51 to 75 of 86 Permanent ISO/IEC 27001 Jobs in London

so we are seeking a Senior PCI QSA who has a broad range of skills across Cyber Risk, Governance, and Compliance (GRC), NIST, ISO 27001, Risk Assessments, supplier risk assessments, cyber maturity models, and third-party risk management. What sets our client apart: This opportunity is … business and the threats they face. Your role encompasses conducting gap analysis and risk assessments across various information security frameworks like PCI DSS, ISO 27001, and NIST. Ensuring information risks are addressed with stakeholders at all levels is crucial. Additionally, you'll implement compliance and audit … Cyber Risk Advisory Services - Conducting gap analysis, supplier audits, third party assessments and risk assessments related to multiple information security frameworks such as ISO 27001 and GDPR and ensuring information risks are adequately addressed with stakeholders (internal and external) at all levels, as required. Collaborating with more »

cloud security policies, procedures, such as NIST, ISO 27001, and SOC 2. - Automate security workflows using Terraform, Azure DevOps CI / CD, and containerization with Kubernetes. Key Technical Requirements: - Extensive experience with Azure cloud security architectures and best practices. - Deep understanding of cloud security controls … and services. - Familiarity with security testing methodologies like penetration testing and vulnerability assessments. - Experience with SIEM tools (Splunk, ELK, Azure Sentinel) and incident response / forensics. - Knowledge of security frameworks (NIST, ISO 27001, SOC 2) and relevant certifications (CISSP, CCSP). - Proficiency in Infrastructure as … Code (Terraform, Azure DevOps CI / CD), containerization (Kubernetes), monitoring (Prometheus, Grafana), and at least one programming language. - Expertise in engineering practices for availability, reliability, scalability, and disaster recovery. If you are an experienced Cloud Security Engineer with the required skills, please respond in the first instance with an more »

Hybrid working – 3 days office / 2 days from home Location – Central London Salary: up to £60k + benefits Infrastructure Services Analyst required by a Global Leading Law Firm based near Bank. This is a 12-month FTC paying up to £60k plus benefits. As Infrastructure Services Analyst you … . A good ability to understand and explain IT solutions and issues to a non-technical audience is desirable. Experience working in an ITIL / ISO 27001 environment. Desired technical skills Infrastructure technologies including DHCP, DNS, WINS, Active Directory, Group Policy. Dell and HP server … hardware, include VxRail Systems, FlexPod and ProLiant servers. LAN and WAN technologies and protocol. Cisco and Juniper LAN / WLAN components. Microsoft cloud hosted services and applications including M365, Azure, Entra ID, Teams Telephony. Equal Opportunities As a responsible business, it is important that we represent the diversity of more »

Splunk, Sentinel etc Good understanding of runbooks and playbooks - also the ability create these from scratch would be a huge bonus Experience with ISO 27001, ISO 9001 and Cyber Essentials would be extremely advantageous Security Operations and Incident Handling Previous experience working within a more »

Compliance with security standards. Monitoring vulnerabilities. Compliance with the patching process. Monitoring security systems (IDS, Firewall, Anti-Virus) and event logs. Reporting IT KRIs / KPIs. Conduct periodic internal penetration testing and vulnerability assessments. Report status and exceptions to the Information Security Officer. Standard and Procedure Management: Ensure security … lead investigations of security breaches. Facilitate investigations of security incidents, such as fraud or policy breaches. Ensure comprehensive incident tracking and reporting. Key Skills / Knowledge / Experience: Strong technical knowledge of IT infrastructure systems (Windows, VMware, SQL, Exchange, Azure, O365). Specialist knowledge of Firewall (Cisco), IDS … years of experience in IT Security Operations or IT Infrastructure Support. Experience in developing and monitoring IT infrastructure system standards. Experience in firewall / IDS monitoring. (Preferred) Certifications: CISM, CISSP, CEH. (Preferred) Experience in penetration and vulnerability testing. (Optional) Experience in patch monitoring. more »

relevant Certifications: eg MCP’s in desktop and server technologies, GWAPT, OSCP, CCNA. A passion for cyber security is a must with relevant IT / Security qualifications to set you apart. You will be a confident speaker and able to convey technical concepts to both technical and nontechnical staff. … level) and stakeholders that improves the value of the security services we deliver.Understanding of the modern threat landscape.Knowledge of cyber security frameworks such as ISO27001, NIST, CIS Critical Controls.VMWare or Hyper-V and server integration knowledge and experience.Certified Information Systems Security Professional (CISSP) or equivalent.Exposure to ISO 27001 more »

skills, to influence and engage at all levels of an organisation. Proficient in developing and implementing policies compliant with international standards such as ISO 27001, Cyber Essentials, and GDPR. Qualifications : Essential: Honours degree or equivalent in IT, CISSP or other relevant security certifications.(CISM). Desirable more »

