26 to 50 of 164 ISO/IEC 27001 Jobs in London

with real ownership — ideal for someone ready to step up and shape a growing security function. The Role Build and mature security frameworks (ISO 27001, CE+, NIST … Lead gap analysis and audit readiness Own the security risk register and drive mitigation Develop policies, standards, and procedures Support ISO 22301 / business continuity Coordinate internal / external audits and evidence gathering Manage vendor risk and customer due-diligence requests Provide independent governance oversight (separate ...

experience supporting systems, data protection, and business operations while helping keep processes, accurate records, and equipment running smoothly. Key Results Areas Manage ICT onboarding / offboarding processes to support business compliance, efficiency, automation and continuous improvements Accurate administration of business systems (CRM, VOIP, software) access, user permissions and records … future needs for growth. KEY RESPONSIBILITIES ICT Ensure relevant hardware, software and permissions provisioned for new starters Set up workstations for new staff and / or new desks ensuring DSE and H&S compliance Support staff with ICT and operational queries to resolution Collaborate with our MSPs, and relevant ...

Your new organisation is a highly regarded membership body who are currently working towards an ISO27001 Cyber accreditation. They are looking to hire a consultant for a period of 3 months to review their service management processes and make improvements. In this role you will utilise stakeholder engagement skills … part of a comprehensive and exciting project. This role will require 1 day per week on site. We are happy to provide application and / or accessibility support, please contact your Marks Sattin or Grafton consultant directly to discuss your needs. We're committed to protecting the privacy ...

collaboration multiple teams and departments to Assure that all new internal implementations and customer engagements are security assessed against the internal security standards / policies standards, customer requirements and best practices. This role requires UK National Security Vetting (e.g., SC / CTC / DV). The successful … assurance reviews for customer solution designs. Authoring level 1 solution assessment tool (SAT) sign off. Security assurance support to customer environments to ensure compliance / accreditation requirements are understood and correct ownership assigned. Support security management in BAU security assurance requirements including maintaining accreditation certification. Deliver security assurance support ...

respect within multi-supplier environments Understanding and knowledge of security management within complex, multi-supplier environments Good understanding of security frameworks, including SPF, ISO 27001, NCSC Cyber Essentials, and ITIL security practices Ability to manage SIAM security risk registers, governance boards, and assurance reporting Experience … regulated public sector environments Strong incident management and problem-solving capabilities Professional certifications (e.g., CISSP, CISM, ISO 27001 Lead Implementer / Auditor) are desirable Benefits : You will receive a competitive salary, a generous benefits package, training, and development, as well as an exciting career within ...

transformation across cloud, IAM, network and data protection. **YOUR IMPACT** - Define security architecture strategy aligned with enterprise objectives - Chair design forums, enforce standards (TOGAF / SABSA), provide oversight - Lead solution evaluation, vendor selection and domain modernisation - Partner with Product / Platform leads on security-by-design priorities - Mentor … drive innovation (cloud security, SIEM, DLP) **YOU'LL BRING** - 10+ years enterprise security architecture (IAM, cloud security, GDPR) - Deep frameworks knowledge (TOGAF, SABSA, CISSP / CISM, ISO 27001, NIST) - Proven stakeholder influence with senior business / technology leaders - Cloud expertise (Azure / ...

/ OT Cyber Security Officer London, hybrid £65000 - £70000 + benefits A global energy infrastructure organisation is seeking an experienced Local Information Security Officer to lead cyber security across its North West Europe operations. This role acts as the regional cyber security lead, working closely with global security leadership … complex enterprise environments Strong experience across Microsoft ecosystems Knowledge of standards such as ISO 27001, NIST, IEC 62443 / ISA99 Experience with ICS / SCADA or operational technology environments Confident communicator able to influence technical and non-technical stakeholders Experience within critical ...

Entra ID and Active Directory, overseeing requirements for Conditional Access, MFA, SSO, and PIM. Threat Detection & Incident Response: Own and operate the SIEM / SOAR stack, including Microsoft Sentinel and Defender XDR, to develop detection rules and support forensic investigations. Infrastructure Hardening: Enforce secure baselines across virtualized environments (VMware … / Hyper-V), Windows Servers, and Azure IaaS workloads. Data Protection: Manage the certificate lifecycle (PKI / AD CS) and implement data classification and DLP strategies using Microsoft Purview. Cloud Security Posture: Manage Azure Landing Zone security and connectivity, collaborating with Network Engineering to validate secure firewall ...

