1 to 25 of 32 ISO/IEC 27001 Jobs in the City of London

. Lead ISO 27001 and SOC 2 Type II audits, ensuring controls remain effective. Drive readiness for ISO / IEC 42001 AI certification Apply prior experience successfully obtaining ISO and SOC certifications Manage customer due diligence requests … from design to release. Perform threat modelling, define non-functional security requirements, and review designs for security impact. Guide security considerations in our AI / LLM-enabled products. Risk & Incident Management Own the company-wide incident response plan and lead tabletop exercises. Perform ongoing risk assessments, vendor security reviews ...

with strong DORA experience to lead operational resilience, major incident management and recovery planning within a regulated financial services environment. Key experience: * MUST DORA / Operational Resilience * Major Incident Management * Business Continuity & Disaster Recovery * Financial Services / FinTech * ISO 22301 / ISO 27001 … / NIST * Stakeholder & Regulatory Management This role will lead DORA implementation, resilience testing, ICT incident response, third-party risk and enterprise recovery planning across the business. High-impact role with strong visibility and ownership. Apply now for immediate consideration. #DORA #OperationalResilience #BusinessContinuity #FinTech #RiskManagement Robert Half Ltd acts ...

cybersecurity audits for client organisations in line with UK regulations. Assess compliance with: UK GDPR & Data Protection Act 2018 NIS Regulations ISO / IEC 27001 Cyber Essentials / Plus Telecommunications (Security) Act 2021 Identify risks and provide actionable recommendations. Produce clear audit … auditing, ideally in a consultancy or client-facing role. Strong knowledge of UK legal frameworks and compliance standards. Relevant certifications (e.g. CISA, CISSP, ISO 27001 Lead Auditor). Excellent communication and stakeholder engagement skills. Ability to work independently and manage multiple client engagements. This ...

Payments, Financial Services, or regulated industries is highly valued. Integration & Technical Architecture: Solid grasp of APIs, webhooks, REST architecture, data pipelines, and modern security / compliance standards. Can analyse client infrastructure and map it to platform capabilities. Experience with Payments (Wise, Stripe, PayPal) or Financial Services integrations is valuable. … thrive without rigid playbooks. Comfortable operating in scale-up environments where customer needs inform product direction. Security & Compliance Acumen: Understand security requirements, SOC 2 / ISO 27001, data residency, audit logging, encryption. Trusted conduit between Sales and Technology - able to articulate product capabilities on security ...

ROLE OVERVIEW / / Reporting to the Information Security Manager, the Information Security Assurance Specialist will play a pivotal role in strengthening the firm’s information security posture. It will identify where security assurance testing of the firm’s systems and processes is required, commission the required tests … communicate information security risks to a range of stakeholders. A strong background in information security within professional or financial services is essential. KEY RESPONSIBILITIES / / The key responsibilities of this role are set out below and there may be others which are not listed. ...

ISMS delivery . You will ideally bring: Strong experience managing Information Security in a complex organisation or group structure Excellent knowledge of ISO 27001 , ideally including ISO 27001:2022 Experience with Cyber Essentials and Cyber Essentials Plus Strong understanding of ISMS management … business processes and decision-making Translating security requirements into clear, proportionate and usable guidance for staff Supporting compliance and audit activity for ISO 27001, Cyber Essentials and Cyber Essentials Plus Coordinating audit preparation, staff readiness, evidence collection and remediation activity Acting as a key point ...

will be an experienced Information Security Manager, ISMS Manager, Information Security Lead, Cyber Security Governance Manager or similar, with strong practical experience across: • ISO 27001 , ideally including ISO 27001:2022 • Cyber Essentials and Cyber Essentials Plus • ISMS management, implementation and continuous improvement … ownership and improve visibility across entities • Deliver against the existing Information Security roadmap • Embed security controls into day-to-day business processes • Support ISO 27001, Cyber Essentials and Cyber Essentials Plus audit activity • Coordinate audit readiness, staff preparation, evidence collection and remediation • Maintain security policies, standards ...

Support Assistant / AV Specialist / Unified Communications Analyst A fantastic opportunity has arisen for a AV Support Assistant / AV Specialist / Unified Communications Analyst to join our London based global law firm on permanent basis. AV Support Assistant / AV Specialist / … PowerPoint, and Excel - Knowledge of Remote Access systems and focusing on supporting remotely - Understanding of ITIL (v2 or v3), understanding of ISMS / ISO27001 would be desirable. AV Support Assistant / AV Specialist / Unified Communications Analyst In accordance with the Employment Agencies and Employment Businesses Regulations ...

business stakeholders Strong stakeholder management and influencing skills across technical and non-technical teams Good understanding of security and governance frameworks such as ISO … 27001, NIST, COBIT, or similar Desirable Relevant certifications such as CISSP, CISM, CRISC, ISO 27001 Lead Implementer / Auditor, or similar Experience supporting cloud governance and modern technology environments Exposure to enterprise transformation or technology change programmes ...

