1 to 25 of 36 ISO/IEC 27001 Jobs in the City of London

logical and physical topology). Hybrid Connectivity Design Principles and Standards (DNS-based policy, Zero Trust segmentation, firewalling). Detailed Bill of Materials (vendor / platform options, sizing, licence models, costs to Class 4 estimate). Delivery Project Plan (work breakdown structure, stage gates, dependencies, critical path). Security … Digital Distribution, Connectivity, Architecture, InfoSec, Service Assurance, Commercial) to define cross-connects, circuits, and governance alignment. Assessment of hyperscaler scope (AWS in baseline; Azure / GCP to be evaluated) and interconnection locations (carrier-neutral DCs / IX presence). Deliverables or KPIs (e.g. uptime %, response times, resolution targets ...

Threat Detection, Secure Remote Access, and Adaptive Security Policies—balancing exceptional user experience with enterprise-grade security. We operate under an ISO / IEC 27001-certified ISMS and an ITIL-aligned service management framework, ensuring integrity, resilience, and operational excellence. Joining Zero Plus … issues with cloud systems and resources. Monitor and optimise performance across hybrid, cross-tenancy, and multi-cloud environments. Implement observability tooling. Ensure compliance with ISO27001 standards, Zero Trust principles, and Well-Architected Frameworks. Maintain accurate documentation and mentor junior engineers. This role gives you the opportunity to deliver secure, modern ...

Cyber Security Engineer (Hedge Fund) - Python / Powershell / SQL / Tableau BI / NIST / CISSP / CISA - PERM We are seeking a Cyber Security Risk Engineer with a robust background in the full suite of modern technologies employed within an enterprise environment. … evolving enterprise technologies. Assist with incident response planning and post-incident risk evaluation, leveraging broad technical knowledge to assess impacts and recommend improvements. Qualifications / Skills Required Demonstrated experience working with information technology, information security, compliance, legal, business teams, and clients to assess and document security risks and compensating ...

Hybrid Connectivity Design Principles and Standards, including DNS-based policy, Zero Trust segmentation, and firewalling. Provide a Detailed Bill of Materials, covering vendor / platform options, sizing, licence models, and costs to Class 4 estimate. Develop a comprehensive Delivery Project Plan, detailing work breakdown structure, stage gates, dependencies … plan. Outline a Migration Strategy to guide phasing, cutover options, and rollback plans for later phases. Required Skills & Qualifications: Extensive experience in enterprise LAN / WAN / SD-WAN architecture and design. Proficiency in routing & switching (L2 / L3), and Wi-Fi controllers / enterprise deployments. ...

major carrier-dense, globally connected data centre campus. The site supports mission-critical colocation services, high-density deployments, extensive interconnection ecosystems, and 24 / 7 operational demands. This role oversees facilities operations, engineering / M&E teams, and incident management processes while ensuring excellence in service delivery … Energy Management Engineering Practices & Technical Experience Candidates must demonstrate strong engineering competence across the following data centre disciplines: Electrical Systems HV / LV distribution systems, transformers, switchgear, busbars and panel boards UPS systems (static & rotary), battery technologies (VRLA, Lithium-ion) Generator systems, fuel delivery, and synchronisation controls Electrical Protection ...

mainly focusses on information security, cybersecurity, and data security from a Greenfield perspective. We are on a journey to secure Cyber Essentials plus and ISO27001 certification. You MUST have experience working with banking / financial services regulations, FCA, PRA etc. Liaison with the Head Office, Security Operation Centre … audits. You will be part of the IT committee and work closely with the risk and compliance team. Ideally, having a background in IT / Network security, progressing into information security and cybersecurity. **Key Responsibilities:** - Develop, draft, implement, and maintain information security policies, procedures, and guidelines. - Conduct regular security ...

Title: SOC Engineer Location: On-site, London moving to hybrid 3 days on-site after 2-week induction Start Date: Immediate Contract length: 31 / 03 / 26 further extensions expected Clearance Required: BPSS (must be obtained prior to onboarding) Day rate: £400 - £500 Candidates must hold … work effectively within a collaborative SOC team Desirable Skills Experience with incident documentation and reporting Familiarity with security frameworks (MITRE ATT&CK, NIST, ISO 27001) Ability to adapt quickly to new tools, threats, and operational priorities Any relevant certifications (e.g., Security+, CySA+, Microsoft SC-series, GIAC ...

Security Project Manager £600 / day Leeds (3 days onsite per week) Outside IR35 About the Role As the Security Project Manager, you will play a crucial part in the successful delivery of the company's Security Improvement Programme. Your primary responsibility will be to lead the planning, execution ...

