1 to 25 of 28 ISO/IEC 27001 Jobs in the City of London

the primary contact for external auditors and certification bodies, planning and managing surveillance and recertification audits. Coordinate internal audits and spot checks across all standards and ensure effective corrective / preventive action processes are in place. Maintain and manage risk registers, compliance logs, document control processes, and policy updates. Work with leadership and key stakeholders to embed compliance practices … advisors to establish board-level reporting on ESG progress and support Tender submissions. Prepare the business for evolving ESG activities and regulatory frameworks. Person Specification Essential Demonstrable experience managing ISO27001:2022, ISO9001 and ideally ISO 14001 / 45001 within a multi-business environment. Proven ability to develop and manage an Integrated Management System (IMS). Strong understanding … of risk management, internal audit, and continual improvement principles. Excellent communication and stakeholder engagement skills. Highly organised with attention to detail. Desirable Certified Internal or Lead Auditor in ISO27001, 9001, 14001, or 45001. NEBOSH or IEMA qualifications. Experience in SaaS, GRC, property compliance, or similarly regulated sectors. Familiarity with compliance platforms (e.g. ISMS.online, Q-Pulse, etc.) Soft Skills Strong communication More ❯

Microsoft Dynamics Nav Developer. This is an excellent opportunity to make a meaningful impact within a collaborative and forward-thinking environment. The Role at a Glance: Microsoft Dynamics NAV / BC Developer - C / AL / AL. 100% Remote UK £60,000 - £70,000 Training and Development Contributory pension scheme, Perkbox Membership Company: Leading provider of tailored … chain, inventory management and the back-office; benefiting both the NHS and healthcare suppliers Pedigree: First GS1 UK Approved Solution for inventory management in the NHS. ISO / IEC 27001:2022 Certified. ISO (Apply online only) Certified Awards: Extensive awards in the Heath Tech, Innovation & Supply Chain Categories Other Tech Innovations … Familiar with Microsoft SQL Server, XML, APIs, and other OOP languages (e.g., C#, Java). Tooling & Standards: • Experienced with DevOps, GitHub, and automated testing tools. • Knowledge of ISO9001 and ISO27001 standards and integrated management systems. Consultancy & Mentoring: • Consultancy experience in Microsoft Dynamics NAV / BC implementations. • Familiar with third-party NAV / BC tools such as Tasklet Mobile More ❯

Full Stack Engineer / Developer (JavaScript TypeScript ISO 27001) WFH / London to £75k Are you a security focussed Full Stack Developer looking for an opportunity to progress your career? You could be working on Tech for Good application for the healthcare sector that utilises AI and Machine Learning techniques to help prevent patients … and ensure solutions are highly scalable and maintainable. This is a great opportunity to join a scaling start-up in a role that you can shape and influence. Location / WFH: You can work from home most of the time, meeting up with colleagues in the London office once a month / quarter. About you: You have strong … with occasional team meet-ups Private Healthcare Pension Opportunity to make a difference, working on Tech for Good Apply now to find out more about this Full Stack Developer / Engineer (JavaScript TypeScript) opportunity. At Client Server we believe in a diverse workplace that allows people to play to their strengths and continually learn. We're an equal opportunities More ❯

Working knowledge of Active Directory, AAD, Windows Server, SQL Server, Oracle, Linux, Cloud Backup Solutions and Cloud Computing Principals. Familiarity with and experience working to the ISO / IEC 27001 standards Experience of working to tight SLA / OLA's and deadlines Experience of change management process Ability to apply existing knowledge More ❯

Head of Information Security Location: London Rate: Up to £1,000 / day outside IR35 Hybrid: 50% of time onsite Sector: Strong regulated industries Contract Type: 6-9 months contract Job Summary: Our client, a leading legal firm, is seeking an experienced Head of Information Security to lead their security function and drive enterprise-wide strategy. This senior leadership … 27001 across multiple organizations with accreditation experience Strong background in developing and executing security policies, standards, and remediation programs Industry certifications such as ISC2 CISSP / SSCP, SANS / GIAC GSEC, or ISACA CISM / CISA Outstanding communication skills with ability to present complex security concepts to diverse audiences To be considered, please … ensure you complete your application on the Computappoint website. Services offered by Computappoint Limited are those of an Employment Business and / or Employment Agency in relation to this vacancy . More ❯

