25 of 25 Contract ISO/IEC 27001 Jobs in London

Information and Cyber Security within EMEA. Manage the intragroup relationships across AD and EMEA for Information and Cyber Security, ensuring service levels are met for all services received and / or provided. Accountabilities & Responsibilities : Define intra group security governance and service management framework Enhance and embed the operating / engagement model and service level agreement to ensure continuous … depth knowledge of third-party regulations across UK and EU such as ECB's EBA, DORA and related standards Information and Cyber Security Frameworks and industry Standards (e.g., NIST / ISO 27001 / COBIT / ITIL) Experience creating and delivering presentations and concise writing skills to produce clear documentation (security policy, senior management More ❯

Microsoft Defender (Cloud, Endpoint, Office 365) Microsoft Entra ID (Azure AD) Microsoft Purview Microsoft Intune Azure Security Center Information Security (On-Premise): Firewalls (e.g. Palo Alto, Fortinet) Intrusion Detection / Prevention Systems (IDS / IPS) Endpoint Protection Platforms (EPP) SIEM tools (on-prem or hybrid) Identity & Access Management (IAM) Patch management and vulnerability scanning Data Loss Prevention (DLP … cyber security and technical delivery Deep understanding of Microsoft Azure security architecture and tooling Experience managing third-party vendors and consultancies Familiarity with NIST CSF, CIS Controls, and ISO 27001 Excellent stakeholder engagement and communication skills Relevant certifications (e.g. SC-100, CISSP, CISM, ISO 27001 Lead Implementer More ❯

Role Title: Security Enterprise Architect Duration: contract to run until 31 / 12 / 2025 Location: Remote, occasional travel to the London Office for meetings Rate: up to £441.60 p / d Umbrella inside IR35 Role purpose / summary We are seeking an experienced Enterprise Architect to join our dynamic team and play a pivotal role … to identify use cases and integration approaches, while also contributing to the creation of reusable design patterns, High-Level Designs (HLDs), and Low-Level Designs (LLDs). Key Skills / requirements Enterprise Architecture Development : Develop, maintain, and document PKI use cases for implementation onto a CyberArk / Venafi PKI platform. Security and PKI Expertise : Leverage knowledge of PKI … Hands-on experience with application development and deployment in enterprise environments (e.g., Java, .NET, Python, or similar platforms). Demonstrated knowledge of certificate usage within enterprise systems, including TLS / SSL, code signing, S / MIME, and endpoint authentication. Well-rounded expertise in security tooling, such as SIEM, vulnerability management, EDR / XDR, DLP, and network security More ❯

support the organisation's security objectives. You'll oversee the implementation of security controls across both cloud and on-prem environments, ensuring alignment with compliance frameworks such as ISO 27001 and GDPR. Key Responsibilities: Lead and manage cyber and information security programmes across cloud and on-prem environments Evaluate and select third-party vendors and consultancies … Microsoft Defender (Cloud, Endpoint, Office 365) Microsoft Entra ID (Azure AD) Microsoft Purview Microsoft Intune Azure Security Center Information Security (On-Premise): Firewalls (e.g. Palo Alto, Fortinet) Intrusion Detection / Prevention Systems (IDS / IPS) Endpoint Protection Platforms (EPP) SIEM tools (on-prem or hybrid) Identity & Access Management (IAM) Patch management and vulnerability scanning tools Data Loss Prevention … vendor selection and consultancy engagement Proven track record of delivering security programmes end to end Excellent stakeholder management and communication skills Relevant certifications (e.g. SC-100, CISSP, CISM, ISO 27001 Lead Implementer More ❯

remediation plans for technical teams. Build dashboards and executive reports (ServiceNow, Power BI). Provide rapid risk assessments and emergency patch governance during incidents. Support audits and regulatory compliance (ISO27001, CE+, GDPR, NIS2, ONR). Drive automation, integrating tools and workflows to improve efficiency. Act as subject matter expert for Tenable and related tooling, ensuring platforms are fully leveraged. Mentor … Attack Surface Management, Attack Paths, Identity) AWS Inspector Agent-based and network-based scanning Cloud integrations (AWS, Azure, GCP) Dashboards and risk-based prioritisation Patch & Endpoint Management - Microsoft Intune / SCCM / WSUS Jamf Workflow & ITSM Integration - ServiceNow (dashboards, SOAR) Jira Cloud & Application Security - AWS Security Hub Azure Defender for Cloud Veracode Threat Intelligence & Exploit Context - Tenable Threat … ServiceNow SOAR) Automation & Scripting - Python, PowerShell, Bash, Ansible Reporting & Metrics - Power BI ServiceNow dashboards Excel (advanced analysis) Frameworks & Standards - NIST CSF, ISO 27001, OWASP, CE / CE+, GDPR, NIS2, ONR Security Domains / Capabilities - Identity and Access Management (IAM) Network Security Data Protection Cloud Security Controls Application Security Security Monitoring Processes & Practices - Vulnerability Management More ❯

