Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Lead the design and implementation of an ISO 27001-aligned Information Security Management System.
- Company: Join a growing mid-sized organisation with a focus on information security.
- Benefits: Enjoy a fully remote role with flexible hours and a supportive leadership team.
- Why this job: Make a real impact on the organisation's information security maturity and governance.
- Qualifications: Experience in ISO 27001 ISMS implementation and Microsoft 365 security tools required.
- Other info: Autonomy in your role with excellent career growth opportunities.
The predicted salary is between 36000 - 60000 £ per year.
Overview
Information Security Management Systems Implementation Consultant (Contract – Outside IR35)
Location: Remote (HQ: Teesside)
Contract Length: 6 months
NRG is delighted to partner with a growing, mid-sized organisation on an exciting new opportunity for an experienced ISMS Implementation Specialist to lead the delivery of a full ISO 27001-aligned Information Security Management System (ISMS).
You’ll be the hands-on lead responsible for designing and implementing an operational, production-ready ISMS, with the potential for certification in a future project phase. You’ll work closely with leadership, IT, and operations to bring structure, compliance, and scalability to their maturing security posture.
What You’ll Be Doing
ISMS Framework & Governance
- Establish a fully compliant ISMS framework aligned to ISO 27001 standards
- Build and formalise the ISMS Governance Council and internal Information Security Team structures
- Develop all core policies, procedures, and controls across the business
- Implement risk assessment processes and treatment plans
- Launch internal audit and management review programmes
Security Configuration & Technical Delivery
- Configure Microsoft 365 security settings (DLP, conditional access, info protection etc.)
- Review and enhance controls for a custom CRM application on AWS (OWASP-compliant)
- Integrate Vanta (existing compliance monitoring platform) with the ISMS
- Directly implement security controls where possible or brief/manage the ITSM provider
- Document all technical processes and configurations for long-term sustainability
Operational Readiness & Handover
- Ensure the ISMS is fully operational and self-sustaining
- Support training and upskilling of governance council and ISMS roles
- Establish competency frameworks, documentation packs, and evidence collection systems
- Formalise key business processes (incident response, risk, continuous improvement)
What We’re Looking For
- Proven track record implementing ISO 27001-aligned ISMS in similar-sized organisations (50–200 employees).
- Hands-on experience configuring Microsoft 365 security tools (DLP, CA, compliance centre, etc.).
- Strong understanding of governance frameworks, especially involving business-led councils and stakeholder engagement.
- Experience working with regulators such as FCA or ICO across diverse technical environments.
- Confident leading ISMS delivery independently, with structured project plans and clear documentation.
- Familiar with Vanta or similar compliance automation platforms (Drata, Tugboat Logic, etc.).
- ISO 27001 Lead Implementer certification preferred but not essential.
Why Apply?
- Autonomy: Full ownership of ISMS Phase 1 – from design to delivery
- Flexibility: Fully remote contract role, with support from a responsive leadership team
- Impact: Shape the organisation’s long-term information security maturity
- Tools: Leverage a modern tech stack (M365, AWS, Vanta, cloud SaaS)
If this role sounds of interest, click ‘apply now’ and a member of our team will be in touch.
NRG is an equal opportunities employer committed to promoting a diverse and inclusive workplace. We oppose all forms of unlawful or unfair discrimination on the grounds of any protected characteristic. Our aim is to create an environment that encourages diversity, builds on individual differences, and responds equitably to the needs of all. We proactively take steps to fulfil our legal obligations, remove barriers, monitor for fairness, reflect the communities we serve, and enforce a zero-tolerance policy for breaches of our Equality and Diversity policy.
#J-18808-Ljbffr
ISMS Implementation Specialist employer: NRG Resourcing Ltd
Contact Detail:
NRG Resourcing Ltd Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land ISMS Implementation Specialist
✨Tip Number 1
Network like a pro! Reach out to your connections in the industry, attend virtual meetups, and engage on platforms like LinkedIn. We all know that sometimes it’s not just what you know, but who you know that can help you land that ISMS Implementation Specialist role.
✨Tip Number 2
Prepare for those interviews by brushing up on ISO 27001 standards and your hands-on experience with Microsoft 365 security tools. We recommend practising common interview questions and scenarios related to ISMS implementation so you can showcase your expertise confidently.
✨Tip Number 3
Don’t forget to tailor your approach! When you apply through our website, make sure to highlight your relevant experience in implementing ISMS frameworks and working with compliance automation platforms like Vanta. We want to see how you can bring value to the team!
✨Tip Number 4
Follow up after your interviews! A quick thank-you email can go a long way in showing your enthusiasm for the role. We believe that keeping the lines of communication open can help you stand out from the crowd and keep you top of mind for the hiring team.
We think you need these skills to ace ISMS Implementation Specialist
Some tips for your application 🫡
Tailor Your CV: Make sure your CV is tailored to the ISMS Implementation Specialist role. Highlight your experience with ISO 27001 and any relevant projects you've led. We want to see how your skills match what we're looking for!
Craft a Compelling Cover Letter: Your cover letter is your chance to shine! Use it to explain why you're passionate about information security and how your background makes you the perfect fit for this role. Keep it engaging and personal – we love a good story!
Showcase Your Technical Skills: Don’t forget to mention your hands-on experience with Microsoft 365 security tools and any compliance platforms like Vanta. We’re keen to see how you’ve applied these skills in real-world scenarios, so be specific!
Apply Through Our Website: We encourage you to apply directly through our website. It’s the best way for us to receive your application and ensures you don’t miss out on any important updates. Plus, we can’t wait to hear from you!
How to prepare for a job interview at NRG Resourcing Ltd
✨Know Your ISO 27001 Inside Out
Make sure you’re well-versed in ISO 27001 standards and how they apply to ISMS. Brush up on the key components, such as risk assessment processes and governance frameworks, so you can confidently discuss your experience and how it aligns with the role.
✨Showcase Your Technical Skills
Be prepared to talk about your hands-on experience with Microsoft 365 security tools and any compliance automation platforms like Vanta. Bring examples of how you've configured security settings or implemented controls in past roles to demonstrate your technical prowess.
✨Demonstrate Leadership and Collaboration
This role requires working closely with leadership and various teams. Share specific instances where you’ve led ISMS delivery or collaborated with stakeholders to build governance structures. Highlight your ability to engage and communicate effectively with different departments.
✨Prepare Questions for Them
Interviews are a two-way street! Prepare insightful questions about their current ISMS maturity, challenges they face, or how they envision the future of their information security. This shows your genuine interest in the role and helps you assess if it’s the right fit for you.
