18 of 18 ISO/IEC 27001 Jobs in the City of London

is hiring for Security Audit Analyst for London, UK location, Job: Security Audit Analyst Job Type: Open for both Permanent and Fixed Term Contract Location: London, UK(3 Days / Week onsite) Job Description: Overview The Third-Party Audit Consultant is responsible for conducting customer audits, managing short-term projects, and assessing third-party security compliance. This role requires … ISO 27001 Lead Auditor certification and a solid understanding of risk management principles. Requirements Certification as an ISO 27001 Lead Auditor, with hands-on experience conducting audits and managing audit processes. Ability to manage short-term projects independently, from planning to execution, including audit preparation and report generation. Familiarity with technology systems … of third-party vendors or partners to ensure compliance with security standards. Understanding of risk management principles and their application in security audits. Knowledge of compliance frameworks like ISO 27001, SOC 2, or similar, and their implementation within enterprise environments. Experience with audit tools and software used for planning, executing, and documenting audits. Experience in writing More ❯

Expertise Cloud-Native Architectures: - Deep understanding of AWS, Azure, and GCP services, including compute (EC2, Lambda), networking (VPC, Transit Gateway), storage (S3, Blob), and container orchestration (ECS, Fargate, Kubernetes / EKS / GKE). - Familiarity with IaC tools such as Terraform, CloudFormation, and Helm for scalable deployments. AI / ML Fundamentals: - Knowledge of Natural Language Processing (NLP … model lifecycle management, and explainability techniques. - Ability to articulate how AI models integrate into enterprise workflows and compliance frameworks. Security & Compliance: - Strong grasp of SOC 2, ISO 27001, GDPR, and enterprise security best practices. - Understanding of identity and access management (IAM), encryption standards, and secure API design. Integrations & APIs: - Experience with RESTful APIs, webhooks, and SDKs … on the client's supplier list for this position. Useful Keywords Technical Presales Lead, Solutions Engineering, Pre-Sales Manager, Cloud Architecture, AWS, Azure, GCP, Kubernetes, ECS, Fargate, Terraform, AI / ML, NLP, Security Compliance, SOC2, ISO 27001, GDPR, SaaS, Enterprise Software, API Integrations, Player-Coach, Technical Leadership, Proof of Value, Enterprise Presales More ❯

Security, A+, Server), Microsoft Certifications (e.g. Azure Administrator, Security, Server Hybrid Admin, Power Platform Fundamentals). Membership in relevant bodies such as BCS, IEEE, ISACA, (ISC) , CompTIA, or ITIL / AXELOS. Skilled in LAN / WAN management, VLANs, routers / switches, VPNs (Azure or Always On), firewall configuration, and protocols (DNS, DHCP, TCP / IP). … Proficient in PowerShell for automation and reporting. Knowledge of Power Automate and CI / CD pipelines. Knowledge of disaster recovery and business continuity planning. Experience with storage solutions and playbook maintenance. Experience with Microsoft Defender, Sentinel or equivalent SIEM tools, RBAC, PIM, and awareness of ISO 27001 / Cyber Essentials. Familiarity with IAM, PAM … Exchange, Purview, Intune, Teams, Power Platform, and other Microsoft services. Experience in Windows Server admin, OS hardening, patching, Hyper-V, VM provisioning, backup, HA, and clustering. Knowledge of AD / AAD, GPOs, Entra ID, SSO, MFA, and Conditional Access. Open to adopting new tools, technologies, and methodologies. Clear in both verbal and written communication; confirms understanding when conveying information. More ❯

+ Bonus + Benefits Zachary Daniels are delighted to be working with a global business during an exciting period of transformation, to recruit a Network Architect / Specialist. This is a strategic and hands-on role, responsible for shaping and evolving enterprise network architecture across the UK and Europe. With a remit covering multiple sites in London, Belgium, and … and resilient network solutions tailored to business needs. Manage Cisco Meraki and Fortinet solutions across design, deployment, monitoring, and troubleshooting. Lead on network security, including firewalls, segmentation, and IT / OT integration. Collaborate with and manage outsourced network providers. Provide input on Wi-Fi, industrial site networks, and connectivity projects. Ensure compliance with NIS2, ISO 27001 … with wider business strategy. About You: Experienced as a Network Architect, Senior Network Engineer, or similar in a multi-site environment. Strong hands-on expertise in Cisco Meraki and / or Fortinet technologies. Proven track record in network security, firewalls, segmentation, and IT / OT integration. Experience within manufacturing, industrial, or warehousing settings. Strong stakeholder management skills with More ❯

