1 to 25 of 131 Remote ISO/IEC 27001 Jobs in London

best practices Develop and support cloud security policies and technical standards Conduct security assessments, risk analysis, and contribute to security roadmaps Collaborate with teams to integrate security into CI / CD and cloud-native applications Microsoft Security Stack Configure and manage Microsoft Defender for Cloud, Defender for Endpoint, and Sentinel Deploy Microsoft Purview for compliance and information protection Manage … Work with Azure Key Vault and manage encryption and certificate strategies Collaborate with our SOC and managed Sentinel provider on incident handling Compliance & Governance Help ensure compliance with ISO 27001, SOC 2, GDPR, and NIS2 Support configuration and monitoring in Microsoft Compliance Manager Maintain security documentation and assist in audit preparation Configure insider risk management, audit … regulated industries Technical Skills Deep expertise in Azure security and Microsoft Defender suite Advanced skills in Microsoft Sentinel, Purview, Intune, and Defender for Endpoint Strong experience with Entra ID / Active Directory, Conditional Access, and PIM Hands-on with PowerShell and Microsoft Graph API for security automation Familiarity with M365 security, Zero Trust models, and Microsoft Information Protection Knowledge More ❯

This job is brought to you by Jobs / Redefined, the UK's leading over-50s age inclusive jobs board. Sonata One is a rapidly scaling, regulated fund services and technology (fintech) business. We're The Private Funds Clearinghouse, connecting more than 53,000 investors with 6,500 funds and 180 fund managers around the globe. Our vision is … from a seamless, one & done experience across the fund lifecycle (from fund selection and subscription through to settlement and reporting) underpinned by a globally compliant KYC passport and 24 / 7 support. Fund managers can raise capital faster at a lower cost from a wider pool of pre-approved investors. Founded in 2015, Sonata One has a presence in … endpoint protection, DLP, etc.). Oversee the organization's incident response and business continuity plans, including simulations and real-time responses. Conduct regular security audits and work with internal / external auditors to support compliance. Collaborate with IT and business units to ensure secure systems development and operations. Compliance & Risk Management Ensure compliance with regulatory and legal security requirements More ❯

a Security Engineer or in a similar role, with deep understanding of the threat landscape, ideally in fintech environments. Hands-on expertise with security technologies, including firewalls, intrusion detection / prevention systems (IDS / IPS), SIEM, antivirus solutions, encryption mechanisms, and vulnerability assessment tools. Hands-on experience in security tools (e.g., SAST, DAST, OWASP ZAP). Relevant security … certifications, such as Security+, IAT II / III level, or equivalent. Strong capability in risk assessment, vulnerability management, and data informed decision-making. Solid understanding of incident response procedures, including containment, eradication, and recovery from cybersecurity events. Advanced proficiency in AWS, with experience in multi-region and hybrid cloud architectures Strong grasp of networking protocols, including TCP / … social office in Shoreditch Deliveroo for working late in the office Apply for this job indicates a required field First Name Last Name Preferred First Name Email Phone Resume / CV Enter manually Accepted file types: pdf, doc, docx, txt, rtf Enter manually Accepted file types: pdf, doc, docx, txt, rtf More ❯

Are you an accomplished IT Security Engineer (Application & / or Infrastructure focused) , looking to make your next move into a small team of like-minded, security focused people? Would you relish the opportunity to work with one of the UK’s leading independent Software houses , with a global footprint (but UK HQ), 500 staff & a focus on technical excellence … as CISSP, CEH, etc or equivalent are highly desirable. You have an in-depth knowledge of security principles, technologies, and best practices, threat detection and mitigation strategies. Mature understanding / experience with cloud security architecture (AWS, Azure) with a proven track record and work ethic that covers many platforms (Windows / Linux), to ensure optimal security posture. Proven … Excellent problem-solving and communication skills with an innate passion for security. A proactive approach to staying updated with the latest security threats, vulnerabilities, and mitigation techniques. Advantageous skills / experience: You will have worked on a variety of challenging projects, with multiple security tools & be confident working with internal stakeholders to make sure the organization is compliant with More ❯

