1 to 25 of 140 Permanent ISO/IEC 27001 Jobs in London

platforms in infrastructure technology Experience of understanding and documenting process flowsCertifications Preferred: CISA, CGEIT, CRISC Experience in public accounting, consulting or internal audit.Full-Time / Part-TimeFull time Worker Sub TypePermanent Job Family GroupTechnology Job ID: 29586BRLocation: London, United Kingdom more »

the business and its growth- Work in conjunction with the Business Transformation Manager, ensuring policies and processes are in place in line with ISO 9001 and ISO 27001 accreditation … Develop relationships with clients and suppliers, ensuring services are delivered in an effective and timely manner and to set KPIsOperations Director – Experience Required: - 2 / 3 years Director level experience in an Operations role within the software industry- Track record of managing teams, with a focus of promoting from … within- Experience and knowledge of managing budgets and / or P&L- Knowledge of ISO 9001 and ISO 27001 would be desirableTo submit your CV for this exciting Operations Director opportunity, please submit the Apply for this Opportunity form.NB: Due to high levels more »

Directorate Business Systems Business Area Planning, Governance & Compliance Location Glasgow Salary range £43,048 - £49,020 Type of Contract Permanent Contract Part Time / Full Time Full Time / 'Happy to talk flexible working' Workstyle Hybrid Actual Hours 35 Closing Date 12 / 05 / … following experience: Embedding business continuity and disaster recovery plans tailored to the organisation's needs and best practices. Familiarity with industry standards (e.g., ISO 9001, ISO 22301, ISO 27001, ITIL) Working with colleagues to ensure regular testing and exercises are carried out … clarity of message. Applicants, as a minimum, should be educated to SCQF Level 8 or equivalent (gained through a formal course of education) and / or demonstrate experience of working in a technical role within a business continuity and disaster recovery environment. Also, role model the behaviours associated with more »

company’s security awareness program.RequirementsA minimum of 3 years of hands-on Information Security Experience, with a specific focus on cloud, preferably AWS and / or Azure.Hands on expertise in securing cloud environments, executing cloud risk assessments, and executing security controls.10+ years of IT experience.Hold an AWS Certified Cloud … Services sector.Proficient in navigating cloud platforms like AWS, Azure, or Google Cloud.In-depth understanding of security frameworks, compliance standards, and regulations (e.g., NIST, ISO 27001, PCI DSS).Familiarity with various security assessment tools and techniques.Exceptional problem-solving skills and the ability to analyse intricate technical issues.Solid … Cloud Security Professional (CCSP), Certified Information Systems Security Professional (CISSP), or equivalent. Additionally, an AWS Certified Security Specialist designation is preferred.Job InformationJob Reference:PR / 007432_1707122862Salary:Salary From:95000Salary To:110000Job Industries:ITJob Locations:LondonJob Types:PermanentApply for this JobName*Please enter your full name.Email*Enter a valid more »

Cloud / Cyber Security Engineer - Large, global financial services company- Salary up to 90,000 plus bonus and benefits. Hybrid working (City office 2-3 days a week) A leading global financial organisation is looking for a Cyber Security Engineer to join its UK IT security team. This is … a fun and challenging working environment. The role will be responsible for:- Providing subject matter expertise on various technical security aspects, including research, code / script analysis, reverse engineering, exploitation, and documentation.- Identifying, testing, and implementing cutting-edge automated tools or enhancing existing ones to optimize vulnerability management efficiency … and effectiveness.- Developing and refining code / scripts to bolster vulnerability detection, remediation / mitigation, and operational functions.- Integrating vulnerability scanning and configuration hardening in cloud environments (e.g., AWS, Microsoft Azure, Google Cloud Platform).- Conducting vulnerability scanning and reporting in alignment with the application development continuous integration more »