IT Risk Management Specialist City of London / Hybrid 6-months contract Up £750 per day (via Umbrella) cer Financial are working alongside a bank who are based in the City of London. They are seeking an IT Risk Management Specialist to work with them on a contract. The responsibilities of the IT Risk Management Specialist will include: Provide … update process documentation across key technology processes to support governance, compliance, and operational consistency. SSSDLC Integration: Support the integration of security controls and risk assessments throughout the Secure Software / System Development Lifecycle. Controls Assurance: Review and challenge the design and operation of controls to ensure they mitigate risks effectively. Risk Register Monitoring: Maintain and update a register of … track through to completion. The successful It Risk Management Specialist will have: Technology Knowledge: Work towards a detailed understanding of Technology and cyber risk frameworks (e.g. NIST / ISO27001 / COBIT / ITIL). SSSDLC Expertise: Understanding of the Secure Software / System Development Lifecycle, including secure design, development, testing, and deployment practices. Process Documentation: Experience More ❯

Cyber & Technology Security Manager - Data Center Location: London / UK Salary: £85- £95k + Travel Allowance £5k / Anum , Bonus (2x salary), Pension, Life Assurance, Healthcare, Income Protection Contract: Permanent Reporting to: Senior European IT Director Are you ready to take full ownership of a high-profile cybersecurity function, shaping strategy across both IT and Operational Technology (OT … technology risk management. Key Responsibilities: Develop, implement, and maintain a robust cybersecurity strategy and governance framework aligned with business and regulatory requirements. Oversee technical security controls including firewalls, IDS / IPS, SIEM, IAM, endpoint protection, and cloud security (Azure, AWS). Lead threat detection, incident response, and recovery, ensuring minimal business disruption. Manage patching processes, AI-driven email intelligence … Strong knowledge of security frameworks (ISO 27001, NIST, CIS Controls) and regulatory compliance requirements (GDPR, NIS2). Hands-on expertise with firewalls, SIEM, IAM, IDS / IPS, and cloud security. Strong understanding of networking, infrastructure, and application security. Experience in OT security or within a data centre environment is advantageous. Why Join Us? This is More ❯

Contract Role - SOC Manager / Cyber Security Operations Manager - Leeds / Remote - 12 Months Initial - Inside IR35 We are seeking an exceptional SOC Manager / Cyber Security Operations Manager to lead our Cyber Security Operations Centre; responsible for managing the day-to-day operations of the SOC team, overseeing incident detection and response, ensuring vulnerability scanning and … remediation efforts across the organization. Role Overview: Job Title: SOC Manager / Cyber Security Operations Manager Location: Leeds / England / Remote Contract Type: Contract Duration: 12 months initially Sector: Healthcare . Qualifications: Bachelor’s degree in Cybersecurity, Information Technology, or a related field (Master’s preferred). Minimum 5 years of experience in cybersecurity operations, with … 27001, NIST, GDPR, or CIS Familiarity with scripting or automation for incident response or scanning processes. Please feel free to contact myself - Daisy Nguyen at Gibbs Consulting / Atrium UK for a confidential chat to know more details about the role. Please also note: Due to the volume of applications received for positions, it will not be More ❯

strategic and operational decisions, supporting the business in managing risk appropriately. Maintain legal risk register and contribute to companywide risk review. Policy Oversight and Monitoring Where relevant implement and / or maintain key corporate policies owned by the legal team, including but not limited to anti-bribery and corruption, competition, whistleblowing, data protection and ethical conduct. Monitor adherence and … in or leading the design and implementation of compliance frameworks, policies, and legal risk controls across multiple jurisdictions. Familiarity with international compliance standards and regulations. Working knowledge of ISO standards such as ISO 27001 (information security), ISO … compliance management), or ISO 9001 (quality management), and their practical application within business operations. Understanding of internal control design, maintenance of compliance registers, and participation in internal / external audits. Proficient in using legal research tools, compliance management platforms, and document control systems. Skilled in drafting and managing corporate policies and procedures to support legal, regulatory, and More ❯

the spirit of regulatory frameworks. Key Areas of Responsibility: Regulatory Implementation & Frameworks Assist in establishing a comprehensive resilience framework that meets DORA standards and other recognised guidelines (e.g. ISO 22301, ISO 27001, NIST). Draft internal controls, policies, training content, and risk assessment methodologies. Contribute to core DORA workstreams such as ICT risk management More ❯