They are looking to hire two individuals for these openings, so please free to share this with your network! Role Overview: Location: Central London / Hybrid (2 days per week on site) Package: £40,000- £50,000pa & Benefits Industry: Cyber Security Consulting What You’ll Be Doing: Lead … Project Management with a background delivering on Cyber Security projects to external clients. Strong understanding of cyber security frameworks and standards such as ISO 27001, NIST, CIS Controls, and Cyber Essentials. Experience delivering consultancy engagements directly to clients. Knowledge of risk assessment methodologies and security maturity ...

architecture, product and delivery teams in Agile and DevOps environments to embed security by desi gn.Support compliance with security and regulatory frameworks including ISO 27001, PCI DSS, OWASP and internal standar ds.Review security posture of vendors and outsourced services, providing due diligence and third-party risk … understanding of cloud security, secure application delivery, third-party risk management and access management practic es.Experience applying recognised frameworks and standards such as ISO 27001, PCI DSS, OWASP, NIST and enterprise security control framewor ks.Ability to translate complex technical risks into business language and provide clear ...

with the future state cloud-first strategy and architecture. Define and document cloud service security baselines that align with modern security frameworks (CIS, CSA, ISO27001, etc.). Define and document repeatable cloud service patterns. Drive adoption and migration from traditional technology platforms to public cloud services. Recommend tools and methodologies … Proven experience working in DevOps teams within a mission‐critical environment. Working experience in Agile methodologies and have actively managed scrums. Experience with CI / CD, Infrastructure-as-Code management and governance. Passionate about innovation and leading technological change. Passionate in creating a collaborative, caring and safe environment ...

infrastructure. Provide mentorship to other DevOps engineers, sharing expertise and raising engineering quality across the team. Develop and maintain robust and effective CI / CD pipelines. Troubleshoot and resolve complex infrastructure issues, ensuring minimal impact on business operations. Explore and evaluate new technologies, tools, and patterns that improve platform … VPCs, compute, containers, load balancing, storage, security, resilience, and cost optimization. Hands-on experience deploying and operating applications on Kubernetes in production, including Helm / manifests, ingress, configuration / secrets, observability, and troubleshooting live workloads. Proficient with Infrastructure as Code, especially Terraform, with experience building maintainable, reusable modules ...

work closely with cyber security, engineering, architecture, operations, and third-party suppliers to deliver transformative security capabilities aligned to recognised frameworks such as IEC 62443 and NIST. Key Responsibilities Programme Delivery & Planning Translate strategic objectives into detailed delivery plans, roadmaps, and work packages. Manage project schedules, milestones, dependencies … training. Manage go-live readiness, hypercare activities, and operational handover processes. Key Projects You may support initiatives including: Operational Technology Security Monitoring deployments IT / OT Network Segmentation programmes Secure Remote Access implementations Site Security Assessments and Classification programmes Regulatory compliance initiatives, including NIS2 readiness OT cyber resilience ...

Risk Manager Insurance / Financial Services Up to £80,000 London Hybrid (2 days on-site) Permanent We're partnering with a global Insurance business to find an IT Risk Manager for their technology function. This is a senior individual contributor role sitting between first and second line … high ownership. What we're looking for Genuine First Line of Defence (FLOD) experience - this is the defining requirement Cloud security awareness (AWS and / or Azure); comfortable with firewalls, IAM, SIEM, and vulnerability scanning Familiarity with ISO 27000, COBIT, NIST 800 and relevant regulations (FCA / ...

Required Strong understanding of cybersecurity principles and risk management Experience working with security architecture and enterprise solution design Knowledge of technologies such as: IAM / IDAM Privileged Access Management (PAM) Single Sign-On (SSO) Network Security Encryption technologies Understanding of infrastructure, architecture methodologies and secure design principles Experience with … stakeholder engagement and communication skills Ability to learn quickly and adapt within fast-paced environments Desirable Experience Hands-on exposure to Cloud Security and / or Network Security Security certifications such as CISSP, SABSA or equivalent Existing UK Government Security Clearance (SC / DV) Whats on Offer Competitive ...

