122 Permanent ISO/IEC 27001 Jobs in London

protection, including security information and event management (SIEM), user and entity behaviour analytics (UEBA), point products like anti-virus (AV) and intrusion detection system / intrusion prevention system (IDS / IPS) and penetration testing. The Service Delivery team consists of approximately 20 staff who support and operate the … including all the 3rd party managed services Maintain the overall security of Company's network, systems, and data Monitor security access and manage IDS / IPS configurations Establishing and implementing security 'best-practice' standards as well as departmental policies and procedures Responsible for Security scanning and the efficient remediation … conduct Security awareness training Requirements Demonstrable skills and capability in Security leadership and 3rd party management experience CISSP certification preferred. Compliance knowledge required in ISO27001, PCI and GDPR. Possibly a certified ethical hacker Knowledge of Security technologies is essential, such as network appliances, firewall administration, AD, IAM, PAM, SIEM, UEBA more »

of security and risk frameworks, plus regulatory compliance frameworks e.g. NIST, Cobit, ISO 27001. Understanding of OWASP, MITRE, CVSS and other standards / frameworks relevant to application security and vulnerability management. Experience with cloud technologies, preferably Azure and AWS. Familiarity with security methodologies: Attack and Defensive, Threat more »

Senior SOC Analyst London / WFH to £65k Are you an experienced SOC Analyst with a strong knowledge of SIEM? You could be progressing you career in an impactful role at a tech company that provide cyber security products to a range of finance, government, defence, law enforcement and … and processes from the ground up, collaborating with senior stakeholders and other teams to drive adoption and quickly building a team around you. Location / WFH: You'll be joining a diverse, international team, working in a relaxed software house environment (i.e. non-corporate, casual dress, table football), in … able to recommend the right tool for the job You have a good understanding of IT security management, policies, procedures, standards and guidelines including ISO27001 and relevant security legislation You have excellent communication and collaboration skills, with leadership experience / qualities - keen to recruit, guide and mentor a SOC more »

Cyber Security GRC Specialist Salary - £130-150k + 40-60% Bonus Location – London (2 / 3 days per week in office) I’m currently working with one of the fastest growing and most established Crypto Trading and Market-Making firms worldwide, who are looking to hire a Cyber … driving the adoption and implementation of security best practices. Lead on all security assurance activities including all information security related audits, specifically focused on ISO27001 and NIST. Work with the Global CISO to develop and define a control framework to operate securely and ensure continuous assurance and monitoring. Required Skills … Significant knowledge of and experience implementing various security frameworks, particularly ISO27001 and NIST. Knowledge of and significant exposure to information security risk management frameworks and compliance practices. Prior experience leading on projects and managing third-party supplier relationships. Genuine drive and motivation – ability to successfully handle multiple tasks, working to more »

meet stringent security control standards. Key Responsibilities: Conduct access certification audits and identify non-compliant permissions. Evaluate compliance with key security policies and ISO requirements, documenting variations for remediation. Generate actionable metrics for leadership review. Maintain internal team documentation. Address employee inquiries and issues promptly and effectively. Requirements … security compliance tools such as SailPoint, Tenable, and Microsoft Security Suite. Experience evaluating controls over IT processes. Knowledge of security control frameworks such as ISO27001, NIST CSF, and NIST 800-171. Strong attention to detail and accuracy in document analysis. Benefits: Competitive salary Comprehensive benefits package Opportunities for professional more »

security vulnerabilities and attack vectors. Experience with vulnerability scanning tools such as Nessus, Qualys, or similar. Familiarity with industry standards and frameworks such as ISO27001, NIST, PCI-DSS, GDPR, or similar. Excellent communication and interpersonal skills, with the ability to effectively engage with stakeholders at all levels. Our client offers … pat leave, pension, life assurance, and much more! If this role is of interest, please apply or reach out to Madison – 0203 854 2230 / m.brookes@locke-mccloud.com Locke & McCloud are the UK’s leading cyber security & information security staffing company – through having a sole focus on the cyber more »

tooling for threat mitigation. Procurement of Hardware, Software and Services: Coordinate the procurement of IT hardware, software licenses, and services. Staff and Contractor Onboarding / Offboarding: Manage the onboarding and offboarding processes for staff and contractors, ensuring the provisioning and de-provisioning of accounts, access permissions, and assets. Collaborate … to maintain and audit IT security policies and procedures. Utilise security tooling to monitor and enforce compliance with relevant standards and regulations, including GDPR, ISO27001, SOC2, and other industry-specific requirements. Disaster Recovery: Develop and maintain a comprehensive disaster recovery plan for critical internal services, incorporating security tooling for threat … are aligned with business continuity goals. The skills required Proven experience in Azure infrastructure management, cost control, cloud networking, security tooling, IDM, and staff / contractor onboarding / offboarding. Strong knowledge of scripting languages. Proficiency in vulnerability and penetration testing, as well as remediation strategies. Additional Information Competitive more »