Entra ID and Active Directory, overseeing requirements for Conditional Access, MFA, SSO, and PIM. Threat Detection & Incident Response: Own and operate the SIEM / SOAR stack, including Microsoft Sentinel and Defender XDR, to develop detection rules and support forensic investigations. Infrastructure Hardening: Enforce secure baselines across virtualized environments (VMware … / Hyper-V), Windows Servers, and Azure IaaS workloads. Data Protection: Manage the certificate lifecycle (PKI / AD CS) and implement data classification and DLP strategies using Microsoft Purview. Cloud Security Posture: Manage Azure Landing Zone security and connectivity, collaborating with Network Engineering to validate secure firewall ...

cyber and information security strategy. Lead, mentor, and develop the security team, supporting high performance and continuous improvement. Oversee compliance with PCI-DSS, ISO 27001, Cyber Essentials Plus, GDPR, and other regulatory requirements. Conduct security risk assessments, maintain governance frameworks, and ensure robust oversight. Set, enforce … CISM, or equivalent). Strong experience in cyber security leadership, strategy development, and operational oversight. Knowledge and hands-on involvement with PCI-DSS, ISO 27001, and Cyber Essentials Plus. Experience managing and developing security teams and influencing organisational change. Strong communication skills with the ability ...

Supporting architecture and design reviews Ensuring systems align with InfoSec policies and standards Helping evolve assurance frameworks as new technologies are adopted Supporting ISO 27001 certification and policy development This is a strategic role with a broad, firm‐wide view rather than ownership of a single … 27001 and Cyber Essentials Plus (auditor or implementer experience desirable) Experience in regulated or private‐sector environments (law firm experience advantageous; FS / banking backgrounds welcome) Understanding of Lines of Defence models and second‐line assurance roles ...

hybrid environments (on-premises, cloud) and enforce secure-by-design principles (e.g., NIST, ISO 27001). ITHC Leadership: CREST / CHECK-accredited experience conducting or supporting pre- and post-deployment security assessments, vulnerability management, and remediation planning. Technical Experience Wintel / Linux: Securing legacy … applications via patching, hardening, and privilege management (e.g., Active Directory, SELinux). Cloud (AWS / Azure / GCP): Designing IAM policies, encryption (FIPS 140-validated modules), and network segmentation for hybrid environments. DevSecOps: Integrating SAST / DAST tools into CI / CD pipelines and automating compliance ...

regulated environments; familiarity with AI and data frameworks (DAMA-DMBOK, NIST AI RMF, ISO 23894, ISO 27001, GDPR / DPA 2018); hands-on with platforms such as Microsoft Purview, Azure ML, Databricks, Power BI, Collibra, or Alation; exposure to MLOps practices. ...

death globally and an important risk factor for a variety of neurodegenerative diseases and cancer. Sustainably addressing these diseases requires breakthrough therapeutics, AI / ML innovation, and transformative business models that translate clinical outcomes into economic value. The Opportunity Own the cloud platform that powers Onsera Health's breakthrough … Terraform (or equivalent IaC) for managing cloud resources at scale Solid understanding of cloud networking (VPCs, subnets, routing, load balancers) and IAM / identity-based access models Experience with containerised and serverless workloads (Cloud Run, GKE, Docker) Practical experience implementing security controls in cloud environments (SOC 2, ISO ...

Hours: 9:00am - 17:00pm / Monday to Friday. *office based 5 days a week Salary: £48,000 per annum + travel expense up to Zone 6 Global IT company is looking for IT pre-sales consultant. IT Pre-Sales Consultant - Responsibilities: Pre-Sales Engagement Support sales teams … alignment with regulatory and business requirements. Consultation & Productisation Lead initiatives to develop and standardise consultation offerings based on frameworks such as Cyber Essentials, ISO 27001, and similar. Translate customer needs and compliance obligations into actionable service packages and product features. Collaborate with technical and commercial teams ...

Role Overview This is a hands-on BA / PM role responsible for driving the end-to-end packaging, testing, compliance, and release of business applications in a large, highly regulated corporate environment. The role works closely with application owners, security & compliance teams, SCCM / Intune engineers, test … full application packaging & release lifecycle in an enterprise environment Proven experience taking an application from request → business case → vendor engagement → packaging (MSI / App-V / MSIX / IntuneWin) → compatibility testing → security & compliance sign-off → pilot → production rollout → BAU handover. Strong understanding of corporate packaging tools (e.g. ...

