1 to 25 of 90 Permanent ISO/IEC 27001 Jobs in London

conferencing setups, and working with an AV partner to keep meeting spaces fully operational. Carrying out routine IT checks, patch reviews, endpoint monitoring, access / user audits, and helping with Cyber Essentials and ISO 27001 evidence, documentation and control implementation. Supporting internal audits, IT asset … experience with Microsoft 365 (Teams, SharePoint, OneDrive, Outlook). Experience with Intune for device management, compliance and Autopilot builds. Understanding of Azure AD / Entra ID identity and access administration. Experience supporting Microsoft Teams Rooms and conferencing / AV solutions. Strong troubleshooting across hardware, software and mobile devices ...

support assurance and governance activities What You Bring Professional qualifications such as CISA, RiskIT, CISM, CISSP, or CSSLP (desirable) Knowledge of technology risk / control taxonomies and industry frameworks (COBIT, ISO 27001, ISO / IEC 27034) Experience in IT with … risk / controls focus, or in IT-specialized internal audit Understanding of Software Development Lifecycles (SDLC) and IT General Controls (ITGCs) Excellent relationship management and collaboration skills; ability to challenge IT colleagues on control design / operation and track agreed remediation activities Understanding of audit requirements; ability ...

Purpose of Position As Information Security Risk Manager (f / m / d) you will own and drive Awin’s global Information Security Risk Management capability end-to-end, ensuring the business not only understands its risks but takes measurable action to reduce them. You will be accountable … implementing, or improving control frameworks Experience with GRC platforms (e.g. Hyperproof) Confident communicator (with very good English skills) - able to build relationships and challenge / influence senior stakeholders Our Offer Flexi-Week and Work-Life Balance : We prioritise your mental health and well-being, offering you a flexible four ...

/ Windows servers, SQL / Oracle databases Excellent attention to detail, communication skills, PowerShell scripting Incident management experience, Microsoft Office proficiency Desirable: ISO27001 / NIST knowledge, Splunk / ServiceNow / SailPoint, 24 / 7 shift flexibility Location: London with hybrid working model (3 days … great fit: Identity Access Management Engineer, IAM Engineer, RSA IGL Engineer, Cyber Security Engineer, Privileged Access Management Specialist, Identity Governance, SailPoint, Splunk, ServiceNow, ISO27001, NIST, financial services security. Deerfoot Recruitment Solutions Ltd is a leading independent tech recruitment consultancy in the UK. For every CV sent to clients, we donate ...

across Managed ServicesEssential:* Strong understanding of cyber security principles across GRC and technical domains* Knowledge of frameworks such as NIST CSF, ISO / IEC 27001 / 27002, CIS Controls, and Cyber Essentials* Understanding of risk management, threat landscapes, and control effectiveness* Experience … across multiple cyber service areas (e.g., SOC / MDR, vulnerability management, security awareness, CTI, advisory, vCISO)* Ability to identify service improvement opportunities* Experience contributing to cyber roadmaps, improvement programmes, or compliance initiatives Modis International Ltd acts as an employment agency for permanent recruitment and an employment business ...

ROLE OVERVIEW / / We are seeking a technically adept Application Engineer to join our Business Systems team in the Technology department. You will be part of a cross-functional team of engineers who are responsible for the configuration, development, implementation, security and support of the firm … expert for the firm’s Azure integrations. You will work with other applications, such as the Master Data Management system, as needed. KEY RESPONSIBILITIES / / Application Management and Development Manage the configuration, deployment and ongoing support of Azure integrations. Develop, test and optimise Azure integrations. Serve ...

Senior Security Analyst / Security Engineer London (City) | £80,000–£90,000 | Permanent If you’re the kind of security engineer who can spot an active threat, contain it calmly, and then harden the environment so it doesn’t happen again — this role is built for you.We’re hiring … hands-on Senior Security Analyst / Security Engineer to strengthen a Microsoft-centric security posture across detection, response, tooling, and infrastructure hardening. Not a one-lane SOC role. Not governance-heavy. This role blends incident response with security engineering and hardening and ideal for someone with 4–5 years ...

private endpoints, and secure landing zone design; AWS security experience also considered Network security engineering: firewall policy design and lifecycle management, micro-segmentation, NSG / UDR / NVA architecture, hub-spoke topology, and perimeter defence for hybrid environments WAF design, deployment, and operational tuning - Cloudflare, Azure Application Gateway … triage workflow - you write the rules, not just read the dashboard Endpoint and desktop security: EDR deployment and tuning (Defender for Endpoint, CrowdStrike), Intune / Jamf device management, privileged access workstations, JIT / JEA models API and application security: threat modelling (STRIDE / PASTA), OAuth 2.0 / ...

will contribute... Governance, Risk & Compliance (GRC) Leadership Lead and manage the GRC team, aligning cyber and business goals while ensuring compliance with NIS-R, ISO27001 / 2, and NIST-2. Oversee delivery plans, resource allocation, and stakeholder engagement for GRC initiatives. Training & Awareness Develop and maintain SGN’s Information … from incidents and address feedback from training delivery. Information Security Policy & ISMS Maintain a robust portfolio of security policies, standards, and procedures to support ISO27001, NIST, and NIS eCAF compliance. Ensure policies are current, reviewed regularly, and approved by key stakeholders. Manage SGN’s Information Security Management System (ISMS ...

