1 to 25 of 41 ISO/IEC 27001 Jobs in the City of London

logical and physical topology). Hybrid Connectivity Design Principles and Standards (DNS-based policy, Zero Trust segmentation, firewalling). Detailed Bill of Materials (vendor / platform options, sizing, licence models, costs to Class 4 estimate). Delivery Project Plan (work breakdown structure, stage gates, dependencies, critical path). Security … Digital Distribution, Connectivity, Architecture, InfoSec, Service Assurance, Commercial) to define cross-connects, circuits, and governance alignment. Assessment of hyperscaler scope (AWS in baseline; Azure / GCP to be evaluated) and interconnection locations (carrier-neutral DCs / IX presence). Deliverables or KPIs (e.g. uptime %, response times, resolution targets ...

Threat Detection, Secure Remote Access, and Adaptive Security Policies—balancing exceptional user experience with enterprise-grade security. We operate under an ISO / IEC 27001-certified ISMS and an ITIL-aligned service management framework, ensuring integrity, resilience, and operational excellence. Joining Zero Plus … issues with cloud systems and resources. Monitor and optimise performance across hybrid, cross-tenancy, and multi-cloud environments. Implement observability tooling. Ensure compliance with ISO27001 standards, Zero Trust principles, and Well-Architected Frameworks. Maintain accurate documentation and mentor junior engineers. This role gives you the opportunity to deliver secure, modern ...

senior advisor, providing expert guidance in areas such as enterprise cyber risk management, operating model design, regulatory compliance (e.g. NIST CSF, ISO / IEC 2700x, EU DORA, NIS2). Champion knowledge development, thought leadership, and practice innovation in emerging security trends, regulations, and technology. Mentor … consulting environments, with demonstrable success engaging senior stakeholders. Recognised professional qualifications (e.g. CISSP, CISM, CCSP, ISO 27001 Lead Auditor / Implementer, MSc Information Security). Outstanding strategic, analytical, and leadership skills; credible communicator with ability to distil technical concepts for executive audiences. Track record ...

major carrier-dense, globally connected data centre campus. The site supports mission-critical colocation services, high-density deployments, extensive interconnection ecosystems, and 24 / 7 operational demands. This role oversees facilities operations, engineering / M&E teams, and incident management processes while ensuring excellence in service delivery … Energy Management Engineering Practices & Technical Experience Candidates must demonstrate strong engineering competence across the following data centre disciplines: Electrical Systems HV / LV distribution systems, transformers, switchgear, busbars and panel boards UPS systems (static & rotary), battery technologies (VRLA, Lithium-ion) Generator systems, fuel delivery, and synchronisation controls Electrical Protection ...

mainly focusses on information security, cybersecurity, and data security from a Greenfield perspective. We are on a journey to secure Cyber Essentials plus and ISO27001 certification. You MUST have experience working with banking / financial services regulations, FCA, PRA etc. Liaison with the Head Office, Security Operation Centre … audits. You will be part of the IT committee and work closely with the risk and compliance team. Ideally, having a background in IT / Network security, progressing into information security and cybersecurity. **Key Responsibilities:** - Develop, draft, implement, and maintain information security policies, procedures, and guidelines. - Conduct regular security ...

with real ownership — ideal for someone ready to step up and shape a growing security function. The Role Build and mature security frameworks (ISO 27001, CE+, NIST … Lead gap analysis and audit readiness Own the security risk register and drive mitigation Develop policies, standards, and procedures Support ISO 22301 / business continuity Coordinate internal / external audits and evidence gathering Manage vendor risk and customer due-diligence requests Provide independent governance oversight (separate ...

including those in FTSE 350, will allow you to gain experience across a range of sectors including: Financial Services, Banking, Insurance and Investment Corporates / Private Sector / Industry & Services Central and Local Government Retail and Consumer products organisations Job Purpose The role is to support the team … fieldwork and preparation of deliverables including actively contributing to final recommendations. Your responsibilities include: Actively involve in the delivery of our Internal Audit / Consulting engagements. Act a subject matter expert in various security and risk management domains (e.g., IT risk management, cyber risk, security target operating model, governance ...

audit findings in clear, well-structured reports, highlighting control deficiencies, root causes, risk implications, and actionable recommendations for management and governance stakeholders. Required Skills / Experience: - Strong understanding of ISA 315 / 330 / 402 - Experience delivering IT Assurance, SOC 1 & 2, and IT Internal Audit engagements. … across varied system environments. - Sound knowledge of ERP systems (SAP, Oracle, Dynamics, Sage, Xero) and cloud platforms (AWS, Azure, GCP). - Familiar with ISO 27001, COBIT, and NIST frameworks. IT Audit Assistant Manager In accordance with the Employment Agencies and Employment Businesses Regulations 2003, this position ...

Title: SOC Engineer Location: On-site, London moving to hybrid 3 days on-site after 2-week induction Start Date: Immediate Contract length: 31 / 03 / 26 further extensions expected Clearance Required: BPSS (must be obtained prior to onboarding) Day rate: £400 - £500 Candidates must hold … work effectively within a collaborative SOC team Desirable Skills Experience with incident documentation and reporting Familiarity with security frameworks (MITRE ATT&CK, NIST, ISO 27001) Ability to adapt quickly to new tools, threats, and operational priorities Any relevant certifications (e.g., Security+, CySA+, Microsoft SC-series, GIAC ...