assets. Their technology is already being used by some of the largest institutions in the world, such as the Johannesburg Stock Exchange and Nomura / Instinet. The role As a regulated business, compliance is not only mandated by regulatory bodies, it is also key to business success. The business … Perform compliance checks and report on risk and compliance of internal business processes, to provide assurance to clients; support external quality standards (for example, ISO27001); and ensure key suppliers are complying with agreed standards and contract terms Promote a sustainable culture of risk awareness in the business that is consistent … MIFID II, IDD, EMIR, Financial Crime legislation (including MLRs, MAR, POCA, etc.) European Union Withdrawal Agreements; and of regulations for ICAAP / ICARA, ISO27001 Excellent verbal and written communication skills with the ability to confidently engage with and influence a variety of stakeholders at differing levels across the business more »

to hire a Head of Software Engineering to help them drive innovation and growth in their technical team. Role: Head of Software Engineering (JavaScript / TypeScript) Location; Bristol / London (Hybrid Remote, fortnightly) Salary: £90-110k DOE Headline Benefits: B Corp, Remote Working, 30+ Holiday days, Flexible … The current tech stack is MEAN-focused with AI-based components and serverless AWS deployments, so the ideal candidate with have a strong JavaScript / Typescript background with some knowledge or interest in cloud deployments and artificial intelligence. The role will involve a split of both hands-on and … of B2B2C would be an advantage Knowledge of AWS and Infrastructure / Artificial Intelligence (AI) would be a benefit Knowledge of security implementation (ISO27001) The company has flexibility at the core of its employee offering, allowing employees to get their work delivered at a time and place to suits more »

of a multidisciplinary approach to delivering digital services (products) and platforms utilising a DevSecOps approach and enabling Continuous Security as part of wider CI / CD tools … and practices Up-to-date understanding of, and ensuring compliance to, security standards and regulations including GDS Technology Code of Practice, NCSC Cyber Principles, ISO27001, SoC, NIST, PCI, and GDPR Up-to-date understanding of testing the security of software and infrastructure using appropriate security tools including automated cloud-based … tooling Up-to-date understanding of network security (e.g. OSI, TCP / IP), web application security (e.g. OWASP) and cryptographic controls (e.g. PKI, TLS) Up-to-date understanding of identity management and authentication / authorisation products and patterns Evidence of self-development – we value keen learners Drive to more »

Job Title: AWS Architect and Practice Innovator Location: London / Hybrid Job type: Full Time Salary: £80k-£110k What’s the Job? This role is perfect for someone who is looking to grow and innovate at StableLogic. We are seeking to substantially expand our AWS practices, skills and services … be a perfect fit for our team if you have: Extensive prior experience with AWS cloud technologies. Experience working in Agile teams and CI / CD environments. Experience with containerisation (e.g., Docker), orchestration tools (e.g., Salt Stack), and infrastructure-as-code tools (e.g., Terraform, CloudFormation). Experience with Security … us understand their needs on a deeper level. We reshape their technology strategy with bespoke solutions to increase efficiency, optimise output, benefit their customers / employees and meet their unique goals. We are experts in all aspects of Communications, Data Networks and SD-WAN transformations, Cloud Contact Centre (CCaaS more »

Continuity, Operational Resilience and DORA obligations are met. • Delivering against Supplier Management frameworks (in a regulated environment) • Taking ownership of all Quality Management Systems (ISO27001 based) • Management of the Technology Management function, covering Finance, People, Strategic delivery and alignment to Project delivery methodologies • Oversight and support for all internal and … listed businesses A proven track record in a similar role within a global financial services or global financial technology business Knowledge of DORA, and ISO27001 frameworks Demonstrable stakeholder management up to C level Experience of working with a wide number of functions including information security, group risk, procurement and technical … teams / leadership Strong knowledge of business resilience (desirable) Experience of leading internal and external audits Please send your CV ASAP for this hugely exciting opportunity. more »

build, implement and facilitate a mechanism to aid BU's to assess and measure their security compliance to policies. Drive the development of BU / Divisional security roadmaps. Giving oversight of key non-conformities to feed into the CISO roadmap. Coach, train and educate the Company IT and Functions … and concepts with senior stakeholders. Experience of running information security risk governance processes and structures Familiarity with relevant industry standards for information security (e.g. ISO27001, NIST CSF) Experience of creating, implementing and assessing against information security policies and standards Creativity Able to analyse complex, ambiguous problems and summarise clearly with … people, bringing to life information security risks to the business, while maintaining a pragmatic outlook on likelihood and impact of the risk and cost / complexity of the mitigation. Ensuring initiatives / programmes are anchored in best practice whilst still being highly practical / pragmatic. Ability to more »

