51 to 75 of 123 ISO/IEC 27001 Jobs in London

Security Project Manager £600 / day Leeds (3 days onsite per week) Outside IR35 About the Role As the Security Project Manager, you will play a crucial part in the successful delivery of the company's Security Improvement Programme. Your primary responsibility will be to lead the planning, execution ...

integration of Azure AI services (including Azure OpenAI, Cognitive Services, and Machine Learning) into key business applications. Global Operations & Service Delivery Oversee 24 / 7 global cloud operations, ensuring optimal availability, performance, and reliability. Implement and manage service support models within a managed service environment, including SLAs, incident management … cloud strategy and operations. Proven track record managing large-scale, global cloud environments and distributed teams. Deep expertise in Azure services, cloud architecture, AI / ML integration, and managed service delivery. Excellent leadership, communication, and stakeholder management skills. Strong financial acumen, with experience in cloud cost optimisation and budgeting. ...

Python, or DevOps pipelines. Operationalize Microsoft security tools like Purview, Defender for Cloud, and Sentinel across client environments. Align solutions with regulatory frameworks (ISO 27001, NIST, CIS, GDPR). Mentor junior engineers and contribute to internal best practices and accelerators. Act as a technical … Hands-on experience with Microsoft Purview, Defender for Cloud, Defender for Endpoint, and Sentinel. Strong scripting and automation skills (PowerShell, Python, Azure DevOps, Terraform / Bicep). Excellent problem-solving and stakeholder management skills. Preferred Microsoft certifications (AZ-500, SC-100, AZ-305). Experience with hybrid or multi ...

Venn GroupPrinciple Security Consultant / Lead Auditor Salary : £ 95,000 - £110,000 negotiable Location : Central London & Cheltenham WFH: Primary Site based Ideal start date: ASAP Also available : 3 month outside IR35 contract Benefits : Strong path to promotion 30 days Holiday Standard pension Electric car scheme Extensive training & courses … available Brief summary Our client is looking for someone to represent them and support culture change and security requirements in the Defence sector. Responsibilities ISO27001 auditor business analysis business requirements capture knowledge of physical, personnel and technical security controls Good at customer relationship management Training delivery Requirements Driven, personable ...

Senior Security Engineer (Cloud SaaS AWS GCP) London / WFH to £130k Are you a cloud security technologist looking for an opportunity to progress your career in a senior, hands-on role within a collaborative, diverse team environment? You could be joining a fast-growing, VC-backed multi-product … ensure systems adhere to these standards. You'll be part of a fast-paced, inclusive team that values creativity, curiosity and impact. Location / WFH: There's a flexible hybrid model, you'll meet up with colleagues once a week in the London office but can work from home ...

Location: London (3 days on-site) Contract Length: 6 months (possibility for extension) Working Pattern: Full Time (40 hours per week) Rate: Circa £419 / Day Are you a detail-oriented professional with a passion for driving change in the IT landscape? Join our dynamic team … requests. Proven track record in managing end-to-end change processes within complex IT environments. Experienced with regulatory compliance (SOX, PCI-DSS, GDPR, PRA / FCA, DORA, Operational Resilience) and audit readiness. Exposure to DevOps, CI / CD pipelines, and Agile delivery models. Key Responsibilities: Change Process Support ...

incident response processes to maintain high availability. Team Management Lead and mentor a dynamic team, setting goals and building career paths. Manage change / release processes and compliance with ISO 27001 alongside cyber team. Foster strong vendor relationships and evaluate tools and partnerships. Networking Architecture … Proven success in leading multi-phase migrations across platforms. Expert-level administration in Microsoft 365 and Microsoft Entra ID. Strong networking knowledge, including TCP / IP, routing, switching, and hands-on experience with firewall platforms. Proficiency in scripting and automation, particularly with PowerShell and familiarity with Terraform. Preferred Experience ...

incident response processes to maintain high availability. Team Management Lead and mentor a dynamic team, setting goals and building career paths. Manage change / release processes and compliance with ISO 27001 alongside cyber team. Foster strong vendor relationships and evaluate tools and partnerships. Networking Architecture … Proven success in leading multi-phase migrations across platforms. Expert-level administration in Microsoft 365 and Microsoft Entra ID. Strong networking knowledge, including TCP / IP, routing, switching, and hands-on experience with firewall platforms. Proficiency in scripting and automation, particularly with PowerShell and familiarity with Terraform. Preferred Experience ...

managing Azure infrastructure including writing and maintaining Terraform modules for Azure resources and implementing infrastructure changes through workflows. Experience with version control (GitHub / ADO), code reviews, and understanding of infrastructure drift detection and remediation. Configuration Management (Ansible) - Proficient in using Ansible for configuration management, application deployment, and orchestration … Azure AD), Azure RBAC, Privileged Identity Management (PIM), managed identities, service principals, and Azure AD Connect for hybrid scenarios. Experience managing user provisioning / deprovisioning, conditional access policies, multi-factor authentication, Azure AD Application Proxy, federated authentication, SAML / OAuth integration, and implementing least-privilege access controls across ...

under pressure. QualificationsAnd Knowledge Strong understanding of key cybersecurity standards and best practices. Familiarity with leading information security frameworks such as NIST CSF, ISO 27001, and Cyber Essentials. Governance-focused certifications are advantageous, including CISMP, CISM, CISSP, or CompTIA A+. Awareness of regulatory and compliance requirements ...

under pressure. QualificationsAnd Knowledge Strong understanding of key cybersecurity standards and best practices. Familiarity with leading information security frameworks such as NIST CSF, ISO 27001, and Cyber Essentials. Governance-focused certifications are advantageous, including CISMP, CISM, CISSP, or CompTIA A+. Awareness of regulatory and compliance requirements ...

