1 to 25 of 190 ISO/IEC 27001 Jobs in the City of London

standards, ensuring compliance with emerging global AI regulations, and building trust in our AI solutions. A primary focus will be leading the implementation and upkeep of ISO / IEC 42001 certification for AI Management Systems while embedding AI governance, risk management, and lifecycle processes into our wider assurance framework. You will act as the key … collaborate with product, customer, and technology teams to strengthen our compliance posture and enhance adoption. Required Qualifications & Experience Proven experience delivering ISO certifications (e.g., ISO / IEC 42001 , ISO 27001 , or similar standards). Strong knowledge of AI governance, risk management, and model lifecycle assurance frameworks. Familiarity with ISO … dependent upon your experience, qualifications and training. If you wish to apply, please read our Privacy Notice describing how we may process, disclose and store your personal data: roberthalf.com / gb / en / privacy-notice. More ❯

London-Based) Permanent | Hybrid Working | Competitive Salary I am working with a leading international law firm to support their search for an experienced and proactive Information Security Officer (ISO) to lead their global information and data security programme. This senior-level role offers the opportunity to shape the firm’s long-term security strategy, drive ISO … controls and security operations across enterprise platforms Excellent communication and stakeholder engagement skills Desirable Attributes: Certifications such as CISM, CISSP, or ISO 27001 Lead Implementer / Auditor Experience working with MDR / XDR partners and tools like Trustwave, Mimecast, or FortiGate A background in mentoring and promoting a security-conscious culture This is a … over thirty years we've been connecting legal talent with many of the leading law firms in London and internationally. Follow our LinkedIn page for the latest vacancies. https: / / uk.linkedin.com / company / ryder-reid-legal More ❯

Cyber Security Engineer (Hedge Fund) - Python / Powershell / SQL / Tableau BI / NIST / CISSP / CISA - PERM We are seeking a Cyber Security Risk Engineer with a robust background in the full suite of modern technologies employed within an enterprise environment. This role requires a deep understanding of operating systems (Windows … risk management, compensating controls, and evolving enterprise technologies. Assist with incident response planning and post-incident risk evaluation, leveraging broad technical knowledge to assess impacts and recommend improvements. Qualifications / Skills Required Demonstrated experience working with information technology, information security, compliance, legal, business teams, and clients to assess and document security risks and compensating controls. Advanced knowledge of risk … express permission we will share this personal data with a client (or a third party working on behalf of the client) by email or by upload to the Client / third parties vendor management system. By giving us permission to send your CV to a client, this constitutes permission to share the personal data that would be necessary to More ❯

in Identity Verification, Managed Endpoints, Threat Detection, Secure Remote Access, and Adaptive Security Policies, balancing exceptional user experience with enterprise grade security. We operate under an ISO / IEC 27001 certified ISMS and an ITIL aligned service management framework, ensuring integrity, resilience, and operational excellence. Joining Zero Plus means being part of a … plans, schedules, and resource models. Oversee functional, regression, integration, UAT, and performance testing. Manage test environments, data, automation frameworks, and tooling. Ensure coverage across EUC technologies including Windows 10 / 11, Microsoft 365, collaboration tools, and VDI platforms. Lead defect management, triage, and resolution processes. Provide clear reporting on test progress, risks, and issues to senior stakeholders. Ensure compliance … with ISO / IEC 27001, IT governance, and change management processes. Drive continuous improvement of testing methods, automation, and processes. This is a leadership role with real visibility, ensuring that secure, user-centric solutions are delivered consistently and effectively. What We’re Looking For We would love to hear from you if you More ❯

you will conduct IT security audits and assessments for clients across the United Kingdom and the European region, ensuring compliance with PCI DSS, ISO 27001 / 2, GDPR, NIS2, DORA, and other relevant frameworks. This position offers the opportunity to become a PCI QSA (training and certification sponsored by ControlCase) while working in an international … security or related field. • Deep knowledge of IT security controls, access management, logging, vulnerability assessment, and secure system configuration. • Experience with PCI DSS, ISO 27001 / 2, GDPR, NIS2, DORA, or similar compliance frameworks. • Strong understanding of cloud environments and network architectures. • Excellent English communication skills; fluency in German strongly preferred. • At least one certification … from each of the following groups preferred: Group 1: CISA, ISO 27001 Lead Auditor Group 2: CISSP, ISO 27001 Lead Implementer, CISM More ❯

