1 to 25 of 106 Remote ISO/IEC 27001 Jobs in London

Senior ISO27001 Consultant Location: Hybrid (75% remote) with on-site presence as required Contract Type: Permanent & Full-time Salary: Competitive + Benefits About the Role As a Senior ISO27001 Consultant, you will lead client engagements to design, implement, and maintain ISO frameworks, supporting clients through gap analysis, remediation, certification readiness, and continual improvement. You'll collaborate with senior … through Stage 1 and Stage 2 certification audits Establish ISMS performance monitoring and reporting mechanisms Provide targeted training to embed a security-first culture Experience Required Proven experience in ISO27001 implementation and auditing Strong understanding of ISMS frameworks and private sector regulatory requirements Excellent communication and client-facing consultancy skills Relevant certifications such as ISO27001 Lead Auditor / Implementor … CISSP, CISM, CRISC, CISA Experience with additional standards (ISO / IEC27701, ISO / IEC29100, ISO / IEC42001, ISO / IEC22301) is a plus What's in it for You Flexible Working: Remote-first with travel as needed. Career Development: Continuous learning and professional growth. Benefits Package: Includes Private More ❯

the status of all mitigating controls to both Business and Technology risk committees as appropriate.The scope of this role covers all Technology Risks; IT Strategy and Architecture, Service Management / Stability, Capacity / Capability Management, Disaster Recovery and Crisis Management. This role will also integrate the output from the Information Security Risk and Transformation Risk teams into the … overall risk reporting for each Business Unit. You'll help us make health happen through: Interpreting and communicating to the Business Unit changes to Risk Polices, Business / IT Strategy, legislation that impact the existing Risk and Control Framework. Identifying and assessing Technology Management and Information Security issues so that control environments are properly defined and residual risk regularly … essential. Demonstrable experience in Information Technology audits or IT Assurance (e.g., CISSP, CISM, CISA, CRISC, CCAK) A sound understanding of British and International Security Standards (e.g., ISO / IEC 27001, ISO / IEC 27002, NIST, CIS-20, PCIDSS) and the UK regulatory environment (e.g., ICO, FCA, PRA and More ❯

will explore what is possible for the role. Role Responsibility Lead development and analyze and deliver solutions and ensure integration requirements align with best practice and policies for projects / BAU works which involves IT systems. Hands on skill to help deliver Design, Build, Test and also to lead / review the works delivered by third parties. Lead … and 3rd party vendors. Be "the go-to person" for all the integration related topics, information and knowledge of the integration technologies, platforms and architecture. Closely work with support / service team, 3rd parties to monitor integration related issues and lead resolution in timely manner (especially production incidents) and take proactive actions. Lead and manage integration architecture related artefacts … integration inventory, integration architecture / design, guidelines, integration patterns) Ensure compliance with IT Security policies, and participate in security, audit and regulatory initiatives. Reinforce security rules and escalate where risky activity is detected. Manage the schedule & timeline of the activities across multiple systems / regions, assess and avoid conflicts and streamline the work efforts and communicate with relevant More ❯

Network Infrastructure Security Manager - HYBRID WORKING Position Summary: We are seeking an experienced Infrastructure / Security Manager to lead our IT operations and cybersecurity initiatives. The ideal candidate will have a strong technical background, with the ability to combine hands-on technical expertise with leadership capabilities. Responsible for driving company IT security, and stability of all IT systems and … SIEM, MFA, PKI, DLP). Nessus VAPT reporting and remediation Strong expertise in: Microsoft technologies (Windows Server, Azure Active Directory) Virtualization platforms (VMware ESXi, Proxmox) Networking including Layer 2 / 3 switching, routing, VLANs, VPNs. Cloud environments (IBM Cloud,AWS, Azure) – deployments and architecture. Proficient in backup and disaster recovery technologies. Supporting end users Certifications (Preferred): Microsoft Certified Professional … AWS Certified Solutions Architect – Associate / Professional VMware Certified Professional (VCP) Due to the volume of applications received for positions, it will not be possible to respond to all applications and only applicants who are considered suitable for interview will be contacted. Proactive Appointments Limited operates as an employment agency and employment business and is an equal opportunities organisation More ❯

