1 to 25 of 246 ISO/IEC 27001 Jobs in the UK excluding London

and Compliance (GRC): Develop and implement information security policies, procedures, and standards aligned with industry best practices. Ensure compliance with relevant regulations, including ISO 27001, ISO 9001 and GDPR. Engaging with key company stakeholders, assessing and actively managing risk through effective mitigation strategies. 5. … ISO 27001 & ISO 9001 Compliance: Lead ISO 27001 & ISO 9001 compliance activities. Maintain our integrated management systems for information security and quality management. Monitor and audit controls to ensure ongoing compliance. Qualifications Proven experience in information security management. … Strong knowledge of information security frameworks and regulations such as, ISO 27001, NIST 800 series, NERC-CIP, NIS and GDPR requirements. Knowledge and experience of quality management systems, especially in an ISO 9001 certified environment. Desirable Qualifications Degree in Information Security, Computer Science, or more »

GRC Analyst (InfoSec ISO 27001) Sunderland / WFH to £40k Are you a tech savvy GRC Analyst looking to progress your career? You could be joining a successful and growing online gaming / gambling site as they expand their European presence. As a GRC … aim of protecting customers and the business alike from cyber security attacks. You'll maintain and continuously improve ISO 27001 / 2 policies, standards and procedures; collaborate across teams to drive adoption and adherence to InfoSec policy and guidelines and contribute to the continuous improvement … although could be other industry e.g., finance You have a good understanding of governance standards and frameworks e.g., ISO 27001 / 2, PCI-DSS, NIST, ISF, GDPR You have good commercial awareness and experience of delivery security awareness within a large scale organisation You have more »

a fantastic opportunity for you to become a Deputy to our Data Protection Officer within our exciting Information Governance team. Data Protection and Security / Information Governance is a requirement of every UK organisation ensuring that you are entering a career in an area of continued demand and expertise. … as part of the Trust's new vision that is outlined within the job description: Data Protection (i.e. Data Protection Impact Assessments, Data Sharing / Processing Agreements and Information Asset Management) Data Requests (i.e. Subject Access Requests and Freedom of Information Requests and all types of disclosures) Data Breaches … Information) Desirable Data Security / Information Security Qualification Certified Information Systems Security Professional (CISSP) Certified Cloud Security Professional (CCSP) Certified Ethical Hacker (CEH) ISO27001 Lead Auditor Certification Formal management / leadership training / qualification Service Improvement training / qualification Experience Essential Significant operational management experience in more »

group level is necessary. An understanding of compliance and regulatory frameworks such as National Cyber Security Centre (NCSC) Cyber Assessment Framework (CAF) and ISA / IEC 62443, ISO / IEC 27001 / 27002, GDPR.Working knowledge of security technologies including … SIEM, SOAR, EDR, AV, IDS / IPS, NAC, AD, DLP, Web Filtering, Email Filtering, Behavioural Analytics.Knowledge of adversarial tactics, techniques, procedures (TTPs) and industry standard frameworks (Mitre ATT&CK). Experience working within a regulated environment, preferably Energy sector Critical National Infrastructure (CNI) Desirable: Bachelor's Degree in Cybersecurity … Computer Science, Information Systems, related field or equivalent training and / or experience. Professional Information Security certification by a recognised professional body such as Certified in Information Security Management (CISM), Certified Information Systems Security Professional (CISSP), certified Ethical Hacker (CEH), Global Information Assurance Certification (GIAC), or CompTIA Advanced Security more »

with some experience in assurance testing techniques and methodologies. Bachelor's Degree in Cybersecurity, Computer Science, Information Systems, related field or equivalent training and / or experience. Professional Information Security certification by a recognised professional body such as Certified in Information Security Management (CISM), Certified Information Systems Security Professional … always come first. An understanding of compliance and regulatory frameworks such as the National Cyber Security Centre (NCSC) Cyber Assessment Framework (CAF) and ISA / IEC 62443, ISO / IEC 27001 / 27002, and GDPR. Working knowledge of security … technologies including SIEM, SOAR, EDR, AV, IDS / IPS, NAC, AD, DLP, Web Filtering, Email Filtering, Behavioural Analytics. Knowledge of adversarial tactics, techniques, procedures (TTPs) and industry standard frameworks (Mitre ATT&CK). Experience working within a regulated environment, preferably Energy sector Critical National Infrastructure (CNI more »

