24 of 24 ISO/IEC 27001 Jobs in the City of London

legal and regulatory requirements. Deliver cybersecurity audits for client organisations in line with UK regulations. Assess compliance with: UK GDPR & Data Protection Act 2018 NIS Regulations ISO / IEC 27001 Cyber Essentials / Plus Telecommunications (Security) Act 2021 Identify risks and provide actionable recommendations. Produce clear audit reports and present findings to … standards. Proven experience in cybersecurity auditing, ideally in a consultancy or client-facing role. Strong knowledge of UK legal frameworks and compliance standards. Relevant certifications (e.g. CISA, CISSP, ISO 27001 Lead Auditor). Excellent communication and stakeholder engagement skills. Ability to work independently and manage multiple client engagements. This is an interim opportunity ideal for professionals More ❯

Remote based The Role We are seeking a highly skilled DevOps / Infrastructure Engineer for a scaling SaaS firm within the Resource Management space. You will play a pivotal role in designing, automating, and managing secure, scalable, and resilient cloud infrastructure on Microsoft Azure , while ensuring round-the-clock service continuity and alignment with ISO 27001 … scalability, and security. Develop and maintain infrastructure-as-code and automation frameworks to streamline deployment and operations. Lead and test disaster recovery and business continuity plans to guarantee 24 / 7 service resilience. Support compliance and governance initiatives, including ISO 27001 security standards. Monitor system health, performance, and security; proactively identify and mitigate risks. Collaborate … DevOps. Participate in on-call rotations, providing rapid response to critical issues. Requirements Proven experience managing and scaling Azure cloud environments . Strong background in DevOps practices , automation, CI / CD, and setting up infrastructure-as-code (e.g., Terraform, ARM, Bicep) Hands-on expertise in disaster recovery planning and execution . Solid understanding of information security , including ISO More ❯

Senior Infosec Manager - Perm - 3rd party Assurance Location: London (Hybrid: 2 days / week in office) Permanent / Full-time A leading international law and professional services firm is seeking a Senior Manager to lead its Third Party Assurance function within the Information Security team. This is a leadership position, reporting to the Chief Information Security Officer (CISO … and is critical for maintaining ISO 27001 certification and delivering excellence in supplier assurance and client due diligence. You will manage a small team and build best-in-class capability across all security domains. Key Responsibilities Champion and embed the Supplier Assurance Security Model Produce management information for the CISO, including trends, process gaps, and recommendations … efficiently Lead Supplier Assurance governance forums Tailor and manage the Third-Party Security Schedule, including supplier negotiations Negotiate robust security clauses in contracts Provide evidence for audits and ISO 27001 certification Support other internal and external audits as required Build, coach, and motivate a high-performance team Requirements: Solid experience as a leader in Information Security More ❯

requirements, and conducting thorough security audits. You will be part of the IT committee and work closely with the risk and compliance team. Ideally, having a background in IT / Network security, progressing into information security and cybersecurity. **Key Responsibilities:** - Develop, draft, implement, and maintain information security policies, procedures, and guidelines. - Conduct regular security audits and assessments to identify … vulnerabilities and ensure compliance with industry standards (e.g., ISO 27001). - SIEM & Vulnerability Management. - Monitor and respond to security incidents, conducting investigations and implementing corrective actions. - Collaborate with IT and other departments to ensure the security of network infrastructure and data. - Manage risk assessments and vulnerability assessments to identify potential security threats. - Oversee the implementation of … interpersonal skills. **Preferred Qualifications:** - Experience with regulatory compliance requirements such as GDPR, HIPAA, or SOX. - Familiarity with security tools and technologies such as SIEM, DLP, and endpoint protection. CISA / CISSP / CCSP MCSA-Microsoft Windows Server MCSE- Microsoft Certified Solution Expert; MCITP-Microsoft Certified IT Professional; VMware Certified Professional;CCNA / CCNP Hays Specialist Recruitment Limited More ❯

re now looking for a Principal Security Design Consultant to steer high-value client engagements across both security architecture and GRC.You’ll work on complex regulatory frameworks (e.g. NIST, ISO27001, CAF, IEC 62443), lead design reviews, and guide clients through secure solution design. You’ll also support junior consultants, contribute to pre-sales, and help shape internal service … consultants and supporting the sales and marketing function with technical input. KEY SKILLS: Experience across cyber security and GRC. Strong understanding of TOGAF, SABSA, and major compliance frameworks (e.g ISO27001 & IEC 62443) Experience leading consultancy or internal projects in regulated sectors. Ability to lead projects and mentor others. Excellent communication and stakeholder management skills. BENEFITS: 26 Days Holiday … + Bank Holidays, plus the option to buy / sell up to 5 days of annual leave per year. Company funded medical cover. Enhanced Company Pension Scheme up to 6%. Employee-funded car leasing scheme. Life Assurance & Income Protection Scheme We are an equal opportunity recruitment company. This means we welcome applications from all suitably qualified people regardless More ❯

