26 to 50 of 215 ISO/IEC 27001 Jobs in London

measures, review identified risks, analyse security incidents and communicate risk mitigation actions, plans and activities to management and peers for strategic decision-making. Ensuring regulatory compliance and supporting internal / external reviews. Work closely with the IT Department on technical aspects of information security in the Bank. Key Responsibilities Conduct Information Security and Cybersecurity assessments and technical risk evaluations. … Design remediation projects, in particular around Data Leakage, Supplier Security Assurance and AI. Liaise with IT and MSSP teams to identify and remediate security risks / incidents. Draft reports, risk register updates, and maintain documentation aligned with best practice (ISO 27001, NIST CSF). Track and advise on industry security trends and their implications. Contribute … s or Master's degree (preferably in IT, Security, or Risk). At least one recognised IS qualification (CISM, CISA, CISSM, ISO 27001 Lead Auditor / Implementer, CIPP / E). Proven experience in delivering project and supplier assurance activities in the IS domain. Strong written and verbal communication skills, especially the ability to More ❯

measures, review identified risks, analyse security incidents and communicate risk mitigation actions, plans and activities to management and peers for strategic decision-making. Ensuring regulatory compliance and supporting internal / external reviews. Work closely with the IT Department on technical aspects of information security in the Bank. Key Responsibilities Conduct Information Security and Cybersecurity assessments and technical risk evaluations. … Design remediation projects, in particular around Data Leakage, Supplier Security Assurance and AI. Liaise with IT and MSSP teams to identify and remediate security risks / incidents. Draft reports, risk register updates, and maintain documentation aligned with best practice (ISO 27001, NIST CSF). Track and advise on industry security trends and their implications. Contribute … s or Master's degree (preferably in IT, Security, or Risk). At least one recognised IS qualification (CISM, CISA, CISSM, ISO 27001 Lead Auditor / Implementer, CIPP / E). Proven experience in delivering project and supplier assurance activities in the IS domain. Strong written and verbal communication skills, especially the ability to More ❯

s corporate compliance requirements and initiatives. This position requires experience with UK and EU data privacy requirements, and with preparing for and leading ISO and Cyber Essentials / Cyber Essentials Plus audits. This position will serve as the local point of contact for the compliance team and manage compliance responsibilities in-region which include responding to due … team to develop and maintain policies and procedures and conduct internal training on compliance requirements. Complete due diligence questionnaires in a timely manner as requested by clients and sales / account management representatives. Assist with evaluating new acquisitions to determine if there are any new compliance requirements or challenges to existing requirements. Remain abreast of the current IT Compliance … and Cyber regulatory environment to inform the business of any missing requirements. Qualifications 3-5 years of experience with ISO 27001 and Cyber Essentials / Cyber Essentials Plus audits (ISO 9001 and 14001 a plus). Bachelors (or equivalent) degree in computer science, cybersecurity, or a related technical field. Relevant industry certification(s More ❯

with regulatory requirements, and conducting thorough security audits.You will be part of the IT committee and work closely with the risk and compliance team.Ideally, having a background in IT / Network security, progressing into information security and cybersecurity.**Key Responsibilities:**- Develop, draught, implement, and maintain information security policies, procedures, and guidelines.- Conduct regular security audits and assessments to identify … vulnerabilities and ensure compliance with industry standards (e.g., ISO 27001).- Monitor and respond to security incidents, conducting investigations and implementing corrective actions.- Collaborate with IT and other departments to ensure the security of network infrastructure and data.- Manage risk assessments and vulnerability assessments to identify potential security threats.- Oversee the implementation of security measures such … interpersonal skills.**Preferred Qualifications:**- Experience with regulatory compliance requirements such as GDPR, HIPAA, or SOX.- Familiarity with security tools and technologies such as SIEM, DLP, and endpoint protection. CISA / CISSP / CCSP MCSA-Microsoft Windows Server MCSE- Microsoft Certified Solution Expert; MCITP-Microsoft Certified IT Professional; VMware Certified Professional;CCNA / CCNP Experience with security tools More ❯

