176 to 200 of 727 ISO/IEC 27001 Jobs

or civilian). Strong stakeholder engagement skills and the ability to explain technical risks in simple terms. Familiarity with security frameworks or policies such as JSP440, NCSC guidance, ISO 27001, Cyber Essentials or similar. Ability to travel and work on-site at secure locations. Qualifications and Training: SC clearance is essential (DV desirable). If you … hold or are working towards qualifications like CISSP, CISM, CompTIA Security+ or ISO 27001 that’s great – if not are client will help you work towards them. Degree-level education is advantageous but not essential if you have equivalent experience. More ❯

will be directly responsible for continued success of the entire Aforza product suite. As such, the ideal candidate must be hands-on, flexible, and used to working in startup / scale up environments, where every employee has a direct impact on the company's success. All of Aforza's cloud applications, microservice and websites are hosted on Google Cloud … with IaC tools such as Terraform Strong understanding of authentication and authorization protocols such as OAuth 2.0, OIDC, SAML etc Experience with SQL and NoSQL databases Experience with Docker / Kubernetes Knowledge of security and IAM best practices You might not have all of the above, but don't let that stop you. We're excited to hear from … benefits, including: Work on cutting edge technologies with world leading customers Stock options 25 days PTO & bank holiday Pension Private health cover & income protection Flexible hours and hybrid remote / office working Fantastic, brand new office space in the heart of Cardiff city centre Our Interview Process Director, Cloud Infrastructure Cardiff / Remote (UK only) About Aforza Aforza More ❯

of our legacy systems to the Microsoft cloud. Your responsibilities will include: Evaluate and enhance existing IT systems, management procedures, and security protocols to ensure robust protection. Oversee ISO 27001 and other key accreditations by collaborating with internal teams and external auditors. Manage information security requests and compliance reports, ensuring adherence to GDPR and other relevant … have the opportunity to leverage your existing skills while developing new ones, contributing to the strategic security objectives of the Company and ensuring adherence to critical accreditations, including ISO 27001, GDPR, Cyber Essentials, and PCI DSS. The successful candidate will demonstrate: Strong analytical skills with a meticulous approach to identifying and resolving security issues. Excellent verbal … attitude towards learning and developing expertise in information security. Happy to travel occasionally to other sites as required. Desirable Experience: Demonstrable expertise in external audit, compliance, and security processes (ISO27001, GDPR, Cyber Essentials and PCI DSS). Microsoft accreditation or other recognised certifications (e.g. Microsoft Learning, CISA, CISM, CRISC, CCSP) would be very beneficial. Benefits: £25,000 - £35,000 salary More ❯

relationship between the controls framework and contemporary contextual cybersecurity risks. Developing and operating our ISMS, and all that this entails: You will also be responsible for maintaining our ISO 27001 and Cyber Essentials certificationsand other security-related compliance accreditations as may be required. We are a scaling business, staying lean wherever possible, which means currently, responsibility … globally (e.g. GDPR, NIS Directive, EBA Guidelines). Has a comprehensive understanding of what it takes to comply with cyber security industry standards and frameworks in practise (e.g. ISO 27001, NIST CSF, SP 800-53, NCSC CAF, Cyber Essentials). Has a thorough understanding of cyber security threat and risk with the ability to think like … to aid in your personal development Regular socials to unwind and have some fun Apply for this job * indicates a required field First Name * Last Name * Email * Phone * Resume / CV * Accepted file types: pdf, doc, docx, txt, rtf LinkedIn Profile * What are your salary expectations for this role? * What is your notice period? * Will you require visa sponsorship More ❯

is responsible for ensuring that security is built into every part of the development lifecycle, specifically ensuring that security tooling (native and non-native) is properly embedded into CI / CD CI / CD pipelines. The role holder will be part of the transformation programmes including tech debt replacement and migration, embedding security to ensure seamless integration of … new systems / features and workflows. The Lead DevSecOps role will be responsible for ensuring that the replacement systems are security compliant, adhering to standards such as Secure by Design and GovAssure, utilising a shift left mentality to fix problems before production. This is as part of highly complex legacy replacements involving approximately 90,000 users. Essential skills and … experience: Strong hands-on expertise in DevSecOps practices, particularly security automation in CI / CD and infrastructure-as-code pipelines. Deep understanding of modern DevOps tooling (e.g., GitHub Actions / CircleCI, Terraform, Kubernetes, Docker) with secure configurations. Experience implementing security controls in cloud-native environments (e.g., AWS or Azure) including IAM, network policies, and container security. Proven track More ❯