Security Engineer Assurance / Report Writing Were looking for a Security Assurance Engineer with the ability to see the whole security picturetechnology, people, and process. Youll join a team of experienced cyber specialists, but your role is to step back from the individual technical outputs and assess what they … must have been active within the last 12 months. Experience producing structured security assurance documentation, security cases, or security arguments (e.g., using GSN, safety / security case approaches, or similar). The ability to interpret diverse security inputspen test results, architectural designs, risk assessments, compliance outputsand turn them into ...

fast-growingspecialistsoftwarecompanyatapivotalmomentinitsjourney. WhyThisRoleisDifferent Since2013,TrinitatumhavebuiltareputationservingglobalenergytradingandfinancialservicesorganisationswiththeirTriangleTestAutomationplatform - reducingtestingeffortbyover70%andacceleratingreleasesfromweekstodays.Theirrecentstrategicpartnershipsareopeningglobalmarkets,andtheyneedatechnologyleaderwhocanscalewiththem. You'llworkdirectlywiththeirCEOChrisJonesandtheseniorleadershipteamthroughthreedistinctphases: Phase1:TheFixer(Months1-6) Rapidlyassess,identifygaps,andimplementcriticalfoundationsfromsecurityposturetooperationalresilience. Phase2:TheBuilder(Months6-18) Establishscalablestructuresandleadtheproductroadmap.Drivebestpracticedevelopmentstandards,buildsecuritycredentials(SOC2,ISO27001),andarchitectforscaleacrosstheirAzure / .NETstack. Phase3:TheScaler(18+months) TransitionintotheCTOrole.Leadtechnicalvision,scaleengineeringcapabilityinternationally,anddrivemarketdifferentiationthroughtechnicalexcellence. YourFirst12Months:TheMission-CriticalChallenges Workingshoulder-to-shoulderwithChris,you'lltacklefourkeyareas: ProductSecurity&Compliance AuditTriangle,implementend-to-endsecurityimprovements,andestablishpathwaystoSOC2complianceforourhighlyregulatedclients … ProductRoadmap&Strategy Createaconversationalroadmapthatbalancesnewfeatureswithtechnicaldebtwhilstguidingcustomerenhancementpriorities BestPracticeDevelopmentStandards Implementautomatedtestingframeworks,introduceBDDpractices,andbuildacultureofcontinuousimprovement OperationalResilience Eliminatesinglepointsoffailure,createredundancy,andestablishrobustbusinesscontinuitycapabilities WhatMakesYouExceptional Youbring: Deep.Netmasteryyou'vebuiltproductionsystemsatscale StrongAzurearchitectureexperiencewithcloud-nativedesignpatterns Demonstrablesecurityframeworkexperience(SOC2,ISO27001,ITIL) Hands-onautomatedtestingframeworksexpertise PracticalBDDfamiliarity Moreimportantly,youare: Astrategicpartnerwhocanbalancetechnicalexcellencewithcommercialreality Hands-onwhenneededcomfortablecoding,reviewingarchitecture,ordebuggingcriticalissues Ateambuilderreadytorecruit,mentor,anddeveloptechnicaltalent Customer-awareyouunderstandthatTriangleservesmission-criticaltradingsystemswherereliabilitymatters Growth-orientatedexcitedbythejourneyfromspecialistconsultancytoglobalsoftwareplatform BonusPointsFor: ETRM / CTRMplatformexperience,financialservicesorenergysectorbackground,experiencewithEndur / Findur / ...

business development efforts. You’ll also play a key role in helping us stay ahead of the curve in areas like ISO standards, Cyber Essentials, and sustainability. What We’re Looking For... A recent graduate (Business, Management, Sustainability, Economics, or Compliance related fields are desired) A self-starter … part of a team What you’ll be doing Technology and SAP Knowledge : Preferred experience and understanding of technology (SAP, Salesforce, MS Dynamics / Oracle / Service Now) to effectively communicate complex concepts to our target audience Microsoft 365 Proficiency : Proficient in Microsoft 365 applications, including PowerPoint, Word ...

conducting security assessments and producing assurance reports. Ability to engage and influence stakeholders at all levels. Familiarity with security frameworks and standards (e.g., ISO 27001, NIST, CIS Controls). Excellent communication, planning, and organisational skills. Experience managing teams and developing talent. Ability to interpret complex technical … Hybrid working - 3 days on site Career Development: Continuous learning and professional growth. Benefits Package: Includes Private Health Care, Cash Back Plan, Buy / Sell Holiday Options, Life Assurance, and more. Interested? Submit your application to learn more about this exciting opportunity. Reasonable Adjustments: Respect and equality are core ...

will act as the organisation's subject matter expert on information security compliance and data protection, ensuring adherence to recognised standards such as ISO 27001, Cyber Essentials Plus, and NIS2, alongside compliance with the UK General Data Protection Regulation (UK GDPR) and other relevant legislation. … have certification in CIPP / E, CIPM, CIPT, CISSP, or equivalent privacy or cybersecurity qualification - A strong knowledge of GDPR, UKGDPR ePrivacy Directive, ISO27001, national data protection laws and FOIA is a must - The ability to handle sensitive and confidential information with integrity is necessary and a priority ...

will act as the organisation s subject matter expert on information security compliance and data protection, ensuring adherence to recognised standards such as ISO 27001, Cyber Essentials Plus, and NIS2, alongside compliance with the UK General Data Protection Regulation (UK GDPR) and other relevant legislation. … have certification in CIPP / E, CIPM, CIPT, CISSP, or equivalent privacy or cybersecurity qualification - A strong knowledge of GDPR, UKGDPR ePrivacy Directive, ISO27001, national data protection laws and FOIA is a must - The ability to handle sensitive and confidential information with integrity is necessary and a priority ...

will act as the organisation’s subject matter expert on information security compliance and data protection, ensuring adherence to recognised standards such as ISO 27001, Cyber Essentials Plus, and NIS2, alongside compliance with the UK General Data Protection Regulation (UK GDPR) and other relevant legislation. … have certification in CIPP / E, CIPM, CIPT, CISSP, or equivalent privacy or cybersecurity qualification - A strong knowledge of GDPR, UKGDPR ePrivacy Directive, ISO27001, national data protection laws and FOIA is a must - The ability to handle sensitive and confidential information with integrity is necessary and a priority ...