Cyber Security Consultant - Security Assurance - 2 / 3 days a week on Site (Tadley) - £65k to £80k + benefits Due to the nature of the work - holding current, high level valid UK government security clearance is highly advantageous. We are looking for experienced Cyber Security Consultant - Security / … organisation to ensure that the client-based security teams uphold the highest standards. Whilst also acting as a group wide SME for direct queries / questions relating to Cyber Security Assurance. Typical day to day responsibilities: Management of the client's security documentation, including the creation and review of … policies, principles and standards for application across the organisation and within the supply chain. Alignment to industry standards and regulation, e.g. ISO / IEC 27001 / 27002 / 27005. Define as-is and to-be security standards. Continual review and revision more »

enforcement of Swissport information security strategy, policy, standards, controls and processes. ▪ Drive the investigation of compromised accounts and MCAS alerts. ▪ Investigate on L3 requests / tickets. ▪ Manage EDR: fine-tune detection rules, monitor and add exclusions where required, investigate open cases, perform incident response. ▪ Identify threats and conduct risk … a combination of different areas, such as: network security, email gateway security, cloud security, vulnerability Global Job Description Template Job Description management, security architecture / design / engineering (in addition to the degree or previous qualifying work experience) • Function / Market & Industry Knowledge / Business Acumen … / Process working o Understanding and knowledge of, at least, one information security management frameworks, such as ISO / IEC 27001, COBIT and NIST; awareness and understanding of compliance and data protection regulations, such as GDPR o Understanding of firewalls, proxies, SIEM more »

Location: Swindon / Fareham / Hybrid working The opportunity: In this role, your key responsibilities will involve engaging, influencing, and guiding stakeholders and teams. Your expertise will be instrumental in seamlessly integrating the IT RMF and CITCC into everyday business procedures. Collaboration will be at the heart of … Please talk to us at the interview about the flexibility you may need. What will you be doing? Develop a consensus UK IT Controls / Risk Management Framework, serving as the operational manual for IT controls and Security functions within the broader IT and Operational enterprise. Create, maintain, and … engagement schedule with comprehensive processes, procedures, and guidelines for IT stakeholder interactions across IT Architecture, DevOps, Security and Service Mgmt. Initiate local IT Controls / Risk engagement activities in line with the Local and Global requirements. Establish local IT Control and Risk reporting and management information to support UK more »

Conduct risk assessments and security audits to identify vulnerabilities and develop risk mitigation plans. - Ensure compliance with relevant security standards, including ISO / IEC 27001, UK government security policies, and MOD regulations. - Provide expertise in secure system design, data encryption, access controls, and … passport and current UK government security clearance (minimum SC; DV preferred). - Strong knowledge of security standards and frameworks such as ISO / IEC27001, NIST, and the UK government's Security Policy Framework. - Proven experience in risk assessment, security auditing, and incident response. - Excellent communication and interpersonal more »

AWS / Security / DevSecOps / Control Tower / IAM Are you an enthusiastic security specialist in AWS? A top-tier DevSecOps Engineer? Are you eager to take charge of the technical direction for one of the most rapidly expanding companies in the PropTech sector? If … services and features, including IAM, VPC, EC2, S3, RDS, Lambda, and CloudFormation Strong understanding of security best practices, principles, and frameworks, such as ISO 27001 controls and NIST Guidelines Experience in implementing security automation using Scripting languages eg Python and infrastructure-as-code (IaC) tools Ability … stakeholder engagement and management experience, inc. presenting of solutions to the exec team Certifications such as AWS Certified Security Specialist are a plus 70 / 75K, Occasional Travel to the Midlands Required Then get in touch today, interviews next week for the right candidates more »

governance which are in place to meet compliance with the General Data Protection Regulation 2016 (GDPR). Responsibilities Include: Drive Data Protection by design / default across the organisation. Ensuring full consideration is given to data protection issues Work with the wider technology function and project teams to identify … of Legitimate Interest Tests (LIA’s) Support the business in assessment of the business Data Protection by Design & Default controls against ISO37100 and obtaining / maintaining ISO 27001 / ISO 27701 Skills Required Include: Demonstrate excellent and effective communication skills with all … well as the ability to work well in a demanding, dynamic environment and meet overall objectives. Exhibit excellent influencing skills and experience in managing / support projects Proven track record and experience in developing data protection policies, procedures and training and awareness content Excellent working knowledge of the Data more »