with production, maintenance, IT, and vendors to align solutions with business outcomes. Evaluate and deploy technologies like edge computing, data historians, and cloud IoT platforms. Ensure compliance with IEC 62443, ISO 27001, and other industry regulations. Support deployment of manufacturing analytics and AI-based solutions. Maintain high-quality documentation and facilitate knowledge transfer across … You Certifications in TOGAF, AWS Solution Architect, ISA-95, or IEC 62443 are a plus. Experience with MES platforms (e.g., Aveva, GE Proficy), SCADA systems, and IT / OT convergence tools (e.g., Azure IoT, Siemens MindSphere). Strong understanding of industrial protocols (OPC UA, MQTT, Modbus) and control systems (PLCs, DCS). Proficient in Python, SQL, C# More ❯

Information Security Officer Hybrid – Home & London | Permanent | £68,000 | 35 hrs / week (flexible) A rare and brilliant opportunity to join this international development children’s charity, as their new Information Security Officer . You'll be the expert, working closely with the Chief Information Officer and other senior leaders to embed security practices across systems, suppliers, and staff. … experience in ICT security management and incident response (CIS and Cyber Essential Plus). Strong technical knowledge of Microsoft 365, Azure, and cloud security. Familiarity with frameworks like ISO 27001, NIST, and … CIS. Excellent communication skills and a pragmatic, risk-based mindset. Relevant certifications (e.g. AZ-500, CISSP, CISM, CCSP) are highly desirable. This role offers hyrbid working (1-2 days / week in office) as well as open discussion around different working patterns i.e 9-day fortnight and varied start / finish times. The organisation values professional development and More ❯

CyberArk, OpenText, ServiceNow and Microsoft to enhance the relationship with Turnkey and deliver value to our clients When needed, work alongside our Sales, Marketing & Innovation team to provide materials / Pre-Sales support for sales activities Writing and reviewing reports and other client-facing deliverables, to a high standard The expectation will be that you have basic skill in … IAM vendors capabilities (e.g. Life Cycle Management, Application Onboarding, Workflows, Provisioning, Access Review, Reports, Roles, SoDs, etc.) Identity Governance and Administration (IGA) Identity Management (IDM) Ideally with good conceptual / practical knowledge of: Access Management (inc. Single Sign-On (SSO) / Multi-Factor Authentication (MFA) / Password-less Authentication) Privileged Access Management (PAM) Consumer Identity (CIAM) Required … an IAM solution across all aspects of the SDLC (Analyse, Design, Develop / Configure, Test, Deploy, Document) Understanding of regulatory frameworks, and their application to IAM, e.g. SOx, ISO27001, NIST, HIPAA, GDPR, PSD2, etc. Ideally, an education in Business, IT, IT security or related field Advantageous: Professional certifications such as CISSP, CISA, ITIL, etc. Product certifications from SailPoint, or More ❯

CyberArk, OpenText, ServiceNow and Microsoft to enhance the relationship with Turnkey and deliver value to our clients When needed, work alongside our Sales, Marketing & Innovation team to provide materials / Pre-Sales support for sales activities Writing and reviewing reports and other client-facing deliverables, to a high standard The expectation will be that you have basic skill in … IAM vendors capabilities (e.g. Life Cycle Management, Application Onboarding, Workflows, Provisioning, Access Review, Reports, Roles, SoDs, etc.) Identity Governance and Administration (IGA) Identity Management (IDM) Ideally with good conceptual / practical knowledge of: Access Management (inc. Single Sign-On (SSO) / Multi-Factor Authentication (MFA) / Password-less Authentication) Privileged Access Management (PAM) Consumer Identity (CIAM) Required … an IAM solution across all aspects of the SDLC (Analyse, Design, Develop / Configure, Test, Deploy, Document) Understanding of regulatory frameworks, and their application to IAM, e.g. SOx, ISO27001, NIST, HIPAA, GDPR, PSD2, etc. Ideally, an education in Business, IT, IT security or related field Advantageous: Professional certifications such as CISSP, CISA, ITIL, etc. Product certifications from SailPoint, or More ❯

expectations and internal governance standards. Drive continuous improvement in risk data quality, reporting processes, and analytics capabilities. The Requirements: Skills: Strong knowledge of risk management frameworks (e.g., NIST, ISO 27001, COBIT) and control environments. Deep understanding of IT general controls, cyber security principles, and technology risk domains. Proven experience in risk analytics, data visualization, and reporting More ❯