Information Security Officer ?? London (Hybrid) | ?? Permanent, Full-time Salary - £60,000 - £70,000 p / a + Benefits About the Role A leading digital bank is seeking a talented and ambitious Information Security Officer to join its growing Cybersecurity Department. This is a key role acting as the bridge … London office. Perform compliance reviews and oversee remediation of cybersecurity weaknesses. Coordinate security testing, incident management, and reporting of key cybersecurity metrics (KPIs / KCIs). Review and assess cybersecurity-related requests and infrastructure changes (e.g., access management, system interconnections, change control). Support post-incident analysis and help ...

fast-growingspecialistsoftwarecompanyatapivotalmomentinitsjourney. WhyThisRoleisDifferent Since2013,TrinitatumhavebuiltareputationservingglobalenergytradingandfinancialservicesorganisationswiththeirTriangleTestAutomationplatform - reducingtestingeffortbyover70%andacceleratingreleasesfromweekstodays.Theirrecentstrategicpartnershipsareopeningglobalmarkets,andtheyneedatechnologyleaderwhocanscalewiththem. You'llworkdirectlywiththeirCEOChrisJonesandtheseniorleadershipteamthroughthreedistinctphases: Phase1:TheFixer(Months1-6) Rapidlyassess,identifygaps,andimplementcriticalfoundationsfromsecurityposturetooperationalresilience. Phase2:TheBuilder(Months6-18) Establishscalablestructuresandleadtheproductroadmap.Drivebestpracticedevelopmentstandards,buildsecuritycredentials(SOC2,ISO27001),andarchitectforscaleacrosstheirAzure / .NETstack. Phase3:TheScaler(18+months) TransitionintotheCTOrole.Leadtechnicalvision,scaleengineeringcapabilityinternationally,anddrivemarketdifferentiationthroughtechnicalexcellence. YourFirst12Months:TheMission-CriticalChallenges Workingshoulder-to-shoulderwithChris,you'lltacklefourkeyareas: ProductSecurity&Compliance AuditTriangle,implementend-to-endsecurityimprovements,andestablishpathwaystoSOC2complianceforourhighlyregulatedclients … ProductRoadmap&Strategy Createaconversationalroadmapthatbalancesnewfeatureswithtechnicaldebtwhilstguidingcustomerenhancementpriorities BestPracticeDevelopmentStandards Implementautomatedtestingframeworks,introduceBDDpractices,andbuildacultureofcontinuousimprovement OperationalResilience Eliminatesinglepointsoffailure,createredundancy,andestablishrobustbusinesscontinuitycapabilities WhatMakesYouExceptional Youbring: Deep.Netmasteryyou'vebuiltproductionsystemsatscale StrongAzurearchitectureexperiencewithcloud-nativedesignpatterns Demonstrablesecurityframeworkexperience(SOC2,ISO27001,ITIL) Hands-onautomatedtestingframeworksexpertise PracticalBDDfamiliarity Moreimportantly,youare: Astrategicpartnerwhocanbalancetechnicalexcellencewithcommercialreality Hands-onwhenneededcomfortablecoding,reviewingarchitecture,ordebuggingcriticalissues Ateambuilderreadytorecruit,mentor,anddeveloptechnicaltalent Customer-awareyouunderstandthatTriangleservesmission-criticaltradingsystemswherereliabilitymatters Growth-orientatedexcitedbythejourneyfromspecialistconsultancytoglobalsoftwareplatform BonusPointsFor: ETRM / CTRMplatformexperience,financialservicesorenergysectorbackground,experiencewithEndur / Findur / ...

Security Engineer Assurance / Report Writing Were looking for a Security Assurance Engineer with the ability to see the whole security picturetechnology, people, and process. Youll join a team of experienced cyber specialists, but your role is to step back from the individual technical outputs and assess what they … must have been active within the last 12 months. Experience producing structured security assurance documentation, security cases, or security arguments (e.g., using GSN, safety / security case approaches, or similar). The ability to interpret diverse security inputspen test results, architectural designs, risk assessments, compliance outputsand turn them into ...

Security Engineer – Assurance / Report Writing We’re looking for a Security Assurance Engineer with the ability to see the whole security picture—technology, people, and process. You’ll join a team of experienced cyber specialists, but your role is to step back from the individual technical outputs … must have been active within the last 12 months. Experience producing structured security assurance documentation, security cases, or security arguments (e.g., using GSN, safety / security case approaches, or similar). The ability to interpret diverse security inputs—pen test results, architectural designs, risk assessments, compliance outputs—and turn ...