a wide range of infrastructure improvements. From migrating to Azure AD and Intune, to rolling out Defender across the business and helping push toward Cyber Essentials Plus and ISO 27001 compliance; there's a lot going on, and you'll be in the thick of it. Alongside cloud migration work, you'll also be involved in … telephony platforms in a business environment Exposure to cloud migrations, ideally Azure (some AWS experience also fine) Experience supporting enterprise platforms like IIS & SQL Familiarity with compliance standards (ISO 27001, Cyber Essentials, NIST) There's no on call requirement, though some flexibility around out of hours work may occasionally be needed. This is a genuinely varied More ❯

codebase. Play a pivotal role in architecture and code reviews, ensuring our applications meet the highest standards of quality, security, and scalability. Work on infrastructure as code and CI / CD pipelines, ensuring seamless integration and deployment of systems. Ensure compliance with security policies and ISO 27001 by protecting sensitive data and following secure coding … Terraform for infrastructure as code, enabling scalable and reliable systems. Experience with monitoring and observability tools, such as Datadog or Prometheus. Familiarity with event-driven systems, particularly Kafka and / or RabbitMQ. Deep understanding of messaging and queuing systems, including design patterns for reliability, retries, and scaling. Strong understanding of PostgreSQL for relational database systems. Experience working with Redis … for caching and high-performance data handling. Experience setting up and maintaining CI / CD pipelines for smooth and automated deployments. Low-Level & Deep Stack Problem-Solving Note: We don't expect candidates to tick every single box, we encourage you to apply even if you don't meet all of the criteria. It would also be nice if More ❯

codebase. Play a pivotal role in architecture and code reviews, ensuring our applications meet the highest standards of quality, security, and scalability. Work on infrastructure as code and CI / CD pipelines, ensuring seamless integration and deployment of systems. Ensure compliance with security policies and ISO 27001 by protecting sensitive data and following secure coding … Terraform for infrastructure as code, enabling scalable and reliable systems. Experience with monitoring ****and observability tools, such as Datadog or Prometheus. Familiarity with event-driven systems, particularly Kafka and / or RabbitMQ. Deep understanding of messaging and queuing systems, including design patterns for reliability, retries, and scaling. Strong understanding of PostgreSQL for relational database systems. Experience working with Redis … for caching and high-performance data handling. Experience setting up and maintaining CI / CD pipelines for smooth and automated deployments. Low-Level & Deep Stack Problem-Solving Note: We dont expect candidates to tick every single box, we encourage you to apply even if you dont meet all of the criteria. It would also be nice if you have More ❯

codebase. Play a pivotal role in architecture and code reviews, ensuring our applications meet the highest standards of quality, security, and scalability. Work on infrastructure as code and CI / CD pipelines, ensuring seamless integration and deployment of systems. Ensure compliance with security policies and ISO 27001 by protecting sensitive data and following secure coding … Terraform for infrastructure as code, enabling scalable and reliable systems. Experience with monitoring and observability tools, such as Datadog or Prometheus. Familiarity with event-driven systems, particularly Kafka and / or RabbitMQ. Deep understanding of messaging and queuing systems, including design patterns for reliability, retries, and scaling. Strong understanding of PostgreSQL for relational database systems. Experience working with Redis … for caching and high-performance data handling. Experience setting up and maintaining CI / CD pipelines for smooth and automated deployments. Low-Level & Deep Stack Problem-Solving Note: We don't expect candidates to tick every single box, we encourage you to apply even if you don't meet all of the criteria. It would also be nice if More ❯

