26 to 50 of 104 ISO/IEC 27001 Jobs in London

ensuring internal teams are aligned to best practice frameworks and regulatory requirements. Responsibilities Security Operations & Vendor Oversight Own and manage relationships with outsourced 24 / 7 SOC / MDR providers Monitor performance against SLAs and ensure proactive threat detection across cloud environments Manage security incident escalations and coordinate … level risk registers and governance frameworks Familiarity with data security posture management (DSPM) tools and data classification platforms Good understanding of cloud security (Azure / AWS) and identity protocols (OIDC, SAML, MFA / Entra ID) Experience coordinating incident response across multiple stakeholders, including external forensic teams Strong commercial ...

making sure our IT is up and running, all the time, everywhere. The Director leads a global support team, but the mindset is 24 / 7: senior leadership combined with hands-on ownership where it matters, owning operations, support, and incident management end-to-end, and answering for service … delivery, aligning technology investment with Soho House’s growth ambitions. Managing global complexity across 45+ locations with diverse regulatory requirements (GDPR, PCI-DSS, US / UK / EU data privacy, local telecoms regulations). Critically evaluating and governing AI-embedded capabilities within vendor platforms ...

NIST, GDPR) Stabilise and where needed, restructure internal teams and third-party suppliers Skills & Experience: Proven experience operating as a Head of Security / Security Director / Interim CISO Strong track record delivering security transformation or uplift in contract roles Ability to hit the ground running in complex … ambiguous environments Deep understanding of security frameworks (ISO 27001, NIST, CIS) Experience across cloud environments (Azure / AWS), enterprise architecture and cyber operations Strong stakeholder management - comfortable challenging and influencing at exec level Background in regulated environments (Financial Services, Insurance, etc.) highly desirable Reasonable Adjustments ...

mission without compromising safety, customer experience and scalability. This is an exciting opportunity if you have technology risk management, IT audit and / or information security experience and are looking to have an impact with your work. The role will report to and be supported by the Senior Technology … wider risk team to implement new and improve existing group wide processes What you’ll bring: 5+ years’ experience as a technology risk and / or audit professional, preferably in financial services Experience executing or facilitating audits or engagements based on global best practice frameworks such as CobiT, ITIL ...

controls Carrying out tasks aligned with wider "Know Your System" (KYS) principles (understanding assets, processes and risks across the environment) Environment: Currently a developing / low-maturity security environment Work is often reactive and fast-moving Strong need for someone who can roll up their sleeves and deliver … play a key role in establishing and improving GRC basics Experience with: Third-party risk / supplier assurance Policy management Risk and compliance processes Understanding of frameworks such as: ISO 27001 / NIST / CIS (basic awareness is fine) Comfortable working ...

Platform Architecture & Engineering responsibilities: Design and implement scalable Databricks Lakehouse platforms on AWS and / or Azure aligned to client requirements Architect end-to-end data platforms including ingestion, storage (Delta Lake), processing, and consumption layers Build and configure cloud infrastructure using infrastructure-as-code (e.g. Terraform & Declarative Automation … Bundles(DAB's)) Establish secure, compliant environments including networking (VNet / VPC, Private Link), identity (IAM / Entra ID), data governance (Unity Catalog), and access controls Define environment strategies (dev / test / prod), CI / CD pipelines, and release processes for Databricks deployments Implement ...

through the assessment, design or implementation of effective and secure architectural patterns that align with industry standards (e.g. CIS L1 / 2, NIST, ISO27001, COBIT, etc.). Generative AI – Enabling the secure design and adoption of Gen AI for business, IT and / or security functions in alignment … teams, OT Security, Security Architecture, Security Op Model Transformation projects and Cybersecurity Assessments. Familiarity with core Cybersecurity frameworks and industry frameworks (e.g., NIST CSF, ISO27001, CIS Critical Controls), regulations (e.g., NIS2) and financial regulations (e.g., DORA, FCA, Bank of England, etc.). Have experience (or knowledge) in securing ...

protection and information security risks Review requests against defined policies and controls, escalating where appropriate in line with internal governance processes Support third-party / supplier risk assessments, including reviewing security and data protection documentation and tracking follow-up actions Support periodic reviews of high-risk and business-critical … risk, compliance, or GRC roles within a SaaS or technology environment Understanding of GDPR and handling of personal data (especially sensitive or child / student data) Experience performing risk assessments using structured frameworks and defined processes Ability to interpret policies and apply them to operational and real-world scenarios ...