Security Project Manager £600 / day Leeds (3 days onsite per week) Outside IR35 About the Role As the Security Project Manager, you will play a crucial part in the successful delivery of the company's Security Improvement Programme. Your primary responsibility will be to lead the planning, execution ...

Security Engineer Assurance / Report Writing Were looking for a Security Assurance Engineer with the ability to see the whole security picturetechnology, people, and process. Youll join a team of experienced cyber specialists, but your role is to step back from the individual technical outputs and assess what they … must have been active within the last 12 months. Experience producing structured security assurance documentation, security cases, or security arguments (e.g., using GSN, safety / security case approaches, or similar). The ability to interpret diverse security inputspen test results, architectural designs, risk assessments, compliance outputsand turn them into ...

under pressure. QualificationsAnd Knowledge Strong understanding of key cybersecurity standards and best practices. Familiarity with leading information security frameworks such as NIST CSF, ISO 27001, and Cyber Essentials. Governance-focused certifications are advantageous, including CISMP, CISM, CISSP, or CompTIA A+. Awareness of regulatory and compliance requirements ...

fast-growingspecialistsoftwarecompanyatapivotalmomentinitsjourney. WhyThisRoleisDifferent Since2013,TrinitatumhavebuiltareputationservingglobalenergytradingandfinancialservicesorganisationswiththeirTriangleTestAutomationplatform - reducingtestingeffortbyover70%andacceleratingreleasesfromweekstodays.Theirrecentstrategicpartnershipsareopeningglobalmarkets,andtheyneedatechnologyleaderwhocanscalewiththem. You'llworkdirectlywiththeirCEOChrisJonesandtheseniorleadershipteamthroughthreedistinctphases: Phase1:TheFixer(Months1-6) Rapidlyassess,identifygaps,andimplementcriticalfoundationsfromsecurityposturetooperationalresilience. Phase2:TheBuilder(Months6-18) Establishscalablestructuresandleadtheproductroadmap.Drivebestpracticedevelopmentstandards,buildsecuritycredentials(SOC2,ISO27001),andarchitectforscaleacrosstheirAzure / .NETstack. Phase3:TheScaler(18+months) TransitionintotheCTOrole.Leadtechnicalvision,scaleengineeringcapabilityinternationally,anddrivemarketdifferentiationthroughtechnicalexcellence. YourFirst12Months:TheMission-CriticalChallenges Workingshoulder-to-shoulderwithChris,you'lltacklefourkeyareas: ProductSecurity&Compliance AuditTriangle,implementend-to-endsecurityimprovements,andestablishpathwaystoSOC2complianceforourhighlyregulatedclients … ProductRoadmap&Strategy Createaconversationalroadmapthatbalancesnewfeatureswithtechnicaldebtwhilstguidingcustomerenhancementpriorities BestPracticeDevelopmentStandards Implementautomatedtestingframeworks,introduceBDDpractices,andbuildacultureofcontinuousimprovement OperationalResilience Eliminatesinglepointsoffailure,createredundancy,andestablishrobustbusinesscontinuitycapabilities WhatMakesYouExceptional Youbring: Deep.Netmasteryyou'vebuiltproductionsystemsatscale StrongAzurearchitectureexperiencewithcloud-nativedesignpatterns Demonstrablesecurityframeworkexperience(SOC2,ISO27001,ITIL) Hands-onautomatedtestingframeworksexpertise PracticalBDDfamiliarity Moreimportantly,youare: Astrategicpartnerwhocanbalancetechnicalexcellencewithcommercialreality Hands-onwhenneededcomfortablecoding,reviewingarchitecture,ordebuggingcriticalissues Ateambuilderreadytorecruit,mentor,anddeveloptechnicaltalent Customer-awareyouunderstandthatTriangleservesmission-criticaltradingsystemswherereliabilitymatters Growth-orientatedexcitedbythejourneyfromspecialistconsultancytoglobalsoftwareplatform BonusPointsFor: ETRM / CTRMplatformexperience,financialservicesorenergysectorbackground,experiencewithEndur / Findur / ...

business development efforts. You’ll also play a key role in helping us stay ahead of the curve in areas like ISO standards, Cyber Essentials, and sustainability. What We’re Looking For... A recent graduate (Business, Management, Sustainability, Economics, or Compliance related fields are desired) A self-starter … part of a team What you’ll be doing Technology and SAP Knowledge : Preferred experience and understanding of technology (SAP, Salesforce, MS Dynamics / Oracle / Service Now) to effectively communicate complex concepts to our target audience Microsoft 365 Proficiency : Proficient in Microsoft 365 applications, including PowerPoint, Word ...