Enterprise Risk Management Framework. Ensuring compliance with applicable legislation, regulatory requirements, and business obligations, as well as adherence to the most current frameworks and standards (e.g., Licence 4, ISO 27001, WLA:SCS, PCI-DSS, and DPA 2018). Coordinating and participating in internal and external security and privacy audits. This includes ensuring necessary evidence is available … concepts, standards, frameworks, and technologies Good knowledge of UK Data Protection legislation and its underlying principles Experience in managing security governance and compliance obligations (e.g., DPA, PCI-DSS, ISO 27001) The ability to work independently with minimal supervision, as well as effectively contribute to larger, more complex project teams Strong communication skills, with the ability to … technical, complex, or sensitive issues and risks to a diverse audience and align them with broader governance frameworks Formal education or certifications in Information Security, such as a BSc / MSc in Information Security, or certifications like CISM, CISSP, or equivalent What’s In It For You? Amazing company to work for. Competitive benefits. For further information on this More ❯

processes, and systems. - Assess and remediate gaps in security practices and influence operational teams to adopt security-first approaches. - Drive adherence to industry standards and frameworks such as ISO 27001, NIST, or similar. - Provide expert input to enhance security frameworks, policies, and procedures. - Lead and support security awareness initiatives across business units. What We’re Looking … For - Strong understanding of information security principles, particularly in GRC. - Hands-on experience with ISO 27001, NIST, or similar standards. - Excellent communication and stakeholder engagement skills - able to translate technical security concepts into clear business language. - Proven ability to embed governance and compliance into large, complex organisations. - Ability to balance technical, operational, and business priorities. Why More ❯

and threats. Responsibilities: Design and implement enterprise-wide security architecture and strategy based on industry best practices and business requirements. Evaluate, recommend, and implement security technologies including firewalls, IDS / IPS, SIEM, endpoint protection, and identity and access management solutions. Conduct security assessments and threat modeling to identify and mitigate risks to IT systems, applications, and infrastructure. Develop and … regulated industries such as healthcare, finance, or government. Background in enterprise risk management, data privacy, or compliance auditing. Experience leading cross-functional security projects or initiatives. Familiarity with CI / CD pipelines and securing development workflows. Security Clearance Active Top Secret / SCI clearance required. More About B&A: Notable Clients B&A has grown to be a … employees and includes a company matching contribution. B&A has launched several programs to focus on employee engagement, wellness, and assistance. These include: The B&A Cares program: 30 / 60 / 90-day wellness check ins, personal development, financial management, and stress management seminars, and more A formal mentorship program Job shadowing and cross training opportunities Brand More ❯

System Engineer Automation (DCS & Safety) Runcorn 26550 / 534 £51,000 plus car allowance, medical insurance and more. What is on offer? A starting salary of up to £45,000 Car allowance - minimum of £515 per month. 25 days holiday, plus bank holidays Private medical insurance and healthcare scheme Pension with company contribution up to 12.5% Flexible working hours … the cause and effects; hardware interface and graphic screen interface Modify existing safety systems and impact analysis Knowledge, Skills & Experience: Experience in a similar role within the oil & gas / petrochemical / Industrial Automation environment Minimum HNC qualification in an engineering or process related subject Ideally hold a TUV Functional Safety Certificate or have demonstrable knowledge of Have … practical knowledge of Management Systems such as ISO9001, ISO 14001, ISO 27001 and ISO45001 To apply please email your CV / resume to If you are interested in this position please click 'apply'. Hunter Selection Limited is a recruitment consultancy with offices UK wide, specialising in permanent & contract roles within Engineering & Manufacturing More ❯

standards and product specifications, especially regarding regulatory compliance and Cyber security. Ensure compliance with industry standards and regulatory requirements specific to fire alarm and life safety devices (EN54\UL864\ISO27001\CE). Implement best practices in coding, testing, and documentation. Develop and refine measurable software development processes to enhance efficiency and quality. Collaborate with R&D team section managers to … Degree level in Engineering, preferably with a Software focus. Experience Considerable proven experience managing development teams of 10-15 engineers within an electronic product segment, ideally regulatory controlled. Knowledge / Skills Management Proven experience leading and managing software development teams of various sizes, with a track record as an exceptional people manager. Ability to mentor, coach, motivate, and develop … design documents that comprehensively describe the product design and functionality. Certification Experience in designing products for a regulatory controlled market and ensuring compliance with those standards including ISO9001 and ISO27001 / NIST or other relevant security frameworks. This is an excellent opportunity to become part of the key engineering team within a developing business with its culture shaped by More ❯