Defender for Cloud, Defender for Endpoint and EASM Vulnerability remediation and Secure Score improvement Purview (DLP, sensitivity labels, insider risk) Compliance uplift for ISO 27001, SOC 2, GDPR and NIS2 Configuration hardening, patching and policy deployment Entra ID, Conditional Access, PIM and cloud identity controls PowerShell ...

hybrid environments. Project Management certification (PRINCE2, PMP, or Agile). Desirable Experience working with CyberArk Professional Services or certified partners. Knowledge of ISO 27001, NIST or GDPR frameworks. Experience in financial services or other regulated industries If you have strong project delivery expertise with a deep ...

Role: Security & Information Risk Advisor (SIRA) Location: London (hybrid) Rate: £500-550 p / d Duration: Initial 6 month work package Start: January 2026 Active SC clearance is required. We're looking for an experienced Security & Information Risk Advisor to support secure, high-impact programmes within a sensitive … supplier and third-party security controls What You'll Bring Experience in information security, risk management, or assurance Strong understanding of NCSC guidance, ISO 27001, and government security classifications Ability to communicate risk clearly to technical and non-technical audiences If you're ready to apply ...

Incident Response Identity, Access & Data Security Risk & Compliance Support Security Training and awareness Required Technical Experience: Proven experience in a hands-on IT security / cybersecurity role Logging and monitoring Security Tooling (vulnerability scanning (Tenable, Qualys, Rapid7) Endpoint or network security platforms IAM or access control systems Ability … analyse security findings and implement effective technical remediation Strong understanding of security controls, policies, and technical standards Desirable Experience working with ISO 27001, NIST, or similar frameworks Exposure to security architecture or secure system design ...

alignment with regulatory and business requirements Consultation & Productization Lead initiatives to develop and standardise consultation offerings based on frameworks such as Cyber Essentials, ISO 27001, and similar Translate customer needs and compliance obligations into actionable service packages and product features Collaborate with technical and commercial teams ...

Financial Management & HCM. Experience with Oracle Process Automation, OPA (Desirable) Understanding of UK Gov Cloud hosting, data sovereignty, and compliance standards (NCSC CAF, ISO 27001, Cyber Essentials Plus) (Desirable ...

with tools like SIEM, EDR, and Vulnerability Management, continuously enhancing capabilities. Network and System Security Manage advanced security tools such as firewalls and IDS / … protect network integrity. Enforce robust security policies to maintain system security standards. Compliance and Audit Support Ensure adherence to compliance standards including ISO27001, NIST, and GDPR through regular audits and risk assessments. Support audit processes by providing necessary documentation and evidence of compliance. Security Awareness and Training Conduct regular training ...

line support experience to join their growing IT function. This is an excellent opportunity for a highly capable engineer with deep expertise in Intune / Endpoint Manager, alongside advanced Microsoft technology skills and a solid background in resolving complex technical issues. The successful candidate will play a key role … point for complex Incidents, Problems, and non-standard Requests. Provide advanced technical support across the Microsoft ecosystem: Active Directory, Azure, Microsoft 365, Exchange, Intune / Endpoint Manager. Design, develop, and maintain Power Apps solutions to automate workflows and integrate with Microsoft 365 and other data sources. Configure, manage ...

Management. Experience in senior stakeholder engagement and management reporting. Ability to coach and mentor team members. Deep understanding of IT security frameworks (SOX, FFIEC, ISO27001, NIST, PCI-DSS, Cloud Security Alliance). Strong managerial and leadership skills. Hands-on experience as an IT auditor, security auditor, or GRC analyst. Excellent … systems (OS, databases, firewalls, SIEM, DLP). Cloud Platforms: AWS and Azure. AI Knowledge: Understanding of AI principles and security implications. Solutions / Technical Network Architecture: Ability to design secure technical solutions and network architectures. Controls Experience: Strong background in implementing and assessing security controls. Splunk Knowledge: Familiarity with ...

protocols (LDAP, SAML, OAuth, OpenID Connect). Proficiency in cross-platform scripting (e.g., T-SQL, PowerShell, Bash) and integration with on-premise / cloud directory services (Azure AD, GSuite, LDAP … . Deep understanding of legacy and modern authentication protocols, access controls, and identity lifecycle management. Strong security awareness and familiarity with standards such as ISO27001, NIST, and CIS, with experience conducting audits and implementing controls. Solid grasp of Web APIs including SOAP, REST, and GraphQL, and their role ...