1 to 25 of 96 Remote/Hybrid ISO/IEC 27001 Jobs in London

Type II readiness programme (target: 2026-2027), including gap analysis and control mapping Ensure compliance with GDPR and data protection requirements across EU / UK / US / AU / NZ / CA / ZA jurisdictions Collaborate with external DPO support provider on privacy … ISO 27001 certification Experience preparing organisations for SOC 2 Type II certification Hands-on experience securing cloud environments (Azure and / or AWS required; GCP a plus) Experience with Google Workspace security configuration and administration Background working with distributed, remote-first engineering teams Technical Knowledge ...

from the GRC Analyst: Proven experience in a GRC, security risk, or compliance role Certifications for ISO 27001 (Lead Implementer / Auditor) , would be required Strong knowledge of frameworks such as ISO 27001, NIST, SOC 2, CIS , and data protection standards … Onboarding / vendor risk management experience Hands-on experience supporting or leading ISO 27001 certification activities Solid understanding of risk assessment, control design, and audit processes Experience working with GRC tooling, evidence management, and reporting Experience / Knowledge around high volume data process would ...

from the GRC Analyst: Proven experience in a GRC, security risk, or compliance role Certifications for ISO 27001 (Lead Implementer / Auditor) , would be required Strong knowledge of frameworks such as ISO 27001, NIST, SOC 2, CIS , and data protection standards … Onboarding / vendor risk management experience Hands-on experience supporting or leading ISO 27001 certification activities Solid understanding of risk assessment, control design, and audit processes Experience working with GRC tooling, evidence management, and reporting Experience / Knowledge around high volume data process would ...

controlled, transparent, and low-risk manner. The role supports agile delivery while maintaining strong controls aligned to ITIL 4 Change Enablement, ISO / IEC 27001, and DORA operational resilience requirements. Key Responsibilities Own and maintain Change Management policies, procedures, standards, and governance frameworks … Management within complex, regulated environments Strong knowledge of ITIL 4 Change Enablement and operational risk controls Experience aligning change processes with ISO / IEC 27001 and DORA requirements Hands-on experience managing Change processes in ServiceNow Strong understanding of Agile delivery models ...

Cyber Risk Analyst (Contract) Location: London / Southeast - Hybrid / Remote working Duration: 6+ months (12+ months programme of work) Day Rate: Up to £600 a day DOE (Inside IR35) Start date: ASAP. Overview We are seeking a skilled, proactive, and analytical Cyber Risk Analyst to support … compliance documentation aligned to industry standards, regulations, and legislative requirements, including but not limited to: NIS Directive - Cyber Assessment Framework (CAF) ISO / IEC 27001 and ISO / IEC 27002 NIST Cybersecurity Framework (CSF) 2.0 IEC ...

Role Overview Role / Job title: Azure AI Architect Work Location: London, Tunbridge wells, Ipswich, Bolton Role type - Permanent / Fixed Term / Contracting: Contracting Mode of working Hybrid / office based: Hybrid If Hybrid, how many days are required in office?: 3 days The Role … solution designs including API contracts, integration patterns (Azure Functions, Logic Apps, Event driven), security boundaries, and observability. Architect document intelligence pipelines (classification / extraction / OCR / validation) and integrate with downstream systems (CRM / ERP / ITSM / EDM). Define non functional ...

business collaboration during incidents, ensuring impact, risk, and recovery decisions are clearly understood Ensure alignment with ITIL v4 Incident Management, ISO / IEC 27001 controls, and DORA operational resilience objectives Produce incident and major incident reports, including severity assessments and post-incident reviews … incidents effectively Strong documentation skills with attention to detail Desirable Experience ITIL v4 certification Experience working within ISO 27001 and / or DORA-aligned environments Experience supporting audit-driven or regulatory change initiatives Background in Service Delivery, Technology Operations, or Enterprise IT environments ...

looking for a Senior Security Consultant with deep expertise in cybersecurity and practical experience in securing AI / ML systems. In this role, you will help clients navigate the rapidly evolving threat landscape of artificial intelligence. You will work across strategy, architecture, and hands-on technical analysis to design … resilient systems for high-impact environments. Key Responsibilities AI / ML Security Oversight: Evaluate and secure the entire AI lifecycle, including model governance, data pipelines, and deployment patterns. Threat Modeling: Conduct advanced security assessments and risk analysis across cloud, on-premise, and hybrid environments. Risk Mitigation: Advise clients ...

