76 to 100 of 112 ISO/IEC 27001 Jobs in London

security tools like SIEM, IDPS, Cloud Security, and EDR is a big plus. Experience with Zscaler, CrowdStrike, or Qualys Web3 and DeFi Experience with ISO27001 and SOC2 If you are an experienced Security Engineer looking to step up into a Lead Security Engineer position at a rapidly growing digital assets more »

capability units & other suppliers in a service partnership as ‘one service team’ to middle management level. maintain, and ensure compliance to the Security process / processes. review the security process and associated activities for efficiency and effectiveness and make recommendations for improvement. initial investigation to determine scope and details … statistics to identify historical trends and knowledge gaps and provide relevant support and content via management reporting. in regular reviews to resolve security issues / review processes with relevant parties, such as Service Desks, Operations, Account Team, Security Team, Solution Architects etc. The … success in this role will be assessed by the following KPIs: Contractual Compliance to the Security Measures . Maintain and assure compliance to an ISO27001 based Information Security Management System (ISMS). Create and maintain of Information Security documents. Manage the regular IT Security audits. Security Event Response and Investigation more »

This is a Senior role (hands-on) aimed at improving our clients’ IT Estate's cyber security posture across. An understanding of infrastructure engineering / application engineering expertise is essential. The candidate should also have a working knowledge of cyber security approaches and processes for data centres and digital … The role holder will have detailed working knowledge of the European / Global regulatory environment governing cybersecurity together with a deep understanding of ISO27001, NIST-SP800, NIS-2, IEC62443, EN50600 and other common standards, CISSP, CISM and / or CISA certifications would be beneficial but equivalent experience or … assessments. The role holder will have experience in coordinating with internal compliance and IT audit groups and with regulatory agencies. SKILLS Strong technology and / or ICT experience obtained via a career in industry or another cyber security services provider / consultancy. Knowledge of the latest infrastructure technology more »

to the required standards, maintain and tune log sources, data contents, and use cases • Provide evidence of compliance for our audited environments (including PCI, ISO27001, & ISAE3000) • Define how logs should be parsed and ingested for best practice • Engage with other teams to ensure that the SIEM is performing to standard … security related solutions • Support relationships with 3rd party vendors to enhance monitoring • Contribute to requirements for other security (and allied) technologies such as Endpoint / Network Detection & Response, Intrusion Detection / Prevention, Web Proxies etc All About You • Senior level experience within a logging and monitoring function, with … a technically inclined and experienced security specialist who enjoys working in a fast-paced collaborative team environment • Flexible to provide on-call support 24 / 7 in the future if required • Ability to obtain SC clearance • Able to visit the office regularly (Dunstable or London) Corporate Security Responsibility All more »

Design and implement comprehensive security controls and best practices for cloud infrastructure. Develop and enforce security policies, standards, and guidelines to ensure compliance with ISO27001, NIST, PCI-DSS, Cyber Essentials, and GDPR. Conduct security assessments, vulnerability scans, and penetration tests to identify and mitigate risks. Monitor and respond to security … incidents, including conducting forensic investigations and root cause analyses. Collaborate with DevOps and development teams to integrate security into CI / CD pipelines and cloud-native applications. Implement and manage IAM policies, ensuring least privilege principles are maintained. Evaluate and deploy security tools and technologies to enhance threat detection … engineering. Strong expertise in securing cloud environments such as AWS, Azure, or GCP. Proficiency in security technologies and tools such as firewalls, intrusion detection / prevention systems, SIEM, and vulnerability management. Experience with IaC tools like Terraform, CloudFormation, or ARM templates. Deep understanding of IAM, encryption, network security, and more »

Lead SOC Engineer / Manager (SC Cleared) London / WFH to £70k Are you an experienced SOC Engineer with a strong knowledge of SIEM combined with leadership experience? You could be progressing you career in an impactful role at a tech company that provide cyber security products to … a range of finance, government, defence, law enforcement and pharmaceutical companies. As a Lead SOC Engineer / Manager you'll play an integral role in ensuring the security and resilience of both internal and client based information systems. You'll provide subject matter expertise, selecting the appropriate SIEM platform … able to recommend the right tool for the job You have a good understanding of IT security management, policies, procedures, standards and guidelines including ISO27001 and relevant security legislation You have excellent communication and collaboration skills, with leadership experience / qualities - keen to recruit, guide and mentor a SOC more »