and talented team, and while some have prior security experience, many have been successful at Vanta without it. As Vanta's Customer Success Manager, in the Upmarket space (Enterprise / Mid-Market), you will play a pivotal role in guiding customers through their security and compliance journeys with Vanta's specialised solutions. By combining your customer-centric approach with … business outcomes on their timelines. Become a product expert on Vanta and how our platform can be used to improve security posture through our compliance offerings (SOC 2, ISO 27001, GDPR, HIPAA, USDP and Custom Frameworks), Trust Reports, and Risk Management solution. Provide insightful technical answers and recommend the most efficient way for customers to achieve … trust in internet businesses by enabling companies to improve and prove their security. From our early days automating security monitoring for compliance standards like SOC 2, HIPAA and ISO 27001 to creating the world's leading Trust Management Platform, our vision remains unchanged. Now more than ever, making security continuous-not just a point-in-time More ❯

vendor services. Track vendor spend and ensure alignment with financial goals. Risk & Compliance Management Ensure vendors comply with regulatory, security, and data protection requirements (e.g., PCI DSS, GDPR, ISO 27001). Conduct regular vendor risk assessments and monitor any security or compliance concerns. Partner with Security and Compliance teams to ensure third-party risk is actively … cost optimization, and risk assessment. Ability to lead Quarterly Business Reviews (QBRs) and drive service improvements. Understanding of regulatory requirements relevant to vendor management (e.g., PCI DSS, GDPR, ISO 27001). Excellent stakeholder management, communication, and negotiation skills. Strong analytical mindset with experience using data to assess vendor performance and impact. ?Education & Experience: Bachelors degree in More ❯

computing. You have Excellent experience in cyber security and in particular IT and OT cyber security and risk management and strong understanding of cyber security frameworks (e.g., NIST, ISO 27001, IEC 62443, CIS Controls) and NIS Regulations. In-depth understanding of cyber security products, services, systems and solutions and exposure to multiple, diverse technologies … and analytics, cyber security and more. Flexible benefits to fit your life Enjoy discounts on private healthcare and gym memberships. Wellbeing benefits like a free online GP and 24 / 7 counselling service. Interest-free loans on tech and transport season tickets, or a new bike with our Cycle to Work scheme. As well as generous family entitlements such More ❯

solid technical understanding are essential. Responsibilities: Regulatory Compliance & Framework Development: Support the implementation of a comprehensive business resilience framework aligned with DORA and other regulatory requirements (e.g., NIST, ISO 22301, ISO 27001). Develop training materials, policies, controls, and risk assessment methodologies to ensure adherence to regulatory standards. Support key pillars of the DORA … operational resilience, systems architecture, or related fields, with extensive exposure to Operational Resilience, particularly DORA . Strong understanding of UK regulatory requirements and frameworks such as DORA, NIST, ISO 22301, and ISO 27001. Proven experience conducting risk assessments, regulatory compliance reviews, and resilience testing . Ability to translate regulatory requirements into actionable plans and track them More ❯

role is key in building and improving Primark's Cyber Security posture. Duties & Responsibilities Actively progress and improve Primark's cyber security posture with the delivery of agreed projects / initiatives aligned with industry best practice. Ensure project deliverables are aligned with the Cyber Roadmap with outcomes directly addressing strategic objectives / maturity gaps / audit points. … Advise and lead on solutions with our internal teams / outsourced partners, having a 'hands on approach' including the construction of business cases and contractual arrangements. Have a metric based approach with a structure to enable auditing and managing vendor performance. Coordinating resources, preparing delivery teams for kick-off and ensure effective completion of milestones, controlling scope and mitigating … defining, developing and managing implementation schedules Maintaining a roadmap of future initiatives, that effectively facilitates the prioritisation of delivery plans. Ensuring an ongoing focus on delivering the required quality / value for money and compliance with published standards and guidelines. Co-ordinates cross-functional team members, identifies resources needed, assigns and prioritises tasks / responsibilities and ensures deadlines More ❯