Facilities Building Supervisor / Manager - Data centre The Facilities Buildings Supervisor is responsible for all Data Centre buildings. This is a pivotal role within a 5* DC campus The key objective of the role is to work with the team to take ownership of the DC’s (excluding critical … including efficiency, quality and fabric across the site, ensuring that all buildings are maintained in compliance with industry best practice, legislation and relevant ISO standards, that they are energy efficient and serve our teams and customers perfectly. The role takes ownership of delivering building management projects aiming ...

Infrastructure / Security / DevOps A high‐growth AI company is building the next generation of workflow automation for large enterprises — and are looking for a Senior Infrastructure Engineer to help scale their platform as they onboard global customers. The product transforms complex, manual processes into fully automated … reliability culture, and operational excellence. Key Responsibilities Architect, implement, and scale cloud infrastructure to support rapid growth Prepare systems and processes for SOC 2 / ISO 27001 audit readiness Build and maintain CI / CD pipelines across backend, frontend, and data services Develop ...

London. You will be responsible for coordinating and responding to external and internal security and compliance audit activities while managing the firm's ISO27001 ISMS. Key Responsibilities: * Maintain the firm's ISO 27001 ISMS and associated deliverables. * Coordinate and maintain internal and external security assessment schedule. … Lead Auditor and / or extensive experience in working with ISO 27001 and related standards. * Working knowledge of ISO27001 and Cyber Essentials Plus requirements and controls. * 5+ years of IT and Security audits or assessments, or related experience. Security Compliance Manager In accordance with ...

Senior Cyber Architect — Security Architecture & Consulting Salary: Up to £75,000 base (DOE) + up to 10% bonus Location: Remote / Home-based with occasional client travel We’re supporting a growing cybersecurity consultancy that is expanding its security architecture and technical consulting capability due to increasing demand … Designing secure architectures across cloud, hybrid and on-prem infrastructure Producing key security architecture artefacts including threat models, risk assessments, architecture blueprints, and high / low-level design documentation Advising clients on implementing security controls aligned with frameworks such as NIST, CIS, ISO 27001, Cyber ...

opportunity for an IT Security Compliance Consultant ideally with certifications such as CISSP, CISM, ISO 27001 and / or Lead Auditor are highly desirable to ensure my clients IT systems, processes, and practices comply with regulatory requirements, industry standards, and internal security policies. This role … benefits package that includes: Pension (NYK contribute 7% of salary (up to a max of 10% based on employee contributions), Healthcare, Employee Assistance Programme / Interest free travel season ticket loan (upon completion of probation / Gym Membership / Medical cover / Health Cash Plan etc. ...

level) Embed security culture and human risk management approaches Support secure GenAI adoption aligned to regulatory requirements Drive architecture improvements aligned to NIST, ISO 27001, CIS, COBIT Contribute to proposals, RFPs, and proposition development Required Domain Expertise Security Assurance ISO 27001, NIST … Security Secure GenAI design and governance Understanding of EU AI Act, GDPR, DPA 2018 AI risk modelling and controls frameworks Security Architecture Enterprise and / or application security design Secure architectural patterns and control frameworks Security posture improvement initiatives Your Background ~2+ years delivering Cybersecurity projects Experience across domains ...

risk assessments, and advisory outputs. * Collaborate with technical and business stakeholders to design or enhance security control environments aligned to frameworks such as ISO 27001, NIST CSF, CIS Controls, and Cyber Essentials. Required Skills: * Experience within cyber security consulting, security auditing, or risk advisory roles. * Experience … delivering client-facing cyber risk advisory services. * Experience delivering assessments aligned with industry standards such as ISO 27001, NIST, CIS, NCSC 10 Steps, and GDPR. * Strong written and verbal communication skills, able to clearly articulate technical jargon to non-technical audiences and write impactful deliverables. * Experience ...

with technology and cyber teams to ensure privacy is embedded across digital services and platforms Support compliance with ISO 27001 / ISO 27701 and other relevant regulatory frameworks Key Skills & Experience: Strong experience working in data protection or information governance roles Excellent knowledge ...

