19 of 19 ISO/IEC 27001 Jobs in the City of London

continuous monitoring improvements. Design, implement, optimize, and monitor security controls and tooling from the ground up, strengthening security across endpoints, infrastructure, and application CI / CD pipelines. Collaborate with engineering teams to raise the security bar through reviews, guidance, and automation. Respond to security incidents in real time - manage … participate in tabletop exercises, incident simulations, and coordinate external penetration tests. Partner with Solutions Engineering to support enterprise customer onboarding, including SSO integrations (SAML / OIDC), network allowlisting, and security reviews. Join customer-facing technical and security discussions where needed, acting as a trusted security point of contact. Risk ...

Define, maintain, and communicate the product vision and roadmap aligned with company strategy. Gather and analyse user feedback, market trends, and regulatory requirements (ISO 13485, ISO 27001, ISO 42001, GDPR, AI Act). Translate compliance and business needs into clear functional requirements … short-term impact. Problem Solver: Self-driven, proactive, and positive team player. Whats on Offer Competitive salary and comprehensive benefits package. Flexible working (hybrid / remote options). Generous leave policies. Health insurance and wellbeing support. Career progression, mentorship, and global exposure. Opportunity to shape a growing HealthTech SaaS ...

cybersecurity audits for client organisations in line with UK regulations. Assess compliance with: UK GDPR & Data Protection Act 2018 NIS Regulations ISO / IEC 27001 Cyber Essentials / Plus Telecommunications (Security) Act 2021 Identify risks and provide actionable recommendations. Produce clear audit … auditing, ideally in a consultancy or client-facing role. Strong knowledge of UK legal frameworks and compliance standards. Relevant certifications (e.g. CISA, CISSP, ISO 27001 Lead Auditor). Excellent communication and stakeholder engagement skills. Ability to work independently and manage multiple client engagements. This ...

Systems Engineer / SaaS & Identity Engineer (Contract) – Inside IR35 Contract: 6 months (likely), Inside IR35 Start: ASAP Location: Hybrid – 3 days / week onsite Notice: Up to 4 weeks considered Overview We are looking for an IT Systems Engineer (generalist) to support and enhance their internal tooling stack. … This is a contract role providing additional capacity / cover while permanent hiring is ongoing. This role is less about being a deep specialist in one platform and more about being a capable engineer across multiple core systems, able to jump into BAU + project work. Key Responsibilities Administer ...

/ Windows servers, SQL / Oracle databases Excellent attention to detail, communication skills, PowerShell scripting Incident management experience, Microsoft Office proficiency Desirable: ISO27001 / NIST knowledge, Splunk / ServiceNow / SailPoint, 24 / 7 shift flexibility Location: London with hybrid working model (3 days … great fit: Identity Access Management Engineer, IAM Engineer, RSA IGL Engineer, Cyber Security Engineer, Privileged Access Management Specialist, Identity Governance, SailPoint, Splunk, ServiceNow, ISO27001, NIST, financial services security. Deerfoot Recruitment Solutions Ltd is a leading independent tech recruitment consultancy in the UK. For every CV sent to clients, we donate ...

week. In order to be suitable for this role you must be an accomplished Information Security Manager with an expert understanding of ISO 27001 standards. You will oversee the Governance, Risk and Compliance (GRC) framework, ensuring robust standards are met across information security, physical security, crisis … suitable for this role of significant responsibility you must be an accomplished Information Security Manager with proven experience of working to ISO 27001 standards. You will act as the Lead Implementer for the ISO 27001 Information Security Management System (ISMS), driving ...

solution designs including API contracts, integration patterns (Azure Functions, Logic Apps, Event-driven), security boundaries, and observability. Architect document intelligence pipelines (classification / extraction / OCR / validation) and integrate with downstream systems (CRM / ERP / ITSM / EDM). Define non-functional … requirements (availability, latency, throughput, cost, DR / RTO-RPO) and ensure solutions meet them. Implement identity & access (Entra ID), data isolation, Key Vault secrets, network security (Private Endpoints), and content filtering. Embed Responsible AI practices: safety filters, prompt / content governance, data privacy, red-teaming guidance, and human ...

post-incident reviews. Identity, Access and Data Security Support identity and access management (IAM) compliance including: Role-based access control Quarterly access reviews MFA / 2FA enforcement Support encryption, key management, backup, and recovery controls. Work with compliance and legal stakeholders on data protection and privacy-related security controls. … documentation and evidence management skills. Desirable Experience and Expertise Experience with SOC 2 or multi-framework security environments. Exposure to product, platform, or robotics / embedded security. Familiarity with IAM, data protection, and privacy-related controls. Experience with supplier and third-party security assessments. Involvement in security awareness ...

Proven experience delivering maturity assessments, gap analyses and framework design * Structured, detail-oriented problem-solving approach Desirable Skills & Attributes * Degree Educated in either Risk / Finance / Law / Business * Professional certifications including: CTPRP, CIPS, CPSM, CISA, ISO 27001 Lead Implementer / Auditor, or other relevant risk and compliance certifications * Experience in sourcing and / or procurement environments Please apply for immediate interview! CBSbutler is operating and advertising as an Employment Agency for permanent positions and as an Employment Business for interim / contract / temporary positions. CBSbutler ...