Technical Expertise * Strong understanding of cyber security principles and risk management. * Hands-on experience with cloud security, particularly Azure services and tools. * Familiarity with security frameworks such as ISO 27001, NIST, or CIS. * Knowledge of security technologies (firewalls, remote access, ZTNA). * Exposure to threat modelling and cyber threat intelligence is advantageous. Core Skills * Excellent communication … be treated in the strictest confidence and we would always speak to you before discussing your CV with any potential employer. Keywords: Cyber Security, Azure Security, Cloud Security, ISO 27001, NIST, CIS, ZTNA, Threat Modelling, CISSP, CISM, CEH, Risk Management, Security Consultant, Information Security More ❯

Security Lead to strengthen their cyber resilience and provide assurance across a complex, fast-moving environment. This role will lead on assurance activities, including gap analysis against recognised standards (ISO27001, NIST CSF, ONR), ensuring controls are implemented, measured, and continually improved. The position requires a confident, dynamic individual who can engage at all levels of the business, with broad exposure … credibility, and the ability to influence are as critical as technical expertise. Key responsibilities - Cyber Assurance and GRC Leadership: Lead assurance activities and programmes, aligning security controls to ISO 27001, NIST CSF, ONR, and UK Gov standards Gap Analysis and Compliance: Produce audit-ready evidence, manage ONR requirements, and ensure ongoing alignment with NCSC and NPSA … and Experience - Essential - Established cyber security credentials with demonstrable experience in assurance, GRC, and cloud security Proven leadership in delivering gap analysis, audit evidence, and certification programmes (e.g. ISO 27001, NIST CSF, Cyber Essentials+) Strong technical background in Microsoft Security Stack and cloud security architecture Familiarity with risk assessment methodologies (ISO27005, NIST) Excellent communication, presentation, and More ❯

Sentinel - essential Microsoft Purview, Compliance Manager and related compliance tools Entra ID (Azure AD), Conditional Access and Identity Governance Data Loss Prevention, sensitivity labels and insider risk management ISO 27001, SOC 2, GDPR and NIS2 frameworks PowerShell … scripting and use of Microsoft Graph API Working across cloud, infrastructure and application teams Certifications required: AZ-500 SC-100 (or working towards) One or more of MS-500 / SC-400 / SC-900 The following are desired: CISSP, CISM, CCSP Interested? Please apply below. Senior Security engineer, M365 Consultant, M365 Engineer, Senior Cloud Security Engineer, Infrastructure More ❯

Security Risk Analyst 6-month contract London / Remote Inside IR35 My Customer is looking for a Security Risk Analyst to join their Governance, Risk & Compliance (GRC) team. You will play a key role in strengthening their risk management processes, working primarily with Archer and other GRC tools to support risk assessment, compliance, and governance activities. In this role … able to produce clear technical reports and risk documentation. Excellent stakeholder management, able to collaborate across technical and non-technical teams. Beneficial certifications: CISSP, CISA, CISM (or equivalent). ISO27001 / ISMS Accredited qualifications would be beneficial Experience working in financial sector would be beneficial Experience in ensuring internal IT system compliance against agreed standards Key Responsibilities of the … improve the security risk assessment framework, procedures, and workflows. Manage and update security questionnaires to align with compliance requirements, industry standards, and regulations. Conduct asset-level and third-party / vendor risk assessments. Analyse and document inherent and residual risks, providing clear recommendations. Produce detailed technical reports highlighting findings, control gaps, and proposed remediation plans. Drive remediation Perform periodic More ❯

across the organisation Manage stakeholder relationships across IT, operations, and compliance teams Implement and optimise Microsoft security tools and frameworks Ensure alignment with regulatory and industry standards (e.g. ISO 27001, GDPR) Support the business in adopting secure-by-design and Zero Trust principles Tech Environment: Microsoft Sentinel Microsoft Defender (Cloud, Endpoint, Office 365) Microsoft Entra ID More ❯