Outside IR35 | 3 Months | Fully Remote We’re hiring a Cybersecurity Engineer to support a client on a 3-month contract focused on achieving SOC 2 and ISO 27001 compliance. This role is Outside IR35, fully remote, and offers a daily rate of £500–£600.The successful candidate will deliver the integration of CrowdStrike Falcon with Vanta … help implement the security controls, monitoring, and documentation required for audit readiness. Key Requirements Proven experience in cybersecurity engineering and compliance delivery Deep understanding of SOC 2 and ISO 27001 frameworks and audit processes Hands-on experience with integrating cybersecurity tools and platforms Experience integrating CrowdStrike Falcon and Vanta is a plus Strong adherence to Azure More ❯

Outside IR35 | 3 months | Fully Remote We're hiring a Cybersecurity Engineer to support a client on a 3-month contract focused on achieving SOC 2 and ISO 27001 compliance. This role is Outside IR35, fully remote, and offers a daily rate of £500-£600. The successful candidate will deliver the integration of CrowdStrike Falcon with … help implement the security controls, monitoring, and documentation required for audit readiness. Key Requirements Proven experience in cybersecurity engineering and compliance delivery Deep understanding of SOC 2 and ISO 27001 frameworks and audit processes Hands-on experience with integrating cybersecurity tools and platforms Experience integrating CrowdStrike Falcon and Vanta is a plus Strong adherence to Azure More ❯

actionable reports. Managing workload across multiple concurrent projects, meeting deadlines in a fast-paced portfolio environment. Essential Skills & Experience Strong understanding of cybersecurity and IT control frameworks (SOX, FFIEC, ISO27001, NIST, Cloud Security Alliance, PCI-DSS). Proven experience as an IT auditor, security auditor, or GRC analyst in a complex environment. Hands-on knowledge of IT security systems (OS … personal data very seriously. Any information provided to us will be processed as detailed in our Privacy Notice, a copy of which can be found on our website http: / / proactive.it / privacy-notice / More ❯

We are looking for an eDV / UK*C Product Manager to work 4 days a week on site for an exciting client, job spec below so please feel free to call me on 07887 575829. About the Role We are seeking a highly motivated and experienced Product Manager with active UK*C / eDV to lead and … continuous improvement. Define product vision, roadmap, and success metrics aligned to customer needs, business goals, and regulatory requirements. Work closely with cross-functional teams (engineering, data science, DevOps, UX / UI, compliance, etc.) to ensure timely delivery of high-quality solutions. Act as the voice of the customer and advocate for data-driven decision making. Manage product backlogs, define … adhere to data governance, information assurance, and cybersecurity policies. Support business development teams in identifying new opportunities for data product development and enhancement. Required Qualifications & Experience Active UK*C / eDV security clearance (essential). Proven experience as a Product Manager delivering successful data projects - such as data platforms, analytics tools, data warehouses, or ML / AI initiatives. More ❯

Sentinel - essential Microsoft Purview, Compliance Manager and related compliance tools Entra ID (Azure AD), Conditional Access and Identity Governance Data Loss Prevention, sensitivity labels and insider risk management ISO 27001, SOC 2, GDPR and NIS2 frameworks PowerShell … scripting and use of Microsoft Graph API Working across cloud, infrastructure and application teams Certifications required: AZ-500 SC-100 (or working towards) One or more of MS-500 / SC-400 / SC-900 The following are desired: CISSP, CISM, CCSP Interested? Please apply below. Senior Security engineer, M365 Consultant, M365 Engineer, Senior Cloud Security Engineer, Infrastructure More ❯

Sentinel - essential Microsoft Purview, Compliance Manager and related compliance tools Entra ID (Azure AD), Conditional Access and Identity Governance Data Loss Prevention, sensitivity labels and insider risk management ISO 27001, SOC 2, GDPR and NIS2 frameworks PowerShell … scripting and use of Microsoft Graph API Working across cloud, infrastructure and application teams Certifications required: AZ-500 SC-100 (or working towards) One or more of MS-500 / SC-400 / SC-900 The following are desired: CISSP, CISM, CCSP Interested? Please apply below. Senior Security engineer, M365 Consultant, M365 Engineer, Senior Cloud Security Engineer, Infrastructure More ❯