Are you an accomplished IT Security Engineer (Application & / or Infrastructure focused) , looking to make your next move into a small team of like-minded, security focused people? Would you relish the opportunity to work with one of the UK’s leading independent Software houses , with a global footprint (but UK HQ), 500 staff & a focus on technical excellence … as CISSP, CEH, etc or equivalent are highly desirable. You have an in-depth knowledge of security principles, technologies, and best practices, threat detection and mitigation strategies. Mature understanding / experience with cloud security architecture (AWS, Azure) with a proven track record and work ethic that covers many platforms (Windows / Linux), to ensure optimal security posture. Proven … Excellent problem-solving and communication skills with an innate passion for security. A proactive approach to staying updated with the latest security threats, vulnerabilities, and mitigation techniques. Advantageous skills / experience: You will have worked on a variety of challenging projects, with multiple security tools & be confident working with internal stakeholders to make sure the organization is compliant with More ❯

level reporting. Key Responsibilities: Define and enforce security best practices across cloud environments (Azure, AWS) Lead cloud security risk assessments, audits, and incident response efforts Integrate security into CI / CD pipelines and DevOps operations Manage and interpret insights from cloud-native security tools (e.g., GuardDuty, Azure Defender) Ensure compliance with frameworks such as ISO 27001 More ❯

meantime! We are a friendly bunch and pride ourselves in having a strong culture and adhering to our values of resourcefulness, ambition, thoughtfulness and integrity. We really value work / life balance and we embrace a flat hierarchy structure company-wide. Join us and you'll learn fast about cutting-edge tech and work with some of the brightest … resolution of priority issues. Maintain a robust cyber incident response plan, including coordinating necessary responses to incidents and security investigations. Requirements Extensive practical experience implementing and maintaining an ISO 27001 compliant ISMS. Demonstrable experience with PCI DSS compliance, including preparing for and undergoing assessments. Familiarity with information security frameworks (e.g., NIST, CIS). Proficiency in risk More ❯

best practice (e.g., NIST CSF, OWASP SAMM), and compliance frameworks (SOC 2, ISO 27001, GDPR). Secure SDLC & DevSecOps - Build and maintain guardrails for static / dynamic analysis, container and IaC scanning, SBOM management, and supply-chain security; automate enforcement through CI / CD pipelines. Cloud & Infrastructure Security - Design and implement robust controls for … AWS (primary) and Azure / GCP (secondary): IAM, network segmentation, KMS, secrets management, WAF, EDR, and zero-trust patterns. Identity & Access Management (IAM) - Own enterprise IAM strategy, including RBAC, least-privilege provisioning, SSO, federation (OIDC / SAML), and privileged-access workflows. Monitoring, Detection & Response - Define audit logging, metrics, and telemetry requirements; integrate with SIEM / SOAR to … can be an enabler to success as an engineer. Experience working within high-sensitivity data environments Strong awareness of compliance standards and the requirements on software teams, especially for ISO27001 and SOC2. FedRAMP experience advantageous. Demonstrated experience performing threat modelling, penetration test scoping, and vulnerability management. Deep understanding of IAM concepts, encryption / key-management, and secure network design. More ❯

expertise with monitoring and securing enterprise class technology estates. You will have proven experience with Cyber Security best practice including the NIST Cloud Security guidelines. You will support ISO 27001 … compliance and have strong documentation skills. Experience in the Telco sector and knowledge of the UK Telecom Security Act would be advantageous to your application, as would CISSP and / or CISM accreditation. You will develop and maintain the information security architecture and will have proven experience with compliance, vulnerability management, network security, cloud security (AWS & Azure), firewalls and More ❯

Experience with governance, risk, and compliance frameworks (e.g., ISO 27001, NIST, GDPR) PRINCE2, PMP, or similar project management certification desirable Knowledge of cloud security (Azure / AWS) a plus Reasonable Adjustments: Respect and equality are core values to us. We are proud of the diverse and inclusive community we have built, and we welcome applications More ❯