solution designs including API contracts, integration patterns (Azure Functions, Logic Apps, Event-driven), security boundaries, and observability. Architect document intelligence pipelines (classification / extraction / OCR / validation) and integrate with downstream systems (CRM / ERP / ITSM / EDM). Define non-functional … requirements (availability, latency, throughput, cost, DR / RTO-RPO) and ensure solutions meet them. Implement identity & access (Entra ID), data isolation, Key Vault secrets, network security (Private Endpoints), and content filtering. Embed Responsible AI practices: safety filters, prompt / content governance, data privacy, red-teaming guidance, and human ...

security into high-impact projects from the ground up, design scalable and reusable "as code" controls, and drive automation to streamline security across CI / CD, IaC, and cloud environments. About the job: The Cloud Security Automation Architect will define, implement, and maintain the Bank's technical security strategy … solution design, develops reusable controls, and drives automation to enable secure, scalable innovation. About the responsibilities: Conduct security design reviews, assess architectures against policies / standards, and recommend mitigations. Maintain and evolve a unified Security Reference Architecture and reusable design patterns. Design and enhance security controls to address gaps ...

Security Manager / Consultant - Inside IR35 - 12 Month initial contract - Hybrid working. My client, on of the largest producers of ZERO CARBON energy, is seeking an experienced IT Security Manager / Senior Information Security Consultant to provide senior-level leadership, advisory, and delivery across the organisation's information … levels Desirable - Experience as a Security Manager, Senior Security Consultant, or Information Security Lead Familiarity with standards and frameworks such as: ISO / IEC 27001 NIST Government security policy frameworks Exposure to insider threat, personnel security, or hybrid risk domains Security clearance ...

Initial 7 days (potential extension up to 12 months) Day Rate: £475-£525 (Inside IR35) Location: Fully remote (UK-based contractors only) Sector: Healthcare / DevOps & Systems Audit This engagement is ideal for a hands-on DevOps or platform practitioner with audit, compliance, and regulated environment experience … steps toward secure, governed operations. We're seeking an experienced DevOps Auditor to support a UK healthcare client with an audit of their CI / CD, infrastructure, and operational controls. This short engagement (approx. 7 days) will deliver a compliance-ready assessment, gap analysis, and remediation roadmap, laying ...

cyber and information security strategy. Lead, mentor, and develop the security team, supporting high performance and continuous improvement. Oversee compliance with PCI-DSS, ISO 27001, Cyber Essentials Plus, GDPR, and other regulatory requirements. Conduct security risk assessments, maintain governance frameworks, and ensure robust oversight. Set, enforce … CISM, or equivalent). Strong experience in cyber security leadership, strategy development, and operational oversight. Knowledge and hands-on involvement with PCI-DSS, ISO 27001, and Cyber Essentials Plus. Experience managing and developing security teams and influencing organisational change. Strong communication skills with the ability ...

regulated environments; familiarity with AI and data frameworks (DAMA-DMBOK, NIST AI RMF, ISO 23894, ISO 27001, GDPR / DPA 2018); hands-on with platforms such as Microsoft Purview, Azure ML, Databricks, Power BI, Collibra, or Alation; exposure to MLOps practices. ...

Assurance Lead (CISA / Audit) City of London - Hybrid Working Responsibilities: - Plan, lead, and deliver a diverse portfolio of IT Assurance and Consulting engagements, including IT External Audit Support, SOC 1 & SOC 2 Attestations, IT Internal Audit Reviews, Regulatory Compliance Assessments, and Operational Resilience evaluations, ensuring quality delivery within … audit findings in clear, well-structured reports, highlighting control deficiencies, root causes, risk implications, and actionable recommendations for management and governance stakeholders. Required Skills / Experience: - Strong understanding of ISA 315 / 330 / 402 - Experience delivering IT Assurance, SOC 1 & 2, and IT Internal Audit engagements. ...

Information Security Architect / Cyber Security Architect Remote or London based (50%) The Client Based in London, my client are a prestigious Professional services organisation boasting a workplace with cutting-edge people that is moving with the modern ways of working. Named as one of the leading professional services … frameworks such as NIST, Cyber Essentials and ISO27001. Previous experience of working for a global professional service environment or corporate organisation such as legal / finance / banking. Solid understanding of multiple architecture and security tools, techniques and frameworks TOGAF, SABSA, BSIMM, NIST, ISO 27001 ...

architectural patterns. Promote Secure by Design principles to reduce information risk. Validate security controls and their effectiveness. Deliver security architecture for cloud deployments (private / public). Design and scope IT Health Checks and interpret outcomes. Identify and mitigate security risks in solution architectures. Conduct threat modelling and risk … technical cyber role. Expertise in: Security legislation (GDPR, PCI DSS, ICO) Frameworks (ISO 27001, NIST CSF, CIS Controls v8) HMG / NCSC policies and guidance Cloud security (AWS, Azure) Microservice architectures PKI, Cryptography, Privileged Access Management Certifications: SABSA, TOGAF, AWS / Azure Architect, CISSP ...