Deliver predictive modelling, AI, and machine learning to create measurable business value. Champion intuitive self-service analytics for business users. Implement best practice governance, ensuring compliance with GDPR, ISO 27001, and NIS2. Keep ahead of emerging technologies and foster a culture of experimentation and innovation. About You: 8+ years in data leadership roles, with proven success More ❯

includingISO27001andtheNHSDataProtectionandSecurityToolkit. Werelookingforsomeonewithastrategicmindsetandastronggraspofthedetail;someonecomfortablenavigatingtechnicalcomplexity,withdeepknowledgeofdataplatforms,informationgovernance,anddatasecurity.YoullworkcloselywithcolleaguesinIT,compliance,andacrossthecharitytopromotehighstandardsofdatamanagementandsupportcontinuousimprovement.Strongleadership,communication,andconsultativeskillsareessential. DataManager-Keyresponsibilities: Datamanagementdelivery Strategyandtechnicalleadership Governance,compliance,andsecurity Teamleadershipandmanagement Collaborationandstakeholderengagement DataManagerExperienceRequired: Commitmenttocontinuousimprovementandhighstandardsindatapractice. Significantexperienceinmanaginglargeandcomplexdatasetswithinaresearch,publicsector,orhealthcareenvironment. Strongknowledgeofdatagovernance,security,ethicsandcompliancestandardsandframeworks(e.g.,GDPR,ISO27001). ExperienceofworkingwithhealthoradministrativedatasourcessuchasHES,CPRD,orsimilar. Experienceofdevelopingandmaintainingdatadocumentation,metadata,andaccesscontrolrecords. Proventrackrecordinleadingdatamanagementprocesses,includingdatasharingagreementsandsecuredatatransfers. Experiencemanagingormentoringothers,withafocusonprofessionaldevelopmentandteamcohesion. Strongunderstandingofstatisticaldisclosurecontrolanddataanonymisationtechniques. Strongunderstandingofdataplatformsanddatabases. Familiaritywithscriptinglanguagesfordatatransformationandanalysis(e.g.R,Python),querylanguages(e.g.SQL)anddataengineeringtoolsandconceptssuchasETLpipelines,dataqualitychecks. More ❯

programmes that align cyber initiatives with broader business goals and digital transformation. Skills & Experience: Solid experience in cyber strategy, risk, maturity, transformation, and knowledge of standards such as NIST, ISO27001, GDPR, and NIS2 expected of a Strategy and Transformation Specialist. Relevant certifications like CISSP, CISM, CISA, M.Inst.ISP, or MSc-level education in cyber security or related fields. Demonstrated ability to … waterfall methodologies. Want to hear more? Message me anytime. Linked In: Ciaran Cleland Salary: £42,000 Additional Package: Variable 10% Bonus, Extensive Benefits Package Location: London, Hybrid Reference: AMC / CCL / LSTC Postcode: EC4A 1DE #cicl More ❯

programmes that align cyber initiatives with broader business goals and digital transformation. Skills & Experience: Solid experience in cyber strategy, risk, maturity, transformation, and knowledge of standards such as NIST, ISO27001, GDPR, and NIS2 expected of a Strategy and Transformation Specialist. Relevant certifications like CISSP, CISM, CISA, M.Inst.ISP, or MSc-level education in cyber security or related fields. Demonstrated ability to … waterfall methodologies. Want to hear more? Message me anytime. Linked In: Ciaran Cleland Salary: £42,000 Additional Package: Variable 10% Bonus, Extensive Benefits Package Location: London, Hybrid Reference: AMC / CCL / LSTC Postcode: EC4A 1DE #cicl JBRP1_UKTJ More ❯

to Service Line, Firmwide, and Regulatory Policies and Standards. Lead the oversight and challenge of Information Security risk management, ensuring alignment with strategic objectives and regulatory expectations. For example ISO27001 and cyber Essentials + Developing risk measurement methodologies to model and continually enhance the technology and cyber risk profile Conduct oversight assessments of technology change and AI related projects to … responsibilities within the Enterprise Risk Management team. Skills, Knowledge, and Experience Expertise in technology, data governance, information security, and AI risk management, including experience working within regulated industries. Professional / industry certification, or technology specific certifications such as Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), Certified in Risk and Information Systems (CRISC) or Certified Information More ❯