Kerberos, LDAP). Embed Zero Trust and least privilege principles across enterprise systems and privileged roles. Develop and automate identity governance processes, leveraging AI / ML for anomaly detection and remediation. Oversee Conditional Access, risk-based authentication, and device / state-based access controls. Integrate IAM with … engineering platforms for policy-driven lifecycle management. Architect and maintain Active Directory (on-prem) and cloud identity platforms (Entra ID / Azure AD). Collaborate with security teams to define Azure policies, guardrails, and compliance controls (e.g., ISO 27001, ISO 22301). Align ...

collaboration multiple teams and departments to Assure that all new internal implementations and customer engagements are security assessed against the internal security standards / policies standards, customer requirements and best practices. This role requires UK National Security Vetting (e.g., SC / CTC / DV). The successful … assurance reviews for customer solution designs. Authoring level 1 solution assessment tool (SAT) sign off. Security assurance support to customer environments to ensure compliance / accreditation requirements are understood and correct ownership assigned. Support security management in BAU security assurance requirements including maintaining accreditation certification. Deliver security assurance support ...

London tech startup on the lookout for bright, motivated and self-driven individuals to join the team. Who you are You are a DevOps / Site Reliability Engineer with experience managing complex infrastructure and deploying scalable, reliable systems. You are passionate about automation, cloud technologies, and continuous improvement. Must … cloud-based infrastructure (AWS, Azure, or GCP). Hands-on experience with infrastructure-as-code tools such as Terraform, Ansible, or CloudFormation. Strong CI / CD pipeline design experience using tools like Jenkins, GitHub Actions, or GitLab CI. Proficiency in scripting languages such as Bash, Python, or Go. Experience ...

Compliance Manager - Information Technology London – Hybrid (3 days in the office on average) £75,000 / £85,000 + Bonus + Benefits We’re working with a growing international technology consulting organisation headquartered in London that supports global clients with digital transformation, cloud adoption, data and AI solutions. They … operational teams to maintain compliance frameworks, oversee certification programmes and strengthen enterprise risk management processes. Key Responsibilities • Lead compliance and certification frameworks including ISO 27001 and ISO 9001 • Manage internal and external audits and regulatory assurance processes • Develop and maintain enterprise risk and governance ...

Information Security Manager Location: City of London Salary: £55,000 - £65,000 Hours: Full-time, Office-based Department: Technology / Security About the Company A rapidly growing tech organisation is expanding its technology function and looking for a skilled Information Security Manager to strengthen its security posture. The business … Degree in Cyber Security, Computer Science, IT or equivalent experience Certifications such as CISSP, CISM, or ISO 27001 Lead Implementer / Auditor are beneficial Experience Essential: Strong experience in senior information security or cybersecurity roles Proven track record in building or owning security governance frameworks ...

Entra ID and Active Directory, overseeing requirements for Conditional Access, MFA, SSO, and PIM. Threat Detection & Incident Response: Own and operate the SIEM / SOAR stack, including Microsoft Sentinel and Defender XDR, to develop detection rules and support forensic investigations. Infrastructure Hardening: Enforce secure baselines across virtualized environments (VMware … / Hyper-V), Windows Servers, and Azure IaaS workloads. Data Protection: Manage the certificate lifecycle (PKI / AD CS) and implement data classification and DLP strategies using Microsoft Purview. Cloud Security Posture: Manage Azure Landing Zone security and connectivity, collaborating with Network Engineering to validate secure firewall ...

Threat Detection Engineer, you will be responsible for developing and enhancing threat detection capabilities within a modern cloud-first setting. This role offers hybrid / remote working options, a salary range of £60,000 - £80,000 and benefits. You will be responsible for: Designing and implementing threat-led detection … protection tools. Exposure to cloud-native logging in Azure and Kubernetes environments. Understanding of “detection as code” or “everything as code” approaches, including CI / CD pipelines. Experience working with or alongside MSP SOC teams. Awareness of Agile methodologies and ways of working. Knowledge of attacker TTPs, threat modelling ...

Threat Detection Engineer, you will be responsible for developing and enhancing threat detection capabilities within a modern cloud-first setting. This role offers hybrid / remote working options, a salary range of £60,000 - £80,000 and benefits. You will be responsible for: Designing and implementing threat-led detection … protection tools. Exposure to cloud-native logging in Azure and Kubernetes environments. Understanding of “detection as code” or “everything as code” approaches, including CI / CD pipelines. Experience working with or alongside MSP SOC teams. Awareness of Agile methodologies and ways of working. Knowledge of attacker TTPs, threat modelling ...