000Permanent London / Hybrid1489537DescriptionWe are looking for an experienced and proactive Security Operations Manager to lead a security operations team. As a Security Operations Manager, you will be responsible for overseeing the day-to-day security operations, implementing security measures, and mitigating security risks. Your expertise in cybersecurity, incident … employees, ensuring that security policies and practices are understood and followed.Security Compliance: Ensure compliance with relevant security regulations, standards, and frameworks (eg, GDPR, ISO 27001, NIST).Security Tool Evaluation and Deployment: Assess and recommend security tools and technologies to enhance the organization's security posture. Oversee … operations management and cybersecurity, with a track record of successful incident response and security incident management.Strong knowledge of security technologies, including SIEM, intrusion detection / prevention systems, endpoint protection, and security analytics tools.Experience with vulnerability assessment tools and vulnerability management processes.Understanding of security best practices, standards, and frameworks.Knowledge of more »

relevant Certifications: eg MCP’s in desktop and server technologies, GWAPT, OSCP, CCNA. A passion for cyber security is a must with relevant IT / Security qualifications to set you apart. You will be a confident speaker and able to convey technical concepts to both technical and nontechnical staff. … level) and stakeholders that improves the value of the security services we deliver.Understanding of the modern threat landscape.Knowledge of cyber security frameworks such as ISO27001, NIST, CIS Critical Controls.VMWare or Hyper-V and server integration knowledge and experience.Certified Information Systems Security Professional (CISSP) or equivalent.Exposure to ISO 27001 more »

the integrity of IT policies. Manage UP3 directory systems, offer executive support, and oversee the tech ecosystem. Strategic Initiatives: Lead the charge towards ISO 27001 and Cyber Essentials Plus certifications, fortifying our commitment to security. Navigate the GDPR landscape, ensuring our operations align seamlessly with data … business evolution. Conduct value assessments, refining best practices for enhanced operational efficiency. Champion technical training and certifications to empower our team. Implement robust BYOD / CYOD controls for compliance assurance. Drive internal ServiceNow adoption and chart a course for future business software support and road mapping. Oversee mobile device … Demonstrated proficiency in supplier management and licensing. Comprehensive understanding of GDPR, data protection, and compliance standards. Familiarity with Cyber Essentials and adeptness with security / compliance tools. Strategic mindset, aligning IT initiatives seamlessly with broader business objectives. Excellent communication and leadership skills. Bonus points for relevant certifications in Microsoft more »

or FTK and live response analysis. Furthermore, familiarity with Windows and Linux enterprise environments and systems such as Active Directory, Office 365, FWs, IPS / IDS, SIEMs, etc. is required. Excellent written and verbal communication skills are required. When not responding to breaches, you will conduct enterprise threat hunting … this role, you may be required to travel, either within the country or internationally. Required Technical and Professional Expertise • Hands-on experience with hardware / software tools used in incident response, computer forensics, network security assessments, and / or application security. • Experience within incident response teams and handling … cyber security related vulnerabilities, common attack vectors, and mitigations. • Familiarity with various security frameworks and standards such as ISO 27001 / 2, PCI DSS, NIST800-53, 800-171, and applicable data privacy laws and regulations. • Experience with Incident Response tabletop exercises, with a focus on more »

Calling all Support / IT / Network & Infra Managers 🌳🌳🌳 Areti have partnered with a leading SAAS Company based in London, currently seeking a dedicated individual to join their team Role: Systems Manager Salary : £50k Plus Benefit Location: Chiswick As the Systems Manager, you will be responsible for overseeing … plans for systems, data, and technologies. Monitor events and systems across all platforms. Establish and review system policies and procedures, ensuring alignment with ISO 27001 and other security frameworks. Lead a team of engineers across offices, following ITIL principles to deliver best-in-class support. Manage … Azure and server technologies. Proficient in Microsoft 365 Office, with a focus on Exchange and SharePoint. Expertise in layer 2 and 3 networks, IPS / IDS firewalls, backups, and Sage applications. If you feel you are a good match for the role please get in contact ASAP more »

and applications. Experience in key industries such as electricity, oil and gas, water, transportation, and wider critical infrastructure. Knowledge of security standards including ISO 27001, NERC CIP, and NIST CSF. A collaborative spirit with excellent communication skills and stakeholder management abilities. Why join us? Flexible working more »

IT and Security. Your expertise will be vital in implementing industry-leading security practices and ensuring compliance with critical regulations like SOC 2, ISO 27001, and GDPR. 🟩🟦🟧 What you'll do: Develop and implement robust information security policies, procedures, and standards. Conduct risk assessments and proactively more »