ROLE OVERVIEW / / We are recruiting for an experienced Technology Innovation Manager to join our Technology Team. This role will lead our efforts to leverage emerging technologies, particularly artificial intelligence and high- to enhance operational excellence within legal services. Working closely with the Head of Innovation and the broader technology leadership team, the successful candidate will bring … AI initiatives. The role currently reports to the Chief Information Officer (CIO) but this may be subject to change, with strategic direction from the Head of Innovation. KEY RESPONSIBILITIES / / The key responsibilities of this role are set out below, though others may arise as needed. You may occasionally be required to work outside the normal hours … Innovation solutions, ensuring alignment with business needs and regulatory requirements. Evaluate the impact of new technologies on legal operations, productivity, and client service, with a clear understanding of upstream / downstream dependencies. Practical innovation delivery lead short innovation trials and technical prototypes, with a fail fast mentality. Translate experimental results into actionable technical recommendations and oversee transition planning and More ❯

Location: London / Leicester / Essex Hybrid: 2-3 days in office Our client is financial service company. They are looking for a passionate and detail-oriented Information & Cyber Security Executive to join the teams. The role encompasses all aspects of information security including organisational security and governance, people security, physical (site) security and technical security controls. The … salary up to £80k base + £5k car allowance and other benefits. What You'll Do Assess compliance with internal security policies and industry standards (eg, ISO / IEC 27001 / 2, PCI-DSS). Conduct supplier risk assessments and third-party due diligence. Support vulnerability assessments, incident investigations, and operational resilience More ❯

establishing structure, collaborating with technical and business teams, and supporting security and compliance initiatives within the organization. The position requires development and maintenance of security policies aligned with ISO 27001, GDPR, HIPAA, and OWASP, as well as leading risk assessments and … managing the risk register. Key skills and responsibilities, Comprehensive knowledge of ISO 27001, NIST CSF, GDPR, HIPAA, SOC 2, and OWASP frameworks. Senior Security Analyst / Senior Security Engineer background Proven experience collaborating with software development teams and implementing technical controls. Skilled in articulating technical risks in terms of business impact. Professional certifications such as … CISM, CISSP, CRISC, ISO 27001 Lead Auditor, and hands-on experience with GRC tools (e.g., Vanta, Drata) are highly desirable. Responsible for developing and maintaining security policies in alignment with ISO 27001, GDPR, HIPAA, and OWASP standards. Lead risk assessments and oversee the management of the organization’s risk register. Support efforts More ❯

establishing structure, collaborating with technical and business teams, and supporting security and compliance initiatives within the organization. The position requires development and maintenance of security policies aligned with ISO 27001, GDPR, HIPAA, and OWASP, as well as leading risk assessments and … managing the risk register. Key skills and responsibilities, Comprehensive knowledge of ISO 27001, NIST CSF, GDPR, HIPAA, SOC 2, and OWASP frameworks. Senior Security Analyst / Senior Security Engineer background Proven experience collaborating with software development teams and implementing technical controls. Skilled in articulating technical risks in terms of business impact. Professional certifications such as … CISM, CISSP, CRISC, ISO 27001 Lead Auditor, and hands-on experience with GRC tools (e.g., Vanta, Drata) are highly desirable. Responsible for developing and maintaining security policies in alignment with ISO 27001, GDPR, HIPAA, and OWASP standards. Lead risk assessments and oversee the management of the organization's risk register. Support efforts More ❯

