1 to 25 of 73 ISO/IEC 27001 Jobs in the City of London

logical and physical topology). Hybrid Connectivity Design Principles and Standards (DNS-based policy, Zero Trust segmentation, firewalling). Detailed Bill of Materials (vendor / platform options, sizing, licence models, costs to Class 4 estimate). Delivery Project Plan (work breakdown structure, stage gates, dependencies, critical path). Security … Digital Distribution, Connectivity, Architecture, InfoSec, Service Assurance, Commercial) to define cross-connects, circuits, and governance alignment. Assessment of hyperscaler scope (AWS in baseline; Azure / GCP to be evaluated) and interconnection locations (carrier-neutral DCs / IX presence). Deliverables or KPIs (e.g. uptime %, response times, resolution targets ...

Threat Detection, Secure Remote Access, and Adaptive Security Policies—balancing exceptional user experience with enterprise-grade security. We operate under an ISO / IEC 27001-certified ISMS and an ITIL-aligned service management framework, ensuring integrity, resilience, and operational excellence. Joining Zero Plus … issues with cloud systems and resources. Monitor and optimise performance across hybrid, cross-tenancy, and multi-cloud environments. Implement observability tooling. Ensure compliance with ISO27001 standards, Zero Trust principles, and Well-Architected Frameworks. Maintain accurate documentation and mentor junior engineers. This role gives you the opportunity to deliver secure, modern ...

enterprise platforms Excellent communication and stakeholder engagement skills Desirable Attributes: Certifications such as CISM, CISSP, or ISO 27001 Lead Implementer / Auditor Experience working with MDR / XDR partners and tools like Trustwave, Mimecast, or FortiGate A background in mentoring and promoting a security … been connecting legal talent with many of the leading law firms in London and internationally. Follow our LinkedIn page for the latest vacancies. https: / / uk.linkedin.com / company / ryder-reid-legal ...

ROLE OVERVIEW / / We are seeking a Head of Data to develop and lead our firm’s data strategy and to drive the strategic use of data across the business. Reporting to the Chief Information Officer (CIO), this role will be instrumental in leveraging data insights … opportunity for an experienced data leader to shape and mature both how we capture data, its quality and how we use it. KEY RESPONSIBILITIES / / The key responsibilities of this role are set out below and there may be others which are not listed. ...

security questions in “request for proposals” (RFP’s) or customer assessments (Due Diligence Questionnaires). Acts as first point of escalation for security / compliance questions for current and prospective customers. Review third party vendors for security and compliance controls; assesses risk based on a given risk assessment framework … Third Party Risk Management / Vendor Assessment). Assists and / or takes the lead in managing / overseeing annual SOC2 & ISO27001 audits. Contributes in annual InfoSec Policies review / edits / updates and provides considered input. Review proposed client engagement terms and conditions ...

ROLE OVERVIEW / / Reporting to the Information Security Manager, the Information Security Assurance Specialist will play a pivotal role in strengthening the firm’s information security posture. It will identify where security assurance testing of the firm’s systems and processes is required, commission the required tests … communicate information security risks to a range of stakeholders. A strong background in information security within professional or financial services is essential. KEY RESPONSIBILITIES / / The key responsibilities of this role are set out below and there may be others which are not listed. ...

Hybrid Connectivity Design Principles and Standards, including DNS-based policy, Zero Trust segmentation, and firewalling. Provide a Detailed Bill of Materials, covering vendor / platform options, sizing, licence models, and costs to Class 4 estimate. Develop a comprehensive Delivery Project Plan, detailing work breakdown structure, stage gates, dependencies … plan. Outline a Migration Strategy to guide phasing, cutover options, and rollback plans for later phases. Required Skills & Qualifications: Extensive experience in enterprise LAN / WAN / SD-WAN architecture and design. Proficiency in routing & switching (L2 / L3), and Wi-Fi controllers / enterprise deployments. ...

engagement aligned with CREST and OWASP standards. Conduct API penetration testing (REST, GraphQL, SOAP) focusing on authentication, authorization, and business logic flaws. Perform UI / Web application penetration testing for vulnerabilities such as XSS, CSRF, SQL Injection, and session management issues. Identify and document security issues with clear reproduction … practices and contribute to continuous improvement of testing methodologies. Maintain strong documentation and communication throughout the engagement lifecycle. Required Skills & Certifications: CREST certification (CRT / CPT / CPSA or equivalent). Penetration Testing Expertise – Strong hands-on experience in API and UI / Web application penetration testing. ...

