22 of 22 Contract ISO/IEC 27001 Jobs in London

logical and physical topology). Hybrid Connectivity Design Principles and Standards (DNS-based policy, Zero Trust segmentation, firewalling). Detailed Bill of Materials (vendor / platform options, sizing, licence models, costs to Class 4 estimate). Delivery Project Plan (work breakdown structure, stage gates, dependencies, critical path). Security … Digital Distribution, Connectivity, Architecture, InfoSec, Service Assurance, Commercial) to define cross-connects, circuits, and governance alignment. Assessment of hyperscaler scope (AWS in baseline; Azure / GCP to be evaluated) and interconnection locations (carrier-neutral DCs / IX presence). Deliverables or KPIs (e.g. uptime %, response times, resolution targets ...

compliance with regulatory requirements is maintained. This is a hands on role where you'll review IT policies and procedures, conduct an ISO 27001:2022 gap analysis, and provide actionable recommendations to strengthen the organisation's security posture. Key Responsibilities Review and update IT security policies … security protocols and compliance requirements Essential Skills & Experience Strong knowledge of ISO 27001 (2022 standard) Ideally certified as Lead Auditor / Lead Implementer Experience in information security compliance and risk management Ability to translate regulatory requirements into practical business processes Excellent communication and stakeholder engagement ...

requirements in tenders. Skills and Experience Experience in an information security or IT risk role. Working knowledge of frameworks such as ISO / IEC 27001, NIST, PCI-DSS, or Cyber Essentials. Strong communication and stakeholder engagement skills. Ability to manage multiple priorities ...

requirements in tenders. Skills and Experience Experience in an information security or IT risk role. Working knowledge of frameworks such as ISO / IEC 27001, NIST, PCI-DSS, or Cyber Essentials. Strong communication and stakeholder engagement skills. Ability to manage multiple priorities ...

Title: Cyber Security Consultant (Healthcare - DSPT / CAF Specialist) Role Summary We are looking for a highly skilled Cyber Security Consultant with proven healthcare sector experience and deep expertise in the DSPT and Cyber Assessment Framework (CAF) . The successful candidate must have hands-on experience writing and implementing … policies aligned to DSPT / CAF . Experience with EDRMS solutions is strongly desirable. Key Responsibilities Lead cyber security delivery for healthcare clients, ensuring full alignment with DSPT and CAF requirements. Produce high-quality policies, procedures, and governance documentation mapped directly to DSPT / CAF controls. Conduct security ...

Cyber Security Consultant / Security Assurance Co-Ordinator Summer-Browning Associates is currently supporting our central government client, who is seeking a Cyber Security Consultant / Security Assurance Co-Ordinator for an initial 6 assignments with the option to extend. Location: London / Milton Keynes / Hybrid / Remote The ideal candidate will have an active SC or DV clearance and a strong background in Cyber Security Assurance within a high-threat government environment. Skills and experience: Producing Secure-By-Design assessments, such as Risk Assessment Papers, Risk Treatment Plans, Risk Business Cases ...

Manager and related compliance tools Entra ID (Azure AD), Conditional Access and Identity Governance Data Loss Prevention, sensitivity labels and insider risk management ISO 27001, SOC 2, GDPR and NIS2 frameworks PowerShell scripting and use of Microsoft … Graph API Working across cloud, infrastructure and application teams Certifications required: AZ-500 SC-100 (or working towards) One or more of MS-500 / SC-400 / SC-900 The following are desired: CISSP, CISM, CCSP Interested? Please apply below. Senior Security engineer, M365 Consultant, M365 Engineer ...

Title: SOC Analyst Location: On-site, London moving to hybrid 3 days on-site after 2-week induction Start Date: Immediate Contract length: 31 / 03 / 26 further extensions expected Clearance Required: BPSS (must be obtained prior to onboarding) Day rate: £400 - £500 Candidates must be eligible … work effectively within a collaborative SOC team Desirable Skills Experience with incident documentation and reporting Familiarity with security frameworks (MITRE ATT&CK, NIST, ISO 27001) Ability to adapt quickly to new tools, threats, and operational priorities Any relevant certifications (e.g., Security+, CySA+, Microsoft SC-series, GIAC ...

President) Location: London (3 days on-site) Duration: 6 months (possibility for extension) Working Pattern: Full Time (40 hours per week) Rate: Circa £600 / Day Join Our Dynamic Team! Are you an experienced IT Change Manager looking for an opportunity to make a significant impact in the banking … roles. Proven track record in managing end-to-end change processes within complex IT environments. Experienced with regulatory compliance (SOX, PCI-DSS, GDPR, PRA / FCA, DORA, Operational Resilience) and audit readiness. Exposure to DevOps, CI / CD pipelines, and Agile delivery models. Strong understanding of IT infrastructure ...

Location: London (3 days on-site) Contract Length: 6 months (possibility for extension) Working Pattern: Full Time (40 hours per week) Rate: Circa £419 / Day Are you a detail-oriented professional with a passion for driving change in the IT landscape? Join our dynamic team … requests. Proven track record in managing end-to-end change processes within complex IT environments. Experienced with regulatory compliance (SOX, PCI-DSS, GDPR, PRA / FCA, DORA, Operational Resilience) and audit readiness. Exposure to DevOps, CI / CD pipelines, and Agile delivery models. Key Responsibilities: Change Process Support ...