NO SPONSORSHIPS AT THIS TIME************* Role: Sr. Security Engineer with Architecture Knowledge Location: London, UK Experience: 7-10 years Salary: 60k – 70k GBP / year –Security Architect Service - Work with Architects to deliver Security designs / assurance for Projects –Manage escalations or guidance on extremely complex issues. –Ensure … groups Key Responsibilities Design and Implementation:  Develop and implement security architecture strategies and frameworks to protect organizational assets.  Design security solutions, including firewalls, IDS / IPS, VPNs, endpoint protection, and encryption systems.  Ensure security architecture aligns with industry best practices and compliance requirements (e.g., GDPR, HIPAA, PCI-DSS) Risk … cryptography, authentication, and authorization.  Strong understanding of network security, endpoint security, application security, and cloud security.  Familiarity with security frameworks such as NIST, ISO 27001, and CSA. more »

and analytical skills. Strong communication and interpersonal skills. Preferred Qualifications: Relevant certifications such as CISSP, CISM, CEH, or Microsoft Certified: Azure Security Engineer Associate. ISO27001 Experience with scripting and automation tools. Knowledge of regulatory and compliance standards such as GDPR, HIPAA, or PCI-DSS. Prior experience working in a highly more »

as SIEM, Firewalls and Cloud Security to monitor systems Providing Windows Server and Network Support Assess and respond to external threat intelligence reports Support ISO27001, Cyber Essentials Plus and other internal and external audit programme Implement and improve technical processes to create efficient and secure methodologies The role itself will more »

and in order to support the delivery of their software platform and they are seeking a QA and Release Manager. Responsibilities: Define QA strategy / roadmap and coordinate releases and create test plans. Release management and any upgrades Involved in the hiring process / budget for the engineering … side. Integration testing and insights. Create and implement best practices, including as automation, continuous integration and delivery (CI / CD), testing methodologies, risk management, and integration testing, for release management and quality assurance. Skills: QA management experience, startup experience a must. Tester background, building up into senior then manager … knowledge of software engineering (should come with above) Designing strategy and setting strategy Knowledge of GxP procedures and familiarity with ISO9001 / ISO27001 Technologies they use: Frontend, React or python. Backend is Golang. If you're interested in working for a company that is enthusiastic about the future more »

Design and implement comprehensive security controls and best practices for cloud infrastructure. Develop and enforce security policies, standards, and guidelines to ensure compliance with ISO27001, NIST, PCI-DSS, Cyber Essentials, and GDPR. Conduct security assessments, vulnerability scans, and penetration tests to identify and mitigate risks. Monitor and respond to security … incidents, including conducting forensic investigations and root cause analyses. Collaborate with DevOps and development teams to integrate security into CI / CD pipelines and cloud-native applications. Implement and manage IAM policies, ensuring least privilege principles are maintained. Evaluate and deploy security tools and technologies to enhance threat detection … engineering. Strong expertise in securing cloud environments such as AWS, Azure, or GCP. Proficiency in security technologies and tools such as firewalls, intrusion detection / prevention systems, SIEM, and vulnerability management. Experience with IaC tools like Terraform, CloudFormation, or ARM templates. Deep understanding of IAM, encryption, network security, and more »

SMEs to execute and deliver the Cyber Security plan for a large-scale acquisition and merger. Skills and experience - Experience with security frameworks like ISO27001 as well as exposure to Data Protection & GDPR would be highly sought after. Good to have experience of FireEye / Trellix, MS Defender for … with Significant level of experience in providing 2nd and 3rd line engineering for large scale organisations. Experience working with large scale Cyber Security projects / changes / merger. Responsibilities - Project Governance and time management. Create and maintain cyber action plan. Track and communicate progress, risks, and issues. Review … report, and sign-off Infrastructure designs. Security Tooling (EDR, Vulnerability Management, IdAM, SIEM, SOAR). Input / review into cyber security design artefacts (HLD / LLD) and provide security engineering consultancy. Implementation cyber security support activities (configuration, connectivity, integration, optimization, tuning & testing). Develop and maintain documentation including more »

