1 to 25 of 219 ISO/IEC 27001 Jobs in the UK excluding London

or supplement these from time to time. Interpret complex legislation or regulations related to information governance and information security such as ISO / IEC 27001, the Data Protection Act 1998, NHS Information Risk Management, Computer Misuse Act, implementing and enforcing suitable and relevant … procedures across the Trust. The role will include supporting the implementation and development of systems, policies and procedures which comply with ISO / IEC 27001, NHS England, CareCERT guidance, Cyber Essentials, DSPT, NHS Information Risk Management and other relevant guidance. Please see attached … of Information Security and Information Governance Interpret highly complex legislation and regulations related to information governance and information security such as ISO / IEC 27001, the Data Protection Act 1998, NHS Information Risk Management, Computer Misuse Act and develop, implement, and enforce suitable more »

and Compliance (GRC): Develop and implement information security policies, procedures, and standards aligned with industry best practices. Ensure compliance with relevant regulations, including ISO 27001, ISO 9001 and GDPR. Engaging with key company stakeholders, assessing and actively managing risk through effective mitigation strategies. 5. … ISO 27001 & ISO 9001 Compliance: Lead ISO 27001 & ISO 9001 compliance activities. Maintain our integrated management systems for information security and quality management. Monitor and audit controls to ensure ongoing compliance. Qualifications Proven experience in information security management. … Strong knowledge of information security frameworks and regulations such as, ISO 27001, NIST 800 series, NERC-CIP, NIS and GDPR requirements. Knowledge and experience of quality management systems, especially in an ISO 9001 certified environment. Desirable Qualifications Degree in Information Security, Computer Science, or more »

work successful candidates for this role will need to have SC clearance prior to starting with us and be eligible for DV clearance https: / / www.gov.uk / guidance / security-vetting-and-clearanc e Key responsibilities Working with clients remotely and onsite, you will support … proposals. Skills and experience required • A passion for, and understanding of, cyber security trends and threats, underpinned by a solid understanding of networking (TCP / IP) and DNS. • Knowledge and practical experience of applying NIST Cyber Security and Risk Management publications. • Effective business acumen and an understanding of the … cyber security challenges faced by organisations • Can evaluate cyber security risk at the technical, system process and / or organisational level measuring the associated business impact using a structured approach or methodology • Can document and articulate how to manage cyber security risk utilising a structured approach based on industry more »

day information security compliance e.g. Malware Protection, Security Incidents, Intrusion Detection Systems, Patch management compliance etc. Other duties include; Conceptualise and implement an ISO 27001:2013 and GDPR compliant management system. Manage the IT Security workstream of initiatives, in order to improve information security within the … team, conduct internal audits of the business functions with the criteria being: the Arcus management system, industry practice, applicable standards and legislation, and ISO 27001:2013. Build and maintain strong relationships with internal personnel and relevant certification, registration and regulatory bodies. Create and lead the ongoing … CISM) qualification is desirable. ISO 27001:2013 or ISO 9001:2015 internal audit qualification is desirable. PRINCE2 Foundation / Practitioner is desirable. Knowledge of ISO 9001:2015 is desirable. Benefits of Working at Arcus: Salary: £58,000 - £ 63,000 Up to more »

with some experience in assurance testing techniques and methodologies. Bachelor's Degree in Cybersecurity, Computer Science, Information Systems, related field or equivalent training and / or experience. Professional Information Security certification by a recognised professional body such as Certified in Information Security Management (CISM), Certified Information Systems Security Professional … always come first. An understanding of compliance and regulatory frameworks such as the National Cyber Security Centre (NCSC) Cyber Assessment Framework (CAF) and ISA / IEC 62443, ISO / IEC 27001 / 27002, and GDPR. Working knowledge of security … technologies including SIEM, SOAR, EDR, AV, IDS / IPS, NAC, AD, DLP, Web Filtering, Email Filtering, Behavioural Analytics. Knowledge of adversarial tactics, techniques, procedures (TTPs) and industry standard frameworks (Mitre ATT&CK). Experience working within a regulated environment, preferably Energy sector Critical National Infrastructure (CNI more »

security framework, including: Security Architecture policies, principles, and standards for application across the organisation. Alignment to industry standards and regulation e.g. ISO / IEC 27001 / 27002 / 27005. Security specific patterns, models, and blueprints. Define as-is and to-be more »

security framework, including: Security Architecture policies, principles, and standards for application across the organisation. Alignment to industry standards and regulation e.g. ISO / IEC 27001 / 27002 / 27005. Security specific patterns, models, and blueprints. Define as-is and to-be more »

