1 to 25 of 514 Permanent GDPR Jobs in London

Collaborate with IT and business units to ensure secure systems development and operations. Compliance & Risk Management Ensure compliance with regulatory and legal security requirements (e.g., ISO 27001, NIST, HIPAA, GDPR, SOX, etc.). Ensure compliance with applicable data protection laws (e.g., GDPR, CCPA, GLBA). Guide Data Protection Impact Assessments (DPIAs) for high-risk financial data … with data analytics platforms and financial data governance tooling. Strong working knowledge of financial compliance frameworks (e.g., GLBA, SOX, FFIEC CAT, NYDFS). Familiarity with privacy regulations (GDPR, CCPA) and best practices in data governance. Certifications such as CISSP, CISM, CISA, CRISC, or Certified Data Protection Officer (CDPO) are highly desirable. We offer a collaborative More ❯

malware analysis, including static and dynamic analysis techniques. Ability to develop and refine threat-hunting methodologies and define SIEM use cases. Familiarity with global cybersecurity regulations and compliance frameworks (GDPR, NIST, ISO 27001, etc.). Ability to work under pressure in a fast-paced, dynamic security environment. Experience in developing Standard Operating Procedures (SOPs), security playbooks, and technical incident documentation. More ❯

monitoring, detection, and response using cloud-native security solutions such as Microsoft Defender, Sentinel, and SIEM platforms. Ensure compliance with cloud security frameworks and regulatory requirements (ISO 27001, NIST, GDPR, SOC2, FCA). Conduct regular security risk assessments, penetration tests, and vulnerability management across cloud services. Oversee endpoint security, cloud network and API security for robust protection across all … Exchange, SharePoint, Teams), Azure cloud infrastructure, and security tools such as Microsoft Defender and Sentinel. Security & Compliance: Deep knowledge of security frameworks (ISO 27001, NIST, CIS), compliance requirements (GDPR, SOC2), and risk management best practices. Identity & Access Management (IAM): Expertise in Azure AD, MFA, Conditional Access, Single Sign-On (SSO), and Privileged Access Management (PAM). Threat Management & Incident Response More ❯

procedures. Manage cybersecurity projects to ensure timely delivery within budget. Perform or coordinate security assessments, penetration tests, and vulnerability scans. Ensure compliance with frameworks like COBIT, NIST, ISO, PCI, GDPR, HIPAA, etc. Provide internal support for security issues within SLAs. Evaluate and implement CIS controls as needed. Contribute to cybersecurity strategic planning and budgeting. Follow change management policies. Qualifications Bachelor More ❯

compliance with ISO27001 certification requirements, including managing audits, reviews, and continual improvement of the Information Security Management System (ISMS). Stay abreast of and ensure adherence to regulations (e.g., GDPR, NIS2, DORA) and other relevant legal and contractual obligations, as well as application security standards. Risk Management : Lead the information security risk management process, including identification, assessment, treatment, and monitoring More ❯

or similar. Experience with complex databases Experience in system support, monitoring & troubleshooting. Experience of working in environments with high information security standards to meet needs of ISO27001, SOC2 and GDPR etc Experience with AI and / or Machine Learning Project planning and management experience. Experience with finance systems i.e. Sage, Qube, IRIS or similar. Experience with CRMs such as HubSpot More ❯

or similar. Experience with complex databases Experience in system support, monitoring & troubleshooting. Experience of working in environments with high information security standards to meet needs of ISO27001, SOC2 and GDPR etc Experience with AI and / or Machine Learning Project planning and management experience. Experience with finance systems i.e. Sage, Qube, IRIS or similar. Experience with CRMs such as HubSpot More ❯

Services. Experience in semi / fully unstructured datasets and NoSQL environments Awareness of working in a regulated environment, with experience of data legislation and cyber security accreditations e.g., GDPR, ISO27001, Cyber Essentials. Expertise in Business Intelligence, ideally via Power BI for data visualization and reporting Use of DevOps (CI / CD) concepts to test, schedule, and deploy to More ❯

foster a strong security-first culture Compliance & Governance Work in partnership with the Compliance Manager and DPO to ensure security measures support data protection obligations (e.g. UK GDPR). Maintain up-to-date records of security incidents, policies, and audit logs - ensuring documentation is meaningful and accessible. Support leadership with security input into market entry, overseas operations, and More ❯