Information security manager - London 3X days per week - GRC - Cyber security - strategy - function leadership* Role Type: Permanent Location: London 2 / 3 days per week Salary: Up to £105,000 basic + bonus and wider package DVF have partnered with a leading professional services firm In London and we … are looking for an ambitious cyber security manager / Lead who has a blended skillset between both GRC and technical / infrastructure security, who can come in and help build the enterprise cyber security strategy, whilst help run the day to day operations of the InfoSec function … frameworks / playbooks) Background in cyber security / Technical security concepts (cloud, networks etc) Exposure to cyber risk frameworks and compliance (ISO27001, NIST etc) Aiding security maturity plans / strategy This would be a great role for someone who's keen to progress into a hands more »

meet stringent security control standards. Key Responsibilities: Conduct access certification audits and identify non-compliant permissions. Evaluate compliance with key security policies and ISO requirements, documenting variations for remediation. Generate actionable metrics for leadership review. Maintain internal team documentation. Address employee inquiries and issues promptly and effectively. Requirements … security compliance tools such as SailPoint, Tenable, and Microsoft Security Suite. Experience evaluating controls over IT processes. Knowledge of security control frameworks such as ISO27001, NIST CSF, and NIST 800-171. Strong attention to detail and accuracy in document analysis. Benefits: Competitive salary Comprehensive benefits package Opportunities for professional more »

Cyber Security Assurance Manager London / Crawley £80,000+benefits+bonus • Establish and implement a technical assurance plan for cyber security, laying out precise guidelines and technical requirements, illustrating best practices, and gauging progress using predetermined metrics (KPIs). • Oversee the cyber security technical assurance team to guarantee timely and high … operational excellence in programmes related to vulnerability management and cloud security posture management. • A working knowledge of compliance and regulatory frameworks, including GDPR, ISA / IEC 62443, ISO / IEC 27001 / 27002, and the Cyber Assessment Framework (CAF more »

with service improvement reviews and guide improving and tuning infrastructure services delivered. Directly contribute to ITRS Group's goal for achieving and maintaining ISO 27001 accreditation across the group. Be responsible for Problem management and helping in finding solutions. Integrate future acquisitions into the existing ITRS more »

tooling for threat mitigation. Procurement of Hardware, Software and Services: Coordinate the procurement of IT hardware, software licenses, and services. Staff and Contractor Onboarding / Offboarding: Manage the onboarding and offboarding processes for staff and contractors, ensuring the provisioning and de-provisioning of accounts, access permissions, and assets. Collaborate … to maintain and audit IT security policies and procedures. Utilise security tooling to monitor and enforce compliance with relevant standards and regulations, including GDPR, ISO27001, SOC2, and other industry-specific requirements. Disaster Recovery: Develop and maintain a comprehensive disaster recovery plan for critical internal services, incorporating security tooling for threat … are aligned with business continuity goals. The skills required Proven experience in Azure infrastructure management, cost control, cloud networking, security tooling, IDM, and staff / contractor onboarding / offboarding. Strong knowledge of scripting languages. Proficiency in vulnerability and penetration testing, as well as remediation strategies. Additional Information Competitive more »

call. This is an exciting opportunity for a highly experienced Microsoft Azure Cloud Engineer with operational support and project delivery experience to provide L3 / L4 analytical incident management and resolution alongside project-based deliverables across a large, expanding customer base to ensure quality service delivery and Service Level … Agreement compliancy. What you will be doing: Contribute to the planning of application / infrastructure releases and configuration changes Resolve support requests from customers by phone, email and online making use of the call logging system Interact with key internal stakeholders and external third-party vendors to troubleshoot and … technologies (e.g. Azure SQL) Experience of hardening IT infrastructure based on security audits, standards and industry best practice (e.g. vulnerability scanning, Penetration testing and ISO27001 / 17 / 18). more »