Cyber Security Specialist ** Location: London / Hybrid (2 days in office) Rate: A highly competitive salary is available for suitable candidates Role Profile As a Cyber Security Specialist, you will be the go-to Subject Matter Expert (SME) for various projects, offering your insights and recommendations to enhance our security posture. With a strong technical background, you will work … and practises. Experience with security assessment and risk management methodologies. Proficiency in cloud security, particularly with Azure security tools and services. Familiarity with security standards and frameworks (e.g., ISO 27001, NIST, CIS). Knowledge of security technologies such as firewalls and web proxies; experience with ZTNA, CTI, and threat modelling is beneficial. Excellent communication and interpersonal More ❯

Security Operations are managed by Technology Operations so this role acts as a second line of defence. Compliance: Ensure compliance with relevant laws, regulations, and standards (e.g., GDPR, ISO 27001) by implementing and maintaining appropriate controls and procedures relevant to each of the territories that D&G operates. Security Architecture: Define and maintain the company's … of great benefits! Competitive salary and annual discretionary bonus Hybrid working - presence with purpose; you work from an office when it makes sense 25 days annual leave plus bank / public holidays, as well as an annual option to buy up to 5 additional days of annual leave Training opportunities as well as clearly defined career progression Health cash … employer funded cover to enable you to claim money back on essential healthcare costs, including dental, optical, physiotherapy and many more. Cover also includes unlimited access to a 24 / 7 virtual GP service Attractive company pension scheme Life assurance - employer funded cover of 4x basic salary Dedicated online benefit portal offering access to saving and lending facilities, financial More ❯

and evaluation of risk, as well as using GRC tools and guidance developed for Risk mitigation. Practical knowledge of information security standards and risk assessment frameworks such as ISO 27001, SOC 2, NIST 800-32 Strong knowledge of cyber controls, policies, and procedures. Experience of delivering metrics for senior level audiences. Demonstrate analytical and problem-solving … to work every day. And you'll never stop growing, whatever your level . Discover more reasons to connect with us, our people and purpose-driven culture at deloitte.co.uk / careers More ❯

Head of Cyber Security Location: London / Hybrid Type: Permanent Join a forward-thinking international organisation as Head of Cyber Security , where you will shape and lead the global cyber security strategy. This is a high-impact, senior leadership role ideal for someone who combines strategic oversight with hands-on expertise across security operations, incident response, and governance. As … cyber security strategy, policies, and controls across a multi-regional environment. Lead global security operations, including threat detection, incident response, and risk mitigation. Manage compliance with standards such as ISO27001, NIST, Cyber Essentials+, and GDPR. Build and develop a high-performing cyber team spanning multiple international offices. Collaborate with senior leadership, risk committees, and external vendors to ensure alignment on … level IT security teams and technologies. Deep understanding of cloud security (Microsoft stack preferred), firewalls, VPNs, ZTNA, and SIEM platforms. Knowledge of legal, regulatory, and risk management frameworks including ISO27001, GDPR, and NIST. Certifications such as CISSP, CISM or equivalent are desirable. Strong stakeholder engagement skills and the ability to work across business functions globally. Why Apply? Lead a global More ❯

services structure with mature or evolving capability across all areas of digital security and cyber defence. We align our efforts to the NIST framework and other recognised certifications including ISO27001 and SOC2 and strive to keep pace with the continually evolving threat landscape, in support of A&O Shearman's strategy to lead where global complexity creates opportunity. In addition … office based working for a minimum of 60% of your time ( i.e. three days per week for a full time role ) in accordance with our hybrid working policy. : youtu.be / WLYCYtSfJoc ,300# # / video# More ❯

services structure with mature or evolving capability across all areas of digital security and cyber defence. We align our efforts to the NIST framework and other recognised certifications including ISO27001 and SOC2 and strive to keep pace with the continually evolving threat landscape, in support of A&O Shearmans strategy to lead where global complexity creates opportunity. In addition, you … implemented in our environment and align with NIST and CIS benchmarks. Validate effectiveness of implemented IAM security controls through technical analysis. Perform residual IAM risk assessments and document acceptance / rejection rationale. Scope and manage IAM security testing including penetration tests and Red Teaming as well as remediation activities. Work closely with wider Information Security team to ensure compliance … security, with a significant focuson identity and access management. Current Azure certifications (e.g., Azure Security Engineer Associate). Strong knowledge of security and compliance standards and frameworks, such as ISO27001, MS CAF, and WAF. Excellent communication, leadership, and interpersonal skills, with the ability to collaborate across teams and with external parties such as MSSP. Ability to work effectively in a More ❯

