1 to 25 of 40 ISO/IEC 27001 Jobs in the City of London

logical and physical topology). Hybrid Connectivity Design Principles and Standards (DNS-based policy, Zero Trust segmentation, firewalling). Detailed Bill of Materials (vendor / platform options, sizing, licence models, costs to Class 4 estimate). Delivery Project Plan (work breakdown structure, stage gates, dependencies, critical path). Security … Digital Distribution, Connectivity, Architecture, InfoSec, Service Assurance, Commercial) to define cross-connects, circuits, and governance alignment. Assessment of hyperscaler scope (AWS in baseline; Azure / GCP to be evaluated) and interconnection locations (carrier-neutral DCs / IX presence). Deliverables or KPIs (e.g. uptime %, response times, resolution targets ...

Information Technology and Security function, responsible for coordinating and managing external and internal security audits, client assessments and maintaining the firm’s ISO 27001 Information Security Management System (ISMS). The position offers significant exposure across international offices and requires collaboration with senior stakeholders, clients … security posture to clients and partners Occasional international travel may be required Candidate Requirements ISO 27001 Lead Auditor certification and / or extensive experience with ISO 27001 standards 5+ years’ experience in IT or Security audits, assessments or compliance management Strong ...

more major modules of our platform (e.g., discovery & mapping, risk scoring & analytics, automated response). You will work closely with the CTO / founder, engineering, data / AI teams, UX / design, marketing, and customer-success to define product strategy, prioritise features, and deliver value to customers … business. You will play a key role in shaping the product direction, defining metrics, understanding market / competitive dynamics, and ensuring that we build a product that addresses real pain points for our users (e.g., cybersecurity / risk teams, GRC teams, supply chain teams). Key Responsibilities: Define ...

mainly focusses on information security, cybersecurity, and data security from a Greenfield perspective. We are on a journey to secure Cyber Essentials plus and ISO27001 certification. You MUST have experience working with banking / financial services regulations, FCA, PRA etc. Liaison with the Head Office, Security Operation Centre … audits. You will be part of the IT committee and work closely with the risk and compliance team. Ideally, having a background in IT / Network security, progressing into information security and cybersecurity. **Key Responsibilities:** - Develop, draft, implement, and maintain information security policies, procedures, and guidelines. - Conduct regular security ...

with real ownership — ideal for someone ready to step up and shape a growing security function. The Role Build and mature security frameworks (ISO 27001, CE+, NIST … Lead gap analysis and audit readiness Own the security risk register and drive mitigation Develop policies, standards, and procedures Support ISO 22301 / business continuity Coordinate internal / external audits and evidence gathering Manage vendor risk and customer due-diligence requests Provide independent governance oversight (separate ...

compliance specialists. * Support internal capability development, including the creation of OT security frameworks and training materials. Required Skills: * Approximately 5 years' experience in OT / ICS cyber security or C&I system engineering, including security risk management. * Familiarity with control system architectures (PLC, DCS, SCADA) and industrial network protocols. … assessments, system security evaluations, or vulnerability analysis. * Working knowledge of applicable standards (IEC 62443, NCSC CAF, ISO 27001 / 27019, NIST 800-82). * Strong writing and communication skills able to translate technical findings into clear, actionable recommendations and specifications. * Eligible ...

CISO, PUBLIC SECTOR, ISO 27001, CHIEF INFORMATION SECURITY OFFICER My client, a leader in the public sector, are seeking a highly experienced Chief Information Security Officer (CISO) to lead and oversee the security of information systems and data across the Corporation and its various institutions. … assessments and vulnerability analyses to identify potential threats and weaknesses. Ensure compliance with relevant data protection laws, regulations, and standards, including GDPR and ISO 27001. Qualifications and Experience A minimum of 10 years of experience in information security, with at least 5 years in a leadership role. Proven ...

including those in FTSE 350, will allow you to gain experience across a range of sectors including: Financial Services, Banking, Insurance and Investment Corporates / Private Sector / Industry & Services Central and Local Government Retail and Consumer products organisations Job Purpose The role is to support the team … fieldwork and preparation of deliverables including actively contributing to final recommendations. Your responsibilities include: Actively involve in the delivery of our Internal Audit / Consulting engagements. Act a subject matter expert in various security and risk management domains (e.g., IT risk management, cyber risk, security target operating model, governance ...

audit findings in clear, well-structured reports, highlighting control deficiencies, root causes, risk implications, and actionable recommendations for management and governance stakeholders. Required Skills / Experience: - Strong understanding of ISA 315 / 330 / 402 - Experience delivering IT Assurance, SOC 1 & 2, and IT Internal Audit engagements. … across varied system environments. - Sound knowledge of ERP systems (SAP, Oracle, Dynamics, Sage, Xero) and cloud platforms (AWS, Azure, GCP). - Familiar with ISO 27001, COBIT, and NIST frameworks. IT Audit Assistant Manager In accordance with the Employment Agencies and Employment Businesses Regulations 2003, this position ...

