1 to 25 of 34 Information Security Jobs in the City of London

more sustainable than single-use packaging. To strengthen our IT department, we are currently looking for a Cybersecurity & Compliance Manager. This is a key role focused on ensuring the security and regulatory compliance of our systems and processes. The position offers flexibility and can be fulfilled either remotely (within the Greater London area) or in a hybrid setup from … Dudley. Position purpose The Cybersecurity & Compliance Manager will lead Tosca’s efforts to ensure adherence to NIST CFS 2.0, ISO 27001, and other standards. This role focuses on developing security protocols, maintaining documentation, conducting risk assessments, and ensuring regulatory compliance. Responsibilities include managing security infrastructure, incident response, and promoting cybersecurity awareness. The position requires collaboration with Global IT … knowledge of NIST and ISO standards, risk management expertise, and effective communication skills. This is a full-time role, with travel up to 30% of the time. Responsibilities Implement security protocols and manage information security programs Report performance, exceptions, and outages to all audiences transparently. Align disaster recovery with business continuity plans. Ensure compliance with ISO27001, NIST More ❯

more sustainable than single-use packaging. To strengthen our IT department, we are currently looking for a Cybersecurity & Compliance Manager. This is a key role focused on ensuring the security and regulatory compliance of our systems and processes. The position offers flexibility and can be fulfilled either remotely (within the Greater London area) or in a hybrid setup from … Dudley. Position purpose The Cybersecurity & Compliance Manager will lead Tosca’s efforts to ensure adherence to NIST CFS 2.0, ISO 27001, and other standards. This role focuses on developing security protocols, maintaining documentation, conducting risk assessments, and ensuring regulatory compliance. Responsibilities include managing security infrastructure, incident response, and promoting cybersecurity awareness. The position requires collaboration with Global IT … knowledge of NIST and ISO standards, risk management expertise, and effective communication skills. This is a full-time role, with travel up to 30% of the time. Responsibilities Implement security protocols and manage information security programs Report performance, exceptions, and outages to all audiences transparently. Align disaster recovery with business continuity plans. Ensure compliance with ISO27001, NIST More ❯

IT Security Manager | Zero Trust, Azure Security, ISO27001 | Global Payments Company £70–80k base + 10% bonus Hybrid in London Join a growing InfoSec team at a pivotal time for a global financial institution. This is an IT Security Manager role with governance oversight, guiding InfoSec operations, mentoring analysts, and translating security frameworks into practical, actionable … steps. You’ll influence policy, architecture, and data governance, all while supporting the secure rollout of new banking operations. What you’ll bring: 5+ years’ experience in InfoSec, IT Security, or operational security in a regulated environment Certifications: CISSP or SSCP (or equivalent) required Hands-on knowledge of ISO27001 and supporting an ISMS (audit experience useful but not … just theory Experience mentoring staff or junior analysts (no direct line management required) Adaptability to a medium-sized, SME environment What you’ll be doing: Security oversight: Guide InfoSec operations with practical, hands-on input on incidents and risk mitigation Data governance: Drive data protection, labelling, and retention projects using Microsoft Purview Third-party risk: Support supplier security More ❯

IT Security Manager | Zero Trust, Azure Security, ISO27001 | Global Payments Company £70–80k base + 10% bonus Hybrid in London Join a growing InfoSec team at a pivotal time for a global financial institution. This is an IT Security Manager role with governance oversight, guiding InfoSec operations, mentoring analysts, and translating security frameworks into practical, actionable … steps. You’ll influence policy, architecture, and data governance, all while supporting the secure rollout of new banking operations. What you’ll bring: 5+ years’ experience in InfoSec, IT Security, or operational security in a regulated environment Certifications: CISSP or SSCP (or equivalent) required Hands-on knowledge of ISO27001 and supporting an ISMS (audit experience useful but not … just theory Experience mentoring staff or junior analysts (no direct line management required) Adaptability to a medium-sized, SME environment What you’ll be doing: Security oversight: Guide InfoSec operations with practical, hands-on input on incidents and risk mitigation Data governance: Drive data protection, labelling, and retention projects using Microsoft Purview Third-party risk: Support supplier security More ❯

