Administration: Manage and optimize Kubernetes clusters for containerized applications, ensuring high availability and security. Automation & CI / CD: Implement and manage CI / CD pipelines for efficient deployment, testing, and monitoring of applications. Observability & Monitoring: Develop comprehensive monitoring solutions using Prometheus, Grafana, ELK stack, or similar tools to improve system reliability. Security & Compliance: Apply … Familiarity with monitoring, logging, and observability tools (Prometheus, Grafana, Datadog, ELK, etc.). Strong understanding of networking concepts (VPC, Load Balancers, DNS, Firewalls). Experience with DevOps methodologies, CI / CD pipelines, and GitOps practices. Experience with high-performance and low-latency (sub millisecond) systems. Familiarity with serverless architectures and event-driven computing. Exposure to cloud cost optimization and More ❯

expertise with monitoring and securing enterprise class technology estates. You will have proven experience with Cyber Security best practice including the NIST Cloud Security guidelines. You will support ISO 27001 … compliance and have strong documentation skills. Experience in the Telco sector and knowledge of the UK Telecom Security Act would be advantageous to your application, as would CISSP and / or CISM accreditation. You will develop and maintain the information security architecture and will have proven experience with compliance, vulnerability management, network security, cloud security (AWS & Azure), firewalls and More ❯

in a Security Operations Centre (SOC) environment, managing high volumes of incidents. Deep technical expertise in Microsoft security tools and solutions, including but not limited to Microsoft Defender, E5 / A5, Sentinel, and Azure Security. Strong analytical and problem-solving skills, with the ability to make sound decisions under pressure. Demonstrated experience in incident detection, triage, containment, and remediation. … such as NIST, ISO 27001, or similar. Excellent communication skills, with the ability to clearly convey technical details to diverse audiences. Previous experience in SIEM / SOAR within large-scale, complex environments. Familiarity with other security tools and technologies. Desirable Skills: Relevant certifications (e.g., CISSP, CEH, Microsoft Certified: Security, Compliance, and Identity Fundamentals) a plus. More ❯

and functions; enabling organizations to more quickly and widely adopt emerging technologies while ensuring the integrity of their intellectual property; information flow during disaster response scenarios, and zero-trust / least-privilege environments for M&A, attorney-client privileged communications, etc. And we've only scratched the surface. At our core, we're driven by a shared mission and … and the ability to gracefully handle node failures. • Guarantee 99.9% uptime for the platform's control plane and deployment management. Design and implement a disaster recovery plan with active / passive deployments and seamless failover capabilities. • Architect and implement a highly available deployment setup for applications within the Acra platform. This will involve designing and building the infrastructure and … Bash, Python. •Deep experience with Kubernetes security: RBAC, PodSecurityPolicies (or their replacements), Admission Controllers and Kubernetes network policies. •Proficiency in secure networking practices, including TLS, mutual TLS (mTLS), ingress / egress controls and VPN tunneling configurations. •Proven experience operating and securing service mesh technologies (e.g. Istio, Linkerd, or Consul Connect). •Hands on experience with HashiCorp Vault in production More ❯

Cyber Security Specialist ** Location: London / Hybrid (2 days in office) Rate: A highly competitive salary is available for suitable candidates Role Profile As a Cyber Security Specialist, you will be the go-to Subject Matter Expert (SME) for various projects, offering your insights and recommendations to enhance our security posture. With a strong technical background, you will work … and practises. Experience with security assessment and risk management methodologies. Proficiency in cloud security, particularly with Azure security tools and services. Familiarity with security standards and frameworks (e.g., ISO 27001, NIST, CIS). Knowledge of security technologies such as firewalls and web proxies; experience with ZTNA, CTI, and threat modelling is beneficial. Excellent communication and interpersonal More ❯

Experience with implementing tooling and static code analysis to detect and flag vulnerabilities as part of our CI process Experienced using GitHub with a firm understanding of various branching / merging strategies Key Qualifications: Extensive experience in security operations roles, preferably in cloud and on-premise environments Proficiency in security monitoring tools (such as SIEM, IDS / IPS … and incident response processes Strong knowledge of security frameworks, standards, and best practices (e.g., NIST, ISO 27001, CIS) Experience with scripting and automation tools for enhancing security processes Excellent communication skills and ability to articulate complex security concepts to various stakeholders Strong analytical and problem-solving skills with a focus on continuous improvement Competitive Salary More ❯