security framework, including: Security Architecture policies, principles, and standards for application across the organisation. Alignment to industry standards and regulation e.g. ISO / IEC 27001 / 27002 / 27005. Security specific patterns, models, and blueprints. Define as-is and to-be more »

shape and really make a difference to this exciting and meaningful program. Training and development will be invested in such as certifications in ISA / IEC 62443 & GICSP, autonomy will be huge to the role & part of a collaborative growing team of OT professionals. A few core … audits on client computer systems and network devices, particularly focusing on the nuances of Operational Technology testing. Key skills: Experience with serving critical infrastructure / industrial control systems (ICS) to include SCADA HCI systems, PLCs, RTUs, etc.). Experience completing system assessments and security audits based on technical security … frameworks such as NIST 800-53 / 800-82, ISO 27001, IEC 62433, HSE OG-86, NIS-D etc. Experience designing & configuring secure networks (Switching, Routing, Firewalls). Some insightful information for you: The company will invest in your personal development through external more »

addressed early in the development life cycle. Review security best practice, remediating and implementing controls to ensure compliance. Implementing security gates within the CI / CD workflows to ensure secure deployments. Write Infrastructure-as-code to build secure infrastructure repeatedly. Proactively patch infrastructure and code. Engage in debates around … Dev SecOps engineering position. Strong experience securing cloud platforms, primarily AWS and Mongo Atlas. Exposure to Audits / Compliance / Security frameworks (ISO27001, SOC2, OWASP, SAMM, DSOMM). Knowledge of Embedded security (IDE plugins, SAST, DAST, SCA). Experience performing vulnerability scanning / penetration testing. Threat detection … and prevention (IDS, IPS, SOC, Threat list blocking, WAF / SIEM). Cloud account management (eg AWS Control Tower / GuardDuty / Config / Security Hub / CloudTrail). Identity management (eg SAML / OAuth / OIDC / AWS IAM). Secret more »

AWS / Security / DevSecOps / Control Tower / IAM Are you an enthusiastic security specialist in AWS? A top-tier DevSecOps Engineer? Are you eager to take charge of the technical direction for one of the most rapidly expanding companies in the PropTech sector? If … services and features, including IAM, VPC, EC2, S3, RDS, Lambda, and CloudFormation Strong understanding of security best practices, principles, and frameworks, such as ISO 27001 controls and NIST Guidelines Experience in implementing security automation using Scripting languages eg Python and infrastructure-as-code (IaC) tools Ability … stakeholder engagement and management experience, inc. presenting of solutions to the exec team Certifications such as AWS Certified Security Specialist are a plus 70 / 75K, Occasional Travel to the Midlands Required Then get in touch today, interviews next week for the right candidates more »

Based from Glasgow / Belfast / Manchester or Remote based on circumstance Founded in 2000, 3173 has a number of serviced offices spread across the UK, with offices in Belfast, Glasgow, London, Manchester, Birmingham, Bristol and Leeds. 3173 has several different companies within the group, including Dalriada Trustees … all Stakeholders in order to assess the suitability and resilience of our Key Suppliers. Contribute to the monitoring of an effective Business Continuity Plan / Disaster recovery plan by working with Stakeholders to update the plan and to ensure the plan is tested at least annually. Contribute to the … Required for the Role A strong quality management background obtained from significant and relevant experience in a similar role. Competence and experience in implementing / assessing / monitoring ISO management standards, ISO 9001:2015 and or ISO 27001. Experience in auditing and more »

AWS / Security / DevSecOps / Control Tower / IAM / CI / CD pipeline Are you an enthusiastic security specialist in AWS? A top-tier DevSecOps Engineer? Are you eager to take charge of the technical direction for one of the most rapidly … services and features, including IAM, VPC, EC2, S3, RDS, Lambda, and CloudFormation Strong understanding of security best practices, principles, and frameworks, such as ISO 27001 controls and NIST Guidelines Experience in implementing security automation using scripting languages e.g. Python and infrastructure-as-code (IaC) tools Ability more »