Key Vault and manage encryption and certificate strategies Collaborate with our SOC and managed Sentinel provider on incident handling Compliance & Governance Help ensure compliance with ISO 27001, SOC 2, GDPR, and NIS2 Support configuration and monitoring in Microsoft Compliance Manager Maintain security documentation and assist in audit preparation Configure insider risk management, audit, and eDiscovery capabilities Track Secure Score and … on with PowerShell and Microsoft Graph API for security automation Familiarity with M365 security, Zero Trust models, and Microsoft Information Protection Knowledge of compliance tools and frameworks (e.g. GDPR, ISO 27001, NIS2) Experience with Azure Firewall, NSGs, ASGs, and endpoint management Certifications (Required) Microsoft Certified: Azure Security Engineer Associate (AZ-500) Microsoft Certified: Cybersecurity Architect Expert (SC-100) or More ❯

plans. Maintain and update security policies, procedures, and incident response plans. Deliver security awareness training and advise clients on best practices. Support audits and compliance initiatives (ISO 27001, NIST, GDPR, etc.). Work cross-functionally with internal and external teams, including partner engagements. Research emerging threats and recommend security framework enhancements. Mentor and support junior security team members. What We … Proven skills in threat detection, incident response, and forensic analysis. Knowledge of SOAR tools (especially Palo Alto XSOAR or similar). Familiarity with compliance standards: ISO 27001, NIST, CIS, GDPR, HIPAA. Bonus: scripting / automation skills (Python, PowerShell, Bash). Deep understanding of Microsoft security technologies. Certifications such as CISSP, CEH, OSCP, CISM, or Security+ are highly desirable. Strong problem More ❯

and optimising semantic models and reports. Implement governance policies and frameworks to maintain data quality and ensure compliance with data security best practices and regulatory requirements (e.g., GDPR, HIPAA). Data Platform Integration Experience integrating Power BI with other data sources and platforms (e.g., Azure, Snowflake, SharePoint, SAP, Salesforce) Experience with REST APIs for data More ❯

level objectives (SLOs) and key performance indicators (KPIs) for all security services. Compliance, Governance & Risk Management: Ensure alignment with global compliance requirements such as ISO 27001, NIST, SOC 2, GDPR, and others. Partner with governance, legal, and ISRM teams to implement enforceable policies and standards across identity, endpoint, and data domains. Operationalize policy enforcement through automated controls and continuous More ❯

applicable laws, particularly within cybersecurity, data protection, and operational risk. What you will do: Lead and support the implementation of key compliance and cybersecurity frameworks (e.g. UK GDPR, ISO 27001, Cyber Essentials), while developing regulatory risk frameworks that track and operationalise emerging obligations. Conduct and coordinate risk assessments, internal reviews, audits, and control testing to ensure compliance with … compliance, risk management, information security, or cybersecurity governance - ideally within a regulated environment such as financial services or fintech. The ability to understand and apply regulatory frameworks (e.g. UK GDPR, ISO 27001) and translate them into business-friendly policies, controls, and processes. Confidence working with regulatory frameworks like UK GDPR, ISO 27001, and Cyber Essentials, and a willingness to navigate … of the following): Certifications or practical experience as / in CISMP, CompTIA Security+, ISO 27001 Lead Implementer, CISM, CISSP, or PCI DSS QSA. Awareness of key regulations, including UK GDPR, Data Protection Act 2018, and the NIS Regulations An understanding of security risk management, governance, and policy implementation Awareness of common security threats, vulnerabilities, and related controls Basic More ❯

monitoring, detection, and response using cloud-native security solutions such as Microsoft Defender, Sentinel, and SIEM platforms. • Ensure compliance with cloud security frameworks and regulatory requirements (ISO 27001, NIST, GDPR, SOC2, FCA). • Conduct regular security risk assessments, penetration tests, and vulnerability management across cloud services. • Oversee endpoint security, cloud network and API security for robust protection across all … Exchange, SharePoint, Teams), Azure cloud infrastructure, and security tools such as Microsoft Defender and Sentinel. • Security & Compliance: Deep knowledge of security frameworks (ISO 27001, NIST, CIS), compliance requirements (GDPR, SOC2), and risk management best practices. • Identity & Access Management (IAM): Expertise in Azure AD, MFA, Conditional Access, Single Sign-On (SSO), and Privileged Access Management (PAM). • Threat Management & Incident Response More ❯

