5 of 5 ISO/IEC 27005 Jobs in London

required Contract Type: Permanent & Full-time Salary: Competitive + Benefits About the Role As a Senior ISO27001 Consultant, you will lead client engagements to design, implement, and maintain ISO frameworks, supporting clients through gap analysis, remediation, certification readiness, and continual improvement. You'll collaborate with senior stakeholders across industries to deliver strategic advisory and hands-on implementation of … in ISO27001 implementation and auditing Strong understanding of ISMS frameworks and private sector regulatory requirements Excellent communication and client-facing consultancy skills Relevant certifications such as ISO27001 Lead Auditor / Implementor, CISSP, CISM, CRISC, CISA Experience with additional standards (ISO / IEC27701, ISO / IEC29100, ISO / IEC42001, ISO / IEC22301) is a plus What's in it for You Flexible Working: Remote-first with travel as needed. Career Development: Continuous learning and professional growth. Benefits Package: Includes Private Health Care, Cash Back Plan, Buy / Sell Holiday Options, Life Assurance, and more. Interested? Submit your application to learn more about this exciting opportunity. Reasonable More ❯

tools for access governance, identity lifecycle, and privileged access management in alignment with defence-grade standards Security Assurance & Compliance Ensure commission controls comply with MOD policies (e.g. JSP 440 / JSP 604) and security frameworks such as NIST, ISO 27005, STIGs, and UK Functional Standard 007 Vulnerability Assessment & Access Review Support regular access reviews, entitlement … DV Clearance : Must hold active Developed Vetting (DV) clearance (or immediate transfer eligibility) Access Control Expertise : Deep experience in identity & access management, particularly designing and enforcing commission controls, RBAC / ABAC models, access provisioning, and entitlement workflows. Tools & Technologies : Hands-on with identity platforms (e.g. Active Directory, Azure AD, Okta), PAM / IGA systems, SSO / SAML … / OAuth, and access governance tools. Security Framework Knowledge : Understanding of defence and public-sector security frameworks (JSP 440 / 604, STIGs, ISO 27001, Government Functional Standard 007) Incident & Risk Handling : Proven ability to conduct security incident investigations relevant to unauthorized access and remediate gaps. Communication Skills : Strong ability to engage with both technical teams and More ❯

for access governance, identity life cycle, and privileged access management in alignment with defence-grade standards Security Assurance & Compliance Ensure commission controls comply with MOD policies (eg JSP 440 / JSP 604) and security frameworks such as NIST, ISO 27005, STIGs, and UK Functional Standard 007 Vulnerability Assessment & Access Review Support regular access reviews, entitlement … DV Clearance : Must hold active Developed Vetting (DV) clearance (or immediate transfer eligibility) Access Control Expertise : Deep experience in identity & access management, particularly designing and enforcing commission controls, RBAC / ABAC models, access provisioning, and entitlement workflows. Tools & Technologies : Hands-on with identity platforms (eg Active Directory, Azure AD, Okta), PAM / IGA systems, SSO / SAML … / OAuth, and access governance tools. Security Framework Knowledge : Understanding of defence and public-sector security frameworks (JSP 440 / 604, STIGs, ISO 27001, Government Functional Standard 007) Incident & Risk Handling : Proven ability to conduct security incident investigations relevant to unauthorized access and remediate gaps. Communication Skills : Strong ability to engage with both technical teams and More ❯

Here's how you will contribute Governance, Risk & Compliance (GRC) Leadership Lead and manage the GRC team, aligning cyber and business goals while ensuring compliance with NIS-R, ISO27001 / 2, and NIST-2. Oversee delivery plans, resource allocation, and stakeholder engagement for GRC initiatives. Training & Awareness Develop and maintain SGN's Information Security training and awareness materials. Integrate … SGN's Information Security Management System (ISMS) and policy exceptions. Compliance & Assurance Monitor and report on compliance across SGN and third-party partners. Lead assurance reviews and support internal / external audits for ISO27001, NIST, and NIS. Own NIS submissions to OFGEM and support regulatory consultations and audits. Risk Management Oversee risk assessments and reporting across Cyber, OT, and … Regulations and the NCSC Cyber Assessment Framework. Good understanding and practical experience of Cyber Security Frameworks and standards such as NCSC security principles, NIST Framework, ISO 27001, ISO27005, IEC62443 etc. Excellent command of written English. Strong interpersonal and relationship building skills. The role will require Security Clearance. Not sure you meet every requirement? Research shows some people - particularly More ❯

clear career growth pathways. Act as a senior subject matter expert and escalation point within the Cyber GRC function Key Skills & Experience Proven experience in cyber risk management and / or third-party risk management, ideally within financial services, technology, or a regulated industry. Strong understanding of risk management frameworks (e.g., ISO 31000, NIST CSF, FAIR, ISO 27005). Experience in third-party / vendor risk management practices, frameworks, and tools. Excellent leadership, team management, and stakeholder engagement skills. Strong analytical, problem-solving, and decision-making abilities. Ability to produce clear, concise, and executive-ready risk reporting. Professional certifications desirable (e.g., CRISC, CISM, CISSP, CISA). Who we are At Pearson, our More ❯