Security Steering Committee where appropriate. Security Audits and Certifications: Coordinate regular internal and external audits and address any issues raised to maintain certifications (currently ISO27001 and Cyber Essentials Plus), which are essential in demonstrating our commitment to information security to our clients. Security Training: Deliver information security awareness training for … following qualifications SaaS Experience: 3 years+ working for SaaS provider (B2B or B2B2C), where you routinely interacted with product, engineering and commercial teams. ISO 27001 Implementation: 3 years+ in an information security role with direct responsibility for implementing and maintaining an ISO 27001 … comprehensive range of flexible benefits Normal Working Hours 37.5 per week Location: Leatherhead House, Station Road, Leatherhead, Surrey KT22 7FG Hybrid role with office / home working split. more »

solutions, and RFP documents Required skills and experience: Experience working as a Cyber security technical architect with proven experience working in commercial, public and / or industrial sectors Solid grasp of information security requirements and capabilities across different industries A depth of information technology and information security experience Experience … in design and deployment of several of the following technologies: Endpoint, network and infrastructure threat protection Cloud Security within Azure and / or AWS IAM Identity Access Management SIEM and MDR VA Vulnerability Analysis and mitigation DLP Data loss prevention PKI Public key infrastructure Ability to guide engineering teams … certification (e.g., MCSE, CCDP, CCIE, RHCA, etc.) Knowledge and understanding of UK government protective marking standards; industry standards, including PCI-DSS, ISO / IEC 27001, etc. Awareness of common exploits and vulnerabilities and how these may be prevented Strong network engineering and server more »

solutions, and RFP documents Required skills and experience: Experience working as a Cyber security technical architect with proven experience working in commercial, public and / or industrial sectors Solid grasp of information security requirements and capabilities across different industries A depth of information technology and information security experience Experience … in design and deployment of several of the following technologies: Endpoint, network and infrastructure threat protection Cloud Security within Azure and / or AWS IAM Identity Access Management SIEM and MDR VA Vulnerability Analysis and mitigation DLP Data loss prevention PKI Public key infrastructure Ability to guide engineering teams … certification (e.g., MCSE, CCDP, CCIE, RHCA, etc.) Knowledge and understanding of UK government protective marking standards; industry standards, including PCI-DSS, ISO / IEC 27001, etc. Awareness of common exploits and vulnerabilities and how these may be prevented Strong network engineering and server more »

solutions, and RFP documents Required skills and experience: Experience working as a Cyber security technical architect with proven experience working in commercial, public and / or industrial sectors Solid grasp of information security requirements and capabilities across different industries A depth of information technology and information security experience Experience … in design and deployment of several of the following technologies: Endpoint, network and infrastructure threat protection Cloud Security within Azure and / or AWS IAM Identity Access Management SIEM and MDR VA Vulnerability Analysis and mitigation DLP Data loss prevention PKI Public key infrastructure Ability to guide engineering teams … certification (e.g., MCSE, CCDP, CCIE, RHCA, etc.) Knowledge and understanding of UK government protective marking standards; industry standards, including PCI-DSS, ISO / IEC 27001, etc. Awareness of common exploits and vulnerabilities and how these may be prevented Strong network engineering and server more »

Information Security Manager – Solihull - £69,000 DOE - Hybrid working ISO:27001, Governance Risk, Compliance, Appreciating of security technologies, Cyber Essentials, CISM, CISSP Working for a well know organization based in Solihull we are looking for an Information Security Manager to to join a company with a … have the ability to help shape a security function and grow a position with autonomy. This will help develop your knowledge in an ISO:27001 compliant environment that boasts some of the best technology in the industry with a leading and continually growing brand. General Summary … Skills and Experience Appreciation of security technologies and vendors. Knowledge of Information Security standards, legislation and practices, including GDPR & Data Protection Act 2018, ISO:27001 etc Experience in dealing with a wide range of Information Security matters and operating in an ITIL based environment. Strong problem more »

We have an excellent opportunity for a 3rd Line IT Support Engineer / Team Leader to join our client's growing and reputable team of technicians at this leading and award-winning ISO 9001 & ISO 27001 accredited solutions provider. This is a hybrid … position so you should be within reasonable traveling distance to their Brighouse office. About the role As 3rd Line IT Support Engineer / Team Leader, you will troubleshoot and resolve complicated technical issues that have been escalated to from 1st and 2nd Line Engineers, while providing excellent customer service … good time to ensure everyone has visibility of actions completed Communicate accurately and within good time both internally and externally Flag areas of risk / improvement within the firm if identified Train other members of the team in all things technical Provide out of hours technical support to clients more »

We have an excellent opportunity for a 3rd Line IT Support Engineer / Team Leader to join our client’s growing and reputable team of technicians at this leading and award-winning ISO 9001 & ISO 27001 accredited solutions provider. This is a hybrid … position so you should be within reasonable traveling distance to their Brighouse office. About the role As 3rd Line IT Support Engineer / Team Leader, you will troubleshoot and resolve complicated technical issues that have been escalated to from 1st and 2nd Line Engineers, while providing excellent customer service … good time to ensure everyone has visibility of actions completed Communicate accurately and within good time both internally and externally Flag areas of risk / improvement within the firm if identified Train other members of the team in all things technical Provide out of hours technical support to clients more »