build, implement and facilitate a mechanism to aid BU's to assess and measure their security compliance to policies. Drive the development of BU / Divisional security roadmaps. Giving oversight of key non-conformities to feed into the CISO roadmap. Coach, train and educate the Company IT and Functions … and concepts with senior stakeholders. Experience of running information security risk governance processes and structures Familiarity with relevant industry standards for information security (e.g. ISO27001, NIST CSF) Experience of creating, implementing and assessing against information security policies and standards Creativity Able to analyse complex, ambiguous problems and summarise clearly with … people, bringing to life information security risks to the business, while maintaining a pragmatic outlook on likelihood and impact of the risk and cost / complexity of the mitigation. Ensuring initiatives / programmes are anchored in best practice whilst still being highly practical / pragmatic. Ability to more »

technical subjects to both technical and nontechnical audiences, flexes style to suit the needs of the audience A good understanding of security frameworks including ISO27001 / 2, Cyber Essentials Plus, CIS Top 20, Data Protection Act 2018, OWASP Top 10 Have a relevant industry certification such as CISSP, CISM more »

Senior Infrastructure Engineer / Project Engineer Azure, VNet / VLAN, Databases, M365 Permanent £50,000 - 80,000 plus bonus and benefits A successful and expanding Broking firm in Central London are undergoing a major IT systems transformation. We are looking for a good, solid engineer that would like … technical background and is wanting to take on the additional responsibilities. Experience required:- Azure, Azure AD, O365 Azure Virtual Desktop Published Apps MSSQL MDM / Intune / Endpoint NIST / ISO 27001 Networking DHCP, DNS, VLANS Powershell Please send your cv to Karen more »

policies, standards and procedures with compliance objectives Prepare metrics and reports for management on the status of GRC objectives Evaluate and respond to customer / prospect questions and audits. Assist in aligning compliance reports and public-facing Trust Page to reduce the overall number of customer requests Remain up … meet compliance requirements, including but not limited to a set of technical deliverables, cost, schedule, quality, and status reporting Assist in selecting, configuring and / or administering program via GRC tools Assist with building and / or testing integrations and automations with SaaS / IaaS platforms to … 27001 Demonstrated ability to collaborate effectively across teams Demonstrated organizational, project management and documentation skills Familiarity and experience with IT / Security / GRC toolset, such as : Jira, Confluence, integrated GRC platforms etc. Ability to analyze empirical evidence and technical reports, identify root causes more »

Technical Architect Reporting to: Head of Engineering Based: Hybrid / East Croydon Here at The Gym Group we believe we are simply the best in our industry! Our amazing teams have skills, abilities and can-do attitudes that make this a great place to work! We have strong, embedded … need to know about us… The Gym Group is not like your average gym! To our members we’re the lowest cost nationwide 24 / 7 Gym with over 230 gyms and counting! To our teams we are fun, welcoming, engaging and inclusive. We challenge our limits and push … Bus and distributed messaging architectures •APM tools and practices, including Azure Monitor •Recent experience with programming and scripting languages (which might include C#, JavaScript / TS, bash, powershell or python) •Node, React and node-based SSR tools like Next.js •Modern web application development practices Desirable skills •Azure API Management more »

environment. - Knowledge of security compliance standards relevant to the SaaS industry, such as PCI, GDPR, ISO 27001, SOC2, NIST- AWS & / or Azure public cloud knowledge - obviously with a strong security focus.- Skills in leveraging application monitoring tools- AWS monitoring / alert tools (CloudTrail … GuardDuty), Qualys tools and SIEM experience, to detect and respond to security events / incidents.- Industry certifications such as CISSP, CISM, CEH, ECSA, LPT, OSCP, AWS certified security, or equivalent are highly desirable but not a pre-requisite for the role.We value teamwork, collaboration & technical excellence – the company are more »

mitigation.Practical knowledge of information security standards and risk assessment frameworks such as ISO 27001, SOC 2, NIST 800-32KPI / KRIStrong knowledge of cyber controls, policies, and procedures.Experience of delivering metrics for senior level audiences.Demonstrate analytical and problem-solving skills. Ability to communicate risks … day. And you’ll never stop growing, whatever your level.Discover more reasons to connect with us, our people and purpose-driven culture at deloitte.co.uk / careersRTWPROG WPFULL SLICSS more »