CSAT surveys. Analyse service trends against SLA targets. Drive corrective actions that protect and improve the user experience. Systems & Networks Build, patch and support Windows laptops, macOS devices, iOS / iPadOS mobiles and tablets via Intune / Autopilot / Kandji. Provide support for switching, VPN, hardware, OS, and basic LAN / WAN faults. Cybersecurity Oversight Enforce … and communicate change windows and outcomes across the business. Site Visits Provide on-site support to project locations across Central London. Set up and verify temporary site networks (4G / 5G links), edge devices (360° cameras, IoT sensors) and ensure security / performance standards are met. Documentation & Training Maintain a living knowledge base, SOPs and runbooks in FreshService. … working, leveraging data, AI and automation to deliver better outcomes for BW and our clients. Skills & Experience Technical expertise across Microsoft 365, Azure Active Directory, Intune, Autopilot, and Windows / macOS environments. Strong knowledge of networking (LAN / WAN, switching, firewalls, VPN) and troubleshooting connectivity issues. Familiarity with cloud storage and collaboration platforms such as Egnyte, SharePoint, and More ❯

AV Support Assistant / AV Specialist / Unified Communications Analyst A fantastic opportunity has arisen for a AV Support Assistant / AV Specialist / Unified Communications Analyst to join our London based global law firm on permanent basis. AV Support Assistant / AV Specialist / Unified Communications Analyst Summary: Our clients IT team is … work to the Infrastructure or Applications Support teams. This unique position within the team in our London office will specialise in our meeting and conferencing technologies. AV Support Assistant / AV Specialist / Unified Communications Analyst Key Responsibilities: - Deliver an excellent experience to users of the firm's AV and video conferencing technologies. This includes meeting room technologies … / 365), Outlook, Word, PowerPoint, and Excel - Knowledge of Remote Access systems and focusing on supporting remotely - Understanding of ITIL (v2 or v3), understanding of ISMS / ISO27001 would be desirable. AV Support Assistant / AV Specialist / Unified Communications Analyst In accordance with the Employment Agencies and Employment Businesses Regulations 2003, this position is advertised More ❯

Remote based The Role We are seeking a highly skilled DevOps / Infrastructure Engineer for a scaling SaaS firm within the Resource Management space. You will play a pivotal role in designing, automating, and managing secure, scalable, and resilient cloud infrastructure on Microsoft Azure , while ensuring round-the-clock service continuity and alignment with ISO 27001 … scalability, and security. Develop and maintain infrastructure-as-code and automation frameworks to streamline deployment and operations. Lead and test disaster recovery and business continuity plans to guarantee 24 / 7 service resilience. Support compliance and governance initiatives, including ISO 27001 security standards. Monitor system health, performance, and security; proactively identify and mitigate risks. Collaborate … DevOps. Participate in on-call rotations, providing rapid response to critical issues. Requirements Proven experience managing and scaling Azure cloud environments . Strong background in DevOps practices , automation, CI / CD, and setting up infrastructure-as-code (e.g., Terraform, ARM, Bicep) Hands-on expertise in disaster recovery planning and execution . Solid understanding of information security , including ISO More ❯

in Identity Verification, Managed Endpoints, Threat Detection, Secure Remote Access, and Adaptive Security Policies, balancing exceptional user experience with enterprise grade security. We operate under an ISO / IEC 27001 certified ISMS and an ITIL aligned service management framework, ensuring integrity, resilience, and operational excellence. Joining Zero Plus means being part of a … Log Analytics, and Network Watcher. Automate provisioning and configuration using Terraform, Azure CLI, and PowerShell. Contribute to CI / CD integration for infrastructure as code. Ensure compliance with ISO27001 standards and Zero Trust principles. Manage firewalls, access controls, and threat detection. Maintain accurate documentation and mentor junior engineers. This role gives you the opportunity to deliver secure, modern cloud … national impact. What We’re Looking For We would love to hear from you if you have: Proven experience in Azure networking and cloud infrastructure. Strong understanding of TCP / IP, DNS, DHCP, routing, and firewall principles. Hands-on experience with Azure networking services (VNets, App Gateway, Firewall & WAF, Network Watcher, Load Balancer). Scripting and automation expertise with More ❯