Cyber Security - Technical Security Architect (MOD) Location: Remote + South East / South West on-site presence as required Contract Type: Permanent & Full-time Salary: Competitive + Benefits About the Role As a Technical Cyber Security Architect, you will play a pivotal role in shaping secure architecture and delivering expert consultancy to our clients, particularly within the MOD and … as required for classified system access. Experience Required The successful candidate will possess Proven experience working in a Security Architect or technical cyber role, ideally within MOD / public sector and will have achieved or be working towards Full Membership of CIISEC and UK Cyber Security Council professional registration at either Chartered or Principal for Risk Management. Hold an … active and transferable SC clearance Willingness to undergo DV clearance / UK Citizen / residing in UK Strong working knowledge of: JSP440, JSP604 / 453, JSP490 MOD / GDS Secure by Design principles ISO 27001, NIST CSF, CIS Controls v8 HMG, NPSA, NCSC policies and guidance Cloud security (Azure, AWS), containerisation, KMS More ❯

Cyber Security - Technical Security Architect (MOD) Location: Remote + South East / South West on-site presence as required Contract Type: Permanent & Full-time Salary: Competitive + Benefits About the Role As a Technical Cyber Security Architect, you will play a pivotal role in shaping secure architecture and delivering expert consultancy to our clients, particularly within the MOD and … as required for classified system access. Experience Required The successful candidate will possess Proven experience working in a Security Architect or technical cyber role, ideally within MOD / public sector and will have achieved or be working towards Full Membership of CIISEC and UK Cyber Security Council professional registration at either Chartered or Principal for Risk Management. Hold an … active and transferable SC clearance Willingness to undergo DV clearance / UK Citizen / residing in UK Strong working knowledge of: JSP440, JSP604 / 453, JSP490 MOD / GDS Secure by Design principles ISO 27001, NIST CSF, CIS Controls v8 HMG, NPSA, NCSC policies and guidance Cloud security (Azure, AWS), containerisation, KMS More ❯

best practices Develop and support cloud security policies and technical standards Conduct security assessments, risk analysis, and contribute to security roadmaps Collaborate with teams to integrate security into CI / CD and cloud-native applications Microsoft Security Stack Configure and manage Microsoft Defender for Cloud, Defender for Endpoint, and Sentinel Deploy Microsoft Purview for compliance and information protection Manage … Work with Azure Key Vault and manage encryption and certificate strategies Collaborate with our SOC and managed Sentinel provider on incident handling Compliance & Governance Help ensure compliance with ISO 27001, SOC 2, GDPR, and NIS2 Support configuration and monitoring in Microsoft Compliance Manager Maintain security documentation and assist in audit preparation Configure insider risk management, audit … regulated industries Technical Skills Deep expertise in Azure security and Microsoft Defender suite Advanced skills in Microsoft Sentinel, Purview, Intune, and Defender for Endpoint Strong experience with Entra ID / Active Directory, Conditional Access, and PIM Hands-on with PowerShell and Microsoft Graph API for security automation Familiarity with M365 security, Zero Trust models, and Microsoft Information Protection Knowledge More ❯

best practices Develop and support cloud security policies and technical standards Conduct security assessments, risk analysis, and contribute to security roadmaps Collaborate with teams to integrate security into CI / CD and cloud-native applications Microsoft Security Stack Configure and manage Microsoft Defender for Cloud, Defender for Endpoint, and Sentinel Deploy Microsoft Purview for compliance and information protection Manage … Work with Azure Key Vault and manage encryption and certificate strategies Collaborate with our SOC and managed Sentinel provider on incident handling Compliance & Governance Help ensure compliance with ISO 27001, SOC 2, GDPR, and NIS2 Support configuration and monitoring in Microsoft Compliance Manager Maintain security documentation and assist in audit preparation Configure insider risk management, audit … regulated industries Technical Skills Deep expertise in Azure security and Microsoft Defender suite Advanced skills in Microsoft Sentinel, Purview, Intune, and Defender for Endpoint Strong experience with Entra ID / Active Directory, Conditional Access, and PIM Hands-on with PowerShell and Microsoft Graph API for security automation Familiarity with M365 security, Zero Trust models, and Microsoft Information Protection Knowledge More ❯

