1 to 25 of 439 Permanent ISO/IEC 27001 Jobs

Security Engineer / Terraform / KQL / Powershell / Azure / Security / DevSecOps / Application / Microsoft Defender Lead Security Engineer (Application) Salary: Up to £95,000 Location: Fully Remote (there is an office in zone 1 Central London if you … prefer) Company: HealthTech Lead Security Engineer / Terraform / KQL / Powershell / Azure / Security / DevSecOps / Application / Microsoft Defender An exciting opportunity for an experienced Application Security Engineer to work in a scale-up environment with a genuine … If the above looks of interest, please do not hesitate to apply or send your CV directly to callum@tiropartners.com Security Engineer / Terraform / KQL / Powershell / Azure / Security / DevSecOps / Application / Microsoft Defender more »

GRC Analyst (InfoSec ISO 27001) Sunderland / WFH to £40k Are you a tech savvy GRC Analyst looking to progress your career? You could be joining a successful and growing online gaming / gambling site as they expand their European presence. As a GRC … aim of protecting customers and the business alike from cyber security attacks. You'll maintain and continuously improve ISO 27001 / 2 policies, standards and procedures; collaborate across teams to drive adoption and adherence to InfoSec policy and guidelines and contribute to the continuous improvement … although could be other industry e.g., finance You have a good understanding of governance standards and frameworks e.g., ISO 27001 / 2, PCI-DSS, NIST, ISF, GDPR You have good commercial awareness and experience of delivery security awareness within a large scale organisation You have more »

requirements. Routinely test controls as required. Manage multiple compliance programs including SOC 2 and the Information Security Management System based on ISO / IEC 27001:2022 requirements. Effectively communicate compliance status, timelines, risk, remediation efforts to leadership. Maintain procedures, documentation and records necessary … at Cox may include health care insurance (medical, dental, vision), retirement planning (401(k , and paid days off (sick leave, parental leave, flexible vacation / wellness days, and / or PTO). For more details on what benefits you may be offered, visit our benefits page . Cox … is an Equal Employment Opportunity employer - All qualified applicants / employees will receive consideration for employment without regard to that individual's age, race, color, religion or creed, national origin or ancestry, sex (including pregnancy), sexual orientation, gender, gender identity, physical or mental disability, veteran status, genetic information, ethnicity more »

the chance to work on a range of our high-profile projects in the stadia sector and high-end retail. What our new ISO Administrator will do... Implement, maintain, and continuously improve, the Integrated Management System (IMS) in accordance with the requirements of the relevant standards (ISO 9001, ISO 14001, ISO 22301, ISO 27001, and ISO 45001) and business needs. Take ownership of the company’s Business Continuity Management System (BCMS) in conjunction with the direction given by the Managing Director. Assist the Head of … applications from applicants currently living in Northern Ireland. Desirable Training qualification in Internal Auditing of an ISO Standard. Knowledge of the construction / fit out industry Knowledge of ISO’s particularly ISO 9001, ISO 14001 and ISO 45001. Awareness more »

group level is necessary. An understanding of compliance and regulatory frameworks such as National Cyber Security Centre (NCSC) Cyber Assessment Framework (CAF) and ISA / IEC 62443, ISO / IEC 27001 / 27002, GDPR.Working knowledge of security technologies including … SIEM, SOAR, EDR, AV, IDS / IPS, NAC, AD, DLP, Web Filtering, Email Filtering, Behavioural Analytics.Knowledge of adversarial tactics, techniques, procedures (TTPs) and industry standard frameworks (Mitre ATT&CK). Experience working within a regulated environment, preferably Energy sector Critical National Infrastructure (CNI) Desirable: Bachelor's Degree in Cybersecurity … Computer Science, Information Systems, related field or equivalent training and / or experience. Professional Information Security certification by a recognised professional body such as Certified in Information Security Management (CISM), Certified Information Systems Security Professional (CISSP), certified Ethical Hacker (CEH), Global Information Assurance Certification (GIAC), or CompTIA Advanced Security more »

across the Cabot group in UK and Europe. Providing advice and guidance to the IT Operations function on regulatory and other risk frameworks (e.g. ISO27001 / ITIL / Sarbanes-Oxley / NIST / PCI). Assisting in the development and optimization of control management processes to … Be the key point of contact and provide coordination for internal and external audits requiring IT Operations support (i.e. Sarbanes-Oxley, Financial Statement audits, ISO27001, ITIL, NIST, PCI and Client audits.), ensuring the appropriate IT Operations staff are engaged and that responses are adequate and provided on a timely basis … Proven track record of delivery in an IT Governance or Risk and Controls role In depth knowledge of IT and regulatory frameworks standards: e.g. ISO27001 / ITIL / Sarbanes-Oxley / NIST / PCI SQL Server (2016 – 2022) Ability to multitask; used to working under pressure more »