Based from Glasgow / Belfast / Manchester or Remote based on circumstance Founded in 2000, 3173 has a number of serviced offices spread across the UK, with offices in Belfast, Glasgow, London, Manchester, Birmingham, Bristol and Leeds. 3173 has several different companies within the group, including Dalriada Trustees … all Stakeholders in order to assess the suitability and resilience of our Key Suppliers. Contribute to the monitoring of an effective Business Continuity Plan / Disaster recovery plan by working with Stakeholders to update the plan and to ensure the plan is tested at least annually. Contribute to the … Required for the Role A strong quality management background obtained from significant and relevant experience in a similar role. Competence and experience in implementing / assessing / monitoring ISO management standards, ISO 9001:2015 and or ISO 27001. Experience in auditing and more »

governance which are in place to meet compliance with the General Data Protection Regulation 2016 (GDPR). Responsibilities Include: Drive Data Protection by design / default across the organisation. Ensuring full consideration is given to data protection issues Work with the wider technology function and project teams to identify … of Legitimate Interest Tests (LIA’s) Support the business in assessment of the business Data Protection by Design & Default controls against ISO37100 and obtaining / maintaining ISO 27001 / ISO 27701 Skills Required Include: Demonstrate excellent and effective communication skills with all … well as the ability to work well in a demanding, dynamic environment and meet overall objectives. Exhibit excellent influencing skills and experience in managing / support projects Proven track record and experience in developing data protection policies, procedures and training and awareness content Excellent working knowledge of the Data more »

Manchester, UKAssessment Services – AppDev / Finance / B2B / Regular Full Time / RemoteAbout CoalfireCoalfire is on a mission to make the world a safer place by solving our clients’ toughest cybersecurity challenges. We work at the cutting edge of technology to advise, assess, automate, and … against regulatory and industry requirements and standards, and against security best practice frameworks. You will have a strong understanding of framework requirements, perform audit / assessments, and develop reports for clients. You will also provide quality control and peer review to other members of the delivery staff. This role … integrity and effectiveness of security measures. You will test technical controls, policies and procedures, laws, regulations, and industry best practices.What You'll DoLead audits / assessments including audit plan preparation, review of documentation and evidence, evaluation of procedures, and client interviews. Prepare, review and approve assessment reports. Manage priorities more »

secure solutions What are we looking for? Broad understanding of technology and security controls Experience in supporting security control frameworks, such as NIST and ISO27001 / 2. Experience of ISO27001 / ISMS implementation or audit is highly desirable. Recognised industry qualification (CISSP, CISM, CEH, CISA) Preferable Able to … translate Information Security and IT risk language into business language. Risk Management methodologies, frameworks, and standards (ISO 27001, ISO31000, ITIL, COBIT) Able to build and maintain relationships and influence key stakeholders across the business. A creative and analytical mind with good stakeholder interfacing and excellent communications more »

Security Steering Committee where appropriate. Security Audits and Certifications: Coordinate regular internal and external audits and address any issues raised to maintain certifications (currently ISO27001 and Cyber Essentials Plus), which are essential in demonstrating our commitment to information security to our clients. Security Training: Deliver information security awareness training for … following qualifications SaaS Experience: 3 years+ working for SaaS provider (B2B or B2B2C), where you routinely interacted with product, engineering and commercial teams. ISO 27001 Implementation: 3 years+ in an information security role with direct responsibility for implementing and maintaining an ISO 27001 … comprehensive range of flexible benefits Normal Working Hours 37.5 per week Location: Leatherhead House, Station Road, Leatherhead, Surrey KT22 7FG Hybrid role with office / home working split. more »

In this role you will report to the Information Security Manager to assist with the operation of the ISO 27001 information security management system working with staff and managers across the entire business, covering all aspects of security and data protection. Role Working with the Information … Security Manager, CSO and the wider Security team to build and maintain our information security management system, ensuring compliance with ISO 27001 and other standards as agreed with the Operating Board Assist with the support and implementation of the ISMS throughout the company, through documentation and … Time management skills Ability to prioritise tasks An inquisitive mindset Qualifications 5 GCSE's including English and Maths GCSE or equivalent, grade A*-C / 9-4 or equivalent (Essential) IT / Computing A Level or equivalent, grade A*-C (Desired) About the Employer Celebrus Technologies The Celebrus more »

Information Security Manager – Solihull - £69,000 DOE - Hybrid working ISO:27001, Governance Risk, Compliance, Appreciating of security technologies, Cyber Essentials, CISM, CISSP Working for a well know organization based in Solihull we are looking for an Information Security Manager to to join a company with a … have the ability to help shape a security function and grow a position with autonomy. This will help develop your knowledge in an ISO:27001 compliant environment that boasts some of the best technology in the industry with a leading and continually growing brand. General Summary … Skills and Experience Appreciation of security technologies and vendors. Knowledge of Information Security standards, legislation and practices, including GDPR & Data Protection Act 2018, ISO:27001 etc Experience in dealing with a wide range of Information Security matters and operating in an ITIL based environment. Strong problem more »