accelerate growth across all of it's operating brands by focusing on existing organic momentum and acquisitions into the market. They are looking for a Technical Head of Cyber Security to lead the existing team as they go through transformation. Responsibilities: Define and lead the cyber security strategy across IT Security, Cyber Security, and Information Security. Oversee security controls, risk management, and compliance across cloud and on-prem environments. Manage threat detection, monitoring, and incident response using Microsoft Defender, Sentinel, and Entra ID. Lead identity & access management (IAM) and ensure secure authentication processes. Support M&A security assessments and integrations, ensuring due diligence. Communicate cyber risk insights to senior leadership and drive … security culture. Skills & Qualifications Required: 5+ years in cyber security leadership with a strong technical security background. Expertise in Microsoft & Azure security environments (cloud, hybrid, on-prem). Hands-on experience with SIEM, EDR, and XDR solutions for security monitoring. Certifications preferred: CISSP, CISM, AZ-500, SC-200, SC-100. Strong knowledge of ISO More ❯

a culture of learning within the team, enhancing the professional capabilities of team members. Who We Look For Bachelor’s degree or higher, with 5+ years of experience in security assessment, IT audit, or consulting at a leading professional consulting firm or legal firm, in-house experience working in multinational company is a bonus Strong understanding of global compliance … marketing) and experience in compliance/product workflow design; experience in the internet/gaming industry is a plus. Expertise in global privacy regulations, including privacy principles, operational legal security frameworks, and compliance solutions. Proficient in IT audit, information security management, and IT/technology risk management, with the ability to resolve compliance risks effectively. Knowledge of … security control frameworks (e.g., ISO27001, ISO20000, ITIL, COBIT) and experience collaborating with information security teams to implement compliance requirements. Strong problem-solving skills, proactive work ethic, flexible thinking, and the ability to thrive under pressure. Able to use English and Chinese as working language to interact with stakeholders across the global Location: This role can be based More ❯

a culture of learning within the team, enhancing the professional capabilities of team members. Who We Look For Bachelor’s degree or higher, with 5+ years of experience in security assessment, IT audit, or consulting at a leading professional consulting firm or legal firm, in-house experience working in multinational company is a bonus Strong understanding of global compliance … marketing) and experience in compliance/product workflow design; experience in the internet/gaming industry is a plus. Expertise in global privacy regulations, including privacy principles, operational legal security frameworks, and compliance solutions. Proficient in IT audit, information security management, and IT/technology risk management, with the ability to resolve compliance risks effectively. Knowledge of … security control frameworks (e.g., ISO27001, ISO20000, ITIL, COBIT) and experience collaborating with information security teams to implement compliance requirements. Strong problem-solving skills, proactive work ethic, flexible thinking, and the ability to thrive under pressure. Able to use English and Chinese as working language to interact with stakeholders across the global Location: This role can be based More ❯

to support second-line permanent control checks. Coordinate IT control attestations across Group IT and with third-party service providers. Key Skills and Experience: 35+ years of experience in Information Security Governance, Risk, and Compliance (GRC), with a focus on IT risk and control management. Strong analytical skills with the ability to perform technical IT security and … operational risk assessments. High attention to detail, ensuring accuracy in documentation, assessments, and compliance activities. Strong understanding of information security risk management principles, frameworks (e.g., ISO 27001, NIST), and compliance practices. Exposure and understanding of IT infrastructure, business applications, and their associated risks and controls. Experience collaborating with internal and external audit teams, including supporting audit readiness and … evidence gathering. Proven ability to work effectively across multi-disciplinary, multi-cultural, and geographically dispersed teams. Excellent written and verbal communication skills, with the ability to convey complex information clearly to both technical and non-technical audiences. Strong interpersonal and presentation skills, with confidence engaging stakeholders at all levels. Industry-recognised technical certifications such as ITIL, CISSP, CRISC, or More ❯