and reporting findings to executive management. Supporting internal and external audits, ensuring effective and timely remediation actions. Assessing client requirements and high-risk suppliers / third parties for information security and data protection compliance. Advising on incident and breach management related to information security, including escalation, mitigation, and reporting. … operations context. In-depth knowledge of data protection legislation (Data Protection Act 2018, UK and EU GDPR). Expertise in information security controls, particularly ISO27001, and comprehension of technical IT concepts. Robust understanding of technical and organisational security controls, with a keen ability to evaluate and mitigate risks. Industry certifications … skills within the IT department and across the business. Follow us on LinkedIn for up-to-date industry news and our latest vacancies: https: / / www.linkedin.com / company / harcourt-matthews / and https: / / harcourtmatthews.com / blog / more »

designing, innovating, deploying, and maintaining security measures to safeguard their information assets. What you will be doing -You will be securing the existing infrastructure / application architecture. -You will act as a advocate for infrastructure / application Security Design. -You will be collaborating within cross-functional teams to … You will be undertaking internal pen testing and creation of external penetration testing scopes. -You will be enhancing security detection and incident response efforts / playbooks. -You will be monitoring, remediating, and reporting on security events. -You will be Security incident Manager (SIM). -You will vulnerability configure and … projects, with multiple security tools & be confident working with internal stakeholders to make sure the organization is compliant with PCI DSS, ISO / IEC 27001, SOC & HIPAA & IRAP controls. -You have an in-depth knowledge of security principles, technologies, and best practices, threat more »

Cyber Security Consultant - Security Assurance - 2 / 3 days a week on Site (Tadley) - £65k to £80k + benefits Due to the nature of the work - holding current, high level valid UK government security clearance is highly advantageous. We are looking for experienced Cyber Security Consultant - Security / … organisation to ensure that the client-based security teams uphold the highest standards. Whilst also acting as a group wide SME for direct queries / questions relating to Cyber Security Assurance. Typical day to day responsibilities: Management of the client's security documentation, including the creation and review of … policies, principles and standards for application across the organisation and within the supply chain. Alignment to industry standards and regulation, e.g. ISO / IEC 27001 / 27002 / 27005. Define as-is and to-be security standards. Continual review and revision more »

teams to deliver a resolution Proficiency in firewall and network configuration and maintenance. Create and update documentation Excellent knowledge of Microsoft Windows Server 2008 / 2012 / 2016 / 2019, including NLB and clustering. Strong expertise in Hyper-V and VMware. In-depth knowledge of all Microsoft … business offerings. Cloud Architecture Design & Migration Strategy Regulatory Compliance (e.g., GDPR, ISO 27001), ERP / CRM & legacy migrations Competence in Windows Script Host / VBScript / PowerShell. Desirable / Preferred: It would be advantageous if you have: Previous experience working for a … this exciting role and meet the requirements, we invite you to apply and join our growing team. Requirement: You must have the following visas / right to work to be eligible for this position: British Citizen, ILR, Dependant Visa, Pre-settled status etc. You must be UK-based to more »

security of the client’s third parties Requirements: Experience of complex and technical security assessments. Experience conducting third party security assurance. Knowledge of ISO 27001 and other commonly used security standards. Understanding of modern … cloud technologies. Desire to be part of a small fast-paced team. Relevant certifications, such as: ISO 27001 Lead Auditor / Implementor, CISM, CISA, CISSP. Apply now for this exceptional opportunity to work with a dynamic team and further enhance your career. Important Information: We … Employment Agency as defined within The Conduct of Employment Agencies & Employment Businesses Regulations 2003. Key Words: Security Assurance, 3rd party security, third party security, ISO27001, ISO 27001, CISM, CISA, CISSP, Audit more »

enforcement of Swissport information security strategy, policy, standards, controls and processes. ▪ Drive the investigation of compromised accounts and MCAS alerts. ▪ Investigate on L3 requests / tickets. ▪ Manage EDR: fine-tune detection rules, monitor and add exclusions where required, investigate open cases, perform incident response. ▪ Identify threats and conduct risk … a combination of different areas, such as: network security, email gateway security, cloud security, vulnerability Global Job Description Template Job Description management, security architecture / design / engineering (in addition to the degree or previous qualifying work experience) • Function / Market & Industry Knowledge / Business Acumen … / Process working o Understanding and knowledge of, at least, one information security management frameworks, such as ISO / IEC 27001, COBIT and NIST; awareness and understanding of compliance and data protection regulations, such as GDPR o Understanding of firewalls, proxies, SIEM more »