Dehradun and five fully owned international subsidiaries in US, Canada, Australia, UK, and Middle East. RMSI is a CMMI Level 5 assessed and ISO 27001 & ISO 9001:2015 certified company. Adopting these standards ensures that we provide the highest levels of software development processes … knowledge projection transformation Should have knowledge related to attribute data and field calculator or expression Experience of undertaking digitisation from sources such as image / electronic data / digital data 6Knowledge of ESRI, MapInfo, Microsoft Office Qualification Diploma / Bachelor’s degree (or equivalent) in Geography, Urban … Planning, Geographic Information Systems / Science, or other relevant discipline more »

passionate thinkers, makers and doers working across a range of disciplines including UX, strategy, design, development, hosting, project management and support. We’re ISO 27001, ISO 22301, ISO 9001, and Cyber Essentials Plus certified – as well as a certified Great Place to … Work. We also hold ISO 14001 & Green Mark certifications, and our commitment to environment sustainability sits at the heart of Zoocha’s products and business processes. We build long-lasting relationships with clients and push them, ourselves and the world around us forward through the creation of beautiful … Ofsted Through our upcoming repositioning work, we’re looking to push into exciting new commercial territories over the coming year and beyond. The Role / Your Remit As a Delivery Manager at Zoocha, you will be responsible for the resourcing and successful delivery of our projects - on time, within more »

growing technology business. Description Continue review and improve the security policies Implement and maintain ISMS Ensure compliance with relevant security standards and regulations (ISO 27001, Cyber Essentials, etc.) Review and implement business continuity plan and policy Manage technical and business stakeholders Perform proactive risk assessments Work … protocols and procedures Knowledge and experience in different security standards and frameworks with track record in leading ISO 27001 accreditation / re-accreditation projects Proficiency in information risk assessment and compliance Experience in Business Continuity is desirable but not essential Job Offer Hybrid working arrangement more »

role will be: Fulfilling the role of IT Security Officer as defined in the Risk Management Accreditation Document Set (RMADS) Maintain and update the ISO27001 accredited Information Security Management System (ISMS) and ensure staff are aware of its content. Liaising with the IT Management Team to develop and manage IT … GRC, with the ability to gain UK Security Clearance. You will also need the following: Ability to be on site close to Salisbury 2 / 3 times a week. 3 years + experience with GRC, most preferably with an ISO background. An ISO:27001 … ll get in return With a salary of up to £55,000, and a generous benefits package which includes access to industry leading training / certifications, good pension, free parking, and you’ll work alongside some highly experienced and talented colleagues to share knowledge (which is actively encouraged). more »

growing technology business. Description Continue review and improve the security policies Implement and maintain ISMS Ensure compliance with relevant security standards and regulations (ISO 27001, Cyber Essentials, etc.) Review and implement business continuity plan and policy Manage technical and business stakeholders Perform proactive risk assessments Work … protocols and procedures Knowledge and experience in different security standards and frameworks with track record in leading ISO 27001 accreditation / re-accreditation projects Proficiency in information risk assessment and compliance Experience in Business Continuity is desirable but not essential Job Offer Hybrid working arrangement more »

Lead the audit / assessment of operations controls and processes against the required internal and industry standards, including but not limited to COBIT, ISO27001, NIST, PCI-DSS, Cyber Resilience Framework Develop a test strategy and produce control test plans to test the design and operational effectiveness of controls, ensuring … and deficiencies, risk exposures and adjustments to the operations risk profile to senior management and Second & Third Line of Defence, as appropriate Support control / action owners in the design of remediation action plans for identified control deficiencies Assist in establishing inherent risk ratings, control rating, and residual risk … interested in joining us at AXA, please don't hesitate to apply. About you What we’re looking for: Previous controls governance and assurance / audit experience in a large organisation Strong understanding of operational risk, control concepts and frameworks Excellent stakeholder management skills Good knowledge of industry best more »

Lead the audit / assessment of operations controls and processes against the required internal and industry standards, including but not limited to COBIT, ISO27001, NIST, PCI-DSS, Cyber Resilience Framework Develop a test strategy and produce control test plans to test the design and operational effectiveness of controls, ensuring … and deficiencies, risk exposures and adjustments to the operations risk profile to senior management and Second & Third Line of Defence, as appropriate Support control / action owners in the design of remediation action plans for identified control deficiencies Assist in establishing inherent risk ratings, control rating, and residual risk … interested in joining us at AXA, please don't hesitate to apply. About you What we’re looking for: Previous controls governance and assurance / audit experience in a large organisation Strong understanding of operational risk, control concepts and frameworks Excellent stakeholder management skills Good knowledge of industry best more »