Cyber Security Consultant - Senior ISO27001 Consultant

Join Cyberfort - Senior ISO27001 Consultant. Location: Hybrid (75% remote) with on-site presence as required. Department: Private Sector Cyber Consultancy Practice. Contract Type: Full-time. Salary: Competitive + Benefits.

At Cyberfort, we're securing the digital future. As a leading UK provider of cybersecurity solutions, we deliver cutting-edge services in Managed Detection & Response (MDR), Penetration Testing, Security Operations, and Strategic Consulting.

We're large enough to offer exciting opportunities, yet agile enough to ensure every voice is heard. At Cyberfort, you're not just joining a company, you're becoming part of a mission-driven team.

• Purpose-Driven Work - Help protect businesses and communities from evolving cyber threats.


• Growth & Development - Access mentoring, apprenticeships, graduate schemes, and continuous learning platforms.


• Inclusive Culture - We champion diversity through our Women's Network, Neurodiversity Awareness, and Inclusion Committee.


• Flexible Working - Hybrid and remote options to support work-life balance.


• Top-Tier Benefits - Competitive salary, private healthcare, wellbeing support, generous holiday allowance, and more.

As a Senior ISO27001 Consultant, you will lead client engagements to design, implement, and maintain ISO frameworks, supporting clients through gap analysis, remediation, certification readiness, and continual improvement. You\'ll collaborate with senior stakeholders across industries to deliver strategic advisory and hands-on implementation of information security governance, risk management, and compliance.

• Lead ISO 27001 implementation projects from initial assessment through to certification


• Conduct gap analysis tailored to private sector risk profiles and commercial priorities


• Facilitate risk assessments in accordance with ISO 27005 or recognised equivalents


• Draft, review, and update ISMS documentation including policies and procedures


• Advise on and oversee technical, administrative, and physical control implementation per ISO 27001 Annex A


• Deliver internal audits and lead clients through Stage 1 and Stage 2 certification audits


• Establish ISMS performance monitoring and reporting mechanisms


• Provide targeted training to embed a security-first culture

• Proven experience in ISO27001 implementation and auditing


• Strong understanding of ISMS frameworks and private sector regulatory requirements


• Excellent communication and client-facing consultancy skills


• Relevant certifications such as ISO27001 Lead Auditor/Implementor, CISSP, CISM, CRISC, CISA


• Experience with additional standards (ISO/IEC27701, ISO/IEC29100, ISO/IEC42001, ISO/IEC22301) is a plus

We understand that one size doesn\'t fit all. If you need adjustments during the recruitment process, we\'re here to support you. Cyberfort is proud to be a Disability Confident Employer, a CyberFirst partner, and a signatory of the Armed Forces Covenant.

If you\'re passionate about cybersecurity and want to make a real impact, we\'d love to hear from you.

• Cyberfort Careers Page: https://careers.cyberfortgroup.com/


• Working at Cyberfort: https://cyberfortgroup.com/about-us/careers-working-at-cyberfort/


• LinkedIn: https://www.linkedin.com/company/cyberfortgroup/