Security Architect / AI Security Strategy Manager to play a key role in shaping and delivering the organisation s AI security agenda. This is a strategic leadership opportunity for a candidate with strong experience across AI governance, information security, target operating model design, and enterprise stakeholder engagement . … year planning Deep understanding of AI concepts, governance frameworks, enterprise adoption models, and associated risks Strong knowledge of information security frameworks and AI regulations / standards , including: ISO 27001 ISO 42001 NIST AI RMF EU AI Act Proven experience working with senior stakeholders ...

external regulatory and legislative requirements (including those relevant to CNI and OT environments) What you’ll bring 3–5 years’ experience in cyber / information security risk, with demonstrable exposure to OT / ICS environments Strong understanding of risk frameworks such as ISO 27005, OCTAVE, FAIR … / FAST Exposure to OT and regulatory standards / frameworks such as IEC 62443, NIS / CAF (or NIS-D CAF), NIST Cybersecurity Framework & ISO 27001 Hands-on experience conducting risk assessments and supporting ongoing risk management (registers, treatments, reporting) Strong ...

Position: Business Analyst - Third Party Cyber Security Location: London or Reading 2 days p / week; 3 days remote Type: Contract, Inside IR35, 6 Months Rate: £540 p / day (umbrella rate) We are seeking a Business Analyst to support a major third-party cyber security transformation programme … cyber initiatives Skills & Experience: Proven ability to gather and translate requirements into structured outputs Experience in risk, cyber, or procurement domains and designing frameworks / models Strong analytical mindset with excellent stakeholder engagement skills Familiarity with cyber security regulations (GDPR, NIS2, DORA) and third-party standards (ISO ...

Title: SOC Engineer Location: London - hybrid 3 days on-site 2 days remote Start Date: Immediate Contract length: 31 / 03 / 26 further extensions expected Clearance Required: BPSS (must be obtained prior to onboarding) Day rate: £400 - £500 Candidates must hold or be eligible for SC clearance … work effectively within a collaborative SOC team Desirable Skills Experience with incident documentation and reporting Familiarity with security frameworks (MITRE ATT&CK, NIST, ISO 27001) Ability to adapt quickly to new tools, threats, and operational priorities Any relevant certifications (e.g., Security+, CySA+, Microsoft SC-series, GIAC ...

premise experience is essential. Experience operating as a proxy SME in a complex, multi-regional enterprise environment. Deep understanding of proxy technologies: explicit / transparent proxies, PAC files, SSL decryption, authentication, etc. Strong understanding of TCP / IP, DNS, HTTP / S, and authentication technologies (Kerberos, SAML … Ability to convert business and security requirements into robust technical designs. Solid background producing technical documentation and design artefacts. Desirable Skills Any relevant proxy / security certifications. Familiarity with ISO 27001, NIST CSF or related security frameworks. Experience working within regulated environments or with ITIL ...

Cyber Security Engineer Location: London / Hybrid Department: IT Security Salary: £60k + Benefits About the role As part of our IT Security strategy for continual improvement, we are strengthening cyber security across the organisation to ensure a safe, compliant and resilient technology environment for all users. … SIEM and endpoint protection platforms Manage security incidents and tickets in line with ITIL best practices (ServiceNow) Support governance, compliance and audit activities (ISO27001, Cyber Essentials, CIS benchmarks, GDPR) Produce clear security reports and communicate risks and threats to both technical and non-technical stakeholders Participate in security audits, tabletop ...

Senior / Security Risk Assurance Manager - SC cleared Location: Hybrid (60% on-site presence) Contract Type: Permanent & Full-time Salary: Competitive + Benefits About the Role The Senior Security Risk Assurance Manager plays a critical role in strengthening the organisation's security posture through strategic risk-based assurance activities. … Hybrid working - 3 days on site Career Development: Continuous learning and professional growth. Benefits Package: Includes Private Health Care, Cash Back Plan, Buy / Sell Holiday Options, Life Assurance, and more. Interested? Submit your application to learn more about this exciting opportunity. Reasonable Adjustments: Respect and equality are core ...

governance frameworks. This senior leadership role requires deep expertise across regulatory, industry, and cybersecurity standards specifically the UK Telecom Security Act, PCI DSS, ISO 27001, and NIS2. You will act as the organisations authoritative subject-matter expert, ensuring end to end compliance, overseeing risk posture … strategy that ensure alignment with business objectives and regulatory obligations. You will be an authority on the Telecoms Security Act, PCI DSS, NIS2 and ISO27001, and will have proven experience with risk management and security assurance. This is an outstanding opportunity for an accomplished GRC Manager to join a market ...

with tools like SIEM, EDR, and Vulnerability Management, continuously enhancing capabilities. Network and System Security Manage advanced security tools such as firewalls and IDS / … protect network integrity. Enforce robust security policies to maintain system security standards. Compliance and Audit Support Ensure adherence to compliance standards including ISO27001, NIST, and GDPR through regular audits and risk assessments. Support audit processes by providing necessary documentation and evidence of compliance. Security Awareness and Training Conduct regular training ...

Deep understanding of access management, intrusion detection, and network security (routers, NLBs, V-LANs). Proficiency in applying industry standards and legislation such as ISO27001, PCI DSS, and SOX. Preferred Qualifications: Industry-recognised certifications such as CISSP, CISA, or CISM. Product-specific certifications in Cisco or Checkpoint technologies. Hands … experience with VA / PT tools, Anti-Malware, and Email security solutions. London Based | Permanent Role | £85,000 + (DOE) If you are ready to manage multiple projects at various lifecycle stages and provide high-level technical support, I want to hear from you. If the above sounds ...