Experience and Skills Required At least seven years’ experience in PAM with five years hands-on experience in CyberArk Identity Security Platform (cloud) and / or Privileged Access Security (on-premise) Deep understanding of CyberArk components including Vault, CPM, PVWA, PSM, PTA, AIM and cloud equivalents Proven experience managing … CyberArk certification (Defender, Sentry, Guardian) preferred Desirable Experience working with CyberArk Professional Services or certified partners Knowledge of financial regulatory frameworks such as ISO 27001, NIST, or GDPR Scripting experience using PowerShell or Python for automation and integration For a full consultation, send your ...

conducting security assessments and producing assurance reports. Ability to engage and influence stakeholders at all levels. Familiarity with security frameworks and standards (e.g., ISO 27001, NIST, CIS Controls). Excellent communication, planning, and organisational skills. Experience managing teams and developing talent. Ability to interpret complex technical … Hybrid working - 3 days on site Career Development: Continuous learning and professional growth. Benefits Package: Includes Private Health Care, Cash Back Plan, Buy / Sell Holiday Options, Life Assurance, and more. Interested? Submit your application to learn more about this exciting opportunity. Reasonable Adjustments: Respect and equality are core ...

will act as the organisation's subject matter expert on information security compliance and data protection, ensuring adherence to recognised standards such as ISO 27001, Cyber Essentials Plus, and NIS2, alongside compliance with the UK General Data Protection Regulation (UK GDPR) and other relevant legislation. … have certification in CIPP / E, CIPM, CIPT, CISSP, or equivalent privacy or cybersecurity qualification - A strong knowledge of GDPR, UKGDPR ePrivacy Directive, ISO27001, national data protection laws and FOIA is a must - The ability to handle sensitive and confidential information with integrity is necessary and a priority ...

will act as the organisation s subject matter expert on information security compliance and data protection, ensuring adherence to recognised standards such as ISO 27001, Cyber Essentials Plus, and NIS2, alongside compliance with the UK General Data Protection Regulation (UK GDPR) and other relevant legislation. … have certification in CIPP / E, CIPM, CIPT, CISSP, or equivalent privacy or cybersecurity qualification - A strong knowledge of GDPR, UKGDPR ePrivacy Directive, ISO27001, national data protection laws and FOIA is a must - The ability to handle sensitive and confidential information with integrity is necessary and a priority ...

will act as the organisation’s subject matter expert on information security compliance and data protection, ensuring adherence to recognised standards such as ISO 27001, Cyber Essentials Plus, and NIS2, alongside compliance with the UK General Data Protection Regulation (UK GDPR) and other relevant legislation. … have certification in CIPP / E, CIPM, CIPT, CISSP, or equivalent privacy or cybersecurity qualification - A strong knowledge of GDPR, UKGDPR ePrivacy Directive, ISO27001, national data protection laws and FOIA is a must - The ability to handle sensitive and confidential information with integrity is necessary and a priority ...

Defender for Cloud, Defender for Endpoint and EASM Vulnerability remediation and Secure Score improvement Purview (DLP, sensitivity labels, insider risk) Compliance uplift for ISO 27001, SOC 2, GDPR and NIS2 Configuration hardening, patching and policy deployment Entra ID, Conditional Access, PIM and cloud identity controls PowerShell ...

hybrid environments. Project Management certification (PRINCE2, PMP, or Agile). Desirable Experience working with CyberArk Professional Services or certified partners. Knowledge of ISO 27001, NIST or GDPR frameworks. Experience in financial services or other regulated industries If you have strong project delivery expertise with a deep ...

Security Architect Rate: £700 / day Contract: Inside IR35 Location: Remote, UK-based only Sector: NHS or Central Government experience is ESSENTIAL Overview We are supporting a public sector organisation in the NHS or central government space that is looking for an experienced Security Architect to support the design … infrastructure , including security considerations around data pipelines, model hosting, and AI-enabled services Nice to Have Experience supporting data platforms, analytics, or AI / ML initiatives Exposure to large-scale cloud migrations or digital transformation programmes Strong stakeholder management and communication skills Apply now or email for more information ...

Role: Security & Information Risk Advisor (SIRA) Location: London (hybrid) Rate: £500-550 p / d Duration: Initial 6 month work package Start: January 2026 Active SC clearance is required. We're looking for an experienced Security & Information Risk Advisor to support secure, high-impact programmes within a sensitive … supplier and third-party security controls What You'll Bring Experience in information security, risk management, or assurance Strong understanding of NCSC guidance, ISO 27001, and government security classifications Ability to communicate risk clearly to technical and non-technical audiences If you're ready to apply ...

Incident Response Identity, Access & Data Security Risk & Compliance Support Security Training and awareness Required Technical Experience: Proven experience in a hands-on IT security / cybersecurity role Logging and monitoring Security Tooling (vulnerability scanning (Tenable, Qualys, Rapid7) Endpoint or network security platforms IAM or access control systems Ability … analyse security findings and implement effective technical remediation Strong understanding of security controls, policies, and technical standards Desirable Experience working with ISO 27001, NIST, or similar frameworks Exposure to security architecture or secure system design ...

alignment with regulatory and business requirements Consultation & Productization Lead initiatives to develop and standardise consultation offerings based on frameworks such as Cyber Essentials, ISO 27001, and similar Translate customer needs and compliance obligations into actionable service packages and product features Collaborate with technical and commercial teams ...