engagement aligned with CREST and OWASP standards. Conduct API penetration testing (REST, GraphQL, SOAP) focusing on authentication, authorization, and business logic flaws. Perform UI / Web application penetration testing for vulnerabilities such as XSS, CSRF, SQL Injection, and session management issues. Identify and document security issues with clear reproduction … practices and contribute to continuous improvement of testing methodologies. Maintain strong documentation and communication throughout the engagement lifecycle. · Required Skills & Certifications: CREST certification (CRT / CPT / CPSA or equivalent) is a must. Penetration Testing Expertise – Strong hands-on experience in API and UI / Web application ...

major carrier-dense, globally connected data centre campus. The site supports mission-critical colocation services, high-density deployments, extensive interconnection ecosystems, and 24 / 7 operational demands. This role oversees facilities operations, engineering / M&E teams, and incident management processes while ensuring excellence in service delivery … Energy Management Engineering Practices & Technical Experience Candidates must demonstrate strong engineering competence across the following data centre disciplines: Electrical Systems HV / LV distribution systems, transformers, switchgear, busbars and panel boards UPS systems (static & rotary), battery technologies (VRLA, Lithium-ion) Generator systems, fuel delivery, and synchronisation controls Electrical Protection ...

Senior Control Advisor / GRC Advisor – Aberdeen or London We’re looking for a proactive and detail-oriented Senior Control Advisor to support the Governance, Risk & Compliance (GRC) function. In this role, you’ll help ensure regulatory compliance and effective risk management by monitoring controls, conducting audits, and collaborating … technical and nontechnical audiences. Substantial relevant experience in control management for governance, compliance, IT audits, IS assurance and risk management programmes. CISA, CISM, ISO27001 or equivalent preferred Relevant IT work experience Understanding of regulatory requirements, including cross-industry regulations (e.g., GDPR, Data Protection Act, UK Corporate Reform) and industry-specific ...

compliance frameworks. Qualifications Proven experience in software security, systems management, and regulatory compliance within financial services. Strong knowledge of FCA requirements, cybersecurity frameworks (ISO 27001, NIST), and secure development practices. Expertise in identity management, application hardening, and vulnerability remediation. Excellent documentation and audit skills. Relevant certifications … CISSP, CISM, ISO 27001 Lead Implementer, etc.) preferred. Required Skills Strong knowledge of FCA requirements. Expertise in cybersecurity frameworks. Excellent documentation skills. Preferred Skills Relevant certifications (CISSP, CISM, ISO 27001 Lead Implementer, etc.) preferred. Pay range and compensation package Working Days: Monday ...

Title: Java Architect Location: London, UK (Hybrid) Industry: Banking / Financial Services Job Summary We are seeking a highly experienced Java & AWS Cloud Architect to lead the design and delivery of large-scale, secure, and resilient microservices-based solutions within the banking domain. The ideal candidate will bring deep … including scalability, availability, performance, reliability, DR, and observability. Cloud & Platform Engineering Design secure, scalable, and cost-optimized AWS solutions using services such as EKS / ECS, Lambda, API Gateway, ALB / NLB, RDS / Aurora, DynamoDB, S3, ElastiCache, MSK / Kinesis, CloudWatch, IAM, and KMS. Establish ...

Infrastructure Operations Manager. The post-holder will assume full accountability for the stability, availability, and optimisation of the Council’s Hybrid Cloud Infrastructure (Azure / Windows Server), WAN (Fortigate / Cisco), and Service Desk functions. This role will be responsible for providing expert operational leadership during a critical … interconnects, and switching fabric to support a flexible, hybrid workforce Manage the lifecycle of the Microsoft stack, including Windows Server (2012-2022), Hyper-V / VMware clusters, and the M365 collaboration suite (Teams, Exchange, SharePoint). Ensure rigorous patch management and version control Validation of backup and recovery capabilities ...

Title: Cyber Security Consultant (Healthcare – DSPT / CAF Specialist) Role Summary We are looking for a highly skilled Cyber Security Consultant with proven healthcare sector experience and deep expertise in the DSPT and Cyber Assessment Framework (CAF) . The successful candidate must have hands-on experience writing and implementing … policies aligned to DSPT / CAF . Experience with EDRMS solutions is strongly desirable. Key Responsibilities Lead cyber security delivery for healthcare clients, ensuring full alignment with DSPT and CAF requirements. Produce high-quality policies, procedures, and governance documentation mapped directly to DSPT / CAF controls. Conduct security ...

Architect CyberArk PAM Self-Hosted components —Vault, PVWA, PSM, CPM, PSMP, PTA, DR—ensuring resilience, scalability, operational segregation and regulatory compliance. Design CyberArk Conjur / Secrets Manager Enterprise & Credential Provider for secure management of application, machine and DevOps secrets, integrating with: CI / CD pipelines Containers and Kubernetes … / OpenShift Multi-cloud platforms Collaborate with security, DevOps and infrastructure teams to integrate CyberArk with AD / LDAP, SAML / OIDC identity providers, SIEM (e.g. Splunk), ITSM, and MFA solutions . Lead installation, configuration, testing and handover of CyberArk secrets-management solutions into Run & Maintain teams. ...