services structure with mature or evolving capability across all areas of digital security and cyber defence. We align our efforts to the NIST framework and other recognised certifications including ISO27001 and SOC2 and strive to keep pace with the continually evolving threat landscape, in support of A&O Shearmans strategy to lead where global complexity creates opportunity. In addition, you More ❯

role in managing security incidents, audits, and vulnerability programs, while mentoring junior team members and helping shape the future of cybersecurity at Skillcast. Key Responsibilities: - Coordinate SOC 2, ISO 27001, and Cyber Essentials audits - including documentation, evidence management, gap analysis, and communication with auditors - Administer and enhance Azure Sentinel SIEM - including data source configuration, detection rule … stakeholder coordination, and remediation tracking - Implement and manage security controls across Azure and Kubernetes environments, ensuring scalable and secure architecture - Work closely with DevOps to embed security in CI / CD pipelines and infrastructure-as-code processes - Enforce security policies, standards, and procedures aligned with frameworks like ISO 27001 and NIST - Monitor and report on … You: - Bachelor’s degree in Cybersecurity, Computer Science, Information Technology, or related field - 5+ years of experience in cybersecurity and IT infrastructure roles - Hands-on experience with Azure, Kubernetes / Docker, and CI / CD security practices - Proficient in SIEM platforms (especially Azure Sentinel) and vulnerability management tools - Strong knowledge of incident response, infrastructure hardening, and cloud security More ❯

role in managing security incidents, audits, and vulnerability programs, while mentoring junior team members and helping shape the future of cybersecurity at Skillcast. Key Responsibilities: - Coordinate SOC 2, ISO 27001, and Cyber Essentials audits – including documentation, evidence management, gap analysis, and communication with auditors - Administer and enhance Azure Sentinel SIEM – including data source configuration, detection rule … stakeholder coordination, and remediation tracking - Implement and manage security controls across Azure and Kubernetes environments, ensuring scalable and secure architecture - Work closely with DevOps to embed security in CI / CD pipelines and infrastructure-as-code processes - Enforce security policies, standards, and procedures aligned with frameworks like ISO 27001 and NIST - Monitor and report on … You: - Bachelor’s degree in Cybersecurity, Computer Science, Information Technology, or related field - 5+ years of experience in cybersecurity and IT infrastructure roles - Hands-on experience with Azure, Kubernetes / Docker, and CI / CD security practices - Proficient in SIEM platforms (especially Azure Sentinel) and vulnerability management tools - Strong knowledge of incident response, infrastructure hardening, and cloud security More ❯

trends and escalate risks promptly. Ensure compliance with relevant industry regulations and standards (e.g., GDPR, ISO 27001). Manage security systems, including firewalls, intrusion detection / prevention systems, and antivirus software, in collaboration with GT. Develop and test incident response plans and coordinate responses to security incidents and breaches. Raise cybersecurity awareness among bank employees … through annual training / workshops. Other Duties Maintain professional and technical knowledge by attending workshops, reading publications, and benchmarking practices. Collaborate with stakeholders to handle backlogs and new requirements, resolve conflicts, and monitor deliverables. Serve as the point of contact for external communications and facilitate internal collaboration on IT matters. Ensure compliance with policies and regulatory requirements. Maintain quality … service by establishing and enforcing standards. Act as second / third level support with GT for support issues. Comply with FCA / PRA conduct rules and mandatory training requirements. Technical / Functional Skills Proficient in Windows 10, Windows Server 2018+, Redhat Linux OS. Experience with VMWare v6.7+, Veeam Backup, Symantec Endpoint Protection, ManageEngine Patch Manager, Microsoft Office More ❯

processes and activities Support the Head of Security and Infrastructure across all functional areas within the security department Liaise with with our Privacy, Governance, Infrastructure, IT Operations, and Product / Engineering teams on all security matters Ensure tools are running correctly Ensure the integrity of our data Investigate Events of Interest (EoIs) Act upon alerts Continuous learning development Documentation … demonstrate knowledge and commitment to cybersecurity: CompTIA Security+ Certified Ethical Hacker (CEH) CompTIA Network+ ISO 27001 Foundation or Practitioner AWS Certified Security Familiarity with TCP / IP, DNS, firewalls, VPNs, and VLANs. Basic experience with SIEMs and security logs Understanding of vulnerability management practices Understanding of penetration testing, Threat Hunting, Red Teaming methodologies Familiarity with More ❯

