2 of 2 Permanent ISO/IEC 27005 Jobs in London

as required Contract Type: Permanent & Full-time Salary: Competitive + Benefits About the Role As an ISO27001 Consultant, you will support client engagements to design, implement, and maintain ISO frameworks, supporting clients through gap analysis, remediation, certification readiness, and continual improvement. You'll input and collaborate with senior stakeholders across industries to deliver strategic advisory and hands-on … in ISO27001 implementation and auditing Strong understanding of ISMS frameworks and private sector regulatory requirements Excellent communication and client-facing consultancy skills Relevant certifications such as ISO27001 Lead Auditor / Implementor, CISSP, CISM, CRISC, CISA Experience with additional standards (ISO / IEC27701, ISO / IEC29100, ISO / IEC42001, ISO / IEC22301) is a plus What's in it for You Flexible Working: Remote-first with travel as needed. Career Development: Continuous learning and professional growth. Benefits Package: Includes Private Health Care, Cash Back Plan, Buy / Sell Holiday Options, Life Assurance, and more. Interested? Submit your application to learn more about this exciting opportunity. Reasonable More ❯

Assess current maturity and deliver a transformation roadmap that unifies fragmented processes into a single, clear model aligned to Trainline's risk appetite. Maintain key standards such as ISO 27001, ISO 22301, and PCI DSS, while ensuring they add real business value. Manage and develop the Risk and Compliance team, setting clear goals and cultivating an … programs to build a strong, security-first culture across Trainline. Own the development, communication, and maintenance of information security policies, ensuring alignment with evolving threats and compliance needs. Qualifications / What we're looking for Experience transforming or scaling GRC or risk management functions within dynamic, high-growth or complex businesses. Proven ability to balance control and creativity - tailoring … business. A proven record of leading and developing high-performing teams, setting clear goals and cultivating accountability and continuous improvement. Deep understanding of enterprise and cyber risk frameworks (ISO 27005, ISO 31000, NIST CSF) and how to communicate risk appetite in business terms. Excellent communication skills, with the ability to present complex risk and More ❯