Security Engineer – Assurance / Report Writing We’re looking for a Security Assurance Engineer with the ability to see the whole security picture—technology, people, and process. You’ll join a team of experienced cyber specialists, but your role is to step back from the individual technical outputs … must have been active within the last 12 months. Experience producing structured security assurance documentation, security cases, or security arguments (e.g., using GSN, safety / security case approaches, or similar). The ability to interpret diverse security inputs—pen test results, architectural designs, risk assessments, compliance outputs—and turn ...

Experience and Skills Required At least seven years experience in PAM with five years hands-on experience in CyberArk Identity Security Platform (cloud) and / or Privileged Access Security (on-premise) Deep understanding of CyberArk components including Vault, CPM, PVWA, PSM, PTA, AIM and cloud equivalents Proven experience managing … CyberArk certification (Defender, Sentry, Guardian) preferred Desirable Experience working with CyberArk Professional Services or certified partners Knowledge of financial regulatory frameworks such as ISO 27001, NIST, or GDPR Scripting experience using PowerShell or Python for automation and integration For a full consultation, send your ...

implementation of security policies, standards, and frameworks. Managing risk assessments, vulnerability testing, and incident response processes. Overseeing compliance with relevant regulations (e.g., GDPR, ISO 27001) and industry standards. Building and maintaining strong relationships with internal stakeholders and external security partners. Driving security awareness and training programs ...

security policies, standards, and procedures Partner with IT colleagues and business units to ensure secure configurations Support audits, risk assessments, and compliance initiatives (ISO 27001, GDPR, NIST) Act as a key escalation point for security investigations Maximise the effectiveness of Microsoft Defender, Intune, and Purview Promote … Stay ahead of emerging threats, vulnerabilities, and industry trends Identify opportunities to improve security tooling, processes, and controls Skills & Experience Needed Microsoft 365 Defender / Security Portal (endpoint and identity protection) Microsoft Purview (data governance and compliance, including Compliance Portal) Proven hands-on experience remediating vulnerabilities and applying patches ...

Senior SOC Analyst (Level 3) Salary: £52k-£64k depending on experience Hybrid: based in Canary Wharf 3x per week Shift pattern: 4 days on / 4 days Off Overview We are seeking a highly capable Senior SOC Analyst (Level 3) to act as a technical and operational lead within … investigations and deliver clear briefings to technical and non-technical stakeholders. Represent the SOC in governance meetings and executive-level discussions. Produce concise weekly / monthly threat reports and post-incident summaries. Detection Engineering & Threat Response Lead development and refinement of detection content across multiple SIEM and monitoring platforms. ...

conducting security assessments and producing assurance reports. Ability to engage and influence stakeholders at all levels. Familiarity with security frameworks and standards (e.g., ISO 27001, NIST, CIS Controls). Excellent communication, planning, and organisational skills. Experience managing teams and developing talent. Ability to interpret complex technical … Hybrid working - 3 days on site Career Development: Continuous learning and professional growth. Benefits Package: Includes Private Health Care, Cash Back Plan, Buy / Sell Holiday Options, Life Assurance, and more. Interested? Submit your application to learn more about this exciting opportunity. Reasonable Adjustments: Respect and equality are core ...

conducting security assessments and producing assurance reports. Ability to engage and influence stakeholders at all levels. Familiarity with security frameworks and standards (e.g., ISO 27001, NIST, CIS Controls). Excellent communication, planning, and organisational skills. Experience managing teams and developing talent. Ability to interpret complex technical … Hybrid working - 3 days on site Career Development: Continuous learning and professional growth. Benefits Package: Includes Private Health Care, Cash Back Plan, Buy / Sell Holiday Options, Life Assurance, and more. Interested? Submit your application to learn more about this exciting opportunity. Reasonable Adjustments: Respect and equality are core ...

Oracle ERP, HCM, and EPM Cloud technical architecture (essential) Understanding of UK Gov Cloud hosting, data sovereignty, and compliance standards (NCSC CAF, ISO 27001, Cyber Essentials Plus). Strong professional documentation skills (essential) • Strong problem-solving and analytical skills (essential) • Excellent communication and leadership skills (essential ...

Defender for Cloud, Defender for Endpoint and EASM Vulnerability remediation and Secure Score improvement Purview (DLP, sensitivity labels, insider risk) Compliance uplift for ISO 27001, SOC 2, GDPR and NIS2 Configuration hardening, patching and policy deployment Entra ID, Conditional Access, PIM and cloud identity controls PowerShell ...

working knowledge of contracts Good working knowledge of IT governance and control frameworks and standards, this could include Information Security, Data Governance, GDPR, DORA, ISO27001 and risk management principles Excellent verbal and written communication skills Excellent stakeholder management skills Demonstrated ability to analyse alternative solutions to issues and problems , drive ...