Microsoft 365 licensing models, security add-ons, and cost optimisation opportunities. Familiarity with MSP environments and how service providers manage customer tenants. Understanding of compliance and security considerations (ISO 27001, GDPR, conditional access, security defaults, etc.). Excellent communication skills with the ability to explain complex technical topics clearly to non-technical audiences. Experience in a … administration. Advise MSPs and IT teams on how to optimise their Microsoft 365 environments using Allocatr's platform. Support the product team with insights on Microsoft licensing structures (E1 / E3 / E5, Business Premium, Security add-ons, AI / CoPilot, etc.) to guide roadmap decisions. Contribute to knowledge base articles, training material, and technical documentation for More ❯

Job Title: SOC Analyst (x3 Roles) Location: On-site, London moving to hybrid 3 days on-site after 2-week induction Start Date: Immediate Contract length: 31 / 03 / 26 further extensions expected Clearance Required: BPSS (must be obtained prior to onboarding) Day rate: £400 - £500 Overview Our client is seeking three hands-on SOC Analysts to … the following skill sets; individual candidates should possess strong expertise in at least two : Microsoft Security Stack Experience triaging and managing Microsoft security alerts from the Microsoft Security Center / Microsoft Defender portal Microsoft Defender for Endpoint (MDE): advanced or enterprise-level operational expertise, including investigations, threat hunting, and response Trellix (ePO) Hands-on experience with configuration, policy management … skills and the ability to work effectively within a collaborative SOC team Desirable Skills Experience with incident documentation and reporting Familiarity with security frameworks (MITRE ATT&CK, NIST, ISO 27001) Ability to adapt quickly to new tools, threats, and operational priorities Any relevant certifications (e.g., Security+, CySA+, Microsoft SC-series, GIAC More ❯

Zero Trust. Build custom connectors for non-standard platforms (eg, Oracle Cloud). Provide SME-level support and troubleshooting across CyberArk environments. Integrate CyberArk with DevOps pipelines using AIM / AAM / Conjur. Maintain documentation and deliver training to internal teams. Required Skills & Experience 10+ years of hands-on experience with CyberArk PAM suite. Strong knowledge of privileged … access concepts, RBAC, and compliance frameworks (NIST, ISO 27001). Experience with Linux (RHEL 9), Windows Server, Oracle DB, and cloud platforms. Scripting and automation skills (PowerShell, REST APIs). Proven track record in CyberArk upgrades and custom integrations. Excellent communication and stakeholder engagement skills. Desirable Experience in financial services or banking environments. Familiarity with Sentinel More ❯

experience within a SOC (Security Operations Centre) or NOC (Network Operations Centre). Strong understanding of incident response methodologies and the MITRE ATT&CK framework. Experience using SIEM, IDS / IPS, vulnerability scanners, and Azure security tools. Technical expertise in Microsoft Defender, EDR (Endpoint Detection and Response), and network architecture. Practical experience managing cyber incidents and implementing secure configurations. … Excellent analytical and problem-solving skills, with clear documentation and communication abilities. Familiarity with NIST, ISO 27001, and CIS Controls frameworks. Ability to work under pressure, prioritise effectively, and maintain attention to detail. Desirable: Professional certifications such as GSEC, CISSP, OSCP, CISA, CompTIA Sec+, or equivalent. Knowledge of ITIL processes and cyber governance frameworks. Experience with More ❯

enable cloud-native development. Lead the integration of Azure AI services (including Azure OpenAI, Cognitive Services, and Machine Learning) into key business applications. Global Operations & Service Delivery Oversee 24 / 7 global cloud operations, ensuring optimal availability, performance, and reliability. Implement and manage service support models within a managed service environment, including SLAs, incident management, and escalation frameworks. Drive … standards, and compliance policies across all regions. Collaborate with cybersecurity teams to implement zero-trust architectures and advanced threat protection. Ensure adherence to global compliance standards including GDPR, ISO 27001, and NIST. Leadership & Collaboration Build and lead a high-performing global Azure team, fostering a culture of innovation, accountability, and continuous improvement. Take full accountability for … years focused on Azure cloud strategy and operations. Proven track record managing large-scale, global cloud environments and distributed teams. Deep expertise in Azure services, cloud architecture, AI / ML integration, and managed service delivery. Excellent leadership, communication, and stakeholder management skills. Strong financial acumen, with experience in cloud cost optimisation and budgeting. Demonstrated ability to build and evolve More ❯

