26 to 50 of 185 ISO/IEC 27001 Jobs in London

advanced threat detection programmes Own the vulnerability management programme Implement enterprise frameworks including IAM, SIEM, and data classification Anticipate emerging threats, leverage AI / ML for predictive security, and set the technology vision Lead the Security Incident Response Programme Governance, risk, and compliance (GRC) Define … programme, including the ISMS, policy framework, risk registers, and audit readiness Implement and maintain compliance with ISO 27001, SOC 1, SOC 2, NIST CSF, GDPR, and relevant financial services regulations Understand the GRC landscape, implement appropriate controls, and adapt as the threat and regulatory environment shifts ...

strategy, CDO priorities and the digital transformation programme. Own and operate the Information Security Management System (ISMS) to ensure compliance with ISO 27001 and other applicable standards. Provide senior input to risk committees on AI and information security and represent security at the AI Governance Board. … Experience Familiarity with generative AI platforms, LLM governance and emerging risks from AI‐generated content and tool integrations. Experience with CrowdStrike or equivalent EDR / SIEM platforms, including integration with compliance logging pipelines. Exposure to Microsoft Fabric, Databricks or similar data platform environments. Experience operating within a Big Four ...

Security Posture aligned to ISO 27001 and UK Cyber Essentials frameworks Create and input to security principles, standards and execution / management plans Schedule and interpret penetration testing results, prioritizing and implementing mitigations Lead regular vulnerability assessments, identifying and closing security gaps Implement and monitor … Data Protection Officer duties, assisting process owners with Data Protection impact assessments Host regular security meetings with key stakeholders covering incidents, risks and regulatory / threat landscape changes Identify and deliver information security training and awareness programs to embed good cyber security practices Work closely with the Client, Alliance ...

pragmatic guidance to ensure security risks are understood, managed and remediated in line with organisational risk appetite and recognised best practice frameworks (e.g. ISO 27001, NIST, CIS Controls). Key Responsibilities Deliver security risk identification, assessment, analysis and logging activities, ensuring risks are clearly articulated, consistently … best practice. What We’re Looking For Experience in information security, risk management, or assurance roles. Desirable qualifications – CISM, CRISC, CISSP, CISA, CGEIT, ISO 27001 Lead Auditor (or equivalent). Hold an active and transferable SC clearance. Strong analytical skills with the ability to interpret technical ...

Data Security Assessment Toolkit in relation to ICT cyber security obligations in addition to working towards and maintaining Cyber Essentials Plus and ISO27001 certification. The post holder will work closely with a range of ICT departments, plus key stake holders in the Trust such as the Head … retain and succession plan for your people. Review skills mix at regular intervals in order to identify any potential opportunities to maximise resource utilisation / allocation, ensuring job descriptions are kept up to date. Ensure overall wellbeing of the team is maintained. Continuously support in improving the morale ...

large-scale change programmes spanning IT, OT and airport operational environments. Ensure delivery methodologies are appropriate for a regulated CNI context (e.g., hybrid agile / waterfall, structured assurance checkpoints). Manage interdependencies across technology, operational and regulatory workstreams. Ensure delivery outcomes are measurable in terms of risk reduction, control … Compliance Alignment UK aviation security frameworks CNI requirements Data protection legislation Relevant standards such as National Cyber Security Centre guidance and ISO / IEC 27001 Stakeholder & Relationship Management Cyber Security leadership CIO and senior IT leadership Operational airport leadership External partners and suppliers ...

variety of audience s. Key Responsibilit iesAssist in delivering cybersecurity governance, risk, and compliance activities aligned to recognised frameworks such as ISO 27001, NIST Cybersecurity Framework, Cyber Essentials, and GovAssu re.Perform information security risk assessments across business operations, projects, systems, and third-party provide rs.Maintain … discipl ines.Proven experience carrying out risk assessments and evaluating security cont rols.Solid understanding of governance, risk management, and compliance conc epts.Working knowledge of ISO 27001 and information security management systems (I SMS).Familiarity with frameworks such as NIST CSF and Cyber Essent ials.Experience contributing to audit ...