and develop partner sales channel Skills: • Expertise in creation of solutions for risk and compliance advisory services (preferable candidates from Big4 organizations) • Capabilities of executing atleast 3-4 advisory / consulting engagements. • Technical Knowledge around information security, business continuity and technology risk assessments. ISO 27K, NIST, AI Governance, CIS etc. • Good compliance understanding of industry domains such … Cyber Recovery, ZTA • GRC Project & Program Management • Excellent written and verbal communications skills • Should be able to travel 70%-80% on short as well as long term engagements. PLATFORM / TOOL EXPERTISE • Experience on the below mentioned tools is not mandated but candidates having exposure to these will be preferred: • MetricStream, Archer, ServiceNow GRC & SecOps, OneTrust QUALIFICATIONS B.E / B.Tech with MBA preferred. Candidates with following Certifications will be preferred: • CISA / CGEIT / CISM / CISSP / CIPP E • ISO 27001 Implementer, Lead Auditor • ITIL V3.0 More ❯

for designing and running the Privacy & Data Protection framework across multiple international markets, with a heavier operational focus on US data regulation and consent management , while maintaining appropriate GDPR / PECR compliance across the UK & EU markets. Your day-to-day will involve: Design, implement and own the Data Protection & Privacy Framework (policies, workflows, governance, reporting). Lead and … manage DPIAs, DSARs, incident triage, data mapping, and processor / vendor reviews end-to-end. Audit and document data flows across product, marketing automation, analytics, tracking and ad-tech. Review and optimise cookie / consent behaviour , including identifying 1st / 3rd party trackers and regional consent logic differences. Maintain and improve privacy tooling (e.g., OneTrust or similar … CMP). Ensure compliance with: GDPR & PECR obligations (e.g., unsubscribe / opt-out hygiene, Article 30). US State-level legislation (e.g., CCPA / CPRA) — especially UI / consent design exceptions. ASA / CMA requirements for advertising fairness and price transparency. Partner cross-functionally to embed privacy-by-design in new products and features. Train teams More ❯

system and ensure ongoing maintenance. Complete building checks and maintain a clean, presentable front-of-house environment. Regulatory Compliance: Ensure compliance with Health & Safety, Environmental Protection, and various ISO standards (e.g., ISO 9001, ISO 27001, ISO 14001, etc.). Qualifications & Experience: Essential: Experience in building management, service delivery, and managing … teams. PC literacy and strong reporting skills. Knowledge of compliance standards and statutory requirements. Desirable: Experience in a Critical Environment and familiarity with ISO-regulated processes. Personal Attributes: Passionate about delivering a world-class environment. Motivated, organised, and adaptable with strong communication and problem-solving skills. Customer-focused with a desire to provide high service delivery. Competencies: Customer … targets. Open and Courageous: Shares feedback, challenges respectfully, and welcomes change. Energy and Enthusiasm: Motivates others and represents the company positively. If you are an experienced Building Facilities Supervisor / Manager seeking a new challenge in a growing technology infrastructure business, we encourage you to apply now More ❯

Job Title: Head of Networks Location: London Department: Infrastructure & Technology Reports To: Director of Infrastructure / CIO Role Overview The Head of Networks will own the strategy, design, and delivery of the organisation’s network infrastructure across all European data centres, offices, and customer environments. This pivotal leadership role ensures that all network solutions are secure, scalable, resilient, and … to-end design, implementation, and optimisation of LAN, WAN, SD-WAN, VPN, and wireless solutions across all environments. Manage enterprise routing, switching, VLAN segmentation, firewall policies, telephony systems (ISDN / SIP) , and internal / external internet access. Ensure network resilience through robust backup, redundancy, and disaster recovery mechanisms. Lead network capacity planning, performance optimisation, and technology refresh cycles … through to procurement, budgeting, vendor management , and security assessments . Security, Compliance & Governance Partner with Information Security teams to enhance network security posture , addressing vulnerabilities and implementing intrusion detection / prevention systems. Ensure ongoing compliance with ISO 27001, PCI-DSS , and other relevant regulatory standards. Drive a proactive approach to incident response, monitoring, and continuous More ❯