Title: SOC Engineer Location: On-site, London moving to hybrid 3 days on-site after 2-week induction Start Date: Immediate Contract length: 31 / 03 / 26 further extensions expected Clearance Required: BPSS (must be obtained prior to onboarding) Day rate: £400 - £500 Candidates must hold … work effectively within a collaborative SOC team Desirable Skills Experience with incident documentation and reporting Familiarity with security frameworks (MITRE ATT&CK, NIST, ISO 27001) Ability to adapt quickly to new tools, threats, and operational priorities Any relevant certifications (e.g., Security+, CySA+, Microsoft SC-series, GIAC ...

Security Project Manager £600 / day Leeds (3 days onsite per week) Outside IR35 About the Role As the Security Project Manager, you will play a crucial part in the successful delivery of the company's Security Improvement Programme. Your primary responsibility will be to lead the planning, execution ...

Security Engineer Assurance / Report Writing Were looking for a Security Assurance Engineer with the ability to see the whole security picturetechnology, people, and process. Youll join a team of experienced cyber specialists, but your role is to step back from the individual technical outputs and assess what they … must have been active within the last 12 months. Experience producing structured security assurance documentation, security cases, or security arguments (e.g., using GSN, safety / security case approaches, or similar). The ability to interpret diverse security inputspen test results, architectural designs, risk assessments, compliance outputsand turn them into ...

fast-growingspecialistsoftwarecompanyatapivotalmomentinitsjourney. WhyThisRoleisDifferent Since2013,TrinitatumhavebuiltareputationservingglobalenergytradingandfinancialservicesorganisationswiththeirTriangleTestAutomationplatform - reducingtestingeffortbyover70%andacceleratingreleasesfromweekstodays.Theirrecentstrategicpartnershipsareopeningglobalmarkets,andtheyneedatechnologyleaderwhocanscalewiththem. You'llworkdirectlywiththeirCEOChrisJonesandtheseniorleadershipteamthroughthreedistinctphases: Phase1:TheFixer(Months1-6) Rapidlyassess,identifygaps,andimplementcriticalfoundationsfromsecurityposturetooperationalresilience. Phase2:TheBuilder(Months6-18) Establishscalablestructuresandleadtheproductroadmap.Drivebestpracticedevelopmentstandards,buildsecuritycredentials(SOC2,ISO27001),andarchitectforscaleacrosstheirAzure / .NETstack. Phase3:TheScaler(18+months) TransitionintotheCTOrole.Leadtechnicalvision,scaleengineeringcapabilityinternationally,anddrivemarketdifferentiationthroughtechnicalexcellence. YourFirst12Months:TheMission-CriticalChallenges Workingshoulder-to-shoulderwithChris,you'lltacklefourkeyareas: ProductSecurity&Compliance AuditTriangle,implementend-to-endsecurityimprovements,andestablishpathwaystoSOC2complianceforourhighlyregulatedclients … ProductRoadmap&Strategy Createaconversationalroadmapthatbalancesnewfeatureswithtechnicaldebtwhilstguidingcustomerenhancementpriorities BestPracticeDevelopmentStandards Implementautomatedtestingframeworks,introduceBDDpractices,andbuildacultureofcontinuousimprovement OperationalResilience Eliminatesinglepointsoffailure,createredundancy,andestablishrobustbusinesscontinuitycapabilities WhatMakesYouExceptional Youbring: Deep.Netmasteryyou'vebuiltproductionsystemsatscale StrongAzurearchitectureexperiencewithcloud-nativedesignpatterns Demonstrablesecurityframeworkexperience(SOC2,ISO27001,ITIL) Hands-onautomatedtestingframeworksexpertise PracticalBDDfamiliarity Moreimportantly,youare: Astrategicpartnerwhocanbalancetechnicalexcellencewithcommercialreality Hands-onwhenneededcomfortablecoding,reviewingarchitecture,ordebuggingcriticalissues Ateambuilderreadytorecruit,mentor,anddeveloptechnicaltalent Customer-awareyouunderstandthatTriangleservesmission-criticaltradingsystemswherereliabilitymatters Growth-orientatedexcitedbythejourneyfromspecialistconsultancytoglobalsoftwareplatform BonusPointsFor: ETRM / CTRMplatformexperience,financialservicesorenergysectorbackground,experiencewithEndur / Findur / ...

Netskope , F5 , Akamai , and CyberArk Familiarity with security frameworks (ISO 27001, NIST, GDPR) and concepts like Zero Trust, SASE, SIEM / SOAR Familiarity with leading vendors and solutions across security, networking, and compliance frameworks Ability to engage confidently with C-level stakeholders and translate technical … Palo Alto Networks, Check Point, Cisco, Fortinet, CrowdStrike, Netskope, F5, Akamai, CyberArk, and Commvault . We deliver consultancy-led solutions, managed services, and 24 / 7 SOC capabilities to help organisations reduce risk and stay resilient. You’ll join a team that thrives on collaboration, innovation, and growth, with ...