build, implement and facilitate a mechanism to aid BU's to assess and measure their security compliance to policies. Drive the development of BU / Divisional security roadmaps. Giving oversight of key non-conformities to feed into the CISO roadmap. Coach, train and educate the Company IT and Functions … and concepts with senior stakeholders. Experience of running information security risk governance processes and structures Familiarity with relevant industry standards for information security (e.g. ISO27001, NIST CSF) Experience of creating, implementing and assessing against information security policies and standards Creativity Able to analyse complex, ambiguous problems and summarise clearly with … people, bringing to life information security risks to the business, while maintaining a pragmatic outlook on likelihood and impact of the risk and cost / complexity of the mitigation. Ensuring initiatives / programmes are anchored in best practice whilst still being highly practical / pragmatic. Ability to more »

the wider group initiative. Key Stakeholders IT Service Provider SCADA and other operational control systems providers Cybersecurity authorities in UK and EU Wider organisation / other heads of department (e.g. HSE, Engineering, Operations, Procurement, Risk) The Head of Information Security and IT is responsible for managing the IT and … you will need previous experience working in an OT environment, as well as a solid understand of IT and Information Security. Previous experience of ISO27001 implementation and certification is an essential piece of criteria for this role as well as an excellent technical understanding allowing you to converse with everyone more »

the wider group initiative. Key Stakeholders IT Service Provider SCADA and other operational control systems providers Cybersecurity authorities in UK and EU Wider organisation / other heads of department (e.g. HSE, Engineering, Operations, Procurement, Risk) The Head of Information Security and IT is responsible for managing the IT and … you will need previous experience working in an OT environment, as well as a solid understand of IT and Information Security. Previous experience of ISO27001 implementation and certification is an essential piece of criteria for this role as well as an excellent technical understanding allowing you to converse with everyone more »

Head of IT - London - Hybrid - £80-85k Motive Group is support a scaling business of approx 120 employees, with the hire of an experienced Head of IT for the London office. You will play a pivotal role in shaping more »

the execution of the plan Supports the development of all required dashboards and reports alongside the Data Analysts IT Business Analyst Essential Skills: Construction / Rail background - ESSENTIAL Business Analysis experience across multiple client / projects Proven stakeholder management capability Proven experience in process mapping Strong communication skills Self-Starter, able to plan and priorities workloads Awareness of ISO27001 and Data Protection act Services advertised by Gold Group are those of an Agency and / or an Employment Business. We will contact you more »

the top 10 Consultancy firms within the UK, they are looking for an IT Security Auditor to come in and support their clients with ISO27001 and SOC 2 audits This company are part of a larger group who invest heavily into the growth and success of the business, working for … these come with unrivalled benefits and learning / progression support. You get to be part of a small team of 15, whilst being an important part of a larger group of 900 employees all striving to make the business even more successful than they already are. Duties: Speaking to … experience: 2 or more years experience working with IT Security auditing, preferably within a Consultancy Experience with IT General Controls and Application General controls ISO27001 knowledge, preferably auditing against it Knowledge with SOC 2 auditing or implementations Interviews are scheduled to take place next week so if you are interested more »

privacy experience. Experience working with audits such as ISO27001. Robust understanding of privacy risk. Confident in senior stakeholder management. Strong understanding of data protection / privacy laws. 3 days a week in the office. Desirable : Consulting experience / background. CIPP / E or equivalent qualification Salary range more »

an IT project can go wrong before it actually goes wrong. A plus, but not required is market knowledge of energy, utilities, automobiles, and / or EV charging. You like to work in start-ups and innovation departments where delivering a successful migration is part of customer onboarding and … be in Copenhagen or London. Your key responsibilities: Setting project goals and coming up with plans to meet those goals; including project tracking templates / tools Maintaining project timeframes, budgeting estimates and status reports. You need to manage customer expectations and ensure they deliver any necessary parts of project … in project management (external digital consulting firms is preferred to in-house project management) Prior experience managing large enterprise customers and preferably, IT implementation / migrations projects Solid experience in project management, team management, solution planning and delivery (on-time and within budget) Excellent customer-facing and communication skills more »

into operations. You will work with project teams advising where appropriate on any operational constraints and requirements are factored into delivery plans (e.g. onboarding / integration of partners is not done during a stability (change freeze) window). Ensure operational dashboards are available and maintained, providing appropriate operational insight … in an Operations management role working within the telecoms industry (operator or managed service). Deep knowledge and understanding of Operational frameworks, ITIL, ITSM, ISO27001, etc. Strong analytical capabilities, highly organised and excellent team, and relationship management skills. Demonstrable ability to engage and communicate with senior stakeholders and support teams more »