Qualifications Bachelor level higher qualification in Cyber Security, Information Systems, Computer Engineering, Computer Science, Cybersecurity or related field is preferred At least one major security certification (CISM, CISA, CISSP, ISO27001 Lead Auditor / Lead Implementer) Minimum of 5 years of experience dealing with a diverse range of information / cyber security projects and challenges, preferably over a number … of industry domains Strong understanding of leading cybersecurity frameworks and standards such as ISO27001, NIST, Cyber Essentials+, CAF, CIS, SOC 2, etc. Up-to-date knowledge of cyber / information security, concepts, risk, controls, and industry trends Experience of working on e.g., security governance models and frameworks, policies and procedures, information risk assessments, third-party risk assessments, data protection … / privacy gap analysis and implementation, audits, including ISO:27001; ISO:23001; NIST CSF; CAF; CIS; IRAP and more Effective stakeholder engagement and communication skills to actively contribute to the development of customer relationships A high performing and proficient consultant with a deep theoretical understanding of Governance, Risk and Compliance and Security Consulting More ❯

Consultant (Relocate to Tax Free Abu Dhabi) Abu Dhabi, United Arab Emirates | Full-time | Relocation Opportunity Salary: Tax-free 45,000 AED per month (up to €125,000 p / a) About the Company Our client is a rapidly growing IT consultancy partnering with leading organisations across the Middle East. They deliver end-to-end digital, data, and cybersecurity … you enjoy simplifying regulatory challenges, designing pragmatic governance models, and influencing security strategy at scale this could be your next move. Key Responsibilities Translate international standards (NIST CSF, ISO 27001, GDPR, SOC 2, PCI DSS, CSA CCM) into actionable policies and controls. Design and implement unified compliance frameworks across cloud, hybrid, and enterprise systems. Lead internal … OneTrust, Archer, or similar). Excellent communication and stakeholder management skills, including C-level engagement. Preferred Certifications CISM, CISA, CRISC, CISSP, ISO 27001 Lead Implementer / Auditor, CCSK, AWS Security Specialty, GDPR Practitioner. If you’re a cybersecurity professional passionate about compliance and looking to take on a new challenge, Apply Now More ❯

cybersecurity and advanced technology, shaping enterprise security frameworks and ensuring responsible and compliant use of AI across large-scale environments. You’ll play a strategic role in defining AI / ML security standards, performing risk assessments, and ensuring compliance with key regulations such as GDPR and the EU AI Act. As a thought leader in this space, you’ll … influence enterprise-wide security architecture decisions and help guide innovation responsibly and securely. Key Responsibilities Define and deliver enterprise-level AI / ML security strategies, policies, and standards. Architect secure AI / ML models, platforms, and pipelines, embedding security throughout the lifecycle. Lead AI risk assessments and develop mitigation frameworks for complex and emerging threats. Oversee AI security … AI security and compliance. Promote awareness of secure and ethical AI practices across the business. What You’ll Bring 7+ years’ experience in cybersecurity, with a focus on AI / ML security architecture. Strong understanding of AI / ML concepts, models, algorithms, and associated risks. Proven experience defining and implementing AI security frameworks and risk management processes. Deep More ❯