Experience and Skills Required At least seven years’ experience in PAM with five years hands-on experience in CyberArk Identity Security Platform (cloud) and / or Privileged Access Security (on-premise) Deep understanding of CyberArk components including Vault, CPM, PVWA, PSM, PTA, AIM and cloud equivalents Proven experience managing … CyberArk certification (Defender, Sentry, Guardian) preferred Desirable Experience working with CyberArk Professional Services or certified partners Knowledge of financial regulatory frameworks such as ISO 27001, NIST, or GDPR Scripting experience using PowerShell or Python for automation and integration For a full consultation, send your ...

conducting security assessments and producing assurance reports. Ability to engage and influence stakeholders at all levels. Familiarity with security frameworks and standards (e.g., ISO 27001, NIST, CIS Controls). Excellent communication, planning, and organisational skills. Experience managing teams and developing talent. Ability to interpret complex technical … Hybrid working - 3 days on site Career Development: Continuous learning and professional growth. Benefits Package: Includes Private Health Care, Cash Back Plan, Buy / Sell Holiday Options, Life Assurance, and more. Interested? Submit your application to learn more about this exciting opportunity. Reasonable Adjustments: Respect and equality are core ...

will act as the organisation's subject matter expert on information security compliance and data protection, ensuring adherence to recognised standards such as ISO 27001, Cyber Essentials Plus, and NIS2, alongside compliance with the UK General Data Protection Regulation (UK GDPR) and other relevant legislation. … have certification in CIPP / E, CIPM, CIPT, CISSP, or equivalent privacy or cybersecurity qualification - A strong knowledge of GDPR, UKGDPR ePrivacy Directive, ISO27001, national data protection laws and FOIA is a must - The ability to handle sensitive and confidential information with integrity is necessary and a priority ...

will act as the organisation’s subject matter expert on information security compliance and data protection, ensuring adherence to recognised standards such as ISO 27001, Cyber Essentials Plus, and NIS2, alongside compliance with the UK General Data Protection Regulation (UK GDPR) and other relevant legislation. … have certification in CIPP / E, CIPM, CIPT, CISSP, or equivalent privacy or cybersecurity qualification - A strong knowledge of GDPR, UKGDPR ePrivacy Directive, ISO27001, national data protection laws and FOIA is a must - The ability to handle sensitive and confidential information with integrity is necessary and a priority ...

Defender for Cloud, Defender for Endpoint and EASM Vulnerability remediation and Secure Score improvement Purview (DLP, sensitivity labels, insider risk) Compliance uplift for ISO 27001, SOC 2, GDPR and NIS2 Configuration hardening, patching and policy deployment Entra ID, Conditional Access, PIM and cloud identity controls PowerShell ...

Security Architect Rate: £700 / day Contract: Inside IR35 Location: Remote, UK-based only Sector: NHS or Central Government experience is ESSENTIAL Overview We are supporting a public sector organisation in the NHS or central government space that is looking for an experienced Security Architect to support the design … infrastructure , including security considerations around data pipelines, model hosting, and AI-enabled services Nice to Have Experience supporting data platforms, analytics, or AI / ML initiatives Exposure to large-scale cloud migrations or digital transformation programmes Strong stakeholder management and communication skills Apply now or email for more information ...

Role: Security & Information Risk Advisor (SIRA) Location: London (hybrid) Rate: £500-550 p / d Duration: Initial 6 month work package Start: January 2026 Active SC clearance is required. We're looking for an experienced Security & Information Risk Advisor to support secure, high-impact programmes within a sensitive … supplier and third-party security controls What You'll Bring Experience in information security, risk management, or assurance Strong understanding of NCSC guidance, ISO 27001, and government security classifications Ability to communicate risk clearly to technical and non-technical audiences If you're ready to apply ...

Incident Response Identity, Access & Data Security Risk & Compliance Support Security Training and awareness Required Technical Experience: Proven experience in a hands-on IT security / cybersecurity role Logging and monitoring Security Tooling (vulnerability scanning (Tenable, Qualys, Rapid7) Endpoint or network security platforms IAM or access control systems Ability … analyse security findings and implement effective technical remediation Strong understanding of security controls, policies, and technical standards Desirable Experience working with ISO 27001, NIST, or similar frameworks Exposure to security architecture or secure system design ...

alignment with regulatory and business requirements Consultation & Productization Lead initiatives to develop and standardise consultation offerings based on frameworks such as Cyber Essentials, ISO 27001, and similar Translate customer needs and compliance obligations into actionable service packages and product features Collaborate with technical and commercial teams ...

Financial Management & HCM. Experience with Oracle Process Automation, OPA (Desirable) Understanding of UK Gov Cloud hosting, data sovereignty, and compliance standards (NCSC CAF, ISO 27001, Cyber Essentials Plus) (Desirable ...

line support experience to join their growing IT function. This is an excellent opportunity for a highly capable engineer with deep expertise in Intune / Endpoint Manager, alongside advanced Microsoft technology skills and a solid background in resolving complex technical issues. The successful candidate will play a key role … point for complex Incidents, Problems, and non-standard Requests. Provide advanced technical support across the Microsoft ecosystem: Active Directory, Azure, Microsoft 365, Exchange, Intune / Endpoint Manager. Design, develop, and maintain Power Apps solutions to automate workflows and integrate with Microsoft 365 and other data sources. Configure, manage ...