Security Engineer Assurance / Report Writing Were looking for a Security Assurance Engineer with the ability to see the whole security picturetechnology, people, and process. Youll join a team of experienced cyber specialists, but your role is to step back from the individual technical outputs and assess what they … must have been active within the last 12 months. Experience producing structured security assurance documentation, security cases, or security arguments (e.g., using GSN, safety / security case approaches, or similar). The ability to interpret diverse security inputspen test results, architectural designs, risk assessments, compliance outputsand turn them into ...

Security Engineer – Assurance / Report Writing We’re looking for a Security Assurance Engineer with the ability to see the whole security picture—technology, people, and process. You’ll join a team of experienced cyber specialists, but your role is to step back from the individual technical outputs … must have been active within the last 12 months. Experience producing structured security assurance documentation, security cases, or security arguments (e.g., using GSN, safety / security case approaches, or similar). The ability to interpret diverse security inputs—pen test results, architectural designs, risk assessments, compliance outputs—and turn ...

Security Engineer – Assurance / Report Writing We’re looking for a Security Assurance Engineer with the ability to see the whole security picture—technology, people, and process. You’ll join a team of experienced cyber specialists, but your role is to step back from the individual technical outputs … must have been active within the last 12 months. Experience producing structured security assurance documentation, security cases, or security arguments (e.g., using GSN, safety / security case approaches, or similar). The ability to interpret diverse security inputs—pen test results, architectural designs, risk assessments, compliance outputs—and turn ...

Defender for Cloud, Defender for Endpoint and EASM Vulnerability remediation and Secure Score improvement Purview (DLP, sensitivity labels, insider risk) Compliance uplift for ISO 27001, SOC 2, GDPR and NIS2 Configuration hardening, patching and policy deployment Entra ID, Conditional Access, PIM and cloud identity controls PowerShell ...

Oracle ERP, HCM, and EPM Cloud technical architecture (essential) Understanding of UK Gov Cloud hosting, data sovereignty, and compliance standards (NCSC CAF, ISO 27001, Cyber Essentials Plus). Strong professional documentation skills (essential) Strong problem-solving and analytical skills (essential) Excellent communication and leadership skills (essential ...

Manager - Third Party Assurance - Security Suppliers, CISSP, CISM, ISO27001 Our global law firm client are currently looking to take on a new Manager - Third Party Assurance (Security Suppliers, CISSP, CISM, ISO27001) on a contractual basis for 12 months. This role will be supporting the Senior Manager to produce and champion … micromanaged and autonomous approach to the work life, with a healthy amount of flexible working. This Manager - Third Party Assurance (Security Suppliers, CISSP, CISM, ISO27001) role will require prior experience in an Information Security Assurance role, experience with Security Suppliers and ideally legal or financial services experience. Duties, Responsibilities & Person ...

Senior Information Security Training & Awareness Specialist (Contract) £430 Per day via umbrella 16 month initial contract Remote Working Contract | Global / Flexible Location We are seeking an experienced Senior Information Security Training & Awareness Specialist to support a global security awareness and behavioural change program. This contract role focuses … scale. Strong executive stakeholder engagement and presentation skills. Experience applying behavioral science to drive secure behaviors. Knowledge of security standards and frameworks (ISO 27001, NIST, CMM, etc.). Comfortable using GenAI tools and Agile ways of working. Desirable Cybersecurity certifications (CISSP, CISM, CISA, SANS). ...

Strong understanding of Oracle ERP, HCM, and EPM Cloud technical architecture. Knowledge of UK Government Cloud hosting, data sovereignty, and compliance (NCSC CAF, ISO 27001, Cyber Essentials Plus). Excellent analytical, problem-solving, and documentation skills. Strong communication and leadership capabilities. Ability to work independently ...

trails and logging capabilities Risk & Compliance Identification of control gaps and vulnerabilities Recommendations for remediation and risk mitigation Alignment with relevant standards (e.g. ISO 27001, NIST, COBIT) and regulatory requirements Skills, experience, and qualifications: Proven experience in financial process audits and security assessments Familiarity with enterprise ...

Financial Management & HCM. Experience with Oracle Process Automation, OPA (Desirable) Understanding of UK Gov Cloud hosting, data sovereignty, and compliance standards (NCSC CAF, ISO 27001, Cyber Essentials Plus) (Desirable ...

Cleared Cyber Security Assurance Manager on an initial 6-month contract. This role will be a hybrid position with occasional travel (Once a week / fortnight) to Central London. This position will require active DV or SC clearance to be held. This means you must have worked … policy products into business use Create, draft and enable Info Sec and Access Control Policy Experience in working with standard ISMS frameworks, such as ISO27001, including tailoring to organisational needs Experience in implementing ISMS in complex regulated organisations This role will be an Inside IR35 contract paying £550 - £650pd inside ...

related projects and workstreams. Programme & Project Manager skills, with either MSP, PRINCE2 Practitioner or PMP. Some appreciation of security or regulatory frameworks such as ISO27001, NIST, SOX, etc. Delivery and management of programme budgets, often in excess of £5m. Delivery of large company rollout of Microsoft core technologies. Programme planning … experience of Waterfall, Agile and other methods. In-depth knowledge of Microsoft core technologies. In-depth knowledge of IT networking and other infrastructure / security concepts and technologies i.e. Azure, WAN, LAN, SD-WAN, Wi-Fi, VMware, Nutanix, SQL, NAC, DNS Sec Please apply! Guidant, Carbon60, Lorien ...