Assurance Lead (CISA / Audit) City of London - Hybrid Working Responsibilities: - Plan, lead, and deliver a diverse portfolio of IT Assurance and Consulting engagements, including IT External Audit Support, SOC 1 & SOC 2 Attestations, IT Internal Audit Reviews, Regulatory Compliance Assessments, and Operational Resilience evaluations, ensuring quality delivery within … audit findings in clear, well-structured reports, highlighting control deficiencies, root causes, risk implications, and actionable recommendations for management and governance stakeholders. Required Skills / Experience: - Strong understanding of ISA 315 / 330 / 402 - Experience delivering IT Assurance, SOC 1 & 2, and IT Internal Audit engagements. ...

recruiting on behalf of a growing and dynamic technology business for an experienced Office Manager with ISO compliance experience to support the Head of Operations and take day-to-day ownership of the smooth running of the office and wider business operations. This role is ideal … someone who enjoys responsibility, autonomy, and being relied upon to keep everything on track. Key Responsibilities Coordinate and maintain ISO standards (9001 / 14001 / 27001), ensuring documentation is up to date and supporting audit preparation and ongoing compliance Maintain and improve office procedures ...

including those in FTSE 350, will allow you to gain experience across a range of sectors including: Financial Services, Banking, Insurance and Investment Corporates / Private Sector / Industry & Services Central and Local Government Retail and Consumer products organisations Job Purpose The role is to support the team … fieldwork and preparation of deliverables including actively contributing to final recommendations. Your responsibilities will include: Being activelyinvolved in the delivery of our Internal Audit / Consulting engagements. Act a subject matter expert in various security and risk management domains (e.g., IT risk management, cyber risk, security target operating model ...

Information Security Architect / Cyber Security Architect Remote or London based (50%) The Client Based in London, my client are a prestigious Professional services organisation boasting a workplace with cutting-edge people that is moving with the modern ways of working. Named as one of the leading professional services … frameworks such as NIST, Cyber Essentials and ISO27001. Previous experience of working for a global professional service environment or corporate organisation such as legal / finance / banking. Solid understanding of multiple architecture and security tools, techniques and frameworks TOGAF, SABSA, BSIMM, NIST, ISO 27001 ...

exceptional attention to detail, the ability to juggle competing priorities, and a calm, solutions-focused approach. Key Responsibilities Support ISO standards (9001 / 14001 / 27001), ensuring compliance and preparation for ongoing certification Develop, implement, and continuously improve business processes Ensure the project management … accommodation bookings as needed Skills & Experience Proven experience in an operations-focused role, ideally within a fast-paced SME Previous experience of ISO audits Ability to read and disseminate contracts Strong organisational skills with excellent attention to detail Confident working with Office 365 and CRM systems Comfortable working ...

Champion audit quality, risk management, and best practice across the team Contribute to the development of new service offerings, including AI Assurance and ISO 42001 readiness Work independently while collaborating closely with managers and senior stakeholders Requirements: You do not need to come from a pure IT Assurance … explain complex risks clearly Proven ability to manage multiple engagements and stakeholders Confidence working independently and taking ownership Strong understanding of ISA 315 / 330 / 402 Experience delivering IT Assurance, SOC 1 & 2, and IT Internal Audit engagements. Proficient in testing ITGCs, ITACs, and IPEs across varied ...

Title: SOC Engineer Location: On-site, London moving to hybrid 3 days on-site after 2-week induction Start Date: Immediate Contract length: 31 / 03 / 26 further extensions expected Clearance Required: BPSS (must be obtained prior to onboarding) Day rate: £400 - £500 Candidates must hold … work effectively within a collaborative SOC team Desirable Skills Experience with incident documentation and reporting Familiarity with security frameworks (MITRE ATT&CK, NIST, ISO 27001) Ability to adapt quickly to new tools, threats, and operational priorities Any relevant certifications (e.g., Security+, CySA+, Microsoft SC-series, GIAC ...

operational improvements and recommending remediation actions. Business Systems Implementation Support the selection process and deployment of core business platforms (Portfolio Management, CRM, Microsoft 365 / Google Workspace, ERP / Finance). Support client(s) in navigating the technology landscape surrounding Digital Assets and cryptocurrency investments. Infrastructure, Security & Resilience … migration projects, including network redesign, platform hardening, and workload migration. Design, implement, and optimise Identity & Access Management (IAM) solutions (e.g., Okta, Microsoft Entra ID / Azure AD, Ping Identity). Implement and support secure remote access and VPN solutions (e.g., Palo Alto Global Protect, Cisco AnyConnect, Zscaler ZPA). ...

architectural patterns. Promote Secure by Design principles to reduce information risk. Validate security controls and their effectiveness. Deliver security architecture for cloud deployments (private / public). Design and scope IT Health Checks and interpret outcomes. Identify and mitigate security risks in solution architectures. Conduct threat modelling and risk … technical cyber role. Expertise in: Security legislation (GDPR, PCI DSS, ICO) Frameworks (ISO 27001, NIST CSF, CIS Controls v8) HMG / NCSC policies and guidance Cloud security (AWS, Azure) Microservice architectures PKI, Cryptography, Privileged Access Management Certifications: SABSA, TOGAF, AWS / Azure Architect, CISSP ...