requirements, and conducting thorough security audits. You will be part of the IT committee and work closely with the risk and compliance team. Ideally, having a background in IT / Network security, progressing into information security and cybersecurity with experience to achive cyber essentials. **Key Responsibilities:** - Develop, draught, implement, and maintain information security policies, procedures, and guidelines.- Conduct regular … security audits and assessments to identify vulnerabilities and ensure compliance with industry standards ISO 27001 & Cyber Essentials.- SIEM & Vulnerability Management.- Monitor and respond to security incidents, conducting investigations and implementing corrective actions.- Collaborate with IT and other departments to ensure the security of network infrastructure and data.- Manage risk assessments and vulnerability assessments to identify potential … interpersonal skills.**Preferred Qualifications:**- Experience with regulatory compliance requirements such as GDPR, HIPAA, or SOX.- Familiarity with security tools and technologies such as SIEM, DLP, and endpoint protection. CISA / CISSP / CCSP MCSA-Microsoft Windows Server MCSE- Microsoft Certified Solution Expert; MCITP-Microsoft Certified IT Professional; VMware Certified Professional;CCNA / CCNP Hays Specialist Recruitment Limited More ❯

with regulatory requirements, and conducting thorough security audits.You will be part of the IT committee and work closely with the risk and compliance team.Ideally, having a background in IT / Network security, progressing into information security and cybersecurity.**Key Responsibilities:**- Develop, draught, implement, and maintain information security policies, procedures, and guidelines.- Conduct regular security audits and assessments to identify … vulnerabilities and ensure compliance with industry standards (e.g., ISO 27001).- SIEM & Vulnerability Management.- Monitor and respond to security incidents, conducting investigations and implementing corrective actions.- Collaborate with IT and other departments to ensure the security of network infrastructure and data.- Manage risk assessments and vulnerability assessments to identify potential security threats.- Oversee the implementation of … interpersonal skills.**Preferred Qualifications:**- Experience with regulatory compliance requirements such as GDPR, HIPAA, or SOX.- Familiarity with security tools and technologies such as SIEM, DLP, and endpoint protection. CISA / CISSP / CCSP MCSA-Microsoft Windows Server MCSE- Microsoft Certified Solution Expert; MCITP-Microsoft Certified IT Professional; VMware Certified Professional;CCNA / CCNP Hays Specialist Recruitment Limited More ❯

SHEQ ISO-Systems Administrator Location: London Salary: Up to 40,000 Irwin and Colton have been engaged by a leading Facilities Management organisation, who are looking to bring onboard a new SHEQ ISO-Systems Administrator . The organisation provide maintenance and engineering services to a broad portfolio of renowned commercial clients across 100+ buildings in London. … POs, data input, scheduling meetings, and arranging training The successful SHEQ ISO-Systems Administrator will have: Proven experience working in alignment with ISO Accreditations 14001 / 9001 (27001 would be advantageous) Proven experience interacting with BSI or a similar certification body would be advantageous Proven experience in a similar administrative role, with strong … IT literacy (such as using Microsoft Office word / excel. Regularly) Auditing experience (internal / external) would be beneficial Happy to be site-based 4 days per week For more information on this opportunity or to discuss your next career move, contact Madeline Underwood on (phone number removed) or apply here. Irwin and Colton are a specialist Health More ❯

risks, and ensuring third-party risks are also addressed. You'll produce management information and regulatory submissions, maintain compliance with major standards like ISO 27001 / 27002, and provide assurance for policy compliance. Establishing robust GRC policies and procedures, developing the IT controls framework, and supporting business continuity and disaster recovery planning will all fall … security. Professional certifications like CISSP, CompTIA, CISA, CISM, CRISC, or an academic background in information security will be highly valued, along with hands-on experience in compliance frameworks, IT / OT risk assessments, and audit engagements. Familiarity with regulated environments, especially within the energy sector, will be advantageous. Beyond a competitive salary and bonus, we offer 25 days of … exciting and rewarding career-your expertise could make all the difference. Click apply to view the full job description on our careers page with a closing date of 28 / 09 / More ❯