Security Consultant Location: London / Flexible Hybrid Working (3 days onsite per week) Salary: £50,000 - £65,000 + Competitive Benefits Package & Signing on Bonus Security Clearance Requirements Please note that any offer of employment is subject to successful BPSS and SC security clearance checks. Applicants must be able … development of secure reference architectures. The ability to learn quickly and adapt within fast-moving technical environments. Hands-on experience in network and / or cloud security (preferred). Industry certifications such as CISSP, SABSA, or equivalent (desirable). Current Government Security Clearance (SC / DV) or eligibility ...

Position: Zero Trust - Delivery Lead Location: Reading 2 days p / week; remote 3 days Type: Contract, 6 months, Inside IR35 Rate: £700 p / day Assignment Rate We are seeking a Zero Trust Delivery Lead to join a major cyber security transformation programme. You will lead … enterprise Zero Trust strategy while driving implementation across a complex, global, federated organisation. For clarity, this role requires both a strong Zero Trust / network security subject matter expert and a proven delivery lead capability. Experience in only one of these areas will not be sufficient for the scale ...

Designing security architectures across cloud, network, and enterprise systems Advising on secure design, risk, and compliance across complex IT estates Applying frameworks like ISO 27001, NIST, GDPR, PCI-DSS in real environments Running threat modelling and identifying architectural vulnerabilities Working closely with architects, engineers, and stakeholders … Actually Hiring For Solid grounding in cybersecurity principles and risk management Experience contributing to secure architecture or solution design Exposure to areas like IAM / IDAM, PAM, SSO, network security, encryption Understanding of infrastructure, cloud, or enterprise systems Ability to operate in client-facing environments and communicate clearly Nice ...

Experience working within complex, matrixed organisations Desirable Industry certifications such as CISSP, CCSP, CISM or similar Knowledge of compliance frameworks (e.g. GDPR, ISO27001, NIST) What's on Offer Opportunity to work on large, complex Microsoft Security programmes Access to extensive training and certification support Strong career development framework and leadership ...

days per week on-site presence required - various locations) Contract Type: Permanent & Full-time Salary: Competitive + Benefits About the Role The Cyber / Security Risk Assurance Manager plays a critical role in strengthening the organisation's security posture through strategic risk-based assurance activities. This role supports informed … Hybrid working - 3 days on site Career Development: Continuous learning and professional growth. Benefits Package: Includes Private Health Care, Cash Back Plan, Buy / Sell Holiday Options, Life Assurance, and more. Interested? Submit your application to learn more about this exciting opportunity. Reasonable Adjustments: Respect and equality are core ...

critical network infrastructure. Key Responsibilities Lead vulnerability management activities across enterprise network infrastructure. Configure, manage, and optimise vulnerability scanning using Tenable Security Center and / or Tenable Vulnerability Management. Develop and maintain scan policies, credential configurations, and assessment schedules. Perform validation and analysis of vulnerability findings, identifying false positives … Required Experience 6+ years of dedicated experience in Vulnerability Management, Security Operations, or Cyber Security. Extensive hands-on experience with Tenable Security Center and / or Tenable Vulnerability Management. Proven expertise configuring vulnerability scans, policies, and assessment frameworks Strong experience remediating vulnerabilities across network technologies including: Routers Switches Firewalls ...

Strong understanding of network and end point security, incident response, threat intelligence, and vulnerability management. Experienced with security tools such as SIEM platforms, EDR / … solutions, firewalls, IDS / IPS. Strong knowledge of Microsoft Azure cloud security technologies and concepts. Familiar with cybersecurity frameworks such as NIST CSF, ISO27001, CIS Controls. Strong analytical, and problem-solving skills. Good understanding of best practice security operations and architectures. Knowledgeable on security and data protection legislations ...

Senior Cyber Security Analyst, Professional Services, CompTIA, SIEM, ISO27001, Part Remote Senior Cyber Security Analyst required to work for a Law Firm based in the City of London. It will be 3 days a week in the office and 2 from home. We need an experienced Senior Cyber Security Analyst … solutions, firewalls, IDS / IPS Strong knowledge of Microsoft Azure cloud security technologies and concepts Familiar with cybersecurity frameworks such as NIST CSF, ISO27001, CIS Controls This is a great opportunity and salary is dependent upon experience. Apply now for more details ...

services customers, and credibility with their risk and procurement teams. Current, working knowledge of AI governance frameworks, for example the EU AI Act, ISO 42001 and the NIST AI RMF. Strong data privacy expertise, including UK and EU GDPR. A track record of running ISO 27001 ...