infrastructure migrations (subscriptions, landing zones etc.). PMO setup and governance in a regulated environment. Familiarity with ISO 27001 and DORA requirements. Leading global OS / DB upgrade programmes (Windows Server / Client and SQL Server) with HA / DR considerations. PM tooling such as Microsoft Project, Jira and Confluence for documentation. Technical … Fluency Microsoft 365: Exchange Online, SharePoint / OneDrive, Teams, Intune. Identity: Entra ID, cross-tenant collaboration / sync, Conditional Access. Azure: subscriptions / management groups, landing zones, networking, RBAC. Windows & SQL: Windows Server upgrade paths, SQL Server 2016+ to current, CUs, client / driver dependencies, SSRS / SSIS, HA / Always On. Change & controls … Or the client will also consider candidates on a remote basis, with quarterly travel to their London office. Candidates must be based in the UK and hold a British / EU Passport or Indefinite Leave to Remain. Unfortunately, sponsorship cannot be offered for this role. Please apply now for more information More ❯

someone capable of shaping the future of secure, ethical, and compliant AI adoption across critical environments. What you’ll do This is a senior, strategic consulting role — driving AI / ML security architecture, influencing C-suite direction, and ensuring security-by-design across complex AI systems and data pipelines. You’ll define and deliver AI security strategies, develop reference … end of the band (£90–115K), you’ll need strong consulting experience and commercial awareness alongside deep technical expertise. Key areas of focus Define and implement enterprise-level AI / ML security strategies, policies, and architectures. Lead on AI risk assessment, threat modelling, and mitigation planning. Ensure compliance with GDPR, the EU AI Act, and international security frameworks (ISO … best practice. Communicate complex risks clearly to senior stakeholders and boards. What you’ll bring 7+ years’ strategic cybersecurity experience, ideally in consulting or advisory. Deep understanding of AI / ML security architecture, adversarial ML mitigation, and model governance. Current security certifications such as CISSP or CISM. Proven experience across cloud security, data privacy, and DevSecOps. Familiarity with frameworks More ❯

zero-trust approach across their global network. *Hybrid working- 3 days in London per week* What You’ll Do Build the SecOps team from the ground up and manage / mentor the team. Lead the implementation, optimisation, and management of cutting-edge security tools like CrowdStrike, Palo Alto, and Mimecast. Take ownership of our cyber defence posture from incident … response and vulnerability management to WAFs, DDoS protection, and encryption. Mentor junior engineers, elevate best practices, and help us on our journey to ISO 27001 certification. What You Bring Deep hands-on expertise across EDR, SIEM, NAC, MFA, PAM, and cloud security environments. Proven experience with security frameworks such as ISO 27001 More ❯

and configure ServiceNow GRC modules including: Policy and Compliance Management Risk Management Vendor Risk Management Customize workflows, dashboards, and reporting structures to align with organizational governance frameworks (e.g., ISO 27001, COBIT). 2. Process Design & Optimization Translate business and compliance requirements into ServiceNow solutions. Develop automated controls, risk, and compliance tracking processes. Streamline manual governance and … leadership visibility. Provide actionable insights into key metrics such as control effectiveness, risk exposure, and policy compliance status. Skills & Qualifications: Strong understanding of risk management frameworks (e.g., NIST, ISO 27001, COBIT). Proven expertise in ServiceNow platform administration and development, particularly GRC modules. In-depth knowledge of governance, risk, and regulatory compliance processes. Experience designing workflows More ❯

compliance. Provide technical oversight for solution deployment, testing, and lifecycle management. Governance & Compliance Ensure all IT solutions comply with internal governance frameworks, cybersecurity protocols, and international standards (e.g., ISO 55000, ISO 27001, RAMS). Maintain accurate solution documentation, architecture diagrams, and operational procedures. Innovation & Continuous Improvement Identify emerging technologies and best practices that enhance … ISO 55000) preferred. Experience: Minimum 8–12 years of experience in IT solutions or digital transformation within asset-intensive or transportation industries . Proven experience with EAM / CMMS platforms (e.g., IBM Maximo, Infor EAM, SAP PM, or similar). Strong background in asset maintenance, infrastructure monitoring, and system integration . Prior experience in heavy rail, utilities More ❯