support regular system maintenance Design, implement, and manage security tooling in cloud environments ( AWS focus ) Support threat detection, incident response, and risk mitigation activities Contribute to compliance initiatives (ISO 27001, CIS benchmarks ) Collaborate with infrastructure and platform teams to embed security controls Apply secure DevOps practices (code scanning, container security, IaC) Support governance, reporting, and vulnerability … Key Requirements: 3+ years’ hands-on experience with AWS security services (CloudTrail, GuardDuty, WAF, IAM, Security Hub) Strong knowledge of cloud governance and security best practices Familiarity with CI / CD pipelines and DevSecOps approaches Experience with infrastructure as code (Terraform) Exposure to container technologies (Docker / Kubernetes) Good understanding of cloud and traditional networking security Awareness of … compliance standards (ISO 27001, CIS, GDPR) Desirable Skills / Certifications: Azure security or multi-cloud experience IAM administration (Okta, Entra ID) Web application security (WAF, bot / DoS protections) Certifications such as CISSP, AWS Security Specialty, Azure Security Apply now to speak with VIQU IT in confidence. Or reach out to Aaron Chiverton via More ❯

risk management, escalation processes, and issue resolution to safeguard delivery success. Create and maintain standard templates, playbooks, and checklists to elevate project discipline. Monitor adherence to ISO / industry standards (e.g., ISO 27001, SOC2, GDPR, etc.) where relevant. Oversee partner-delivered projects, ensuring they adhere to the same quality, methodology, and governance standards … and guarantee consistency in customer outcomes. Portfolio & Resource Management Manage global portfolio prioritization, ensuring resources are allocated effectively across strategic programs and customer delivery initiatives. Match the right project / program manager skillsets to the complexity and scale of initiatives (e.g., enterprise vs. mid-market SaaS deployments, internal transformation projects). Oversee project staffing, capacity planning, and regional workload … customer satisfaction, and financial outcomes. Continuous Improvement Identify opportunities to streamline delivery processes, reduce time-to-value, and improve customer experience. Benchmark against industry standards (e.g., PMI, PRINCE2, Agile / SCRUM, SAFe) and introduce innovations in delivery practices. Promote a culture of accountability, learning, and growth within the PMO function. Establish joint improvement initiatives with key SI partners to More ❯

Cyber Security - Technical Security Architect (MOD) Location: Remote + South East / South West on-site presence as required Contract Type: Permanent & Full-time Salary: Competitive + Benefits About the Role As a Technical Cyber Security Architect, you will play a pivotal role in shaping secure architecture and delivering expert consultancy to our clients, particularly within the MOD and … as required for classified system access. Experience Required The successful candidate will possess Proven experience working in a Security Architect or technical cyber role, ideally within MOD / public sector and will have achieved or be working towards Full Membership of CIISEC and UK Cyber Security Council professional registration at either Chartered or Principal for Risk Management. Hold an … active and transferable SC clearance Willingness to undergo DV clearance / UK Citizen / residing in UK Strong working knowledge of: JSP440, JSP604 / 453, JSP490 MOD / GDS Secure by Design principles ISO 27001, NIST CSF, CIS Controls v8 HMG, NPSA, NCSC policies and guidance Cloud security (Azure, AWS), containerisation, KMS More ❯

Cyber Security - Technical Security Architect (MOD) Location: Remote + South East / South West on-site presence as required Contract Type: Permanent & Full-time Salary: Competitive + Benefits About the Role As a Technical Cyber Security Architect, you will play a pivotal role in shaping secure architecture and delivering expert consultancy to our clients, particularly within the MOD and … as required for classified system access. Experience Required The successful candidate will possess Proven experience working in a Security Architect or technical cyber role, ideally within MOD / public sector and will have achieved or be working towards Full Membership of CIISEC and UK Cyber Security Council professional registration at either Chartered or Principal for Risk Management. Hold an … active and transferable SC clearance Willingness to undergo DV clearance / UK Citizen / residing in UK Strong working knowledge of: JSP440, JSP604 / 453, JSP490 MOD / GDS Secure by Design principles ISO 27001, NIST CSF, CIS Controls v8 HMG, NPSA, NCSC policies and guidance Cloud security (Azure, AWS), containerisation, KMS More ❯