Business Analyst - Threat Intelligence London / Hertfordshire £500-570 / day Inside IR35 6-12 Months initial duration Full-Time | Permanent Are you passionate about making sense of cyber threat data and turning it into strategic intelligence that matters? Join as a Business Analyst - Threat Intelligence , and help shape the future of our cyber defence capabilities. In this … experience producing high-quality intelligence products. Clear, persuasive communication skills, with experience delivering detailed briefings to a range of stakeholders. Knowledge of information assurance standards (e.g., NIST , CIS , ISO 27001 , GDPR , Cyber Essentials Plus ). Ability to work cross-functionally with technical and business teams to embed intelligence into operational security. People Source Consulting Ltd is More ❯

Security Risk Analyst – 6-month contract – London / Remote – Inside IR35 My Customer is looking for a Security Risk Analyst to join their Governance, Risk & Compliance (GRC) team. You will play a key role in strengthening their risk management processes, working primarily with Archer and other GRC tools to support risk assessment, compliance, and governance activities. In this role … able to produce clear technical reports and risk documentation. Excellent stakeholder management, able to collaborate across technical and non-technical teams. Beneficial certifications: CISSP, CISA, CISM (or equivalent). ISO27001 / ISMS Accredited qualifications would be beneficial Experience working in financial sector would be beneficial Experience in ensuring internal IT system compliance against agreed standards Key Responsibilities of the … improve the security risk assessment framework, procedures, and workflows. Manage and update security questionnaires to align with compliance requirements, industry standards, and regulations. Conduct asset-level and third-party / vendor risk assessments. Analyse and document inherent and residual risks, providing clear recommendations. Produce detailed technical reports highlighting findings, control gaps, and proposed remediation plans. Drive remediation Perform periodic More ❯

Security Risk Analyst 6-month contract London / Remote Inside IR35 My Customer is looking for a Security Risk Analyst to join their Governance, Risk & Compliance (GRC) team. You will play a key role in strengthening their risk management processes, working primarily with Archer and other GRC tools to support risk assessment, compliance, and governance activities. In this role … able to produce clear technical reports and risk documentation. Excellent stakeholder management, able to collaborate across technical and non-technical teams. Beneficial certifications: CISSP, CISA, CISM (or equivalent). ISO27001 / ISMS Accredited qualifications would be beneficial Experience working in financial sector would be beneficial Experience in ensuring internal IT system compliance against agreed standards Key Responsibilities of the … improve the security risk assessment framework, procedures, and workflows. Manage and update security questionnaires to align with compliance requirements, industry standards, and regulations. Conduct asset-level and third-party / vendor risk assessments. Analyse and document inherent and residual risks, providing clear recommendations. Produce detailed technical reports highlighting findings, control gaps, and proposed remediation plans. Drive remediation Perform periodic More ❯

Security Risk Analyst – 6-month contract – London / Remote – Inside IR35 My Customer is looking for a Security Risk Analyst to join their Governance, Risk & Compliance (GRC) team. You will play a key role in strengthening their risk management processes, working primarily with Archer and other GRC tools to support risk assessment, compliance, and governance activities. In this role … able to produce clear technical reports and risk documentation. Excellent stakeholder management, able to collaborate across technical and non-technical teams. Beneficial certifications: CISSP, CISA, CISM (or equivalent). ISO27001 / ISMS Accredited qualifications would be beneficial Experience working in financial sector would be beneficial Experience in ensuring internal IT system compliance against agreed standards Key Responsibilities of the … improve the security risk assessment framework, procedures, and workflows. Manage and update security questionnaires to align with compliance requirements, industry standards, and regulations. Conduct asset-level and third-party / vendor risk assessments. Analyse and document inherent and residual risks, providing clear recommendations. Produce detailed technical reports highlighting findings, control gaps, and proposed remediation plans. Drive remediation Perform periodic More ❯

premises systems to validate secure configurations. Conducting general risk assessments of new applications or tools being used within the organisation. Experience in co-ordination of the requirements to meet ISO27001 & the Cyber Essentials+ certification. Administrative requirements of PAM tool. (CyberArk) Experience Experience administrating PAM solutions, such as CyberArk - MANDATORY Working understanding of security operations, threat detection, and incident response. Experience … administrating PAM solutions, such as CyberArk. Understanding of NCSC cyber security principles and good practice. Familiarity with change and configuration management from a cyber perspective. Working knowledge of ISO 27001 or NIST standards. Relevant certifications (e.g., Security+, CySA+, CISMP) are desirable. If you are interested, please apply at first instance More ❯

across the organisation Manage stakeholder relationships across IT, operations, and compliance teams Implement and optimise Microsoft security tools and frameworks Ensure alignment with regulatory and industry standards (e.g. ISO 27001, GDPR) Support the business in adopting secure-by-design and Zero Trust principles Tech Environment: Microsoft Sentinel Microsoft Defender (Cloud, Endpoint, Office 365) Microsoft Entra ID More ❯

across the organisation Manage stakeholder relationships across IT, operations, and compliance teams Implement and optimise Microsoft security tools and frameworks Ensure alignment with regulatory and industry standards (e.g. ISO 27001, GDPR) Support the business in adopting secure-by-design and Zero Trust principles Tech Environment: Microsoft Sentinel Microsoft Defender (Cloud, Endpoint, Office 365) Microsoft Entra ID More ❯