Senior Pen Tester / Red Team Security Specialist Remote or London Based (50%) The Client Based in London, my client are a prestigious Professional services organisation boasting a workplace with cutting-edge people that is moving with the modern ways of working. Named as one of the leading professional … testing technologies. Stay informed about emerging threats and trends, integrating this knowledge into the security testing processes Support the firms certification activities, such as ISO27001, SOC2, and Cyber Essentials Plus, by assisting with audits, documentation, and continuous improvement efforts. Engage with security industry groups and collaborate with external industry partners ...

compliant and resilient technology estate. You will also contribute to enhancing identity security, infrastructure protection, awareness initiatives, and the onboarding of systems to SOC / SIEM tooling. This role is ideal for someone with strong technical knowledge, excellent communication skills and a passion for defending large-scale environments from … DMARC / DKIM / SPF, networking fundamentals and TCP / IP. Familiarity with frameworks such as MITRE ATT&CK, ISO27001, CIS benchmarks, NIST, Cyber Essentials. Ability to explain technical concepts to non-technical audiences. Strong documentation, analysis and problem-solving skills. Experience in security auditing ...

Manager (Associate Vice President) Location: London (Hybrid - 3 days on-site) Duration: 6 months (with possibility for extension) Working Pattern: Full Time (40 hours / week) Rate: Circa £600 / Day Join Our Dynamic IT Team! Are you an experienced IT Change Manager looking to make a real … Advisory Board (CAB) meetings , ensuring changes are assessed, approved, and scheduled in line with business priorities. Collaborate with technical teams, business units, and risk / compliance functions to assess change impact and associated risks . Ensure changes are implemented within agreed windows and readiness standards to minimise service disruption ...

security or security-focused engineering roles* Experience with firewalls, EDR, SIEM, and security monitoring tools* Strong knowledge of network security (VLANs, VPNs, DNS, TCP / IP)* Experience securing cloud environments (Azure and / or AWS)* Hands-on endpoint security experience (e.g. Microsoft Defender, Sophos, Bitdefender)* Solid understanding … directly with clients What would be desirable? * Experience working in a managed services or MSP environment* Exposure to compliance frameworks such as GDPR, ISO 27001, or NIST* Vulnerability assessment or penetration testing experience* SOC or security operations experience* Mentoring or leadership exposure within technical teams ...

Platform Engineer - Active SC, Security, ISO27001 £550 per day (Inside IR35) Remote / London My client is an instantly recognisable consultancy who urgently require an AWS Platform Engineer with Active Security Clearance (SC), for an end client within the public sector. Key Requirements: Proven commercial experience working … ISO 27001, NIST, CIS). Proficient in Infrastructure as Code (Terraform, CloudFormation, AWS CDK). Experience embedding security into CI / CD pipelines (GitHub). Knowledge of deploying and securing Kubernetes clusters in public cloud. Strong understanding of AWS networking (VPCs, NACLs, security groups). ...

Experience Essential: Strong grounding in security engineering principles, practices and risk management. Experience working with a broad range of security controls (e.g., SIEM, IDS / IPS, firewalls, secure SDLC, cloud security configuration, CIS hardening, API security). Knowledge of security frameworks such as NIST, ISO 27001 … equivalent professional certification. Multi-year experience in a security engineering role. Desirable: CISSP certification. Cloud security certifications for AWS. Risk management experience (CRISC, ISO 27005, NIST RMF). Network security and coding experience (Python, Bash, PowerShell, GitHub). Penetration testing exposure. ...

requests from the Information Security Engineering Lead. Required Skills & Qualifications: Significant experience in security engineering. Knowledge and understanding of Cloud security, with qualifications and / or certifications for AWS. Proficiency in a broad range of security controls including Secure Software Development Lifecycles, firewalls, email filtering, web applications firewalls … communication, presentation, collaboration, problem-solving, reporting, and stakeholder management skills at all levels. Desirable: CISSP - Certified Information Systems Security Professional. Cloud security qualifications and / or certifications for GCP and Azure. Extensive risk management experience (CRISC, ISO27005, NIST RMF). Skills in network security, coding (Python, Bash, PowerShell, GitHub ...

guidance to IT teams and project stakeholders. Profile Experience with Microsoft security stacks (Defender, Sentinel, Entra ID, etc.). Experience in networking, firewalls, routers / switches, and cloud infrastructure (Azure preferred). Experience with vulnerability management, IDS / IPS, endpoint security, identity management, and email security. Familiarity with … Primarily remote working Strong pension scheme. Generous annual leave plus bank holidays, with entitlement increasing over time. Life assurance, employee wellbeing support, and 24 / 7 assistance programme. Professional development opportunities, including funded training ...