workforce solutions - from recruitment and technology to workforce supply, management, and training - tailored for the infrastructure, construction, and civil engineering sectors. Key Responsibilities: •Manage full lifecycle for 6+ IT / telecoms vendors, including contracts, renewals, and performance reviews •Oversee daily / weekly SLAs, drive service improvements, and align to ITIL metrics •Lead IT governance board; maintain risk register … and support ISO / cybersecurity compliance •Control £700k IT OPEX budget; track costs and manage asset register •Sponsor supplier-led projects (e.g., ERP, M365); build cases and track benefits •Communicate clearly with execs; use NPS / CSAT to improve supplier service What You'll Bring to the Team: •Managed multi-supplier, outsourced IT & telecoms contracts end … Understanding Microsoft Cloud environment •Run IT Teams across Microsoft stack •Led RFPs, contract negotiations, and vendor performance reviews •Tracked SLAs and supported supplier-led change projects •Familiar with ISO 27001, GDPR, and risk reporting •Clear communicator with execs, users, and vendors •Data-driven; focused on cost, service, and risk improvement Certifications & Education: Why Join Us? We More ❯

Technical Expertise* Strong understanding of cyber security principles and risk management.* Hands-on experience with cloud security, particularly Azure services and tools.* Familiarity with security frameworks such as ISO 27001, NIST, or CIS.* Knowledge of security technologies (firewalls, remote access, ZTNA).* Exposure to threat modelling and cyber threat intelligence is advantageous.Core Skills* Excellent communication and … be treated in the strictest confidence and we would always speak to you before discussing your CV with any potential employer. Keywords: Cyber Security, Azure Security, Cloud Security, ISO 27001, NIST, CIS, ZTNA, Threat Modelling, CISSP, CISM, CEH, Risk Management, Security Consultant, Information Security More ❯

Technical Expertise * Strong understanding of cyber security principles and risk management. * Hands-on experience with cloud security, particularly Azure services and tools. * Familiarity with security frameworks such as ISO 27001, NIST, or CIS. * Knowledge of security technologies (firewalls, remote access, ZTNA). * Exposure to threat modelling and cyber threat intelligence is advantageous. Core Skills * Excellent communication … be treated in the strictest confidence and we would always speak to you before discussing your CV with any potential employer. Keywords: Cyber Security, Azure Security, Cloud Security, ISO 27001, NIST, CIS, ZTNA, Threat Modelling, CISSP, CISM, CEH, Risk Management, Security Consultant, Information Security More ❯

business outcomes on their timelines. Become a product expert on Vanta and how our platform can be used to improve security posture through our compliance offerings (SOC 2, ISO 27001, GDPR, HIPAA, USDP and Custom Frameworks), Trust Reports, and Risk Management solution. Provide insightful technical answers and recommend the most efficient way for customers to achieve … trust in internet businesses by enabling companies to improve and prove their security. From our early days automating security monitoring for compliance standards like SOC 2, HIPAA and ISO 27001 to creating the world's leading Trust Management Platform, our vision remains unchanged. Now more than ever, making security continuous-not just a point-in-time More ❯

strategic and operational decisions, supporting the business in managing risk appropriately. Maintain legal risk register and contribute to companywide risk review. Policy Oversight and Monitoring Where relevant implement and / or maintain key corporate policies owned by the legal team, including but not limited to anti-bribery and corruption, competition, whistleblowing, data protection and ethical conduct. Monitor adherence and … in or leading the design and implementation of compliance frameworks, policies, and legal risk controls across multiple jurisdictions. Familiarity with international compliance standards and regulations. Working knowledge of ISO standards such as ISO 27001 (information security), ISO … compliance management), or ISO 9001 (quality management), and their practical application within business operations. Understanding of internal control design, maintenance of compliance registers, and participation in internal / external audits. Proficient in using legal research tools, compliance management platforms, and document control systems. Skilled in drafting and managing corporate policies and procedures to support legal, regulatory, and More ❯