Full Stack Engineer / Developer (JavaScript TypeScript) WFH / London to £75k Opportunity to progress your career as a Full Stack Developer working on Tech for Good application for the healthcare sector that utilises AI and Machine Learning techniques to help prevent patients from experiencing health crisis. As a Full Stack Engineer you'll collaborate with a small … and ensure solutions are highly scalable and maintainable. This is a great opportunity to join a scaling start-up in a role that you can shape and influence. Location / WFH: You can work from home most of the time, meeting up with colleagues in the London office once a month / quarter. About you: You have strong … with occasional team meet-ups Private Healthcare Pension Opportunity to make a difference, working on Tech for Good Apply now to find out more about this Full Stack Engineer / Developer (JavaScript TypeScript) opportunity. At Client Server we believe in a diverse workplace that allows people to play to their strengths and continually learn. We're an equal opportunities More ❯

OpenAI, Key Vault, Azure Policy Experience with Self Hosting LLM Fine-tuning and prompt engineering for LLMs (e.g., GPT, Gemini, Claude) Secure deployment of LLMs via APIs with input / output filtering and logging Integration of LLMs into RAG pipelines, document intelligence, and agentic workflows Use of vector databases (e.g., FAISS, Pinecone, Chroma) for semantic search and retrieval Implementation … agentic patterns to automate complex financial tasks such as client onboarding, document summarisation, and risk signal extraction Security Tooling Static code analysis (Bandit, SonarQube) Secrets scanning, encryption (at rest / in-transit), token management Identity integration (Google Identity, Azure Entra ID) Data Security & Governance RAG pipelines with data classification, masking, and DLP GDPR and data residency compliance MLOps & DevSecOps … GitHub Actions, CI / CD security testing, model drift detection, audit logging Lab Environment Tooling Infrastructure-as-Code (IaC): Terraform, Pulumi Containerization & Orchestration: Docker, Kubernetes (GKE / AKS) Networking & Isolation: VPCs, private endpoints, firewall rules, network policies Data Sandboxing: Synthetic datasets, masking, DLP tooling Monitoring & Observability: Prometheus, Grafana, Cloud Logging More ❯

capability growth What We’re Looking For 5+ years in cybersecurity or cyber advisory Experience leading cyber transformation in a consulting or enterprise environment Deep understanding of frameworks: NIST, ISO27001, GDPR, NIS2, CAF Track record managing teams and complex project delivery Executive-level stakeholder management and influencing skills Certifications (CISSP, CISM, CISA, M.Inst.ISP) highly desirable This is a chance to … security strategy and join a team that’s influencing cybersecurity at the highest levels. Apply now or contact Declan Bryson at Anson McCade on 07529 161950 quoting ref AMC / DB / CSM / 83 . More ❯

solve real-world security challenges Key Skills & Experience Cyber Security: Experience in cyber strategy, risk management, security architecture, transformation programmes, and regulatory compliance Knowledge of relevant standards: NIST CSF, ISO27001, NCSC CAF, GDPR, NIS2, etc. Certifications such as CISSP, CISM, CISA, M.Inst.ISP, or MSc in Cyber Security Hands-on experience in areas like GRC, cyber threat management, vulnerability management Strong … into a leadership role, and want to work in a collaborative environment solving complex problems. Get in touch with Anna-Jane Murphy at Anson McCade to learn more. AMC / AJM / CSCDLJT More ❯

Information Security GRC Manager | ISO27001, SOC2, Azure Security | Global Trading Platform £70–80k base + 10% bonus Hybrid in London Training budget for certifications + conference attendance Strong emphasis on professional autonomy and ethical leadership A newly created opportunity to lead and shape the GRC function of a global financial group at a pivotal time, supporting the secure rollout of … U.S. banking operations, driving ISO27001 and SOC2 maturity, and mentoring an evolving InfoSec team. This is a hands-on manager-level role with real scope: oversight of policy, third-party risk, architectural reviews, and cloud compliance. You'll work closely with the Head of InfoSec to maintain audit readiness, improve security posture, and influence business-wide awareness and accountability. What … you’ll bring: 5+ years in InfoSec, IT Security or Ops within a regulated environment Certification required: CISSP, CISM, CRISC, or equivalent Strong knowledge of ISO27001:2022, SOC2 Type II, NIST CSF, PCI DSS, GDPR, DORA Confident with security risk assessments, audit responses, and policy governance Hands-on cloud security experience: ideally with Azure and the Shared Responsibility Model Comfort More ❯