Expertise in creation of solutions for risk and compliance advisory services (preferable candidates from Big4 organizations) • Capabilities of executing atleast 3-4 advisory/consulting engagements. • Technical Knowledge around information security, business continuity and technology risk assessments. ISO 27K, NIST, AI Governance, CIS etc. • Good compliance understanding of industry domains such as BFSI – (SOX, FFIEC, PCI-DSS, BASEL … MAS etc.), Healthcare & Life-sciences – (HIPAA, Hi-Trust, FDA CFR, GxP Compliance), Telecom, Retail, Data Privacy (GDPR, CCPA) Energy & Utilities (NERC, FERC) Information Security (ISO 27000, NIST, CIS) TPRM • Business Resiliency & Cyber Recovery, ZTA • GRC Project & Program Management • Excellent written and verbal communications skills • Should be able to travel 70%-80% on short as well as long term More ❯

Expertise in creation of solutions for risk and compliance advisory services (preferable candidates from Big4 organizations) • Capabilities of executing atleast 3-4 advisory/consulting engagements. • Technical Knowledge around information security, business continuity and technology risk assessments. ISO 27K, NIST, AI Governance, CIS etc. • Good compliance understanding of industry domains such as BFSI – (SOX, FFIEC, PCI-DSS, BASEL … MAS etc.), Healthcare & Life-sciences – (HIPAA, Hi-Trust, FDA CFR, GxP Compliance), Telecom, Retail, Data Privacy (GDPR, CCPA) Energy & Utilities (NERC, FERC) Information Security (ISO 27000, NIST, CIS) TPRM • Business Resiliency & Cyber Recovery, ZTA • GRC Project & Program Management • Excellent written and verbal communications skills • Should be able to travel 70%-80% on short as well as long term More ❯

internal controls are regularly reviewed, updated and accessible. Prepare and present relevant compliance materials, including legal registers and policies during audits, with coverage in all relevant areas such as information security, data privacy, environmental law, and health and safety Support post-audit activities, including the development and implementation of corrective action plans where findings are identified by internal … and implementation of compliance frameworks, policies, and legal risk controls across multiple jurisdictions. Familiarity with international compliance standards and regulations. Working knowledge of ISO standards such as ISO 27001 (information security), ISO 37301 (compliance management), or ISO 9001 (quality management), and their practical application within business operations. Understanding of internal control design, maintenance of compliance registers, and participation More ❯

all supporting facilities and online devices Propose implementation procedures to Management according to Head Office’s policies and IT Centre’s requirements Assess systems, IT rooms and IT devices security risk, proposing security risk control solutions and being responsible for execution. Responsible for the design and maintenance of contingency plans of the above systems, carrying out annual disaster … and products, carrying out technical solution design for the continuing development of IT Centre Mandarin Speaking IT Infrastructure Manager - The Skills You'll Need to Succeed: Degree educated in Information Technology, Computer Science, Software Engineering or other equivalent Certificate in SSCP, MCSA, RHCE, CCNP is preferred Experience in system administration (e.g. Windows Server, Linux) Experience in virtual technology products … e.g. VMware, Hyper-V) Experience in IT room and device administration Experience in project management Knowledge of principles of Information Technology Knowledge of database operations and management Knowledge of Information Security, Cyber Security and GDPR Good problem solving skills Team player Excellent English and Mandarin communication skills Please view all our Team China jobs at people More ❯