strategic and operational decisions, supporting the business in managing risk appropriately. Maintain legal risk register and contribute to companywide risk review. Policy Oversight and Monitoring Where relevant implement and / or maintain key corporate policies owned by the legal team, including but not limited to anti-bribery and corruption, competition, whistleblowing, data protection and ethical conduct. Monitor adherence and … in or leading the design and implementation of compliance frameworks, policies, and legal risk controls across multiple jurisdictions. Familiarity with international compliance standards and regulations. Working knowledge of ISO standards such as ISO 27001 (information security), ISO … compliance management), or ISO 9001 (quality management), and their practical application within business operations. Understanding of internal control design, maintenance of compliance registers, and participation in internal / external audits. Proficient in using legal research tools, compliance management platforms, and document control systems. Skilled in drafting and managing corporate policies and procedures to support legal, regulatory, and More ❯

strategic and operational decisions, supporting the business in managing risk appropriately. Maintain legal risk register and contribute to companywide risk review. Policy Oversight and Monitoring Where relevant implement and / or maintain key corporate policies owned by the legal team, including but not limited to anti-bribery and corruption, competition, whistleblowing, data protection and ethical conduct. Monitor adherence and … in or leading the design and implementation of compliance frameworks, policies, and legal risk controls across multiple jurisdictions. Familiarity with international compliance standards and regulations. Working knowledge of ISO standards such as ISO 27001 (information security), ISO … compliance management), or ISO 9001 (quality management), and their practical application within business operations. Understanding of internal control design, maintenance of compliance registers, and participation in internal / external audits. Proficient in using legal research tools, compliance management platforms, and document control systems. Skilled in drafting and managing corporate policies and procedures to support legal, regulatory, and More ❯

strategic and operational decisions, supporting the business in managing risk appropriately. Maintain legal risk register and contribute to companywide risk review. Policy Oversight and Monitoring Where relevant implement and / or maintain key corporate policies owned by the legal team, including but not limited to anti-bribery and corruption, competition, whistleblowing, data protection and ethical conduct. Monitor adherence and … in or leading the design and implementation of compliance frameworks, policies, and legal risk controls across multiple jurisdictions. Familiarity with international compliance standards and regulations. Working knowledge of ISO standards such as ISO 27001 (information security), ISO … compliance management), or ISO 9001 (quality management), and their practical application within business operations. Understanding of internal control design, maintenance of compliance registers, and participation in internal / external audits. Proficient in using legal research tools, compliance management platforms, and document control systems. Skilled in drafting and managing corporate policies and procedures to support legal, regulatory, and More ❯

strategic and operational decisions, supporting the business in managing risk appropriately. Maintain legal risk register and contribute to companywide risk review. Policy Oversight and Monitoring Where relevant implement and / or maintain key corporate policies owned by the legal team, including but not limited to anti-bribery and corruption, competition, whistleblowing, data protection and ethical conduct. Monitor adherence and … in or leading the design and implementation of compliance frameworks, policies, and legal risk controls across multiple jurisdictions. Familiarity with international compliance standards and regulations. Working knowledge of ISO standards such as ISO 27001 (information security), ISO … compliance management), or ISO 9001 (quality management), and their practical application within business operations. Understanding of internal control design, maintenance of compliance registers, and participation in internal / external audits. Proficient in using legal research tools, compliance management platforms, and document control systems. Skilled in drafting and managing corporate policies and procedures to support legal, regulatory, and More ❯

from unauthorized access, disclosure, or loss.? Required Qualifications: Tertiary Degree or equivalent combination of education and work experience. Preferred Qualifications: Experience with security and risk-based standards such as ISO27001, ISO31000, NIST800, and PCI-DSS. Previous information security experience in a similar role. Regional experience required, global experience preferred. Experience working with outsourced service partners. Why QBE? At My Best … and inclusive because we want to attract and retain the best people to do the job, we have adopted flexible working across the company and welcome this conversation (https: / / careers / flex-qbe / ).? With more than more than 13,000 people working across 27 countries, we’re big enough to make a More ❯