Cybersecurity Consultant – Senior Manager Location – Hybrid – London 1 day / wk Salary £65 – £80k + all the usual benefit’s Looking for more than just another consulting gig? If you're a seasoned cybersecurity consultant who’s hands-on, client-focused, and ready to lead — this is your chance to play a pivotal role in shaping this fast-growing … complex consulting projects for major UK clients — from security gap assessments to crisis simulations, risk frameworks, and technical reviews. Support the development and delivery of both technical (e.g. M365 / cloud config reviews, vulnerability assessments) and GRC engagements. Help shape and evolve our cyber propositions , working closely with delivery leads across managed services, threat intel, and MDR. Scope and … inspire others. You should have: A track record of consulting and delivering a wide range of cyber engagements — both GRC and technical. Strong understanding of frameworks like NIST, ISO 27001, CIS, and a pragmatic view on applying them. Familiarity with technical tooling for assessments, vulnerability analysis, and cloud reviews (you don’t need to be an More ❯

qualification legal experience, ideally including in-house experience in a SaaS or tech business. Strong working knowledge of privacy and data protection laws (especially GDPR). Familiarity with ISO 27001, SOC 2, or similar frameworks. Skills & Attributes Strong commercial judgment, drafting skills, and attention to detail. Practical, solutions-focused approach to balancing risk and business outcomes. More ❯

Senior Consultant / Manager – Cyber Strategy & Transformation Location: London (hybrid) Salary: Up to £80,000 + Bonus Are you passionate about cyber security and transformation? Do you want to help organisations navigate the complex, fast-evolving world of cyber risk while enabling digital growth and resilience? We’re looking for a dynamic and driven professional to join a high … Design and deliver cyber transformation programmes that align with business goals. Define governance frameworks, target operating models, and maturity roadmaps. Support clients in achieving regulatory compliance (e.g., NIS2, GDPR, ISO27001). Lead or support project delivery across multiple sectors and stakeholder levels. What We’re Looking For You are a cyber professional with strong consulting experience and the ability to … strategic, operational, and technical domains. You should have: Cyber Expertise: 4+ years experience in cyber strategy, risk, maturity assessments, and operating models. Knowledge of frameworks such as NIST CSF, ISO27001, NCSC CAF, CRI 2.0. Exposure to regulatory environments including NIS2 and GDPR. Relevant certifications (e.g., CISSP, CISM, CISA, MSc in Cyber Security). Consulting Skills: Strong client-facing communication and More ❯

programmes, from maturity assessments through to implementation Developing governance frameworks, roadmaps, and operating models that drive sustainable improvement Advising on key regulatory and standards-based compliance across NIS2, CAF, ISO27001, GDPR, and more Supporting the development of junior colleagues while building your own leadership brand What we’re looking for: Proven experience in cyber strategy, cyber risk, transformation, or security … governance Strong understanding of industry frameworks such as NIST CSF, ISO27001, CAF or CRI2.0 Ability to communicate clearly with stakeholders at all levels — from technical teams through to board-level A blend of consulting and hands-on delivery experience (internal or external) Ideally, a relevant certification such as CISSP, CISM, CISA, or MSc in Cyber Security Strong analytical and problem More ❯

Lead the design and delivery of cyber strategies for large-scale organisations. Develop actionable cyber transformation roadmaps aligned to business needs. Advise on regulatory compliance and governance frameworks (e.g. ISO27001, GDPR, NIST). Engage confidently with stakeholders across technical teams, risk functions, and board level. Oversee cyber risk assessments, maturity modelling, and security architecture projects. Ideal Candidate Profile Strong consulting … experience in cyber strategy, transformation, or risk management. Understanding of cyber frameworks such as NIST CSF, ISO27001, NCSC CAF, GDPR, or NIS2. Holds or is working toward certifications such as CISSP, CISM, CISA, or equivalent. Comfortable managing project teams and delivering to time and budget. Excellent communication skills, able to present complex topics to senior stakeholders. Previous experience in a More ❯