protection and information security risks Review requests against defined policies and controls, escalating where appropriate in line with internal governance processes Support third-party / supplier risk assessments, including reviewing security and data protection documentation and tracking follow-up actions Support periodic reviews of high-risk and business-critical … risk, compliance, or GRC roles within a SaaS or technology environment Understanding of GDPR and handling of personal data (especially sensitive or child / student data) Experience performing risk assessments using structured frameworks and defined processes Ability to interpret policies and apply them to operational and real-world scenarios ...

highly technical role focused on incident response, SIEM optimisation, vulnerability management, and security engineering, helping drive a Zero Trust journey and supporting ISO 27001 & CIS controls. What you'll be doing Lead and support incident response, threat monitoring and root-cause analysis Tune and optimise SIEM … security tooling Knowledge of security frameworks such as ISO 27001, NIST, CIS or PCI-DSS Hybrid working: 3 days onsite / 2 days remote If you're looking to make a real impact in a collaborative, international environment - we'd love to hear from you. ...

They are looking to hire two individuals for these openings, so please free to share this with your network! Role Overview: Location: Central London / Hybrid (2 days per week on site) Package: £40,000- £50,000pa & Benefits Industry: Cyber Security Consulting What You’ll Be Doing: Lead … years experience in Project Management with a background delivering on Cyber Security projects. Strong understanding of cyber security frameworks and standards such as ISO 27001, NIST, CIS Controls, and Cyber Essentials. Experience delivering consultancy engagements directly to clients. Knowledge of risk assessment methodologies and security maturity ...

Collaborate with clients, delivery teams, and senior stakeholders to embed security into solution design Standards & Compliance - Ensure adherence to industry standards such as ISO 27001, NIST, and government security policies Skills and Experience: Experience working as a Security Architect or in a senior security role within … 27001, NIST, CIS, OWASP, NCSC guidance Experience working in the UK Public Sector and associated security standards and guidance including GovAssure / NCSC CAF, HMG Security Policy Framework. Knowledge of cloud security principles across platforms such as AWS, Azure, or GCP Experience with identity and access management ...

CISO to deliver the Target operating Model and Cyber Security StrategyGovernance, Regulatory & Compliance* Oversee cyber security policies, standards, and control frameworks aligned with ISO 27001, SOC, DORA, NIST, and other related standard and frameworks and financial services best practices* Ensure compliance with global regulatory requirements (e.g. … regulated financial institutions* Proven experience leading cyber advisory, risk, and service delivery functions* Managing a P\L and building a cyber security business practice / service* Deep understanding of financial services regulations, operational resilience, and client assurance* Experience operating in global, multi-entity, and acquisition-driven environments* Strong executive ...

Contribute to the continuous improvement of assurance practices, maintaining awareness of emerging threats, vulnerabilities and industry best practice. Experience & Capabilities Proven experience in cyber / information security risk management and control assurance roles. Strong analytical skills with the ability to evaluate technical, procedural and design evidence. Excellent written … Working: Remote-first with travel as needed. Career Development: Continuous learning and professional growth. Benefits Package: Includes Private Health Care, Cash Back Plan, Buy / Sell Holiday Options, Life Assurance, and more. Interested? Submit your application to learn more about this exciting opportunity. Reasonable Adjustments: Respect and equality ...

cloud environments. Utilise expertise in IAM, cryptography, secure development, information management, and cloud security to strengthen security posture and support compliance with ISO 27001, NIST, and PCI DSS. What you'll do: Design secure solutions across applications, networks, and cloud environments, ensuring security standards and controls … NIST, PCI DSS, COBIT, and OWASP. Relevant certifications such as CISSP, CISM, CCSP, CEH, or OSCP are advantageous. Experience working within public and / or private cloud environments. Fluent English communication skills, both written and verbal, with full right to work in the UK. Robert Walters Operations Limited ...

