18 of 18 ISO/IEC 27001 Jobs in the City of London

as policies, standards, and procedures. Report on security performance metrics to senior leadership on a monthly basis. Ensure compliance with key frameworks including ISO 27001:2022, ISO 27701:2019, and SOC 2 across multiple international offices. Lead internal audits and manage responses to external … secure behaviours through awareness training and internal communication. Essential: Hands-on experience with ISO 27001, ISO 27701 and / or SOC 2 standards. Strong grasp of global data protection laws, particularly GDPR and CCPA. Able to work independently and coordinate with a wide More ❯

as policies, standards, and procedures. Report on security performance metrics to senior leadership on a monthly basis. Ensure compliance with key frameworks including ISO 27001:2022, ISO 27701:2019, and SOC 2 across multiple international offices. Lead internal audits and manage responses to external … secure behaviours through awareness training and internal communication. Essential: Hands-on experience with ISO 27001, ISO 27701 and / or SOC 2 standards. Strong grasp of global data protection laws, particularly GDPR and CCPA. Able to work independently and coordinate with a wide More ❯

as policies, standards, and procedures. Report on security performance metrics to senior leadership on a monthly basis. Ensure compliance with key frameworks including ISO 27001:2022, ISO 27701:2019, and SOC 2 across multiple international offices. Lead internal audits and manage responses to external … secure behaviours through awareness training and internal communication. Essential: Hands-on experience with ISO 27001, ISO 27701 and / or SOC 2 standards. Strong grasp of global data protection laws, particularly GDPR and CCPA. Able to work independently and coordinate with a wide More ❯

PLEASE NOTE THIS ROLE SITS WITHIN IR35***PLEASE NOTE THIS ROLE SITS WITHIN IR35*** AV Support Assistant / Audio Visual Specialist / AV Engineer A fantastic opportunity has arisen for an AV Support Assistant / Audio Visual Specialist / AV Engineer to join our London based … global law firm on initial 6 month contract. AV Support Assistant / Audio Visual Specialist / AV Engineer Summary: Our clients IT team is responsible for delivery of a responsive, effective and timely IT support service to the firm's employees and clients. They devise and implement operational … PowerPoint, and Excel - Knowledge of Remote Access systems and focusing on supporting remotely - Understanding of ITIL (v2 or v3), understanding of ISMS / ISO27001 would be desirable. AV Support Assistant / Audio Visual Specialist / AV Engineer ***PLEASE NOTE THIS ROLE SITS WITHIN IR35***PLEASE NOTE THIS More ❯

Cloud Application Security Engineer / Cloud Security Engineer - AWS / AppSec / IAM (Okta) Application Security Engineer / AWS Security Engineer / CloudSec Location: Hybrid London (2 days per week onsite) Ready to drive secure engineering at scale in a leading fintech? Were looking for … Youll work with DevOps and engineering teams to build secure-by-design solutions in AWS using tools like IAM, Okta, AWS Shield, and SAST / DAST. This is a high-impact role with a focus on AppSec, cloud security architecture, observability and secure software development . Key Responsibilities Conduct … secure code reviews and threat modelling Improve security in AWS (Security Hub, Shield, IAM) Integrate AppSec practices into CI / CD pipelines Run vulnerability management and bug bounty programs Build security dashboards, frameworks, and reusable libraries Promote secure coding and AppSec best practices across teams What You Bring Deep More ❯

requires the functional capability and proficiency to technically augment the team capabilities (when required) and have a detailed knowledge of technical IT support roles / services as a requirement, across multiple technical areas. Security, Compliance & Risk Management Define and enforce cloud security policies, identity management, and access controls to … response using cloud-native security solutions such as Microsoft Defender, Sentinel, and SIEM platforms. Ensure compliance with cloud security frameworks and regulatory requirements (ISO 27001, NIST, GDPR, SOC2, FCA). Conduct regular security risk assessments, penetration tests, and vulnerability management across cloud services. Oversee endpoint security … Exchange, SharePoint, Teams), Azure cloud infrastructure, and security tools such as Microsoft Defender and Sentinel. Security & Compliance: Deep knowledge of security frameworks (ISO 27001, NIST, CIS), compliance requirements (GDPR, SOC2), and risk management best practices. Identity & Access Management (IAM): Expertise in Azure AD, MFA, Conditional Access More ❯

