23 of 23 ISO/IEC 27001 Jobs in the City of London

Cyber Security Engineer (Hedge Fund) - Python / Powershell / SQL / Tableau BI / NIST / CISSP / CISA - PERM We are seeking a Cyber Security Risk Engineer with a robust background in the full suite of modern technologies employed within an enterprise environment. … evolving enterprise technologies. Assist with incident response planning and post-incident risk evaluation, leveraging broad technical knowledge to assess impacts and recommend improvements. Qualifications / Skills Required Demonstrated experience working with information technology, information security, compliance, legal, business teams, and clients to assess and document security risks and compensating ...

cybersecurity audits for client organisations in line with UK regulations. Assess compliance with: UK GDPR & Data Protection Act 2018 NIS Regulations ISO / IEC 27001 Cyber Essentials / Plus Telecommunications (Security) Act 2021 Identify risks and provide actionable recommendations. Produce clear audit … auditing, ideally in a consultancy or client-facing role. Strong knowledge of UK legal frameworks and compliance standards. Relevant certifications (e.g. CISA, CISSP, ISO 27001 Lead Auditor). Excellent communication and stakeholder engagement skills. Ability to work independently and manage multiple client engagements. This ...

Systems Engineer / SaaS & Identity Engineer (Contract) – Inside IR35 Contract: 6 months (likely), Inside IR35 Start: ASAP Location: Hybrid – 3 days / week onsite Notice: Up to 4 weeks considered Overview We are looking for an IT Systems Engineer (generalist) to support and enhance their internal tooling stack. … This is a contract role providing additional capacity / cover while permanent hiring is ongoing. This role is less about being a deep specialist in one platform and more about being a capable engineer across multiple core systems, able to jump into BAU + project work. Key Responsibilities Administer ...

week. In order to be suitable for this role you must be an accomplished Information Security Manager with an expert understanding of ISO 27001 standards. You will oversee the Governance, Risk and Compliance (GRC) framework, ensuring robust standards are met across information security, physical security, crisis … suitable for this role of significant responsibility you must be an accomplished Information Security Manager with proven experience of working to ISO 27001 standards. You will act as the Lead Implementer for the ISO 27001 Information Security Management System (ISMS), driving ...

Senior Security Analyst / Security Engineer London (City) | £80,000–£90,000 | PermanentIf you’re the kind of security engineer who can spot an active threat, contain it calmly, and then harden the environment so it doesn’t happen again — this role is built for you.We’re hiring … hands-on Senior Security Analyst / Security Engineer to strengthen a Microsoft-centric security posture across detection, response, tooling, and infrastructure hardening. Not a one-lane SOC role. Not governance-heavy. This role blends incident response with security engineering and hardening and ideal for someone with 4–5 years ...

solution designs including API contracts, integration patterns (Azure Functions, Logic Apps, Event-driven), security boundaries, and observability. Architect document intelligence pipelines (classification / extraction / OCR / validation) and integrate with downstream systems (CRM / ERP / ITSM / EDM). Define non-functional … requirements (availability, latency, throughput, cost, DR / RTO-RPO) and ensure solutions meet them. Implement identity & access (Entra ID), data isolation, Key Vault secrets, network security (Private Endpoints), and content filtering. Embed Responsible AI practices: safety filters, prompt / content governance, data privacy, red-teaming guidance, and human ...

Information Security Analyst (GRC / ISO27001) DGH Recruitment are currently recruiting on behalf of a leading global client who are looking for an Information Security Analyst to join the team on a permanent basis in their London office. The role will work as part of a global team providing … Strong knowledge of ISO 27001 implementation and certification - Strong knowledge of governance, risk and compliance - Certifications such as CISSP, CISA, ISO27001 Lead Auditor (desirable) Information Security Analyst (GRC / ISO27001) In accordance with the Employment Agencies and Employment Businesses Regulations 2003, this position is advertised ...

Proven experience delivering maturity assessments, gap analyses and framework design * Structured, detail-oriented problem-solving approach Desirable Skills & Attributes * Degree Educated in either Risk / Finance / Law / Business * Professional certifications including: CTPRP, CIPS, CPSM, CISA, ISO 27001 Lead Implementer / Auditor, or other relevant risk and compliance certifications * Experience in sourcing and / or procurement environments Please apply for immediate interview! CBSbutler is operating and advertising as an Employment Agency for permanent positions and as an Employment Business for interim / contract / temporary positions. CBSbutler ...

with real ownership — ideal for someone ready to step up and shape a growing security function. The Role Build and mature security frameworks (ISO 27001, CE+, NIST … Lead gap analysis and audit readiness Own the security risk register and drive mitigation Develop policies, standards, and procedures Support ISO 22301 / business continuity Coordinate internal / external audits and evidence gathering Manage vendor risk and customer due-diligence requests Provide independent governance oversight (separate ...

external vendors Engage with senior stakeholders to translate security risk into clear business impact and priorities Support audits, certifications, and assurance activities (e.g. ISO 27001, Cyber Essentials Plus) About You You'll be a confident, hands-on security leader who is comfortable operating at both strategic … supplier risk Strong stakeholder management skills, with the ability to influence at senior level ISO 27001 certification experience and / or Cyber Essentials Plus Broad security background rather than a narrow technical specialism Experience in professional services environments advantageous Why Join? Senior leadership role with ...

external regulatory and legislative requirements (including those relevant to CNI and OT environments) What you’ll bring 3–5 years’ experience in cyber / information security risk, with demonstrable exposure to OT / ICS environments Strong understanding of risk frameworks such as ISO 27005, OCTAVE, FAIR … / FAST Exposure to OT and regulatory standards / frameworks such as IEC 62443, NIS / CAF (or NIS-D CAF), NIST Cybersecurity Framework & ISO 27001 Hands-on experience conducting risk assessments and supporting ongoing risk management (registers, treatments, reporting) Strong ...