We have an excellent opportunity for a 3rd Line IT Support Engineer / Team Leader to join our client's growing and reputable team of technicians at this leading and award-winning ISO 9001 & ISO 27001 accredited solutions provider. This is a hybrid … position so you should be within reasonable traveling distance to their Brighouse office. About the role As 3rd Line IT Support Engineer / Team Leader, you will troubleshoot and resolve complicated technical issues that have been escalated to from 1st and 2nd Line Engineers, while providing excellent customer service … good time to ensure everyone has visibility of actions completed Communicate accurately and within good time both internally and externally Flag areas of risk / improvement within the firm if identified Train other members of the team in all things technical Provide out of hours technical support to clients more »

We have an excellent opportunity for a 3rd Line IT Support Engineer / Team Leader to join our client’s growing and reputable team of technicians at this leading and award-winning ISO 9001 & ISO 27001 accredited solutions provider. This is a hybrid … position so you should be within reasonable traveling distance to their Brighouse office. About the role As 3rd Line IT Support Engineer / Team Leader, you will troubleshoot and resolve complicated technical issues that have been escalated to from 1st and 2nd Line Engineers, while providing excellent customer service … good time to ensure everyone has visibility of actions completed Communicate accurately and within good time both internally and externally Flag areas of risk / improvement within the firm if identified Train other members of the team in all things technical Provide out of hours technical support to clients more »

security by design across the firm. The role offers hybrid working, 2 days a week in the Birmingham office, giving you a great work / life balance. Key Responsibilities: To manage, maintain and monitor the Information Security Management System (ISMS) To bridge the gap between strategic activities and technical … minimum of 3 years' experience working within a professional services environment A strong understanding of ISO 27001, Cyber Essentials, PCI / DSS, and NIST frameworks. Knowledge of Security Incident Response and Secure Development Processes. Experience in GDPR, Business Continuity, and Disaster Recovery Planning. ISO 27001 Lead Implementer / Auditor and certifications like CISSP, CISA, or CISM are advantageous. If you're ready to m... more »

IT Controls Analyst - IT Security Analyst - GRC. £50k + £5.6k Car Allowance + 5% Bonus + Benefits Package. Hybrid Working - Flexible. Hampshire. Permanent. T6 / MN / 18678. The IT Controls Analyst will manage IT Controls & IT Risk Management - GRC. Skills Experience Requited: IT Controls - Designing & implementing IT … Controls. Internal Controls - review, evaluate & document Internal Controls. Monitoring IT Controls - reviewing Security Events & Incidents. IT Controls & Audit & Testing - managing documentation & reporting. Reports - creating / presenting reports for - KPIs, IT Controls, Audit Results, Risk Register & IT Security Packs. GRC - Risk Management - Security, Audits & Controls-based Risk Management. GRC - IT … controls. Working with cross-functional teams. Collaborative approach to teamwork. Excellent communication & interpersonal skills. Desirable Experience: CISA Certified SAP GRC ITIL3 / ITIL4 ISO27001 certification Keywords: IT Controls, IT Security, SAP GRC, GRC Analyst, IT Security Analyst, IT Security, IT Security Best Practice, Security Controls, Access Controls, CISA, ISO27701 more »

IT Controls Analyst - IT Security Analyst - GRC. Permanent. T6 / MN / 18678. £50k + £5.6k Car Allowance + 5% Bonus + Benefits Package. 📍 Hybrid Working - Flexible. Hampshire. The IT Controls Analyst will manage IT Controls & IT Risk Management - GRC. Skills Experience Requited: IT Controls - Designing & implementing IT … Controls. Internal Controls - review, evaluate & document Internal Controls. Monitoring IT Controls - reviewing Security Events & Incidents. IT Controls & Audit & Testing - managing documentation & reporting. Reports - creating / presenting reports for - KPIs, IT Controls, Audit Results, Risk Register & IT Security Packs. GRC - Risk Management - Security, Audits & Controls-based Risk Management. GRC - IT … controls. Working with cross-functional teams. Collaborative approach to teamwork. Excellent communication & interpersonal skills. Desirable Experience: CISA Certified SAP GRC ITIL3 / ITIL4 ISO27001 certification Keywords: IT Controls, IT Security, SAP GRC, GRC Analyst, IT Security Analyst, IT Security, IT Security Best Practice, Security Controls, Access Controls, CISA, ISO27701 more »