6 of 6 Permanent ISO/IEC 27002 (supersedes ISO/IEC 17799) Jobs in the City of London

Location: London / Leicester / Essex Hybrid: 2-3 days in office Our client is financial service company. They are looking for a passionate and detail-oriented Information & Cyber Security Executive to join the teams. The role encompasses all aspects of information security including organisational security and governance, people security, physical (site) security and technical security … 80k base + £5k car allowance and other benefits. What You'll Do Assess compliance with internal security policies and industry standards (eg, ISO / IEC 27001 / 2, PCI-DSS). Conduct supplier risk assessments and third-party due diligence. Support vulnerability assessments, incident investigations, and operational More ❯

Location: London / Leicester / Essex Hybrid: 2-3 days in office Our client is financial service company. They are looking for a passionate and detail-oriented Information & Cyber Security Executive to join the teams. The role encompasses all aspects of information security including organisational security and governance, people security, physical (site) security and technical security … 80k base + £5k car allowance and other benefits. What You'll Do Assess compliance with internal security policies and industry standards (eg, ISO / IEC 27001 / 2, PCI-DSS). Conduct supplier risk assessments and third-party due diligence. Support vulnerability assessments, incident investigations, and operational More ❯

Lead Information Security Engineer Location: London (Hybrid - 3 days office / 2 days remote) Type: Permanent An international law firm is seeking a Lead Information Security Engineer to join its global IT function in London. You'll play a key role in developing secure architectures, managing risk, and driving security strategy across cloud and on-premise environments. Key … security best practices. Support policy development, security awareness, and business continuity. Skills & Experience 5+ years' experience in Information Security. Strong technical knowledge of networking, authentication, and cloud (Azure / O365). Experience with DLP, incident response, and ISO 27002 standards. Familiarity with tools such as Microsoft Defender, CrowdStrike, CyberArk, Rapid7, or Palo … or CEH certification preferred. Excellent communication, problem-solving, and stakeholder management skills. Additional Details Standard hours: 9:00am-5:00pm with on-call participation. Hybrid working (3 office / 2 remote). Up to 20% domestic / international travel. If you are interested please email your CV to for immediate consideration More ❯

Lead Information Security Engineer Location: London (Hybrid – 3 days office / 2 days remote) Type: Permanent An international law firm is seeking a Lead Information Security Engineer to join its global IT function in London. You’ll play a key role in developing secure architectures, managing risk, and driving security strategy across cloud and on-premise environments. Key … security best practices. Support policy development, security awareness, and business continuity. Skills & Experience 5+ years’ experience in Information Security. Strong technical knowledge of networking, authentication, and cloud (Azure / O365). Experience with DLP, incident response, and ISO 27002 standards. Familiarity with tools such as Microsoft Defender, CrowdStrike, CyberArk, Rapid7, or Palo … or CEH certification preferred. Excellent communication, problem-solving, and stakeholder management skills. Additional Details Standard hours: 9:00am–5:00pm with on-call participation. Hybrid working (3 office / 2 remote). Up to 20% domestic / international travel. If you are interested please email your CV to megan.seymour@stottandmay.com for immediate consideration More ❯

will conduct IT security audits and assessments for clients across the United Kingdom and the European region, ensuring compliance with PCI DSS, ISO 27001 / 2, GDPR, NIS2, DORA, and other relevant frameworks. This position offers the opportunity to become a PCI QSA (training and certification sponsored by ControlCase) while working in an international … or related field. • Deep knowledge of IT security controls, access management, logging, vulnerability assessment, and secure system configuration. • Experience with PCI DSS, ISO 27001 / 2, GDPR, NIS2, DORA, or similar compliance frameworks. • Strong understanding of cloud environments and network architectures. • Excellent English communication skills; fluency in German strongly preferred. • At least one certification … from each of the following groups preferred: Group 1: CISA, ISO 27001 Lead Auditor Group 2: CISSP, ISO 27001 Lead Implementer, CISM More ❯

who require a Lead Cyber Security Engineer to join the firm in London. Responsibilities: * Implement security architecture of the firm related to transition to cloud (e.g., Azure, Teams / O365 and iManage Cloud) * Develops and maintains all documentation related to Global Security Team operations and functions * Analysis of data collected from established Data Loss Prevention system(s) and … configuration Key Skills: * 5 years of experience in an Information Security department * Excellent working knowledge of CISSP, CEH required * Excellent knowledge of the ISO 27002 standard preferred * Excellent working knowledge of networking and security standards required * Good documentation skills and authentication methods experience required * Excellent knowledge of a network / firewall security … preferred * Good knowledge of Disaster Recovery preferred * Strong technical knowledge of cloud environments such as Azure / O365 * Familiarity with DLP incident handling, remediation, and reporting * Proficiency in Microsoft Office products * Experience in securing AI-driven systems and leveraging AI tools. * Familiar with Microsoft Defender for Endpoint, Thales, CrowdStrike Falcon and SIEM, CyberArk, Rapid7, and Palo Alto products More ❯