Cyber Security Analyst London / Remote - 1 day a week in the office Insurance Company £55,000 to £70,000 per annum + 10% bonus Job Summary: My client is seeking a highly skilled and motivated Cyber Security Analyst to join their growing team. The ideal candidate will be … experience as a Cyber Security Analyst or similar role. In-depth knowledge of various operating systems, networks, and security tools. Familiarity with intrusion detection / prevention systems (IDS / IPS), firewalls, and anti-virus software. Experience with security information and event management (SIEM) systems. Strong analytical and problem … such as CISSP, CEH, or CompTIA Security+ are a plus. Preferred Skills: Knowledge of regulatory requirements and standards such as GDPR, HIPAA, or ISO 27001. Experience with scripting languages (e.g., Python, Bash). Understanding of advanced persistent threats (APTs) and threat hunting techniques. Experience with cloud security solutions more »

Lead SOC Engineer / Manager (SC Cleared) London / WFH to £70k Are you an experienced SOC Engineer with a strong knowledge of SIEM combined with leadership experience? You could be progressing you career in an impactful role at a tech company that provide cyber security products to … a range of finance, government, defence, law enforcement and pharmaceutical companies. As a Lead SOC Engineer / Manager you'll play an integral role in ensuring the security and resilience of both internal and client based information systems. You'll provide subject matter expertise, selecting the appropriate SIEM platform … able to recommend the right tool for the job You have a good understanding of IT security management, policies, procedures, standards and guidelines including ISO27001 and relevant security legislation You have excellent communication and collaboration skills, with leadership experience / qualities - keen to recruit, guide and mentor a SOC more »

COSO, COBIT, ISO and ITIL frameworks. PREFERRED QUALIFICATIONS: Good understanding of information security principles and frameworks, data protection and regulatory compliance (example: ISO27001, GDPR, PCI DSS etc.). Third party assurance experience (SOC 1, SOC 2 etc). Experience with complex IT / Application environment and data more »

Security Manager (Information Security) Location: London, UK (Hybrid / Remote) Salary: £200k+ Base About the Client: Our client is a prestigious hedge fund known for its innovative approach and commitment to excellence. They are seeking a highly skilled Security Manager with a strong focus on Information Security to join … a strategic mindset, exceptional technical expertise, and the ability to manage complex security initiatives in a high-stakes environment. The position offers a hybrid / remote work arrangement, providing flexibility while maintaining strong collaboration with the team. Key Responsibilities: Develop and implement comprehensive information security strategies, policies, and procedures. … a Security Manager or similar role, with a strong emphasis on Information Security. In-depth knowledge of information security frameworks, standards, and best practices. (ISO27001) Hands-on experience with security technologies and tools, such as SIEM, IDS / IPS, firewalls, and encryption. Strong analytical and problem-solving skills, with more »

network, and applications. Maintain Windows server and Unix based servers, O365 and administer MS Azure. Implement and maintain information security controls in line with ISO27001, NIST and DORA standards. Support the Bank’s VMware and Citrix virtual infrastructure. Maintain the bank’s Business Continuity and Disaster recovery plan and procedure. … Knowledge Required: A minimum of 5 years Infrastructure, System, Network support experience Relevant certification such as, CCNA, CCNP, MCITP, VCP, or CCA, etc Banking / Financial sector experience is an advantage Very good VMware and Citrix administration experience Windows and Linux Servers administration and support skills Experience with scripting … Strong knowledge of implementing and effectively developing helpdesk and IT operations best practices, including experience of security, storage, data protection, and disaster recovery protocols ISO27001 experience is an advantage Very good virtualisation, Active Directory, GPO, Access control and LAN / WAN experience Analytical thinker and problem solver with excellent more »

deliver. We enable clinicians and care providers in all settings to deliver care in new ways and enable ideal health. Telstra Health UK is ISO27001 and CE+ certified and has a strong commitment to maintaining high quality information and cyber security governance standards. Telstra Health UK is a wholly owned … group presentations and written Degree or allied health professional qualification Demonstrable experience in leading significant and varied projects and ongoing client engagement / development Ability to work with many stakeholders Excellent and proven client management skills Client-facing experience Expertise in developing long-term relationships with clients, connecting with … budget Quarterly away days Quarterly employee nominations Well-being initiatives every Wednesday Free eye test every year and contributions to VDU glasses Free 24 / 7 professional and confidential support for you and your family via Telus Health A diverse and supportive environment where you can bring your whole more »