Type: Full-time, Permanent Security Clearance: Candidates must hold SC level clearance and meet UK residency requirements About the Role We're looking for a Technical Cyber Security Consultant / Security Architect to join our client; a leading Cyber Consultancy that's shaping the future of secure digital transformation. This is a unique opportunity to work alongside expert peers … align with security standards and architectural patterns. Promote Secure by Design principles to reduce information risk. Validate security controls and their effectiveness. Deliver security architecture for cloud deployments (private / public). Design and scope IT Health Checks and interpret outcomes. Identify and mitigate security risks in solution architectures. Conduct threat modelling and risk analysis. Design proportional security controls … cloud technologies. Produce security architecture artefacts including standards and blueprints. What You'll Bring Prior and proven experience gained as a Security Architect or in a Technical Cyber Consultant / Engineer role. Expertise in: Security legislation (GDPR, PCI DSS, ICO) Frameworks (ISO 27001, NIST CSF, CIS Controls v8) HMG / NCSC policies and guidance More ❯

. ✔️ Strong experience drafting & negotiating commercial contracts. ✔️ Knowledge of data protection, commercial & contract law. ✔️ Pragmatic, proactive, and solutions-focused. ✔️ Excellent communicator & relationship-builder. 💡 Bonus points if you have: SaaS / fintech / tech sector experience. Knowledge of ISO 27001, SOC 2, payroll or financial services frameworks. Exposure to disputes, M&A, or advising professional More ❯

. ✔️ Strong experience drafting & negotiating commercial contracts. ✔️ Knowledge of data protection, commercial & contract law. ✔️ Pragmatic, proactive, and solutions-focused. ✔️ Excellent communicator & relationship-builder. 💡 Bonus points if you have: SaaS / fintech / tech sector experience. Knowledge of ISO 27001, SOC 2, payroll or financial services frameworks. Exposure to disputes, M&A, or advising professional More ❯

Sentinel - essential Microsoft Purview, Compliance Manager and related compliance tools Entra ID (Azure AD), Conditional Access and Identity Governance Data Loss Prevention, sensitivity labels and insider risk management ISO 27001, SOC 2, GDPR and NIS2 frameworks PowerShell … scripting and use of Microsoft Graph API Working across cloud, infrastructure and application teams Certifications required: AZ-500 SC-100 (or working towards) One or more of MS-500 / SC-400 / SC-900 The following are desired: CISSP, CISM, CCSP Interested? Please apply below. M365 Consultant, M365 Engineer, Senior Cloud Security Engineer, Infrastructure Engineer, Azure Security More ❯

Sentinel - essential Microsoft Purview, Compliance Manager and related compliance tools Entra ID (Azure AD), Conditional Access and Identity Governance Data Loss Prevention, sensitivity labels and insider risk management ISO 27001, SOC 2, GDPR and NIS2 frameworks PowerShell … scripting and use of Microsoft Graph API Working across cloud, infrastructure and application teams Certifications required: AZ-500 SC-100 (or working towards) One or more of MS-500 / SC-400 / SC-900 The following are desired: CISSP, CISM, CCSP Interested? Please apply below. Senior Security engineer, M365 Consultant, M365 Engineer, Senior Cloud Security Engineer, Infrastructure More ❯

needed for a leading organisation based in Croydon, who are looking to employ an experienced Cyber Security Manager with an in-depth knowledge of Cybersecurity frameworks, tools, and technologies, ISO27001 adoption, Incident management and Change management. This role involves the development and implementation of security strategies, policies, and procedures to protect against cybersecurity threats, as well as actively monitoring and … risk management, and vulnerability assessment Familiarity with regulatory compliance and standards (e.g. GDPR, ISO 27001) Experience in an organisation running or being part of an ISO27001 adoption project Incident management & change Management Certifications such as a Certificate in Cyber Security Practices, BCS Professional Certifications, Certificate in Information Security Management Principles (CISMP) or a Government Security Cyber … please apply as soon as possible as this position will be filled quickly so don't miss out! Services advertised by Gold Group are those of an Agency and / or an Employment Business. We will contact you within the next 14 days if you are selected for interview. For a copy of our privacy policy please visit our More ❯

inform the development of effective security measures. Support the development, implementation, and continuous improvement of the organization's security strategy, policies, and procedures. Support the maintenance of our ISO 27001 and SOC 2 Level 2 certifications. What you'll bring Bachelor's degree in Cybersecurity, Computer Science, Information Technology, or a related field. Master's degree More ❯