Information Security / Information Privacy SME (Contract) Location: Central London (Hybrid - 2 days onsite per week) Contract: Inside IR35 or Umbrella Engagement Duration: 6-12 months (with potential extension) Industry: Private Banking / Wealth Management Role Overview: We are seeking a highly experienced Information Security / Information Privacy Subject Matter Expert (SME) to support a leading private … and ISO 27001 audits. Stay current on emerging threats, regulatory changes, and industry best practices. Required Skills & Experience: Proven experience in Information Security, Cybersecurity, and / or Information Privacy. Deep understanding of regulatory frameworks: GDPR, DPA 2018, ISO 27001, NIST , and FCA guidelines. Strong knowledge of security controls, data lifecycle management … sector is essential. Demonstrated ability to engage with C-level stakeholders and influence decision-making. Relevant certifications preferred: CISSP, CISM, CISA, ISO 27001 Lead Implementer / Auditor, CIPM, or similar. Excellent written and verbal communication skills. Reasonable Adjustments: Respect and equality are core values to us. We are proud of the diverse and inclusive community More ❯

Information Security Analyst - 6-Month FTC Governance, Risk and Compliance Location: London / Hybrid Contract Type: Fixed Term (6 months) Salary: Competitive A global professional services firm is seeking a proactive Information Security Analyst to support the delivery of robust security and privacy policies across its global operation. This role is ideal for someone with hands-on experience in … information risk management, policy compliance, ISO 27001 , and client security due diligence . Key Responsibilities: Maintain and evolve the firm’s Information Security Management System (ISMS) and associated documentation Support audits and ensure security practices align with industry standards (e.g., ISO 27001, Cyber Essentials) Assist with Business Continuity Management (BCM) - including BIAs … cyber team in aligning security measures with application and infrastructure development What We’re Looking For: Demonstrable experience in information security and privacy risk management Working knowledge of ISO 27001 , Cyber Essentials , and CIS Controls frameworks Ability to articulate security risks and controls clearly to technical and non-technical stakeholders Strong analytical and written communication skills More ❯

and maintenance of our Information Security Management System (ISMS) including policies, objectives, and risk assessments Assist with internal audits and help prepare for external audits to maintain compliance with ISO27001 and other standards Help identify and assess information security risks, working closely with the Cyber Risk Manager Provide guidance to colleagues on basic security best practices and requirements Contribute to … to confidentiality and professionalism Qualifications A bachelor's degree in computer science, information technology, cyber security, or a related field Experience and knowledge Familiarity with information security frameworks, especially ISO27001 (2013 or 2022) Basic understanding of risk management principles and security controls Interest in developing expertise in auditing, compliance, and risk Desirable (nice to have) Knowledge of other standards or … to become a specialist in your field or climb to the top, we'll support you every step of the way. Job Info Job Identification 23936 Posting Date 07 / 01 / 2025, 09:07 AM Job Schedule Full time Locations 64 Newman Street, London, GT LON, W1T 3EF, GB Crawley Court, Winchester, HANTS, SO21 2QA, GB More ❯

at both strategic and tactical levels, engaging technical and executive stakeholders Comprehensive IT security leadership background within global organizations, ideally in enterprise consulting environments Proficiency in security frameworks including ISO27001, Cyber Essentials, SOC2, NIST CSF and CIS Extensive understanding of cybersecurity regulations, cloud security, identity management, data protection, security governance, risk management, and remediation planning Technical expertise: SaaS, Cloud platforms … SDLC, Vulnerability Management, Networking, IDAM Security vetting eligibility, ITSM / SIEM platform proficiency, Microsoft Stack competency To be considered, please ensure you complete your application on the Computappoint website. Services offered by Computappoint Limited are those of an Employment Business and / or Employment Agency in relation to this vacancy. More ❯