regulated environments; familiarity with AI and data frameworks (DAMA-DMBOK, NIST AI RMF, ISO 23894, ISO 27001, GDPR / DPA 2018); hands-on with platforms such as Microsoft Purview, Azure ML, Databricks, Power BI, Collibra, or Alation; exposure to MLOps practices. ...

conducting security assessments and producing assurance reports. Ability to engage and influence stakeholders at all levels. Familiarity with security frameworks and standards (e.g., ISO 27001, NIST, CIS Controls). Excellent communication, planning, and organisational skills. Experience managing teams and developing talent. Ability to interpret complex technical … Hybrid working - 3 days on site Career Development: Continuous learning and professional growth. Benefits Package: Includes Private Health Care, Cash Back Plan, Buy / Sell Holiday Options, Life Assurance, and more. Interested? Submit your application to learn more about this exciting opportunity. Reasonable Adjustments: Respect and equality are core ...

delivery partners. Key Responsibilities • Own infrastructure and cloud strategy, including on-prem to Azure migration• Define architecture standards, security policies, and governance frameworks• Lead ISO27001 compliance and Cyber Essentials Plus readiness• Establish infrastructure lifecycle, change, and configuration management (CMDB)• Lead and develop a small infrastructure team• Provide clear reporting ...

Head of Technology, this role will lead a mixed portfolio of in-house and off-the-shelf systems, introduce a formal SDLC / Secure SDLC , and mature release, change, and governance processes. Stakeholder engagement is central — this role acts as the bridge between Technology, Partners, and fee earners.This … releases, change, testing, and prioritisation across BAU and projects• Support application readiness for Azure migration alongside Infrastructure• Ensure application security, compliance, and contribution to ISO27001 / CE+ Key Requirements • E xperience in the legal sector • Strong background managing enterprise applications in a professional services environment• Proven experience implementing SDLC ...

week. In order to be suitable for this role you must be an accomplished Information Security Manager with an expert understanding of ISO 27001 standards click apply for full job details ...

reducing downtime, and providing the secure, scalable foundation needed to enable growth and productivity. The role includes establishing an Infrastructure Development Lifecycle (IDLC), maintaining ISO27001 and Cyber Essentials Plus compliance, developing and managing the Configuration Management Database (CMDB), and creating a technology roadmap to transition from traditional on-premises infrastructure … systems to MS Azure cloud for scalability. Skills Required Strong knowledge of Microsoft Azure, Windows Server, Active Directory, Networking, Virtualisation, Endpoint Management, and Backup / Recovery solutions. Strong technical knowledge of LAN, WAN, VPN and server Windows Server administration, virtualisation platforms and storage solutions. Expertise in Microsoft 365 Cloud ...

Deep understanding of access management, intrusion detection, and network security (routers, NLBs, V-LANs). Proficiency in applying industry standards and legislation such as ISO27001, PCI DSS, and SOX. Preferred Qualifications: Industry-recognised certifications such as CISSP, CISA, or CISM. Product-specific certifications in Cisco or Checkpoint technologies. Hands … experience with VA / PT tools, Anti-Malware, and Email security solutions. London Based | Permanent Role | £85,000 + (DOE) If you are ready to manage multiple projects at various lifecycle stages and provide high-level technical support, I want to hear from you. If the above sounds ...

strong Governance, Risk, and Compliance (GRC) frameworks aligned to business objectives Oversee information security risk management, including risk identification, assessment, treatment, and reporting Manage ISO27001 compliance, including certification, audits, continuous improvement, and associated documentation Ensure compliance with relevant regulatory and legal frameworks related to information security and data protection Provide … relates to information security Demonstrated track record of developing and delivering effective information security strategies and programs Hands-on experience managing ISO27001 compliance within a regulated environment Strong knowledge of regulatory frameworks and industry standards relevant to cyber and information security Excellent interpersonal and communication skills, with the ability ...

compliance requirements. This involves enforcing proper access controls and software patching to protect sensitive data. Participate in risk assessments (e.g., Cyber Essentials Plus and ISO27001) and remediation activities related to application security and operational resilience. Reporting & Communication Provide clear communication and reporting on progress, incidents, and releases to stakeholders, highlighting … regular reporting to the Head of Technology on application performance, risk status, and strategic progress. Skills Required Proficient in SQL, C#, Python, Java, HTML / CSS, and related development frameworks. Understanding of API integration, data modelling, and application performance tuning. Strong project management skills are essential for implementing ...

coding standards and champion secure development practices (e.g. OWASP). Influence technology choices, frameworks, and tools to support engineering excellence. Oversee improvements to CI / CD pipelines, build processes, and operational workflows. Can clearly and confidently articulate risk of technical problems to non technical stakeholders (e.g legal, product owner … comfortable in agile environments using Git-based SCM and tools like Jira or Redmine. You are aware of compliance frameworks such as ISO27001 and PCI. 🙌What’s in it for you? 🌴Annual Leave – 23 days holiday, plus all bank holidays, increasing by 1 day per year of service, after ...

Head of Sales, providing ongoing support across all sales and new business initiatives. Support mkodo in the implementation and ongoing maintenance of its ISO27001 Information Security Management System (ISMS). Adhere to all relevant mkodo ISO27001 Information Security Management System (ISMS) policies, procedures and requirements at all times. Complete … reasonable tasks relating to the mkodo ISO27001 Information Security Management System (ISMS). Key Skills & Attributes: Previous experience in Sales or new business development. Experience in the research and investigation of people and businesses to help increase sales potential. Can demonstrate strong presentation skills when analysing and offering conclusions about ...