tools for access governance, identity lifecycle, and privileged access management in alignment with defence-grade standards Security Assurance & Compliance Ensure commission controls comply with MOD policies (e.g. JSP 440 / JSP 604) and security frameworks such as NIST, ISO 27005, STIGs, and UK Functional Standard 007 Vulnerability Assessment & Access Review Support regular access reviews, entitlement audits, and … DV Clearance : Must hold active Developed Vetting (DV) clearance (or immediate transfer eligibility) Access Control Expertise : Deep experience in identity & access management, particularly designing and enforcing commission controls, RBAC / ABAC models, access provisioning, and entitlement workflows. Tools & Technologies : Hands-on with identity platforms (e.g. Active Directory, Azure AD, Okta), PAM / IGA systems, SSO / SAML … / OAuth, and access governance tools. Security Framework Knowledge : Understanding of defence and public-sector security frameworks (JSP 440 / 604, STIGs, ISO 27001, Government Functional Standard 007) Incident & Risk Handling : Proven ability to conduct security incident investigations relevant to unauthorized access and remediate gaps. Communication Skills : Strong ability to engage with both technical More ❯

for access governance, identity life cycle, and privileged access management in alignment with defence-grade standards Security Assurance & Compliance Ensure commission controls comply with MOD policies (eg JSP 440 / JSP 604) and security frameworks such as NIST, ISO 27005, STIGs, and UK Functional Standard 007 Vulnerability Assessment & Access Review Support regular access reviews, entitlement audits, and … DV Clearance : Must hold active Developed Vetting (DV) clearance (or immediate transfer eligibility) Access Control Expertise : Deep experience in identity & access management, particularly designing and enforcing commission controls, RBAC / ABAC models, access provisioning, and entitlement workflows. Tools & Technologies : Hands-on with identity platforms (eg Active Directory, Azure AD, Okta), PAM / IGA systems, SSO / SAML … / OAuth, and access governance tools. Security Framework Knowledge : Understanding of defence and public-sector security frameworks (JSP 440 / 604, STIGs, ISO 27001, Government Functional Standard 007) Incident & Risk Handling : Proven ability to conduct security incident investigations relevant to unauthorized access and remediate gaps. Communication Skills : Strong ability to engage with both technical More ❯

cybersecurity tools and endpoint protections Work on IT infrastructure projects and support documentation Respond to helpdesk tickets across UK offices and occasionally internationally Support data gathering for audits (ISO 27001, Cyber Essentials Plus) The … Person: Exposure to Microsoft Azure (VMs, Intune, Entra ID) Basic PowerShell or scripting knowledge Awareness of cybersecurity compliance (GDPR, ISO 27001) Understanding of networks (TCP / IP, firewalls, VPN) Reference Number: BBH260549 To apply for this role or to be considered for further roles, please click 'Apply Now' or contact Rise Technical Recruitment. Rise Technical More ❯

best practices Develop and support cloud security policies and technical standards Conduct security assessments, risk analysis, and contribute to security roadmaps Collaborate with teams to integrate security into CI / CD and cloud-native applications Microsoft Security Stack Configure and manage Microsoft Defender for Cloud, Defender for Endpoint, and Sentinel Deploy Microsoft Purview for compliance and information protection Manage … Work with Azure Key Vault and manage encryption and certificate strategies Collaborate with our SOC and managed Sentinel provider on incident handling Compliance & Governance Help ensure compliance with ISO 27001, SOC 2, GDPR, and NIS2 Support configuration and monitoring in Microsoft Compliance Manager Maintain security documentation and assist in audit preparation Configure insider risk management, audit … regulated industries Technical Skills Deep expertise in Azure security and Microsoft Defender suite Advanced skills in Microsoft Sentinel, Purview, Intune, and Defender for Endpoint Strong experience with Entra ID / Active Directory, Conditional Access, and PIM Hands-on with PowerShell and Microsoft Graph API for security automation Familiarity with M365 security, Zero Trust models, and Microsoft Information Protection Knowledge More ❯