As a pioneer of the sharing economy, Brambles / CHEP is one of the world’s most sustainable logistics businesses and our culture is reflective of our people, our purpose, the experience people bring, and the experiences they have. We operate in 60 countries, with over 12,000 people … and 123 different nationalities. As Brambles / CHEP continues its transformation journey into shaping the future of IAM capabilities, our next IAM Director will establish the foundation for which the company will operate from for Identity and Access Management in the future! * Flexible location * Position Purpose Responsible for the … teams, against various standards and approaches in which this leader will work to consolidate, update, and ensure best practices and standards are introduced and / or reinforced to drive the reduction in risk and improved operational excellence against these critical applications and processes for company operations. Provide technical insight more »

Job Title: ICT Systems Administrator and Developer Location: Central London, Hybrid Working (3 / 2 split) Salary: £75,000 (£4,500 pcm due to tax immunity) Position Overview: As an ICT Systems Administrator and Developer, you will play a pivotal role in managing and enhancing our SharePoint and Moodle … projects, analysing business processes, developing web applications, and ensuring seamless operation of our Microsoft Azure applications. You will also be responsible for implementing CI / CD pipelines, troubleshooting issues, and maintaining compliance with ISO standards. Key Responsibilities: Manage and update SharePoint content Administer and enhance the internal … internal and external users. Assist in the development and maintenance of Microsoft Azure applications, including Function Apps, App Services, and Logic Apps. Implement CI / CD pipelines using Azure DevOps to automate build, test, and deployment processes. Troubleshoot issues and optimize systems for scalability, performance, and reliability. Assist in more »

Conduct risk assessments and security audits to identify vulnerabilities and develop risk mitigation plans. - Ensure compliance with relevant security standards, including ISO / IEC 27001, UK government security policies, and MOD regulations. - Provide expertise in secure system design, data encryption, access controls, and … passport and current UK government security clearance (minimum SC; DV preferred). - Strong knowledge of security standards and frameworks such as ISO / IEC27001, NIST, and the UK government's Security Policy Framework. - Proven experience in risk assessment, security auditing, and incident response. - Excellent communication and interpersonal more »

Systems Engineer / IT Manager London Hybrid / Remote (Greater London Only) Overview: An excellent opportunity has arisen with a Financial service provider for a Systems Engineer. The company is highly regarded and provide high-level support to recognised businesses and are continuously expanding. Role & Responsibilities: Handle 1st … active maintenance Ensuring ISO 27001 standards are met and taking lead on the annual audits Design solutions for customer IaaS / SaaS / PaaS cloud services Technical Sales Support for new prospects Essential Skills & Experience: 5+ years' experience as Systems engineer or similar role … Firewall & Network configuration & maintenance Excellent knowledge of Microsoft Windows Server 2008 / 2012 / 2016 / 2019 including NLB and clustering Strong knowledge of Hyper-V and VMware Strong knowledge of all Microsoft business offerings Knowledge of Windows Script Host / VBScript / PowerShell Desirable more »

is addressed early in the development lifecycle. Review security best practice, remediating and implementing controls to ensure compliance. Implementing security gates within the CI / CD workflows to ensure secure deployments. Write Infrastructure-as-code to build secure infrastructure repeatedly. Proactively patch infrastructure and code. Engage in debates around … Dev SecOps engineering position. Strong experience securing cloud platforms, primarily AWS and Mongo Atlas. Exposure to Audits / Compliance / Security frameworks (ISO27001, SOC2, OWASP, SAMM, DSOMM). Knowledge of embedded security (IDE plugins, SAST, DAST, SCA). Experience performing vulnerability scanning / penetration testing. Threat detection … and prevention (IDS, IPS, SOC, Threat list blocking, WAF / SIEM). Cloud account management (e.g. AWS Control Tower / GuardDuty / Config / Security Hub / CloudTrail). Identity management (e.g. SAML / OAuth / OIDC / AWS IAM). Secret more »

AWS / Security / DevSecOps / Control Tower / IAM Are you an enthusiastic security specialist in AWS? A top-tier DevSecOps Engineer? Are you eager to take charge of the technical direction for one of the most rapidly expanding companies in the PropTech sector? If … services and features, including IAM, VPC, EC2, S3, RDS, Lambda, and CloudFormation Strong understanding of security best practices, principles, and frameworks, such as ISO 27001 controls and NIST Guidelines Experience in implementing security automation using Scripting languages eg Python and infrastructure-as-code (IaC) tools Ability … stakeholder engagement and management experience, inc. presenting of solutions to the exec team Certifications such as AWS Certified Security Specialist are a plus 70 / 75K, Occasional Travel to the Midlands Required Then get in touch today, interviews next week for the right candidates more »

