1 to 25 of 818 GDPR Jobs in London

and create threat models for new and existing systems to prioritize security controls. Compliance and Governance: Ensure solutions comply with regulatory and organizational security standards (e.g., NIST, ISO 27001, GDPR). Solution Design: Lead the design and architecture of security solutions, including identity and access management, data protection, network security, and application security. Technical Leadership: Collaborate with cross … communication, and problem-solving skills Desirable Skills: Experience in Agile / Scrum methodologies Familiarity with DevSecOps practices and tools (e.g., CI / CD, IaC) Knowledge of regulatory requirements (e.g., GDPR, HIPAA) Diversity & Inclusion: Here at Amber Labs, we are dedicated to fostering an inclusive and equitable workplace for all. Our commitment to diversity, equality, and inclusion includes: This role at More ❯

coordinates internal security assessments, penetration tests, vulnerability scans, and assess organization cybersecurity maturity Complying with frameworks and regulations such as COBIT, NIST (800-53, cybersecurity), ISO, ITIL, PCI, GLBA, GDPR, HIPAA, and other data privacy and security standards and regulations. Provides internal customer support via assigned tickets for security-related issues, while ensuring assignments are resolved within assigned SLA More ❯

Collaborate with IT and business units to ensure secure systems development and operations. Compliance & Risk Management Ensure compliance with regulatory and legal security requirements (e.g., ISO 27001, NIST, HIPAA, GDPR, SOX, etc.). Ensure compliance with applicable data protection laws (e.g., GDPR, CCPA, GLBA). Guide Data Protection Impact Assessments (DPIAs) for high-risk financial data … with data analytics platforms and financial data governance tooling. Strong working knowledge of financial compliance frameworks (e.g., GLBA, SOX, FFIEC CAT, NYDFS). Familiarity with privacy regulations (GDPR, CCPA) and best practices in data governance. Certifications such as CISSP, CISM, CISA, CRISC, or Certified Data Protection Officer (CDPO) are highly desirable. We offer a collaborative More ❯

procedures. Manage cybersecurity projects to ensure timely delivery within budget. Perform or coordinate security assessments, penetration tests, and vulnerability scans. Ensure compliance with frameworks like COBIT, NIST, ISO, PCI, GDPR, HIPAA, etc. Provide internal support for security issues within SLAs. Evaluate and implement CIS controls as needed. Contribute to cybersecurity strategic planning and budgeting. Follow change management policies. Qualifications Bachelor More ❯

or similar. Experience with complex databases Experience in system support, monitoring & troubleshooting. Experience of working in environments with high information security standards to meet needs of ISO27001, SOC2 and GDPR etc Experience with AI and / or Machine Learning Project planning and management experience. Experience with finance systems i.e. Sage, Qube, IRIS or similar. Experience with CRMs such as HubSpot More ❯

practices Ability to communicate effectively with senior management and stakeholders on security issues and risks Expertise in ensuring compliance with relevant cybersecurity regulations and frameworks, such as FCA, NIST, GDPR Experience in one or a combination of the following: systems, applications, or architecture planning Experience driving security awareness programs Strong verbal, written, and interpersonal communication skills Ability to influence across More ❯

practices Ability to communicate effectively with senior management and stakeholders on security issues and risks Expertise in ensuring compliance with relevant cybersecurity regulations and frameworks, such as FCA, NIST, GDPR Experience in one or a combination of the following: systems, applications, or architecture planning Experience driving security awareness programs Strong verbal, written, and interpersonal communication skills Ability to influence across More ❯

plans. Maintain and update security policies, procedures, and incident response plans. Deliver security awareness training and advise clients on best practices. Support audits and compliance initiatives (ISO 27001, NIST, GDPR, etc.). Work cross-functionally with internal and external teams, including partner engagements. Research emerging threats and recommend security framework enhancements. Mentor and support junior security team members. What We … Proven skills in threat detection, incident response, and forensic analysis. Knowledge of SOAR tools (especially Palo Alto XSOAR or similar). Familiarity with compliance standards: ISO 27001, NIST, CIS, GDPR, HIPAA. Bonus: scripting / automation skills (Python, PowerShell, Bash). Deep understanding of Microsoft security technologies. Certifications such as CISSP, CEH, OSCP, CISM, or Security+ are highly desirable. Strong problem More ❯

plans. Maintain and update security policies, procedures, and incident response plans. Deliver security awareness training and advise clients on best practices. Support audits and compliance initiatives (ISO 27001, NIST, GDPR, etc.). Work cross-functionally with internal and external teams, including partner engagements. Research emerging threats and recommend security framework enhancements. Mentor and support junior security team members. What We … Proven skills in threat detection, incident response, and forensic analysis. Knowledge of SOAR tools (especially Palo Alto XSOAR or similar). Familiarity with compliance standards: ISO 27001, NIST, CIS, GDPR, HIPAA. Bonus: scripting / automation skills (Python, PowerShell, Bash). Deep understanding of Microsoft security technologies. Certifications such as CISSP, CEH, OSCP, CISM, or Security+ are highly desirable. Strong problem More ❯