Lead SOC Engineer / Manager (SC Cleared) London / WFH to £70k Are you an experienced SOC Engineer with a strong knowledge of SIEM combined with leadership experience? You could be progressing you career in an impactful role at a tech company that provide cyber security products to … a range of finance, government, defence, law enforcement and pharmaceutical companies. As a Lead SOC Engineer / Manager you'll play an integral role in ensuring the security and resilience of both internal and client based information systems. You'll provide subject matter expertise, selecting the appropriate SIEM platform … able to recommend the right tool for the job You have a good understanding of IT security management, policies, procedures, standards and guidelines including ISO27001 and relevant security legislation You have excellent communication and collaboration skills, with leadership experience / qualities - keen to recruit, guide and mentor a SOC more »

SIEM-QRadar, SEP Candidate Requirement Essential: Experience of creating small utilities or scripting in Powershell, Perl or Python. Experience of working in MOD and / or other regulated industries i.e. banking, telecommunications. Experience of use case development and implementation, leveraging threat intelligence. An understanding of designing and implementing secure … SIEM Engineering including on-boarding, troubleshooting and administration of log sources Ability to obtain and maintain UK Secret clearance Experienced in working with TCP / IP, Firewalls and network technology (Cisco, Juniper, Microsoft etc) Industry qualifications such as CISSP, CCNP, MCSE or CMI Malware Investigations or equivalent. Excellent customer … internally and externally facing with national and international agencies. Knowledge of cyber security best practises such as GPG13, NIST 800-53, NIST 800-171, ISO27001 would be advantageous. Desirable: Degree in Information Technology, Computer Science, or Cyber Security. Information Security related certifications such as Security+, CISSP, CISM, GSEC, SSCP ITIL more »

to participating in strategy development as a key leader within our clients security function. This would be a great opportunity for an experienced Cyber / Information Security Engineer who is looking to stay hands on technically, but have an element of leadership implemented into their next position! Main responsibilities … best practice and recommend necessary changes across our clients security function. To be considered for this role, you should have: Experience working in Information / Cyber Security, ideally in a technical hands on / engineering role. Hands-on experience with security tools such as firewalls, intrusion detection / … solutions. Experience with cloud security principles and practices with either AWS or Azure. Experience implementing policies and procedures in alignment with standards such as ISO27001, NIST, PCI-DSS, Cyber Essentials, and similar. Our client offers an attractive benefits package that includes a bonus scheme, private medical care, pension, life assurance more »

network, and applications. Maintain Windows server and Unix based servers, O365 and administer MS Azure. Implement and maintain information security controls in line with ISO27001, NIST and DORA standards. Support the Bank’s VMware and Citrix virtual infrastructure. Maintain the bank’s Business Continuity and Disaster recovery plan and procedure. … Knowledge Required: A minimum of 5 years Infrastructure, System, Network support experience Relevant certification such as, CCNA, CCNP, MCITP, VCP, or CCA, etc Banking / Financial sector experience is an advantage Very good VMware and Citrix administration experience Windows and Linux Servers administration and support skills Experience with scripting … Strong knowledge of implementing and effectively developing helpdesk and IT operations best practices, including experience of security, storage, data protection, and disaster recovery protocols ISO27001 experience is an advantage Very good virtualisation, Active Directory, GPO, Access control and LAN / WAN experience Analytical thinker and problem solver with excellent more »

a technical role with the drive to grow more- there will be plenty of opportunities for development and growth. Experience with security frameworks like ISO27001 & PCI DSS as well as exposure to Data Protection & GDPR would be highly sought after too. In this role you will: Work on a variety … house security environment Direct experience working within a variety of security tools- SIEM, EDR, Vulnerability scanners, etc Understanding and knowledge of different security frameworks- ISO27001, PCI DSS, Cyber Essentials, etc. For more information, please apply or send your CV direct to natan.goren@lafosse.com, for a discreet conversation. more »

of the likes of CIS) Experience of Security Assurance Experience with managing Third Party relationships Knowledge of major compliance frameworks such as CIS and ISO27001 Experience with Data Privacy would be a big bonus Certifications such as CISSP, CISM, CRISC, ISO LI, ISO LA Sound interpersonal … throughout. You would be required to be on site 3 days per week at their Central London office and base salary is upto £95 / 100,000 for the right person. Get in touch if you would like to learn more. more »