EC-Council is the world’s largest cyber security technical certification body. We operate in 145 countries globally and we are the owner and developer of various world-famous cyber security programs. We are proud to have trained and certified over 400,000 information security professionals globally that have influenced the cyber security mindset of … assigned territory/accounts. Identify and develop new business opportunities with enterprise customers across industries. Engage with CXOs, CISOs, CIOs, and IT decision-makers to understand business needs and security challenges. Position company’s cybersecurity offerings (SOC, IAM, DLP, EDR/XDR, Cloud Security, Managed Services, etc.) as enterprise solutions. Lead end-to-end enterprise sales cycle – prospecting … Bachelor’s degree in business, IT, or related field (MBA preferred). 6–10 years of enterprise sales experience, with at least 3–5 years in cybersecurity/IT security solutions. Proven track record of achieving or exceeding sales quotas. Strong knowledge of enterprise cybersecurity landscape, threats, and technologies. Ability to build relationships with senior stakeholders and close complex More ❯

EC-Council is the world’s largest cyber security technical certification body. We operate in 145 countries globally and we are the owner and developer of various world-famous cyber security programs. We are proud to have trained and certified over 400,000 information security professionals globally that have influenced the cyber security mindset of … assigned territory/accounts. Identify and develop new business opportunities with enterprise customers across industries. Engage with CXOs, CISOs, CIOs, and IT decision-makers to understand business needs and security challenges. Position company’s cybersecurity offerings (SOC, IAM, DLP, EDR/XDR, Cloud Security, Managed Services, etc.) as enterprise solutions. Lead end-to-end enterprise sales cycle – prospecting … Bachelor’s degree in business, IT, or related field (MBA preferred). 6–10 years of enterprise sales experience, with at least 3–5 years in cybersecurity/IT security solutions. Proven track record of achieving or exceeding sales quotas. Strong knowledge of enterprise cybersecurity landscape, threats, and technologies. Ability to build relationships with senior stakeholders and close complex More ❯

Information Governance Specialist – Global Law Firm 📍 London (Hybrid – 2 days WFH) 💼 Global Law Firm | Strategic Impact | Cross-Functional Exposure The Opportunity We’re partnering with a prestigious international law firm to appoint a Specialist in Information Governance (IG) to join their London team. Operating across jurisdictions, this firm is known for its commercial acumen, high-stakes advisory work … and deep client partnerships — and information governance sits at the heart of it all. You’ll play a pivotal role in shaping and executing IG strategy across the global firm, helping ensure compliance with privacy, confidentiality, and security-related regulations, client requirements, and evolving data governance standards. Why This Role? ✅ Global Scope – Be a key contributor to the … international IG programme, collaborating with senior stakeholders across legal risk, IT, information security and business services. ✅ High-Impact Work – Lead strategic initiatives including data remediation, migration, retention and governance transformation. ✅ Autonomy & Influence – Act as a subject matter expert, shape policies, and educate legal professionals on best practice. ✅ Cutting-Edge Tools – Work with platforms like iManage, LegalKEY, Microsoft More ❯

Information Governance Specialist – Global Law Firm 📍 London (Hybrid – 2 days WFH) 💼 Global Law Firm | Strategic Impact | Cross-Functional Exposure The Opportunity We’re partnering with a prestigious international law firm to appoint a Specialist in Information Governance (IG) to join their London team. Operating across jurisdictions, this firm is known for its commercial acumen, high-stakes advisory work … and deep client partnerships — and information governance sits at the heart of it all. You’ll play a pivotal role in shaping and executing IG strategy across the global firm, helping ensure compliance with privacy, confidentiality, and security-related regulations, client requirements, and evolving data governance standards. Why This Role? ✅ Global Scope – Be a key contributor to the … international IG programme, collaborating with senior stakeholders across legal risk, IT, information security and business services. ✅ High-Impact Work – Lead strategic initiatives including data remediation, migration, retention and governance transformation. ✅ Autonomy & Influence – Act as a subject matter expert, shape policies, and educate legal professionals on best practice. ✅ Cutting-Edge Tools – Work with platforms like iManage, LegalKEY, Microsoft More ❯