and evaluation of risk, as well as using GRC tools and guidance developed for Risk mitigation. Practical knowledge of information security standards and risk assessment frameworks such as ISO 27001, SOC 2, NIST 800-32 Strong knowledge of cyber controls, policies, and procedures. Experience of delivering metrics for senior level audiences. Demonstrate analytical and problem-solving … to work every day. And you'll never stop growing, whatever your level . Discover more reasons to connect with us, our people and purpose-driven culture at deloitte.co.uk / careers More ❯

and evaluation of risk, as well as using GRC tools and guidance developed for Risk mitigation. Practical knowledge of information security standards and risk assessment frameworks such as ISO 27001, SOC 2, NIST 800-32 Strong knowledge of cyber controls, policies, and procedures. Experience of delivering metrics for senior level audiences. Demonstrate analytical and problem-solving … to work every day. And you'll never stop growing, whatever your level . Discover more reasons to connect with us, our people and purpose-driven culture at deloitte.co.uk / careers More ❯

and evaluation of risk, as well as using GRC tools and guidance developed for Risk mitigation. Practical knowledge of information security standards and risk assessment frameworks such as ISO 27001, SOC 2, NIST 800-32 Strong knowledge of cyber controls, policies, and procedures. Experience of delivering metrics for senior level audiences. Demonstrate analytical and problem-solving … to work every day. And you'll never stop growing, whatever your level . Discover more reasons to connect with us, our people and purpose-driven culture at deloitte.co.uk / careers More ❯

and evaluation of risk, as well as using GRC tools and guidance developed for Risk mitigation. Practical knowledge of information security standards and risk assessment frameworks such as ISO 27001, SOC 2, NIST 800-32 Strong knowledge of cyber controls, policies, and procedures. Experience of delivering metrics for senior level audiences. Demonstrate analytical and problem-solving … to work every day. And you'll never stop growing, whatever your level . Discover more reasons to connect with us, our people and purpose-driven culture at deloitte.co.uk / careers More ❯

services structure with mature or evolving capability across all areas of digital security and cyber defence. We align our efforts to the NIST framework and other recognised certifications including ISO27001 and SOC2 and strive to keep pace with the continually evolving threat landscape, in support of A&O Shearmans strategy to lead where global complexity creates opportunity. In addition, you More ❯

Azure Cloud Security Architect – £700 / day – Outside IR35 – Hybrid (Cardiff) We’re working with a major organisation undergoing a large-scale Azure transformation. They’re seeking a Cloud Security Architect with deep Azure expertise to lead the design and implementation of secure cloud solutions. Key Details: Location: Cardiff (Hybrid – 2 days / week on-site) Rate: Up … to £700 / day IR35 Status: Outside IR35 Contract Length: 6 months (strong extension potential) Start Date: ASAP Role Overview: As the Azure Cloud Security Architect, you’ll play a critical role in shaping the organisation’s cloud security posture. You’ll work across architecture, engineering, and compliance teams to ensure secure-by-design principles are embedded throughout the … Key Responsibilities: Design and implement secure Azure cloud architectures Lead threat modelling, risk assessments, and security reviews Define and enforce cloud security policies and governance Integrate security into CI / CD pipelines and DevOps practices Provide guidance on Azure-native security tools (e.g., Defender for Cloud, Sentinel, Key Vault, Azure Policy) Support zero trust and identity-based security models More ❯

data platforms. Perform threat modelling, architecture reviews, and propose mitigation strategies. Ensure alignment with European regulatory standards (e.g., GDPR, PSD2, DORA, NIS2). Embed DevSecOps into SDLC and CI / CD pipelines using IaC and automation tools. Drive adoption of Zero Trust principles, secure APIs, container security, and logging strategies. What Were Looking For 15+ years in Information Security … years of hands-on cloud security experience (AWS, Azure, or GCP multi-cloud preferred). In-depth understanding of financial services compliance requirements and frameworks (e.g., NIST CSF, ISO 27001, CSA CCM, PCI DSS). Expert-level knowledge of IAM, network security, encryption, API and application security, container security, and SIEM strategies. Proven leadership in DevSecOps More ❯

performance, and capacity planning through robust monitoring and proactive incident management. • Cybersecurity & Compliance • Collaborate with InfoSec to ensure comprehensive threat management, data protection, and regulatory compliance (e.g., GDPR, ISO 27001). • Embed security by design across all IT and video platforms. • Service Delivery & Support • Lead global IT support and service delivery teams with a focus on … process discipline. • Cloud & Digital Transformation • Drive cloud modernization strategies across AWS, Oracle Cloud, and related platforms to support digital innovation and scale. • Champion DevOps, infrastructure-as-code, and CI / CD practices to accelerate delivery and improve quality. • Vendor & Financial Management • Manage enterprise vendor relationships and large-scale contracts across IT and video infrastructure providers. • Own the global IT More ❯