plans. Maintain and update security policies, procedures, and incident response plans. Deliver security awareness training and advise clients on best practices. Support audits and compliance initiatives (ISO 27001, NIST, GDPR, etc.). Work cross-functionally with internal and external teams, including partner engagements. Research emerging threats and recommend security framework enhancements. Mentor and support junior security team members. What We … Proven skills in threat detection, incident response, and forensic analysis. Knowledge of SOAR tools (especially Palo Alto XSOAR or similar). Familiarity with compliance standards: ISO 27001, NIST, CIS, GDPR, HIPAA. Bonus: scripting / automation skills (Python, PowerShell, Bash). Deep understanding of Microsoft security technologies. Certifications such as CISSP, CEH, OSCP, CISM, or Security+ are highly desirable. Strong problem More ❯

5+ years in a senior leadership role (CISO, VP of Security, or equivalent). Deep knowledge of governance frameworks and compliance standards (e.g., SOC 2, ISO 27001, HIPAA, NIST, GDPR). Proven experience managing or leading successful SOC 2 audits and other regulatory / compliance initiatives. Confident engaging with auditors and enterprise clients; experience representing security to financial institutions. Strong … strongly preferred. Excellent leadership, communication, and stakeholder management skills. Qualifications Experience in SaaS, FinTech, HealthTech, or other highly regulated industries. Familiarity with security and privacy laws globally (e.g., CCPA, GDPR). Strong project management and documentation skills. MBA or relevant advanced degree is a plus. Reasons you should apply: You're a security leader who can balance business risk with … technical rigor in high-stakes environments. You have direct experience with audits, compliance frameworks (SOC2, ISO 27001, GDPR, DORA), and regulatory engagement. You're comfortable leading both strategy and hands-on execution, including during incidents and client escalations. You thrive in fast-paced, ambiguous environments where you need to build structure, not just operate within it. Reasons you shouldn't More ❯

technologies, best practices and IT-regulations that apply to financial institutions or its outsourcing partners. In-depth knowledge of relevant regulatory requirements and industry standards (ISO 27001, SOC 2, GDPR, DORA, etc.). Experience with cloud security (AWS, Google etc.), application security, and DevSecOps practices is a significant plus. Proven experience in developing and implementing security strategies and programs. Extensive More ❯

skills & knowledge: Broad knowledge of cyber security concepts including cryptography, authentication and authorization, access control, secure architectures, threat modeling, vulnerabilities and software security. Strong knowledge of regulatory requirements (e.g. GDPR, ISO27001, PCI-DSS) and experience in regulatory reporting. 3-5 years of experience in GRC, risk management, or compliance. A bachelor's degree in computer science, Cyber Security or similar More ❯

Certified Information Systems Security Professional) CISM (Certified Information Security Manager) CISA (Certified Information Systems Auditor) ISO 27001 Lead Auditor / Implementer CRISC (Certified in Risk and Information Systems Control) GDPR Certification (e.g., IAPP CIPP / E, CIPM for data protection compliance) Experience Requirements: 3-5+ years of experience in Information Security, Compliance, or IT Risk Management. Experience … with regulatory frameworks in UK & EU : GDPR (General Data Protection Regulation) ISO 27001 (Information Security Management Systems) Cyber Essentials Plus (UK government-backed security framework) DORA (Digital Operational Resilience Act) - EU financial sector PCI-DSS (if handling payment data) Experience in: Managing vendor risk assessments for third-party compliance. Handling incident response & reporting … e.g., Data Breach Notifications under GDPR). Key Skills & Technical Knowledge: Deep understanding of data protection laws (UK GDPR, EU GDPR, DPA 2018) . Familiarity with risk management frameworks like NIST CSF, CIS Controls, and ISO 27005 . Experience with cyber security tools (e.g., SIEM, Malware Protection, Firewalls and others) is a plus. Strong reporting More ❯

how they are being utilized and hosted, continually review opportunities to improve the overall controls around data security. Keep informed of new and updated industry frameworks and regulations: GDPR, ISO 27001 / 2, SANS Top 20 Critical Security Controls, NIST CSF, SP 800-53, PFMI, CPMI ISOCO and FFIEC handbook. Keep informed of new and emerging security threats & assess … security management. Experience developing or managing security programs preferably across several domains including metrics and reporting for program maturity and risk reduction. Experience and / or training on GDPR requirements and other data protection laws. Experience defining program roles and responsibilities, assessing / identifying knowledge gaps across teams and implementing required training plans. Ability to collaborate effectively More ❯

and optimising semantic models and reports. Implement governance policies and frameworks to maintain data quality and ensure compliance with data security best practices and regulatory requirements (e.g., GDPR, HIPAA). Data Platform Integration Experience integrating Power BI with other data sources and platforms (e.g., Azure, Snowflake, SharePoint, SAP, Salesforce) Experience with REST APIs for data More ❯

protection, DLP, SIEM). Hands-on expertise with troubleshooting hardware, software, and SaaS issues. Security Knowledge: Familiarity with security frameworks and standards such as SOC 2, ISO 27001, GDPR, or NIST. Experience with incident response and risk management. Knowledge of Zero Trust architectures and security-first IT practices. Soft Skills: Excellent problem-solving and communication skills. Ability to collaborate More ❯