EC-Council is the world’s largest cyber security technical certification body. We operate in 145 countries globally and we are the owner and developer of various world-famous cyber security programs. We are proud to have trained and certified over 400,000 information security professionals globally that have influenced the cyber security mindset of … quota and closing six and seven-figure enterprise deals. Expertise in managing long, complex sales cycles with multiple stakeholders - directly and with partners. Experience engaging technical (CISO, SecOps, IT Security) and business (HR, L&D, Procurement) buyers. Strong negotiation, presentation, and consultative selling skills. Excellent written and spoken English. Ability to travel across the UK, EU and internationally as … Opportunity to represent a globally recognized cybersecurity brand at a transformational time. Professional development benefits, including EC-Council Learning and Certification access. Growth environment with career progression opportunities. Additional Information: We are an equal opportunity workplace and an affirmative action employer. We are always committed to equal employment opportunity regardless of race, colour, ancestry, religion, sex, national origin, sexual More ❯

EC-Council is the world’s largest cyber security technical certification body. We operate in 145 countries globally and we are the owner and developer of various world-famous cyber security programs. We are proud to have trained and certified over 400,000 information security professionals globally that have influenced the cyber security mindset of … quota and closing six and seven-figure enterprise deals. Expertise in managing long, complex sales cycles with multiple stakeholders - directly and with partners. Experience engaging technical (CISO, SecOps, IT Security) and business (HR, L&D, Procurement) buyers. Strong negotiation, presentation, and consultative selling skills. Excellent written and spoken English. Ability to travel across the UK, EU and internationally as … Opportunity to represent a globally recognized cybersecurity brand at a transformational time. Professional development benefits, including EC-Council Learning and Certification access. Growth environment with career progression opportunities. Additional Information: We are an equal opportunity workplace and an affirmative action employer. We are always committed to equal employment opportunity regardless of race, colour, ancestry, religion, sex, national origin, sexual More ❯

an exciting opportunity for a seasoned leader to shape and embed its cyber and operational resilience capability at enterprise scale. About the Role Reporting directly to the Group Chief Information Security Officer and acting as their deputy, you will provide vision and direction across both cyber security and operational resilience, ensuring the organisation can withstand, adapt to … deliver a unified cyber and operational resilience strategy that aligns technology, business operations, and regulatory obligations. Leadership of a Multi-discipline Team – Manage and mentor a team of technical security engineers and operational-resilience specialists, fostering collaboration across technology, risk, and business functions. Incident & Crisis Management – Oversee incident response, run crisis simulations, and strengthen supplier-risk management so critical … BCP is not required, but partnership experience is essential). Exceptional communication skills and board-level gravitas, with a track record of influencing senior stakeholders and shaping long-term security and resilience initiatives. Demonstrable success in building and motivating diverse, high-performing teams across technical and non-technical disciplines. This is a high-visibility appointment with direct exposure to More ❯

an exciting opportunity for a seasoned leader to shape and embed its cyber and operational resilience capability at enterprise scale. About the Role Reporting directly to the Group Chief Information Security Officer and acting as their deputy, you will provide vision and direction across both cyber security and operational resilience, ensuring the organisation can withstand, adapt to … deliver a unified cyber and operational resilience strategy that aligns technology, business operations, and regulatory obligations. Leadership of a Multi-discipline Team – Manage and mentor a team of technical security engineers and operational-resilience specialists, fostering collaboration across technology, risk, and business functions. Incident & Crisis Management – Oversee incident response, run crisis simulations, and strengthen supplier-risk management so critical … BCP is not required, but partnership experience is essential). Exceptional communication skills and board-level gravitas, with a track record of influencing senior stakeholders and shaping long-term security and resilience initiatives. Demonstrable success in building and motivating diverse, high-performing teams across technical and non-technical disciplines. This is a high-visibility appointment with direct exposure to More ❯