audits.- Strong knowledge of information security frameworks and standards.- Excellent analytical and problem-solving skills.- Strong communication and interpersonal skills.**Preferred Qualifications:**- Experience with regulatory compliance requirements such as GDPR, HIPAA, or SOX.- Familiarity with security tools and technologies such as SIEM, DLP, and endpoint protection. CISA / CISSP / CCSP MCSA-Microsoft Windows Server MCSE- Microsoft Certified Solution Expert More ❯

systems (infrastructure and applications) as needed or in accordance with the security strategic plan. Ensures successful compliance of data protection and security requirements within applicable legislation (e.g., GDPR, UK Data Protection Act etc.). Conducts assessment on the security of new applications and programs prior to installation or upgrade and within the Software Development Lifecycle. Participates More ❯

leading discussions with more senior stakeholders and acting as a point of escalations. Ensure compliance with legal, regulatory, and professional obligations, including client confidentiality, data protection (e.g., GDPR), and audit requirements in architecture and engineering work. Act as a key liaison with Risk, Legal, and Compliance teams to align platform security with client contracts and industry expectations. Team More ❯

leading discussions with more senior stakeholders and acting as a point of escalations. Ensure compliance with legal, regulatory, and professional obligations, including client confidentiality, data protection (e.g., GDPR), and audit requirements in architecture and engineering work. Act as a key liaison with Risk, Legal, and Compliance teams to align platform security with client contracts and industry expectations. Team More ❯

predictive analytics to proactively prevent outages. Security, Compliance & Risk Management: Drive zero-trust security frameworks, ensuring secure and resilient network access. Ensure adherence to ISO 27001, NIST, SOC 2, GDPR, and industry best practices. Collaborate with cybersecurity teams to enhance network threat detection and mitigation. Implement automated security policy enforcement, reducing human intervention in risk mitigation. Financial & Vendor Management: Optimize More ❯

the CMDB, improvingvisibility, compliance, and lifecycle managementof IT assets. Security, Compliance & Risk Management: Embedsecurity and compliance into operational workflowswith automated security controls. Ensure adherence toISO 27001, NIST, SOC 2, GDPR, and cloud security best practices. Collaborate withcybersecurity teamsto integratezero-trust security models. Driveresiliency planning, disaster recovery, and business continuity initiatives. Financial & Vendor Management: Optimize IT operational budgets with acost-effective More ❯

security and performance Work with Terraform, Deployment Manager, and CloudFormation for IaC-based deployments Security and Compliance: Implement cloud security measures and ensure compliance with ISO 27001, PCI DSS, GDPR, and other industry standards Define cloud architecture standards and best practices for a secure cloud environment Performance Optimisation: Monitor and optimise cloud resources for performance, scalability, and cost-efficiency Implement More ❯

CI / CD pipelines and DevOps operations Manage and interpret insights from cloud-native security tools (e.g., GuardDuty, Azure Defender) Ensure compliance with frameworks such as ISO 27001, NIST, GDPR, HIPAA Contribute to architectural design reviews, cloud migration planning, and documentation Support executive reporting by producing clear metrics for cyber risk posture Continuously track and respond to emerging threats and More ❯

Chief Information Officer: About DFT Operator: DFTO is the government's public sector rail owning group. Its purpose is to bring all currently privately-owned train operators into public ownership in advance of the creation of Great British Railways in More ❯

comprehensive and accurate SCV, enabling a holistic understanding of our customers. Data Governance & Compliance: Ensure data quality, accuracy, and compliance with relevant data privacy regulations (e.g., GDPR) within the CDP and SCV. Implement and maintain data governance policies and procedures. Internal Product Integration: Define how data from the CDP / SCV can be integrated into … experience with Google Cloud Platform (GCP) and BigQuery. Experience with data visualization tools, particularly Power BI. Strong understanding of API integrations. Solid understanding of data privacy regulations (GDPR and other data capture regulations). Stakeholder Management: Proven ability to effectively manage and influence stakeholders across different departments and levels of seniority. Communication Skills: Excellent written and verbal More ❯