mindset and ability to thrive under pressure. QualificationsAnd Knowledge Strong understanding of key cybersecurity standards and best practices. Familiarity with leading information security frameworks such as NIST CSF, ISO 27001, and Cyber Essentials. Governance-focused certifications are advantageous, including CISMP, CISM, CISSP, or CompTIA A+. Awareness of regulatory and compliance requirements impacting cybersecurity, such as DORA More ❯

role. Strong knowledge of networking, operating systems, and security principles. Experience with SIEM (e.g., Sentinel) and EDR solutions. Working knowledge of Microsoft InTune. Understanding of security frameworks like ISO 27001 or NIST. Familiarity with data protection regulations such as GDPR. Excellent analytical and problem-solving abilities. Strong written and verbal communication skills. Benefits A competitive benefits More ❯

Exposure to firewall administration, VPN setup, and network troubleshooting. Experience with ITSM platforms and reporting tools (Ivanti Neurons experience is a bonus). Strong understanding of security best practices (ISO27001, GDPR, Cyber Essentials). Experience working in a Managed Service Provider (MSP) or busy service desk environment within an ITIL-driven framework. Proven experience in either leading a service desk More ❯

emerging trends in identity security Experience and Skills Required At least seven years experience in PAM with five years hands-on experience in CyberArk Identity Security Platform (cloud) and / or Privileged Access Security (on-premise) Deep understanding of CyberArk components including Vault, CPM, PVWA, PSM, PTA, AIM and cloud equivalents Proven experience managing PAM in large enterprise or … analytical and problem-solving skills CyberArk certification (Defender, Sentry, Guardian) preferred Desirable Experience working with CyberArk Professional Services or certified partners Knowledge of financial regulatory frameworks such as ISO 27001, NIST, or GDPR Scripting experience using PowerShell or Python for automation and integration For a full consultation, send your CV to ARC IT Recruitment today. More ❯

risk management principles. Experience in conducting security assessments and producing assurance reports. Ability to engage and influence stakeholders at all levels. Familiarity with security frameworks and standards (e.g., ISO 27001, NIST, CIS Controls). Excellent communication, planning, and organisational skills. Experience managing teams and developing talent. Ability to interpret complex technical and business information to assess … in it for You Flexible Working: Remote-first with travel as needed. Career Development: Continuous learning and professional growth. Benefits Package: Includes Private Health Care, Cash Back Plan, Buy / Sell Holiday Options, Life Assurance, and more. Interested? Submit your application to learn more about this exciting opportunity. Reasonable Adjustments: Respect and equality are core values to us. We More ❯

of threat intelligence protocols, tools, and governance acrossthe region. Partner withtechnology, compliance, and risk management teams to ensure compliance withregulatory and legal requirements in each jurisdiction such as GDPR &ISO27001 along with various other regulations. Host and manageregular global meetings including preparing agendas, sending meetinginvitations, distributing materials, and ensuring effective follow-up. Facilitate and manage regular global meetings, negotiating appropriate More ❯

Remote based The Role We are seeking a highly skilled DevOps / Infrastructure Engineer for a scaling SaaS firm within the Resource Management space. You will play a pivotal role in designing, automating, and managing secure, scalable, and resilient cloud infrastructure on Microsoft Azure , while ensuring round-the-clock service continuity and alignment with ISO 27001 More ❯

and Customer Success to bring prototypes into production. Requirements: Experience in a client-facing technical role (Solutions Engineer, AI Consultant, or similar) Strong Python skills and experience with LLMs / LangChain Confident building quick prototypes (Streamlit, Jupyter, etc.) Able to bridge business needs and technical delivery Startup mindset: fast-moving, collaborative, hands-on Bonus: experience in finance, legal, or … insurance; Azure exposure; ISO 27001 familiarity This is a chance to have a founding impact, shape best practices, and work with leaders in AI and automation. You'll be part of a collaborative, ambitious environment where your ideas directly influence the product. Competitive salary, performance bonus, and early-stage equity on offer. If you're passionate More ❯

level to build and deploy DevSecOps for Cloud environments. Perform Threat Modelling for Cloud-based Workloads and Develop Counter Measures. Perform design reviews of new 3rd party Cloud and / or On Prem solutions, products, and services to identify potential risks and recommend appropriate mitigations. Ensure Security overlay of all cloud solutions Work with key stakeholders to develop and … a security team, or as a cloud solutions architect with significant experience of designing, engineering and securing cloud hosted solutions against real-world threats. Strong cloud security engineering and / or architecture experience in the fundamental Cloud Security Domains - Governance, Risk and Control (GRC), Identity and Access Management, Cloud Network and Compute Infrastructure Security, Data Protection (at-rest / … providers - AWS, GCP, Azure, OCI. Practical understanding of industry cloud security principles and their application - NCSC, NIST, CSA. Familiarity with common cloud related compliance Benchmarks - CIS, GDPR, PCI-DSS, ISO27001, ISO27017, ISO27018, TSR, OFCOM. Strong documentation, design and presentation skills with the ability to create management reporting to convey business justifications, architectural designs and work flows. Experience of analysing, assessing More ❯