within your book of business Become a product expert on Vanta and how our platform can be used to improve security posture through our compliance offerings (SOC 2, ISO 27001, GDPR, HIPAA, USDP and Custom Frameworks), Trust Reports, and Risk Management solution. Guide implementation, configuration, and optimization of Vanta Trust Management Platform Provide professional advice on … restore trust in internet businesses by enabling companies to improve and prove their security.From our early days automating security monitoring for compliance standards like SOC 2, HIPAA and ISO 27001 to creating the world's leading Trust Management Platform, our vision remains unchanged. Now more than ever, making security continuous-not just a point-in-time More ❯

within your book of business Become a product expert on Vanta and how our platform can be used to improve security posture through our compliance offerings (SOC 2, ISO 27001, GDPR, HIPAA, USDP and Custom Frameworks), Trust Reports, and Risk Management solution. Guide implementation, configuration, and optimization of Vanta Trust Management Platform Provide professional advice on … restore trust in internet businesses by enabling companies to improve and prove their security.From our early days automating security monitoring for compliance standards like SOC 2, HIPAA and ISO 27001 to creating the world's leading Trust Management Platform, our vision remains unchanged. Now more than ever, making security continuous-not just a point-in-time More ❯

robust observability, incident response processes, performance testing, and fault-tolerant architecture. Partner with Security, Compliance, and Infrastructure teams to meet regulatory and certification standards (e.g., PCI DSS, TISAX, ISO 27001), and embed security into development workflows. Collaborate cross-functionally with Product, Partner Operations, and Business Development to translate user and partner needs into scalable, production-ready … data-driven mindset. Experience in designing and operating transactional systems, including session management and payment systems. Demonstrated success in delivering systems in regulated environments (e.g. PCI DSS, TISAX, ISO 27001), including compliance alignment and audit readiness. Advanced knowledge of cloud-native engineering (preferably AWS), microservice architecture, container orchestration, and scalable infrastructure. Fluent in agile methodologies, DevSecOps More ❯

security controls, procedures, policies and assurance activities A good understanding and practical experience of Information Security processes, policies and tools. Strong understanding of security frameworks and relevant certifications including ISO27001, CISMP, CISSP, knowledge of Data Protection / GDPR, Information Security Forum, CiiSec Understanding of information security controls in particular those relating to assurance, business process, governance, security risk and … personal data very seriously. Any information provided to us will be processed as detailed in our Privacy Notice, a copy of which can be found on our website http: / / proactive.it / privacy-notice / More ❯

as Nessus, Splunk, GuardDuty, Azure Defender, or similar. Basic knowledge of security frameworks (e.g., NIST, CIS Benchmarks, ISO 27001). Security Clearance: Active Top Secret / SCI clearance. More About B&A: Notable Clients B&A has grown to be a company that is trusted by our clients for exceptional service, innovative solutions, and inspired … employees and includes a company matching contribution. B&A has launched several programs to focus on employee engagement, wellness, and assistance. These include: The B&A Cares program: 30 / 60 / 90-day wellness check ins, personal development, financial management, and stress management seminars, and more A formal mentorship program Job shadowing and cross training opportunities Brand More ❯

equipment and cloud systems Support and development of ServiceNow fault and customer management system Access controls updated for operational IT systems Assist in assembling, wiring and troubleshooting various electrical / electronic issues across a diverse array of equipment Perform periodic maintenance Conduct comprehensive and accurate testing Work with low-voltage and DC power systems in associated road safety technology … network diagrams, test plans, electronic schematics, blueprints, and wiring diagrams Maintain accurate logs of maintenance work using asset management systems Communicate findings and recommendations to engineers and supervisors Review / update of Business Continuity and Disaster Recovery (BCDR) Plans, based on testing and system changes What are the career prospects at Verra Mobility ? Verra Mobility are offering a permanent … Skills: It is essential that the IT Systems engineer technician apprentice has the following skills and personal qualities: GCSEs in maths and English with at least a grade C / 4 Demonstrated passion for technology including electronic componentry, networking and computer software Strong critical thinking and analytical skills Good understanding of IT, networking, software and operating systems, logic and More ❯