best practices Develop and support cloud security policies and technical standards Conduct security assessments, risk analysis, and contribute to security roadmaps Collaborate with teams to integrate security into CI / CD and cloud-native applications Microsoft Security Stack Configure and manage Microsoft Defender for Cloud, Defender for Endpoint, and Sentinel Deploy Microsoft Purview for compliance and information protection Manage … Work with Azure Key Vault and manage encryption and certificate strategies Collaborate with our SOC and managed Sentinel provider on incident handling Compliance & Governance Help ensure compliance with ISO 27001, SOC 2, GDPR, and NIS2 Support configuration and monitoring in Microsoft Compliance Manager Maintain security documentation and assist in audit preparation Configure insider risk management, audit … regulated industries Technical Skills Deep expertise in Azure security and Microsoft Defender suite Advanced skills in Microsoft Sentinel, Purview, Intune, and Defender for Endpoint Strong experience with Entra ID / Active Directory, Conditional Access, and PIM Hands-on with PowerShell and Microsoft Graph API for security automation Familiarity with M365 security, Zero Trust models, and Microsoft Information Protection Knowledge More ❯

workforce solutions - from recruitment and technology to workforce supply, management, and training - tailored for the infrastructure, construction, and civil engineering sectors. Key Responsibilities: •Manage full lifecycle for 6+ IT / telecoms vendors, including contracts, renewals, and performance reviews •Oversee daily / weekly SLAs, drive service improvements, and align to ITIL metrics •Lead IT governance board; maintain risk register … and support ISO / cybersecurity compliance •Control £700k IT OPEX budget; track costs and manage asset register •Sponsor supplier-led projects (e.g., ERP, M365); build cases and track benefits •Communicate clearly with execs; use NPS / CSAT to improve supplier service What You'll Bring to the Team: •Managed multi-supplier, outsourced IT & telecoms contracts end … Understanding Microsoft Cloud environment •Run IT Teams across Microsoft stack •Led RFPs, contract negotiations, and vendor performance reviews •Tracked SLAs and supported supplier-led change projects •Familiar with ISO 27001, GDPR, and risk reporting •Clear communicator with execs, users, and vendors •Data-driven; focused on cost, service, and risk improvement Certifications & Education: Why Join Us? We More ❯

enable product teams to ship quickly, securely, and reliably at scale. You'll guide the evolution of our document processing pipelines, data stores, and AI integrations, while championing DevOps / SRE practices, observability, security, and cost efficiency. You'll influence engineering culture, mentor engineers, and help define architectural direction across the company. This is an opportunity to build the … and standards across teams. Partner with Product, Security, and Finance to align platform priorities with business goals. Infrastructure & Operations Lead adoption of containers, Kubernetes, and Infrastructure as Code (Terraform / CDK). Build and enforce best practices in observability, monitoring, and incident response. Set and maintain SLOs / SLAs for platform reliability and performance. Drive FinOps practices: forecasting … monitoring, and optimizing infrastructure spend. Developer Experience Build internal tooling, templates, and pipelines to accelerate product delivery. Champion CI / CD adoption and empower engineers with self-service deployment capabilities. Improve developer productivity by standardizing environments and streamlining workflows. Security & Compliance Partner closely with the ISO and Security teams to maintain compliance with ISO 27001 More ❯

Technical Expertise* Strong understanding of cyber security principles and risk management.* Hands-on experience with cloud security, particularly Azure services and tools.* Familiarity with security frameworks such as ISO 27001, NIST, or CIS.* Knowledge of security technologies (firewalls, remote access, ZTNA).* Exposure to threat modelling and cyber threat intelligence is advantageous.Core Skills* Excellent communication and … be treated in the strictest confidence and we would always speak to you before discussing your CV with any potential employer. Keywords: Cyber Security, Azure Security, Cloud Security, ISO 27001, NIST, CIS, ZTNA, Threat Modelling, CISSP, CISM, CEH, Risk Management, Security Consultant, Information Security More ❯