IT Security, Cyber Assurance, or IT Audit. Hands-on knowledge across areas such as governance, IAM, threat management, vulnerability management, and incident response. Good understanding of security frameworks (e.g. ISO27001, NIST, PCI-DSS, SOX). Experience engaging with senior stakeholders within complex environments. Relevant certifications (CISSP, CISM, CISA, CRISC) desirable. This is an exciting opportunity to join a high-performing More ❯

IT Security, Cyber Assurance, or IT Audit. Hands-on knowledge across areas such as governance, IAM, threat management, vulnerability management, and incident response. Good understanding of security frameworks (e.g. ISO27001, NIST, PCI-DSS, SOX). Experience engaging with senior stakeholders within complex environments. Relevant certifications (CISSP, CISM, CISA, CRISC) desirable. This is an exciting opportunity to join a high-performing More ❯

servers, storage, cloud platforms, and unified communications, and who thrives in a collaborative, service-driven environment. Key Responsibilities: Manage and support the firm's infrastructure: servers, storage, firewalls, WAN / LAN, Wi-Fi, internet, and unified communications. Administer and monitor systems including Windows Server, Azure, Entra ID, Intune, VMWare, VXRail, Rubrik, Commvault , and more. Conduct vulnerability analysis and manage … as needed. What We're Looking For: 8+ years of experience in IT infrastructure or systems administration within complex, global environments. Experience working within ITIL frameworks and ideally ISO 27001-compliant settings. Strong working knowledge of: Microsoft 365 (Exchange Online, Teams, OneDrive … SharePoint Online) Azure IaaS VMware vSphere & Dell VxRail NetApp storage Juniper Mist & Cato SESE firewalls PowerShell Scripting and automation Windows Server (2008-2025) Networking: DNS, DHCP, subnets, VLAN, TCP / IP, SD-WAN, VPNs Desirable Certifications: Microsoft Azure Administrator (AZ-104) VMware Certified Professional (VCP) Juniper Mist AI (Wireless / Wired) Microsoft 365 Fundamentals ITIL Foundation (v3 or More ❯

ISF Standard of Good Practice or equivalent. Key Skills & Experience: Proven experience in information security, risk management, or governance roles. Strong understanding of security governance frameworks (e.g., ISF, ISO 27001, NIST). Excellent stakeholder engagement and communication skills. Ability to synthesize technical detail into governance-level reporting. Experience working across multiple teams and managing competing priorities. More ❯

or optimisation projects in a FinTech or tech-enabled financial services environment. Strong understanding of modern finance operations, including subscription billing, payment flows, reconciliation, digital assets, and multi-entity / multi-currency reporting. Familiarity with FinTech regulatory environments and audit requirements (e.g., SOX, ISO 27001, FCA, MAS, or equivalent). Hands-on knowledge of Workday More ❯

with analysts and operational teams. Comfortable balancing high-level architectural input with hands-on visibility and governance. Familiar with enterprise-level security frameworks and standards such as NIST, ISO 27001, CIS Controls . Familiarity with the Microsoft Endpoint technology stack is beneficial. Additional Notes: This is a critical project requiring strong governance and strategic input. Experience More ❯

end delivery of IT infrastructure and digital transformation projects, including: Migration from existing intranet to Microsoft SharePoint Online (Phase 1). Migration of on-premise file services to SharePoint / OneDrive (Phase 2). Migration of on-premise servers to Azure Cloud Infrastructure , including hybrid configuration and AD Connect. Implementation of a new cloud-based telephone system , ensuring business … and manage project plans, budgets, time lines, and deliverable. Apply PRINCE2, PMP, Agile, or similar methodologies to structure and execute projects. Conduct risk management, issue resolution, and compliance oversight (ISO27001, GDPR). Perform post-implementation reviews to ensure stability, performance, and optimisation. Act as the primary liaison between technical teams, business stakeholders, and suppliers. Experience: Bachelor's degree in IT … dependent upon your experience, qualifications and training. If you wish to apply, please read our Privacy Notice describing how we may process, disclose and store your personal data: gb / en / privacy-notice. More ❯