ISO 27001 . They will bring proven experience in strategic planning, risk-based information assurance, business impact analysis, and threat / vulnerability management , as well as deep expertise in compliance, policy design, and information security frameworks including ISO 27001, NIST, COBIT ...

cyber, IT, cloud, and third parties Assure controls aligned to ISO 27001, NIST, SOC2 Own audit readiness and support internal / external audits Maintain security risk register and track remediation actions Provide assurance over IAM / PAM, vulnerability management, data protection Produce clear executive … level security reporting Work closely with Cyber, Risk, IT, and Compliance teams Key Skills & Experience Strong background in Information Security Assurance / GRC Experience in regulated environments Knowledge of security frameworks and controls Stakeholder management at senior level Familiarity with security tooling and assurance processes ...

Material Security, including threat mitigation and authentication protocols Manage endpoint security systems like CrowdStrike Falcon Align technical controls with standards such as ISO 27001, PCI-DSS and SOC2, contributing to audits and compliance efforts Investigate security incidents, supporting forensic analysis and incident reporting Monitor emerging security … recommend improvements, and implement innovative solutions to stay ahead of evolving threats Required Skills: Strong working knowledge of industry standards such as NIST, ISO 27001, and PCI DSS Proven experience managing vulnerability scans, cloud security, and endpoint security tools Familiarity with email security protocols, threat management ...

regulated environments; familiarity with AI and data frameworks (DAMA-DMBOK, NIST AI RMF, ISO 23894, ISO 27001, GDPR / DPA 2018); hands-on with platforms such as Microsoft Purview, Azure ML, Databricks, Power BI, Collibra, or Alation; exposure to MLOps practices. ...

Data Engineer – AI & Agentic Systems London (Hybrid) - one day p / week in office £70,000-80,000 + bonus Are you passionate about data engineering, AI innovation, and building systems that power real-world intelligence? We’re an established political intelligence leader transforming into an AI-driven, technology … semantic and vector-based data operations (e.g. Pinecone, PostgreSQL). Implement monitoring, logging, and compliance measures aligned with ISO 27001 / SOC2 standards. Continuously evaluate new tools and frameworks in the data and AI ecosystem . What You Bring 4–7 years’ experience in Data ...

Microsoft and Google ecosystems, including Azure, Office 365, and Google Workspace. Manage Identity Providers (IdPs) and Single Sign-On (SSO) solutions. Administer Endpoint Management / MDMs like Kandji / Iru, Intune (or equivalent) for device management and compliance. Implement data backup and disaster recovery solutions as per client … engineering and consulting experience. Proven ability to implement complex IT environments and projects. Cross-platform expertise, including proficiency in Microsoft Technologies, Google Workspace / Google Cloud, AWS, Identity Providers (IdPs), Endpoint Management / MDMs, Network Management, Cloud Servers and Solutions, Cybersecurity, and Data Backup / Disaster Recovery ...

industry-leading specialist in SAP consulting services, SAP Gold Partner and an SAP Quality Awards Gold Winner, delivers solutions across ECC, S / 4 Hana Private and Public Cloud, Rise and Grow, solving business challenges and understanding SAP to an expert level – all reflected by our ISO … governance, design assurance, and risk mitigation throughout the delivery lifecycle. Maintain up-to-date knowledge of SAP technologies, cloud platforms (e.g., SAP BTP, S / 4HANA), industry trends, and best practices. Willingness to travel to client sites when required. Adhere to company practices with regards to ISO ...

solution deployment, testing, and lifecycle management. Governance & Compliance Ensure all IT solutions comply with internal governance frameworks, cybersecurity protocols, and international standards (e.g., ISO 55000, ISO 27001, RAMS). Maintain accurate solution documentation, architecture diagrams, and operational procedures. Innovation & Continuous Improvement Identify emerging technologies … Experience: Minimum 8–12 years of experience in IT solutions or digital transformation within asset-intensive or transportation industries . Proven experience with EAM / CMMS platforms (e.g., IBM Maximo, Infor EAM, SAP PM, or similar). Strong background in asset maintenance, infrastructure monitoring, and system integration . Prior ...

cross-functional teams and stakeholders to define requirements and deliver integrated, secure solutions. Act as the primary technical contact for telecom operators and internal / external stakeholders, ensuring effective communication and solution integration. Ensure compliance with industry standards, regulatory requirements, and legal frameworks such as IPA 2016 and GDPR … interface specifications. Proven ability to design and integrate IT systems such as CRM, middleware, and data platforms with telecom technologies (OSS, BSS, IMS, NAT / CGNAT, IPv4 / IPv6). Understanding of Big Data and data governance. Strong knowledge of cloud platforms including AWS, Azure ...