cloud) and demonstrate attack chains, lateral movement, persistence, and exfiltration. Partner with blue teams and SOC on purple‐team exercises, tuning detections, improving SIEM / SOAR use cases, and reducing dwell time and MTTR. Produce clear, actionable reporting for technical and executive audiences—prioritising business impact, risk, and pragmatic … remediation. Maintain strict OPSEC and governance , ensuring legal / ethical compliance, ROE adherence, data handling discipline, and auditability. Evolve tools, techniques, and procedures (TTPs) , maintain adversary emulation kits, and stay current with APT tradecraft and emerging threats. Define KPIs and dashboards to track detection coverage, campaign outcomes, control efficacy ...

renewal processes, and associated tooling. Familiarity with relevant cryptography related regulatory and industry frameworks and standards including NIST, FIPS 140, IETF, ISO / IEC 27001, DORA, and GDPR. If this role is of interest to you and would like to know more, please ...

renewal processes, and associated tooling. Familiarity with relevant cryptography related regulatory and industry frameworks and standards including NIST, FIPS 140, IETF, ISO / IEC 27001, DORA, and GDPR. If this role is of interest to you and would lilke to know more, please ...

engagements across public and private sectors in Greater London. This role requires experience in GRC, risk management, and cybersecurity frameworks like ISO / IEC 27001 and NIST. The position offers flexibility with regular on-site collaboration and mentoring opportunities, alongside competitive benefits including ...

ensuring internal teams are aligned to best practice frameworks and regulatory requirements. Responsibilities Security Operations & Vendor Oversight Own and manage relationships with outsourced 24 / 7 SOC / MDR providers Monitor performance against SLAs and ensure proactive threat detection across cloud environments Manage security incident escalations and coordinate … level risk registers and governance frameworks Familiarity with data security posture management (DSPM) tools and data classification platforms Good understanding of cloud security (Azure / AWS) and identity protocols (OIDC, SAML, MFA / Entra ID) Experience coordinating incident response across multiple stakeholders, including external forensic teams Strong commercial ...

discrete elements of programmes and projects. Conducting data protection maturity and gap assessments – this may include evaluation of the control landscape, data loss prevention / insider threat and information management solutions; user awareness and training. Data discovery programmes and data inventory management to meet regulatory and security requirements. Data … innovative compliance services, focussed on emerging legislation and technology as well as maturity of existing operations in specific industry propositions that solve client problems / issues and integrate with their overall IT delivery and support strategy. In addition to the above, you will have an opportunity to work across ...

NIST, GDPR) Stabilise and where needed, restructure internal teams and third-party suppliers Skills & Experience: Proven experience operating as a Head of Security / Security Director / Interim CISO Strong track record delivering security transformation or uplift in contract roles Ability to hit the ground running in complex … ambiguous environments Deep understanding of security frameworks (ISO 27001, NIST, CIS) Experience across cloud environments (Azure / AWS), enterprise architecture and cyber operations Strong stakeholder management - comfortable challenging and influencing at exec level Background in regulated environments (Financial Services, Insurance, etc.) highly desirable Reasonable Adjustments ...

NIST, GDPR) Stabilise and where needed, restructure internal teams and third-party suppliers Skills & Experience: Proven experience operating as a Head of Security / Security Director / Interim CISO Strong track record delivering security transformation or uplift in contract roles Ability to hit the ground running in complex … ambiguous environments Deep understanding of security frameworks (ISO 27001, NIST, CIS) Experience across cloud environments (Azure / AWS), enterprise architecture and cyber operations Strong stakeholder management - comfortable challenging and influencing at exec level Background in regulated environments (Financial Services, Insurance, etc.) highly desirable Reasonable Adjustments ...

infra, budget...). Key 3rd party operational infrastructure vendor management – management of managed service partners as a team extension globally, as well as service / solution delivery partners. Migration of legacy VM‐based estates to SaaS and cloud services platforms. Legacy infra tech to Azure knowledge / experience. … Prior to the last 5 years in enterprise management of a global estate / user‐base, a demonstrable technical infrastructure engineering level background, working on Windows Server, AD, SQL environments, firewalls / SDWAN, and networks (WAN and / or LAN). The Client is based ...

controls Carrying out tasks aligned with wider "Know Your System" (KYS) principles (understanding assets, processes and risks across the environment) Environment: Currently a developing / low-maturity security environment Work is often reactive and fast-moving Strong need for someone who can roll up their sleeves and deliver … play a key role in establishing and improving GRC basics Experience with: Third-party risk / supplier assurance Policy management Risk and compliance processes Understanding of frameworks such as: ISO 27001 / NIST / CIS (basic awareness is fine) Comfortable working ...