Collaborate with clients, delivery teams, and senior stakeholders to embed security into solution design Standards & Compliance - Ensure adherence to industry standards such as ISO 27001, NIST, and government security policies Skills and Experience: Experience working as a Security Architect or in a senior security role within … 27001, NIST, CIS, OWASP, NCSC guidance Experience working in the UK Public Sector and associated security standards and guidance including GovAssure / NCSC CAF, HMG Security Policy Framework. Knowledge of cloud security principles across platforms such as AWS, Azure, or GCP Experience with identity and access management ...

standards and government security requirements SECURITY ARCHITECT ESSENTIAL SKILLS Experience operating as a Security Architect or similar senior security role Strong knowledge of ISO 27001, NIST, CIS or similar frameworks Experience with cloud security across AWS, Azure or Google Cloud Understanding of network security, encryption, authentication … submit, subject to required skills, your application to our client in conjunction with this vacancy only. KEY SKILLS Security Architect, Cyber Security, ISO 27001, NIST, Cloud Security, AWS, Azure, Risk Assessment, Threat Modelling, SIEM, Defence ...

remediation SLAs Provide central oversight while enabling teams to act Build and embed governance Develop and maintain policies, standards, and procedures aligned to ISO 27001, NIST, and CIS Design and run a robust exception and risk acceptance process with clear approvals and tracking Ensure consistent governance … Proven experience in vulnerability or exposure management within complex, hybrid environments Strong hands-on understanding of vulnerability management tools such as Tenable, Wiz, and / or Snyk Experience designing or operating risk-based vulnerability governance frameworks , including SLAs and exceptions Solid knowledge of ISO 27001 ...

work with both technical and non-technical audiences Desirable Experience * Telecommunications sector experience* Experience engaging with Ofcom or similar regulators* Knowledge of ISO 27001, ISO 22301, Cyber Essentials or similar frameworks* Security, governance, risk or audit background ...

primarily administrative and coordination-focused, requiring strong attention to detail, good communication skills, and a basic understanding of information security principles and ISO 27001. Please note this is a Part Time role on a Fixed Term basis until January 2027. Key Responsibilities for the Information Security Administrator Complete … actions. Monitor Data Loss Prevention (DLP) alerts and follow up with users to investigate and document potential policy breaches. Provide administrative support for ISO 27001 and ISMS-related activities. Key Skills & Experience for the Information Security Administrator Basic understanding of information security concepts and best practices ...

Main Responsibilities Duties will include: Setting and personally delivering target architecture for the ECP data estate the data warehouse, data hub, data lake, raw / ODS layers, dimensional model, audit and schema-change tracking, and the load schedules that tie them together. Hands-on T-SQL, stored procedure … framework and PowerShell development at expert level partition design and partition-aligned indexing, clustered / nonclustered index strategy, deduplication, parallel-run cutovers, schema migration, performance tuning of high-impact production queries. Driving the in-flight ETL replatform replacing legacy SSIS jobs with a table-driven, parallel ...

public sector accounts. This is a remote, client-facing role for a highly technical and experienced presales professional with a strong Government / Public Sector background and current SC clearance. Key Requirements We are looking for a client-facing technical expert with deep presales experience, capable of operating … commercial value Confident at C-Suite Level and able to hold customer meetings onsite Strong expertise in: Cisco routing, switching, gateways, and applications TCP / IP, SNMP, Netflow, VoIP LAN / WAN topologies (MPLS, Frame Relay, ATM) Security concepts and network infrastructure design Network performance and fault / ...

underlying infrastructure. Why we need this role Were growing our capability to deliver modern, cloud-based security services. Customers are accelerating adoption of SSE / SASE , Zero Trust , and secure network transformation, and we need a consultant - security who can guide them with strong technical depth and governance oversight. … with industry frameworks while strengthening customer trust and internal expertise. What you will do Pre-Sales and Architecture Lead technical pre-sales for SSE / SASE, Zero Trust, SD-WAN security, and cloud-delivered security. Translate customer requirements into secure architectures and produce high-quality design artefacts. Support RFPs ...

with UK regulatory expectations (FCA, PRA, Lloyd's) and internal policies Translate regulatory and Group requirements into actionable control frameworks Information Security Officer (ISO) Role Act as the ISO for UK entities, providing risk leadership on Information Security matters Serve as a trusted advisor to senior … stakeholders Robust alignment with Group and UK regulatory expectations Successful navigation of a complex, multi-entity international environment Experience & Expertise Experience in Information Security / Cyber Risk / IT Risk roles Strong background in Information Security frameworks (e.g. ISO 27001, NIST) Experience operating ...

will lead the cybersecurity function through a modern, 3-Layer Operating Model. Your primary focus is to govern our outsourced Managed Detection & Response (MDR / SOC) partners, own the internal GRC (Governance, Risk, and Compliance) framework, and ensure data protection standards are met. You will act as the strategic … technology landscape and expand the use of cloud and AI-enabled services. Key Responsibilities Act as the primary owner for our outsourced 24 / 7 SOC / MDR partners. Monitor their performance against SLAs, manage incident escalations, and ensure they are proactively hunting threats across our Azure ...