Desk Engineer with strong 3rd line support experience to join their growing IT function. This is an excellent opportunity for a highly capable engineer with deep expertise in Intune / Endpoint Manager and Power Apps, alongside advanced Microsoft technology skills and a solid background in resolving complex technical issues. The successful candidate will play a key role in escalated … as a 3rd line escalation point for complex Incidents, Problems, and non-standard Requests. Provide advanced technical support across the Microsoft ecosystem: Active Directory, Azure, Microsoft 365, Exchange, Intune / Endpoint Manager, and Power Apps. Design, develop, and maintain Power Apps solutions to automate workflows and integrate with Microsoft 365 and other data sources. Configure, manage, and troubleshoot Intune … / Endpoint Manager for device compliance, application deployment, and endpoint security. Investigate and resolve complex endpoint issues and policy-related challenges. Follow the organisation's Change Control procedures for authorised changes. Work closely with the Service Desk Manager and other IT teams to ensure seamless service delivery. Monitor service desk performance metrics and identify opportunities to enhance efficiency and More ❯

and DevOps specialists. Shape and deliver our infrastructure and DevOps strategy, ensuring our Azure and AWS environments are robust, secure, and future-ready. Oversee cloud operations, automation, and CI / CD pipelines-championing … best practices in Infrastructure as Code and container orchestration (Kubernetes, AWS Lambda). Collaborate across teams to deliver integrated, secure, and high-performing solutions. Ensure compliance with security frameworks (ISO27001, GDPR) and drive continuous improvement in service delivery. Who We're Looking For: A proven leader with hands-on experience in infrastructure and DevOps roles (ideally 2+ years). Expertise … in AWS and Azure cloud environments, Infrastructure as Code (Terraform / CloudFormation), and automation tools (GitHub Actions). Strong background in CI / CD, containerization (Docker / Kubernetes), and cloud security. Excellent communicator and mentor, able to engage stakeholders at all levels. Committed to fostering a diverse, inclusive, and high-performing team culture. Why Join Us? Make More ❯

stand for honesty, integrity and fair practice and are committed to delivering value in every client engagement. Our people are creative, pragmatic and passionate about our purpose. Your Skills / Background: Existing CHECK Team Lead qualification and Team Lead experience. You will also be a tenacious problem solver and communicator with strong client-facing and leadership experience to lead … risks, creating appropriate security destinations and protecting clients from a range of security threats. We hold a CREST certification and offer certification services for PCI-DSS and Cyber Essentials / Essentials Plus. Our clients span telecommunications, Government infrastructure, and digital currencies - covering essential services and critical payment infrastructure. Services include: • Security consulting across the area of security governance, risk … cloud and infrastructure • Detection and response • Fractional heads and virtual support • NCSC Assurance service provider for Cyber Essentials and a Certifying Body • Security auditing across varying standards such as ISO27001, NIST, PCI DSS and Cyber Essentials • Training and awareness If you re a proven Penetration Testing Team Leader with CHECK TL status, a passion for advancing security testing, and the More ❯

virtual networks, storage, VMs, and security services Familiar with scripting and automation (PowerShell, Azure CLI, Terraform, or Bicep) Confident with DR, BCP, and cloud resilience planning Knowledgeable in CI / CD, DevOps principles, and cloud cost management A strong communicator able to engage both technical and non-technical stakeholders Curious, teachable, and … adaptable. A true “jack of all trades” with solid breadth of Azure cloud expertise Microsoft certifications (such as Azure Solutions Architect or Azure Administrator) are desirable, and exposure to ISO27001 standards is beneficial. If you would like to learn more, please apply through the advert and we will be in touch to discuss in more detail. More ❯

Enterprise Architect (Remote / Home Based) - Retail business - Permanent full time position - Salary up to £75k plus bonus, healthcare and more! - Remote / home-based role A successful retail brand is looking for an experienced Enterprise Architect to join their growing IT function on a permanent basis. This role will focus on technology solutions across business, data, applications … A strong background in IT architecture across business, data, applications and infrastructure - Experience within the retail sector - Good understanding of cloud technologies (AWS, Azure, GCP) - Understanding of security frameworks (ISO27001) - A background in delivering on modernisation / transformation programmes - Strong communication skills and ability to present at senior level More ❯