Key Areas of Responsibility: Regulatory Implementation & Frameworks Assist in establishing a comprehensive resilience framework that meets DORA standards and other recognised guidelines (e.g. ISO 22301, ISO 27001, NIST). Draft internal controls, policies, training content, and risk assessment methodologies. Contribute to core DORA workstreams More ❯

enhance our security posture. Ensure alignment of security strategies with business objectives and compliance mandates. Hands-on DevSecOps Implementation: Integrate security practices into CI / CD pipelines, automating security testing and compliance checks. Collaborate with development and operations teams to ensure secure coding practices and configurations. Implement and manage … network architectures are secure, scalable, and resilient. Policy Development and Compliance: Develop and enforce security policies, standards, and guidelines. Collaborate with the Compliance Manager / CISO to ensure adherence to regulatory requirements (e.g., GDPR, ISO 27001). Incident Response and Management: Establish and maintain incident … with cloud security architectures (AWS). Technical Skills: understanding of security principles, protocols, and standards. Proficiency with DevOps and DevSecOps tools (e.g. GitLab CI / CD, Ansible, Terraform). Experience with security tools like SIEM / SOAR (preferably Rapid7), IDS / IPS, vulnerability scanners, and code analysis More ❯

IAM, vulnerability management, and SIEM configuration. Strong grasp of networking fundamentals, including DNS, WAF, and ingress, paired with experience in CPSM. Familiarity with GIT / version control, SDLC pipelines and implementing compliance frameworks (NIST2, SOC2, ISO 27001). Benefits: 25 days annual leave in addition … to Bank holidays. Hybrid working pattern; 3 days a week in the office, 2 days remote. Discretionary commission / bonus scheme. Company pension scheme. Life and medical insurance, and eyecare scheme. Employee Assistance Program. Cycle to work scheme. Family-friendly policies. Recruit and Reward scheme. Access to perk-box … to ensuring equal opportunities, fairness of treatment, dignity and respect, and the elimination of all forms of discrimination in the workplace for all employees / contractors and job applicants. More ❯

expertise. Ability to optimize operational costs while maintaining service quality. Regulatory & Compliance Expertise Knowledge of security industry regulations, standards, and best practices, including: ISO 27001 (Information Security) GDPR (for data privacy in surveillance) CPNI (Centre for the Protection of National Infrastructure) guidelines Local and international security More ❯

and internal audits Contribute to the ongoing improvement of security processes What We're Looking For: Experience in IT security or within a SOC / NOC environment Strong knowledge of Microsoft Defender, EDR, and network architecture Understanding of security frameworks (e.g., MITRE ATT&CK, NIST, ISO 27001 More ❯

Framework (CAF). Proven experience implementing SOAR services. StrongKnowledge of Windows Server security and Active Directory. Familiaritywith security frameworks and standards (e.g., NIST, ISO 27001). Experiencewith security tools and technologies (e.g., SIEM, EDR, DLP). What you need to do now If you're interested More ❯

Framework (CAF). Proven experience implementing SOAR services. StrongKnowledge of Windows Server security and Active Directory. Familiaritywith security frameworks and standards (e.g., NIST, ISO 27001). Experiencewith security tools and technologies (e.g., SIEM, EDR, DLP). What you need to do now If you're interested More ❯

Framework (CAF). Proven experience implementing SOAR services. StrongKnowledge of Windows Server security and Active Directory. Familiaritywith security frameworks and standards (e.g., NIST, ISO 27001). Experiencewith security tools and technologies (e.g., SIEM, EDR, DLP). What you need to do now If you're interested More ❯

cyber maturity, security architecture, cyber transformation, and regulatory compliance for cyber. Experience with recognised cyber security standards and regulations, such as NIST CSF, CRI2.0, ISO27001, NCSC CAF, GDPR, and NIS2. Experience working in various environments or organisational contexts to develop cyber strategy and manage cyber risk. A desire to work More ❯

technologies. (E.g. Red Hat Linux, Amazon Linux, Debian, git, SSH, rsync, nginx, apache, etc) Familiarity and experience with core Information Security principles and ISO 27001 accreditation (E.g. threat modelling, compartmentalisation, separation of concerns, principle of least privilege, etc) Ability to work independently and as part of More ❯

of the firm's systems and data worldwide. Key responsibilities: Develop and deliver security and infrastructure strategies aligned with business goals Drive compliance with ISO27001, Cyber Essentials+, and regulatory requirements Collaborate with senior stakeholders to meet service levels and security standards Lead the Cyber Security and Infrastructure teams to maintain More ❯

migrations from on-prem into Azure, and O365. Job duties of the Senior Infrastructure Engineer: Design of the enterprise infrastructure landscape. Writing HLD s / LLD s and implementing the designs. Administration of O365 (SharePoint, Security, Defender, Teams, Exchange). Azure Hybrid Cloud administration, contributing to the migration into … migration experience is a must. Infrastructure design and architecture experience. Experience working with a complex, enterprise infrastructure environment. Implementation of backup solutions and development / testing of disaster recovery plans to ensure business continuity. Experience with Acronis is very advantageous. Scripting and automation experience. Networking knowledge and skills (TCP … IP, DNS, WAN / LAN ect.), ideally with Cisco technologies. End User Computing (Intune, Group Policy, Virtual Desktop ect.). Understanding of ISO27001 compliance and security monitoring tools (defender, purview ect.). Senior Infrastructure Engineer London Up to £75,000 per annum To discuss this exciting opportunity in More ❯