Management: Identify and manage risks to information assets and IT systems. Lead enterprise risk assessments and mitigation planning. Compliance & Regulatory: Ensure adherence to global data protection regulations (GDPR, PCI-DSS, etc.), working closely with legal and data protection teams. Leadership & Stakeholder Engagement: Act as the subject matter expert on cybersecurity at the board and executive level. … Demonstrable experience building and scaling a GRC function in a complex environment. Deep knowledge of information security standards (ISO 27001, NIST, CIS), risk frameworks (COSO, FAIR), and regulatory obligations (GDPR, PCI-DSS, SOX). Proven track record of managing enterprise-level security programs, including incident response and business continuity. Excellent stakeholder management skills, with experience reporting at board level. Strong More ❯

Management: Identify and manage risks to information assets and IT systems. Lead enterprise risk assessments and mitigation planning. Compliance & Regulatory: Ensure adherence to global data protection regulations (GDPR, PCI-DSS, etc.), working closely with legal and data protection teams. Leadership & Stakeholder Engagement: Act as the subject matter expert on cybersecurity at the board and executive level. … Demonstrable experience building and scaling a GRC function in a complex environment. Deep knowledge of information security standards (ISO 27001, NIST, CIS), risk frameworks (COSO, FAIR), and regulatory obligations (GDPR, PCI-DSS, SOX). Proven track record of managing enterprise-level security programs, including incident response and business continuity. Excellent stakeholder management skills, with experience reporting at board level. Strong More ❯

Management: Identify and manage risks to information assets and IT systems. Lead enterprise risk assessments and mitigation planning. Compliance & Regulatory: Ensure adherence to global data protection regulations (GDPR, PCI-DSS, etc.), working closely with legal and data protection teams. Leadership & Stakeholder Engagement: Act as the subject matter expert on cybersecurity at the board and executive level. … Demonstrable experience building and scaling a GRC function in a complex environment. Deep knowledge of information security standards (ISO 27001, NIST, CIS), risk frameworks (COSO, FAIR), and regulatory obligations (GDPR, PCI-DSS, SOX). Proven track record of managing enterprise-level security programs, including incident response and business continuity. Excellent stakeholder management skills, with experience reporting at board level. Strong More ❯

functional teams to design, implement, and maintain security controls and configurations across various systems and platforms. Oversight of compliance for regulatory compliance requirements, such as SOC2, HIPAA, ISO 27001, GDPR etc., and ensure our systems adhere to these standards. Stay updated with the latest industry trends, emerging threats, and security technologies to proactively identify and address potential risks. Conduct security More ❯

vendors to ensure successful implementation of solutions. - Provide architectural guidance and support to project teams throughout the development lifecycle. - Ensure solutions adhere to relevant legal and regulatory requirements (e.g., GDPR, data privacy). - Contribute to the development of architectural patterns and best practices within the IT department. Stakeholder Management & Communication: - Effectively communicate architectural concepts and solutions to both technical More ❯

MITRE. Proven experience with policy interpretation and security implementation in real-world projects. Preferred Skills Certifications such as CISSP, CCSP, CEH, Microsoft Azure / AWS Security. Working knowledge of GDPR, HIPAA, PCI-DSS. Familiarity with development in .NET, Java, Python, PowerShell, or Bash. Knowledge of tools like SIEM, SOAR, IDS, WAF, vulnerability management platforms. Experience with UI, API, microservices security More ❯

Smart Energy Code (SEC), Network and Information Systems Directive (NIS), National Cyber Security Centre (NCSC) Cyber Assessment Framework (CAF), ISA / IEC 62443, ISO / IEC 27001 / 27002, GDPR, Cloud Security Alliance (CSA) Star framework, SOC2 Type 2 audits, Information Technology Infrastructure Library (ITIL), Control Objectives for Information and Related Technologies (CoBIT), etc. . click apply for full job More ❯

including policies, standards and procedures, prioritisation CAFM data (Assets, Contracts and Planned Maintenance) Work closely with the global team and ensure compliance with relevant laws and regulations, including GDPR and the UK Data Protection Act, and regularly report on compliance to senior management. Work closely with the key business leaders within the organisation around data quality More ❯