controls Carrying out tasks aligned with wider "Know Your System" (KYS) principles (understanding assets, processes and risks across the environment) Environment: Currently a developing / low-maturity security environment Work is often reactive and fast-moving Strong need for someone who can roll up their sleeves and deliver … play a key role in establishing and improving GRC basics Experience with: Third-party risk / supplier assurance Policy management Risk and compliance processes Understanding of frameworks such as: ISO 27001 / NIST / CIS (basic awareness is fine) Comfortable working ...

cloud environments and production‐grade infrastructure Lead security initiatives including vulnerability management, threat modelling, penetration testing, and incident response planning Build and evolve CI / CD pipelines, release management processes, and deployment automation Establish observability, monitoring, logging, alerting, and operational runbooks Manage secrets, key custody, access controls, and infrastructure … development through to secure production deployment Strong background in cloud infrastructure, automation, and operational security Experience supporting or leading SOC 2 Type II and / or ISO 27001 programmes Strong documentation and communication skills with the ability to create clear technical and compliance-focused artefacts ...

multiple teams. Lead project meetings, status updates, and regular check-ins. Ensure compliance with internal processes and relevant industry standards (ISO 9001 / ISO 27001). Support continuous improvement and identify opportunities to enhance project delivery. Qualifications Proven experience in project management, delivering … skills with the ability to manage multiple priorities. Experience using project management tools (e.g. MS Project, SharePoint, ERP systems). Familiarity with Prince2 and / or Agile methodologies. Strong communication and stakeholder management skills. Commercial awareness, including budgeting and reporting. Confident working both independently and as part ...

strong security culture. Manage vulnerability assessments, penetration testing, and remediation planning. Develop and maintain incident response and cyber crisis management plans. Compliance, GDPR & ISO Accreditation Ensure compliance with General Data Protection Regulation and other relevant data protection regulations. … lead for data protection, working closely with legal or DPO functions where applicable. Maintain and oversee ISO certifications, including ISO / IEC 27001. Develop, implement, and monitor IT and security policies to ensure regulatory and audit readiness. Coordinate internal and external audits, ensuring ...

Platform Architecture & Engineering responsibilities: Design and implement scalable Databricks Lakehouse platforms on AWS and / or Azure aligned to client requirements Architect end-to-end data platforms including ingestion, storage (Delta Lake), processing, and consumption layers Build and configure cloud infrastructure using infrastructure-as-code (e.g. Terraform & Declarative Automation … Bundles(DAB's)) Establish secure, compliant environments including networking (VNet / VPC, Private Link), identity (IAM / Entra ID), data governance (Unity Catalog), and access controls Define environment strategies (dev / test / prod), CI / CD pipelines, and release processes for Databricks deployments Implement ...

Hospital NHS Foundation Trust - Denmark Hill Town London Salary £75,328 - £86,114 per annum, including high cost allowance Salary period Yearly Closing 18 / 06 / 2026 23:59 King’s College Hospital NHS Foundation Trust is one of the UK’s largest and busiest teaching Trusts … Princess Royal University Hospital (PRUH) site in the London Borough of Bromley. We encourage all our staff to have a healthy work / life balance. In doing so, you can apply for flexible working from the beginning of your employment. We offer a range of options which are designed ...

millions of customers. As an Internet and Data Services Engineer, you'll play a pivotal role in designing, supporting and optimising high‐performance IP / MPLS core networks across WAN, LAN and mobile backhaul services, spanning 2G, 3G, 4G, 5G, Voice and IMS technologies . You'll be trusted … ISO 27001 , while operating in line with key industry governance requirements such as N3, PCI, FSA and IL2 / 3 . This role is ideal for a technically confident engineer who enjoys hands‐on ownership and solving complex network challenges. You'll bring CCNP‐level ...

protection and information security risks Review requests against defined policies and controls, escalating where appropriate in line with internal governance processes Support third-party / supplier risk assessments, including reviewing security and data protection documentation and tracking follow-up actions Support periodic reviews of high-risk and business-critical … risk, compliance, or GRC roles within a SaaS or technology environment Understanding of GDPR and handling of personal data (especially sensitive or child / student data) Experience performing risk assessments using structured frameworks and defined processes Ability to interpret policies and apply them to operational and real-world scenarios ...