planning and prioritisation. The Building Management Team is tasked with maintaining and enhancing buildings, ensuring compliance with industry best practices, legislation, and relevant ISO standards. The role focuses on continuous improvement of service quality and environment, in collaboration with Risk & Compliance to ensure legislative adherence. This includes managing … required. Recording and managing risks using the central DC Operations risk register. Liaising with external suppliers for goods and services provision. Communicating with CSM / Sales and customers to ensure the Customer Experience is fully supported by DC Ops. Managing office spaces, including stationery, coffee machines, furniture, office relocations … drinking water, and vending services. Contributing to the annual Energy Saving Plan. Managing assets within the CAFM system and ensuring ongoing maintenance. Conducting ‘Landlord / Tenant’ area checks to ensure areas remain well cared for and appropriate for customers. Performing daily and weekly building checks to ensure smooth operation more »

day one of the legislation going live. Pantheon have already completed gap analysis and have a well define workstream. Strong experience in iTIL and ISO27001 are needed. Furthermore, the candidate will have strong stakeholder management skills and ability to work independently with technical and non-technical stakeholders at all levels … both technical as well as non-technical in a clear and succinct manner. Ability to communicate rationale behind business processes and bring business teams / stakeholders and senior partners to align and concur. Exposure to working with external third-party vendors. The following is desirable, but not essential Knowledge more »

and NIST CSF ISO 27001 gap analyses Helping our clients to implement Information Security Management Systems and achieve and maintain ISO27001 certification Conducting risk assessments Creating or supporting third-party risk management and audit programmes Essential skills and experience: Be a current QSA who has completed … CSF A good understanding of core concepts and technologies. For example, networking, Windows and Linux operating systems, and security technologies such as antimalware, IDS / IPS, etc. You do not need hands-on experience with these technologies or to have worked in an operational role Be experienced working as … Cyber Essentials Perform ISO 27001 gap analyses Help our clients to implement Information Security Management Systems and achieve and maintain ISO27001 certification PCI DSS consultancy and gap analyses Assistance in implementing PCI DSS requirements such as policy writing Complete on-site assessments and reports on compliance more »

ready to contribute to our team's success, we encourage you to apply. Skills required for the Application Support Analyst are: - Application support - SQL - ISO27001 - Technical expertise across Business apps Business Application Analyst / Application Support Analyst / Business apps / ITIL Salary more »

team. THE ROLE: Information Security Assurance Analyst The Security Assurance Analyst will participate in activities related to regulatory compliance, cyber security assessments of vendors / delegated authorities, IT audits / assurances, security awareness and training initiatives, and the management and reporting of IT risks. You will promote a … PCIDSS, and GDPR. Demonstrate and uphold the company values in all daily activities. Carry out any other duties as reasonably required and directed. SKILLS / EXPERIENCE REQUIRED: Information Security Assurance Analyst Proven experience in Information Security or Security Assurance. Skilled in conducting cyber maturity assessments and managing related findings. … such as PowerPoint, Excel (including VLOOKUPs and macros), Word, and Visio. Relevant certifications such as CompTIA Security+, CISMP, or CC is desirable. Familiarity with ISO27001 is a plus. Some knowledge of GDPR is desirable. more »

managing Incidents and problems Experience in a senior technical ICT Security role Working experience with Industry renowned standard practice and policies [CE+ / ISO27001] Extensive experience completing ICT Security Risk assessment and managing risk mitigations Extensive experience producing ICT Security Policies and managing the policy life cycle Significant experience … issues where material is conflicting and drawn from multiple sources Numerate and able to understand complex financial issues combined with deep analytical skills Intermediate / advanced Keyboard skill - intermediate / advance ability to use Microsoft Office package Comprehensive knowledge of project principles, techniques and tools, such as Prince … A / I Ability to prepare and produce concise communications for dissemination to a broad range of stakeholders as required; ? A / I Demonstrated capability to plan over short, medium and long -term timeframes and adjust plans and resource requirements accordingly Ability to prepare and produce concise communications more »