The purpose for this new role is to support the Business Transformation, Resilience & Oversight Manager and the direct team in both: 1) the execution / ongoing management of the banks Cyber Resilience activities & also 2) the new Cyber Security and Digital Operational Resilience Act (DORA) related capabilities. This is … reviews on third parties' cyber resilience as part of the third-party risk management process. Act as cyber resilience SME and champion on projects / change initiatives. Experience Required: Around 5 years of experience within Financial Services or Consultancy (familiarity with banking products and services). Comprehensive understanding and … including experience in information security, business continuity planning, business impact assessments, crisis management and cyber security. Working knowledge and / or expertise of ISO27001, NIST, CAF or other industry standards. Knowledge and general understanding of EU Digital Operational Resilience Act (DORA) and Network and Information Security (NIS2) Directive. Knowledge more »

solutions, including all the 3rd party managed services Maintain the overall security of Company network, systems, and data Monitor security access and manage IDS / IPS configurations Establishing and implementing security 'best-practice' standards as well as departmental policies and procedures Responsible for Security scanning and the efficient remediation … Developing and managing security plans with vendors Audit activities of administrators and conduct Security awareness training Must have: Bachelor's Degree in Computer Science / … Information Technology or equivalent experience Demonstrable skills and capability in Security leadership and 3rd party management experience CISSP certification preferred. Compliance knowledge required in ISO27001, PCI and GDPR. Possibly a certified ethical hacker Knowledge of Security technologies is essential, such as network appliances, firewall administration, AD, IAM, PAM, SIEM, UEBA more »

of security and risk frameworks, plus regulatory compliance frameworks e.g. NIST, Cobit, ISO 27001. Understanding of OWASP, MITRE, CVSS and other standards / frameworks relevant to application security and vulnerability management. Experience with cloud technologies, preferably Azure and AWS. Familiarity with security methodologies: Attack and Defensive, Threat more »

Trust Investigation and Roadmap Definition: Research and develop a roadmap for implementing a Zero Trust security model. Other Contribute to Cyber Essentials + and ISO27001 strategy Ensuring policies, activities and standards are up-to-date, fit for purpose, in line with appropriate standards, certifications, best practice and legislation. Ensuring policies … standards and technology controls are implemented and maintained. Acting as a central point of contact / escalation for incident, compliance, data protection and information security queries or issues. About You Bachelor's degree in Computer Science, Information Security, or a related field (or equivalent experience). Minimum of more »

and stay abreast of emerging threat, vulnerabilities and best practices in cybersecurity. What you’ve got… Demonstrable understanding of cybersecurity principles, frameworks (such as ISO27001, NIST, etc.) and best practices; including knowledge of various security technologies, threat landscape, vulnerabilities and mitigation strategies. Familiarity with regulatory and compliance requirements (such as … assessments and audits, with the ability to interpret results and present to leadership. Two or more of the following certifications: CISSP, CISM, CRISC, CISA, ISO27001 Lead Implementer. Ready to Apply? If you are reading this and are thinking ‘Wow, this sounds like me!’, then we want to hear from you more »

protection, including security information and event management (SIEM), user and entity behaviour analytics (UEBA), point products like anti-virus (AV) and intrusion detection system / intrusion prevention system (IDS / IPS) and penetration testing. The Service Delivery team consists of approximately 20 staff who support and operate the … including all the 3rd party managed services Maintain the overall security of Company's network, systems, and data Monitor security access and manage IDS / IPS configurations Establishing and implementing security 'best-practice' standards as well as departmental policies and procedures Responsible for Security scanning and the efficient remediation … conduct Security awareness training Requirements Demonstrable skills and capability in Security leadership and 3rd party management experience CISSP certification preferred. Compliance knowledge required in ISO27001, PCI and GDPR. Possibly a certified ethical hacker Knowledge of Security technologies is essential, such as network appliances, firewall administration, AD, IAM, PAM, SIEM, UEBA more »