Architects, or Enterprise Architects, particularly in cloud-based or distributed systems. You will become an expert in our Gen AI platform, understanding both its capabilities and the governance and security requirements of our clients. You will independently manage complex challenges while maintaining a collaborative approach, working closely with internal teams to deliver comprehensive, secure, and innovative solutions. Key Responsibilities … Lead the design and architecture of AI-focused technical solutions, factoring in security, scalability, network requirements, and resource optimization. Act as a primary technical advisor to clients, providing expert guidance on the architecture and secure deployment of our Gen AI solutions. Influence the development of our product roadmap, aligning it with compliance needs and emerging trends in AI, cloud … and security technologies. Produce detailed architectural documentation, visual diagrams, and technical specifications to support deployment and client understanding. Provide mentorship and technical direction to deployment teams during client projects to ensure efficient and secure execution. Key Traits: In-depth knowledge of public cloud platforms (e.g., AWS, Azure, GCP) and their application in AI and machine learning environments. Experience with More ❯

Architects, or Enterprise Architects, particularly in cloud-based or distributed systems. You will become an expert in our Gen AI platform, understanding both its capabilities and the governance and security requirements of our clients. You will independently manage complex challenges while maintaining a collaborative approach, working closely with internal teams to deliver comprehensive, secure, and innovative solutions. Key Responsibilities … Lead the design and architecture of AI-focused technical solutions, factoring in security, scalability, network requirements, and resource optimization. Act as a primary technical advisor to clients, providing expert guidance on the architecture and secure deployment of our Gen AI solutions. Influence the development of our product roadmap, aligning it with compliance needs and emerging trends in AI, cloud … and security technologies. Produce detailed architectural documentation, visual diagrams, and technical specifications to support deployment and client understanding. Provide mentorship and technical direction to deployment teams during client projects to ensure efficient and secure execution. Key Traits: In-depth knowledge of public cloud platforms (e.g., AWS, Azure, GCP) and their application in AI and machine learning environments. Experience with More ❯

OpenAI Service and GPT models. Collaborate with product owners, data engineers, and policy teams to identify and implement AI-driven process improvements. Ensure all solutions comply with UK Government security, accessibility, and ethical AI standards. Integrate AI solutions across Power Automate, Power Apps, Dataverse, and Microsoft 365 environments. Produce and maintain technical documentation, testing frameworks, and performance monitoring tools. … Copilot Studio. Strong expertise in the Microsoft Power Platform and Microsoft 365 integration. Proficiency in prompt engineering, conversational AI design, and API-based integration. Solid understanding of data governance, information security, and responsible AI frameworks within the public sector. Hands-on experience deploying and scaling AI solutions within Azure environments. Strong communication and stakeholder management skills, with the More ❯

remote working systems; Make configuration of Active Directory and related services DNS, DHCP, DFS and GPOs; Manage enterprise network and storage server(s); Assist Department Head to ensure that information security complies with established policies and standards; Implement, update and monitor disaster recovery and relevant procedures and processes; Assist Head of Department to update IT policies, procedures, operation … a customer-focused attitude; A can-do attitude; Ability to work both independently with minimal supervision and collaboratively as part of a team. QUALIFICATIONS Bachelors Degree in Computer Science, Information Science, or related field and/or equivalent technical degree required. Certifications of Microsoft and Cisco are preferable. More ❯

they maximises the use of existing or new system platforms. The role manages external systems supplier contracts, seeks opportunities to optimise system functionality, oversees systems integration activity, ensures the security, stability, governance and compliance of our business systems. The role develops and integrates technology across the organisation. The role works closely with external Business Systems Providers and internal Technology … to analyse, interpret, and communicate system requirements, ensuring effective liaison with third-party technology providers to support solution design, implementation, and troubleshooting. Apply critical thinking and working knowledge of information security principles to assess and challenge technical decisions made by both internal team members and external vendors, ensuring that system integrations and data handling meet their security More ❯