You'll Bring: Experience delivering cyber strategy, transformation or governance projects in the public sector, defence or critical national infrastructure. Knowledge of cyber security frameworks such as NIST CSF, ISO27001, NCSC CAF, CRI 2.0, GDPR or NIS2. Strong consulting skills including stakeholder engagement, project delivery, and team management. Excellent written and verbal communication skills - confident in front of technical and … Security Clearance (minimum SC level). Candidates with active clearance will be prioritised. For a confidential discussion or more details, get in touch at 028 9521 3213. Ref: AMC / RKI Reference: AMC / RKI - Cyber Strategy Postcode: EC1A #riki More ❯

ISO Compliance Specialist | £37,500 | Occasional days onsite An excellent opportunity has arisen with an award-winning social enterprise for a Compliance Specialist to join their team and be responsible for overseeing all aspects of the organisations Integrated Management System (IMS) and maintaining compliance with ISO accreditations.This will include conducting internal audits, oversight of risks and … opportunities, process and procedure reviews and identifying continuous improvement opportunities. Role and Responsibilities: Ensure continuous compliance with ISO accreditations including ISO9001, 45001 & 27001 Ensure effective management of approved suppliers Manage the relationship with relevant third parties including auditors and certification bodies Ensure all operational procedures and processes are reviewed and updated Promote awareness of ISO … legislation that may affect the effective management of the IMS Completion of internal audits throughout the organisation Essential Skills and Experience: Experience of compliance management systems Understanding of ISO accreditations, specifically ISO9001, 45001 & 27001 Ability to explain compliance matters to colleagues at all levels of the organisation Root cause identification Demonstrable experience of conducting compliance audits More ❯

IT Disaster Recovery Specialist / IT Resilience Specialist Hybrid working: 3 days per week required in the office (City of London). The successful candidate will plan and execute Disaster Recovery and resilience testing, drive remediation activities through to closure, and ensure that evidence and documentation meet client, regulatory, and audit standards. This is not a purely administrative role … mitigation. Required Skills / Experience: - Hands-on experience with disaster recovery, failover testing, and operational resilience in IT infrastructure. - Solid understanding of business continuity and security frameworks (e.g. ISO27001, ISO23001 NIST) and how to evidence controls. - Experience producing and maintaining high-quality technical documentation and runbooks. - Proficiency with infrastructure tooling and at least one scripting language (PowerShell or Python … preferred). - Understanding of hyperconverged infrastructure preferably with Nutanix, VMWare, Commvault and hybrid cloud infrastructure (Azure or similar). - Knowledge of vulnerability management, monitoring / alerting, and automation / orchestration platforms. IT Disaster Recovery Specialist / IT Resilience Specialist In accordance with the Employment Agencies and Employment Businesses Regulations 2003, this position is advertised based upon DGH More ❯

cycle with tools such as Databricks , MLflow , and cloud-native platforms (Azure preferred). Collaborate with engineering teams to ensure scalable, secure ML infrastructure aligned with compliance standards (eg, ISO27001). Ensure data governance, particularly around sensitive healthcare data. Share best practices and stay current with developments in AI, ML, and LLMs. Proven experience with LLM frameworks and transformer-based … architectures. Strong Python skills and familiarity with key ML / DL libraries. Experience with Azure (or similar cloud platforms), containerization (Docker / Kubernetes a plus), and MLOps tools. Understanding of healthcare data privacy, compliance (eg, ISO standards), and secure data handling. Strong communication skills and ability to work cross-functionally in a collaborative environment If this More ❯