Infrastructure Security Engineer - 12 Month Contract - 450 / day Outside IR35. London based Insurance company are recruiting for security engineers to join the team foe an initial 12 month contract OUTSIDE IR35. Taking responsibility for leading, guiding, supporting and delivering secure architectural design for the group cyber security maturity … to ensure open Continuous Security Improvement Programme (CSIP's) are managed effectively up to closure. Firewall management Web Proxy management and CASB. Anti-Virus / Malware management Standard, third party and privilege access user management Remediation of external, internal vulnerabilities, web application scanning and patch compliance. Representing IT security … 27001 - Information Security Management System (ISMS) CIS - Center of Internet Security (Cyber security best Practices) Infrastructure Security Engineer - 12 Month Contract - 450 / day Outside IR35. Desired Skills and Experience Cyber Security / Infrastructure / Azure / IAM / WAF / Defender more »

assist businesses in achieving cybersecurity resilience. You'll play a vital role in auditing clients against national and international information security standards like ISO 27001, fostering enhanced and sustainable Information Resilience. Why Apply Opportunity to work with a diverse range of clients, from small businesses to … meeting all scheme and regulatory requirements. Perform various audit types as either Team Leader or Team Member. Requirements: Third-party audit experience in ISO 27001 and ISO 27701. Minimum of 4 years' IT industry experience, with at least 2 years in Information Security. Deep more »

Overview The Quality and Information Security Audit Lead operates within the Bell SI business and is responsible for ensuring Bell’s compliance to ISO 9001 and 27001 by organising and performing internal audits and representing Bell at external audits. Must be able to travel to either … changes to ISO 9001 and ISO 27001 which may affect company certification. Qualifications: Lead Auditor qualification (ISO9001 and / or 27001) or five years’ equivalent experience of driving ISO certification compliance. Line management experience. Skills: Excellent communication and interpersonal … Flexible remote working and a supportive environment for varying personal circumstances A diverse and inclusive work culture Modern vibrant workplaces Company pension Private healthcare / dental care Cycle to work scheme And much more! Protecting your privacy and the security of your data is a longstanding top priority for more »

tender requests and client audit processes Vendor Assurance - reviewing and assessing vendors against established tools / benchmarks Working to help the firm maintain ISO27001 and PCI certifications Provide an escalation path for information security issues, incidents and enquiries Coordinate the production of relevant reports and statistical analysis required for … of the IEC / ISO 27001 framework and experience with ISMS tooling Experience in supporting and maintaining ISO27001 and Cyber Essentials PLUS aligned solutions Knowledge of NIST, CISSP and GDPR Recognised IS qualifications This is a fantastic opportunity to join a prestigious firm more »

Security Steering Committee where appropriate. Security Audits and Certifications: Coordinate regular internal and external audits and address any issues raised to maintain certifications (currently ISO27001 and Cyber Essentials Plus), which are essential in demonstrating our commitment to information security to our clients. Security Training: Deliver information security awareness training for … following qualifications SaaS Experience: 3 years+ working for SaaS provider (B2B or B2B2C), where you routinely interacted with product, engineering and commercial teams. ISO 27001 Implementation: 3 years+ in an information security role with direct responsibility for implementing and maintaining an ISO 27001 … comprehensive range of flexible benefits Normal Working Hours 37.5 per week Location: Leatherhead House, Station Road, Leatherhead, Surrey KT22 7FG Hybrid role with office / home working split. more »

to support company expansion. Communicate engineering strategy to stakeholders and the board. Oversee the AWS cloud infrastructure for development, testing, production, and continuous integration / deployment. Experience Requirements: Over 7 years experience in Leadership in Medical Imaging Deep understanding of one medical imaging modality; MRI, PET, Ultrasound, CT. Proven … software solutions for the medical imaging field. Built and led high-performing product development teams across the entire lifecycle. Experience managing software development, UI / UX / workflow design, testing, SaaS security, and PACS / EMR integration. Worked with Cloud based SaaS (ideally AWS) Ideally some familiarity … with Ai / ML for diagnosis Benefits Competitive salary, with share options and bonus potential 25 holidays per year plus bank holidays Private medical insurance, Life insurance Enhanced pension contribution Cycle-to-work scheme more »

Home based role Help strengthen our team as our Level 2 SOC / Security Analyst - Compliance, Assurance & Continual Improvement . Home based role. A great opportunity to join our operational security team to support our initial and ongoing assessment of Operational Security controls against Cyber Security best practice, Organizational … Protect, Detect, Respond, and Recover. Familiar with the framework's guidelines for managing and reducing cyber risks, in particular NIST 800.53. '€¢ ISO / IEC 27001: Comprehend the international standard for information security management systems (ISMS). Knowledge about risk assessment, controls, and continuous more »