Technical Expertise * Strong understanding of cyber security principles and risk management. * Hands-on experience with cloud security, particularly Azure services and tools. * Familiarity with security frameworks such as ISO 27001, NIST, or CIS. * Knowledge of security technologies (firewalls, remote access, ZTNA). * Exposure to threat modelling and cyber threat intelligence is advantageous. Core Skills * Excellent communication … be treated in the strictest confidence and we would always speak to you before discussing your CV with any potential employer. Keywords: Cyber Security, Azure Security, Cloud Security, ISO 27001, NIST, CIS, ZTNA, Threat Modelling, CISSP, CISM, CEH, Risk Management, Security Consultant, Information Security More ❯

and investment priorities to support long-term growth. Governance & Compliance Own company-wide security governance, including data protection, access control, and insider risk. Ensure compliance with SOC 2, ISO 27001, GDPR, and other relevant frameworks. Oversee security audits and third-party risk programs. Risk Management & Threat Intelligence Lead threat modelling, risk assessments, and security reviews of … with engineering to embed security in the SDLC and infrastructure. Guide secure design for cryptographic systems, transaction flows, and the Energy Network. Ensure resilience across distributed devices and on / off-chain systems. Security Culture & Collaboration Promote a security-first culture across product, data, legal, and compliance. Represent Fuse externally in customer, regulatory, and industry engagements. 5+ years in … incident response, and risk management. Excellent leadership, communication, and stakeholder skills. Bachelor's or advanced degree in Computer Science, Information Security, or related field. Bonus: Experience with CTFs, red / blue team exercises, or offensive security. Competitive salary and a stock options sign-on bonus Biannual bonus scheme Fully expensed tech to match your needs! Paid annual leave Breakfast More ❯

business outcomes on their timelines. Become a product expert on Vanta and how our platform can be used to improve security posture through our compliance offerings (SOC 2, ISO 27001, GDPR, HIPAA, USDP and Custom Frameworks), Trust Reports, and Risk Management solution. Provide insightful technical answers and recommend the most efficient way for customers to achieve … trust in internet businesses by enabling companies to improve and prove their security. From our early days automating security monitoring for compliance standards like SOC 2, HIPAA and ISO 27001 to creating the world's leading Trust Management Platform, our vision remains unchanged. Now more than ever, making security continuous-not just a point-in-time More ❯

within your book of business Become a product expert on Vanta and how our platform can be used to improve security posture through our compliance offerings (SOC 2, ISO 27001, GDPR, HIPAA, USDP and Custom Frameworks), Trust Reports, and Risk Management solution. Guide implementation, configuration, and optimization of Vanta Trust Management Platform Provide professional advice on … trust in internet businesses by enabling companies to improve and prove their security. From our early days automating security monitoring for compliance standards like SOC 2, HIPAA and ISO 27001 to creating the world's leading Trust Management Platform, our vision remains unchanged. Now more than ever, making security continuous-not just a point-in-time More ❯

s Best Employer. That's why you'll find endless knowledge-sharing, mentorship and other career-advancing resources here to help you develop into a better-rounded professional. Work / Life Balance: We value work-life harmony. Achieving success at work should never come at the expense of sacrifices at home, which is why we strive for flexibility as … in the workplace and at home, there's nothing we can't achieve in the cloud. BASIC QUALIFICATIONS 10 years' experience in IT security, compliance, or risk management. BA / BS degree or equivalent experience. Hands-on technical expertise in technology automation, implementation, integration, and / or deployment. PREFERRED QUALIFICATIONS AWS experience preferred, with proficiency in a wide … ISO 27001, GDPR, and NIST frameworks and relevant regulatory frameworks such as Thailand's Personal Data Protection Act B.E. 2562 (2019), BOT Notifications SorNorSor 21 / 2562, 6 / 2561, 11 / 2561, etc. Our inclusive culture empowers Amazonians to deliver the best results for our customers. If you have a disability and More ❯