Cyber Security GRC Specialist Salary - £130-150k + 40-60% Bonus Location – London (2 / 3 days per week in office) I’m currently working with one of the fastest growing and most established Crypto Trading and Market-Making firms worldwide, who are looking to hire a Cyber … driving the adoption and implementation of security best practices. Lead on all security assurance activities including all information security related audits, specifically focused on ISO27001 and NIST. Work with the Global CISO to develop and define a control framework to operate securely and ensure continuous assurance and monitoring. Required Skills … Significant knowledge of and experience implementing various security frameworks, particularly ISO27001 and NIST. Knowledge of and significant exposure to information security risk management frameworks and compliance practices. Prior experience leading on projects and managing third-party supplier relationships. Genuine drive and motivation – ability to successfully handle multiple tasks, working to more »

response management, including incident detection, analysis, and remediation. In-depth knowledge of network security principles, protocols, and technologies. Experience working with standards such as ISO27001, NIST, PCI-DSS, and similar. Our client offers an attractive benefits package that includes a bonus scheme, private medical care, pension, life assurance, gym membership … scheme, generous annual leave and more! If this role is of interest, please apply or reach out to Madison – 0203 854 2230 / m.brookes@locke-mccloud.com Locke & McCloud are the UK’s leading cyber security & information security staffing company – through having a sole focus on the cyber & information security more »

deliver. We enable clinicians and care providers in all settings to deliver care in new ways and enable ideal health. Telstra Health UK is ISO27001 and CE+ certified and has a strong commitment to maintaining high quality information and cyber security governance standards. Telstra Health UK is a wholly owned … group presentations and written Degree or allied health professional qualification Demonstrable experience in leading significant and varied projects and ongoing client engagement / development Ability to work with many stakeholders Excellent and proven client management skills Client-facing experience Expertise in developing long-term relationships with clients, connecting with … budget Quarterly away days Quarterly employee nominations Well-being initiatives every Wednesday Free eye test every year and contributions to VDU glasses Free 24 / 7 professional and confidential support for you and your family via Telus Health A diverse and supportive environment where you can bring your whole more »

period of transformation. You will be focusing across maintaining and developing both the Information Security and IT Engineering teams, supporting the business to become ISO27001 accredited and working on a Data Loss Prevention programme. Key Skills Needed: * Previous experience working as a Head of Information Security & Technology * Experience working within … the financial services industry * Experiencing reporting to the Board / C … Suite level * Technical background to enable you to support the technical teams (ideally focusing within Microsoft Security Services and Microsoft 365) * Previously worked on ISO27001 and GDPR / Data Loss Prevention projects If this sounds like something that is of interest or you would like some more information, then more »

planning and prioritisation. The Building Management Team is tasked with maintaining and enhancing buildings, ensuring compliance with industry best practices, legislation, and relevant ISO standards. The role focuses on continuous improvement of service quality and environment, in collaboration with Risk & Compliance to ensure legislative adherence. This includes managing … required. Recording and managing risks using the central DC Operations risk register. Liaising with external suppliers for goods and services provision. Communicating with CSM / Sales and customers to ensure the Customer Experience is fully supported by DC Ops. Managing office spaces, including stationery, coffee machines, furniture, office relocations … drinking water, and vending services. Contributing to the annual Energy Saving Plan. Managing assets within the CAFM system and ensuring ongoing maintenance. Conducting ‘Landlord / Tenant’ area checks to ensure areas remain well cared for and appropriate for customers. Performing daily and weekly building checks to ensure smooth operation more »

organisations and others to improve cyber security standards. Oversee the security review of third-party suppliers and systems. Manage the Cyber Essentials, GovAssure and ISO27001 annual accreditation processes. We are looking for: Understanding of: Windows, client & server IAAS, PAAS especially Azure Firewalls Networking & Wi-Fi End-point protection Web-hosting … technology Demonstrable understanding of ISO27001, Cyber Essentials, data protection, business continuity and audit compliance Mobile phone security: IOS and Android Excellent interpersonal (Builds relationships) Team player who embraces change Positive communicator Strong influencing and negotiating skills Strategic (Planning for the future) Architectural - Translates business requirements into technical initiatives. Delivery (Results more »

organisations and others to improve cyber security standards. Oversee the security review of third-party suppliers and systems. Manage the Cyber Essentials, GovAssure and ISO27001 annual accreditation processes. We are looking for: Understanding of:  Windows, client & server  IAAS, PAAS especially Azure  Firewalls  Networking & Wi-Fi  End-point protection  Web-hosting … technology Demonstrable understanding of ISO27001, Cyber Essentials, data protection, business continuity and audit compliance Mobile phone security: IOS and Android Excellent interpersonal (Builds relationships)  Team player who embraces change  Positive communicator  Strong influencing and negotiating skills Strategic (Planning for thefuture)  Architectural – Translates business requirements into technical initiatives. Delivery (Results driven more »