307 Information Security jobs in London

As our Information Security Management Specialist (m/f/d) , you'll provide experienced support in the implementation and management of the Information Security Management System (ISMS) framework in alignment of current ISO 27001 standard and guidelines. With a focus on cybersecurity, this role involves leading risk assessments, ensuring alignment with industry standards and regulations, and following information security practices and policies.

What you will do

• Contribute to implementation, maintenance along with continuous improvement and associated instructional documentation of ISMS and its controls in line with the requirements of ISO 27001:2022 and similar standards.
li>Ensure compliance and maintenance of ISO 27001:2022 standard as well as all Information Security requirements with respect to laws, regulations, client requirements, NTT DATA and Group requirements including active participation in internal and external ISMS audits.
• Support in information security audits, performed by organization or third-party personnel.
• Ensure that IT systems are assessed against Information Security criteria and operate in compliance with the instructional Information Security documentation.
• Conduct company-wide gap assessment of ISMS clauses and control implementation.
• Ensure vulnerability management, tracking and reporting.
• Collaborate with the IT department to set Information security standard for Cyber Security 
li>Support in preparing management Information Security reports and dashboards.
• Review and respond to customer Service Agreements/RFPs/RFIs with respect to Information Security related clauses/questionnaires.
• Actively participate in Information Security External certification audits, internal audits, and gap assessments.
• Perform other security related task as required.

What we are looking for

• Bachelor’s degree or equivalent in Information Technology or Computer Science degree or related field.
< i>Information Security certifications such as ISO 27001 Lead Auditor/Implementer, CISM, CISA, CRISC, CISSP, CEH, COBIT or equivalent preferred.
• Fluent in English, Multilingual skills are an advantage.
• Skilled proficiency in conducting risk assessments, analyzing security controls, and policy management.
• Excellent communication and interpersonal skills for collaborating with various stakeholders.
• Strong project management skills for handling security initiatives.
• Strong familiarity with aspects related to information security.
• Strong knowledge of ISO 27001 and further relevant standards.

What we offer you

• An agile company culture with short decision-making paths and plenty of opportunities to show personal initiative
• Flexible working time models and mobile working (depending on your role)
• Allowance for the use of public transport and job bikes
• Allowance for the use of health and wellness
• Individual training and development opportunities
• Numerous other additional benefits such as birthday vouchers, employee advisory program, employee referral scheme, lunch allowance, company events, etc.

We look forward to hearing from you!

About the Global Data Centers division of NTT DATA
Global Data Centers is a division of NTT DATA. Our global platform is one of the largest in the world. NTT is ranked as one of the top three leaders worldwide by IDC in their Colocation and Interconnection Services MarketScape, spanning more than 20 countries and regions including North America, Europe, Africa, India and APAC. 

As a neutral operator, we offer access to multiple cloud providers, a large variety of Internet Exchanges and telecommunication network providers including our own IPv6 compliant, tier 1 global IP network. Our clients benefit from tailored infrastructure and experience consistent best practices in design and operations across all of our reliable, scalable and customizable data centers. 

Working at NTT Global Data Centers
At NTT Global Data Centers, we stand as one of the largest data center providers, dedicated to powering the digital infrastructure of tomorrow. Innovation is in our DNA. We thrive on pushing boundaries, exploring new possibilities, and embracing emerging technologies to continuously ensuring that every interaction, every solution, and every outcome exceeds our clients’ expectations. Our values are the guiding principles that shape our culture, define our identity, and propel us forward as one of the industry leaders. 

Interested in becoming part of an agile international team and actively shaping the digital infrastructure of tomorrow?
Join our team by submitting your application today!

Cyber Security Engineer- 3 months+ - £(Apply online only)pd Inside IR35 - Hybrid ( 1-2 days on site in London)

The person will be joining the MIP team (Monitoring and Integration Platform) within Technology Services.

The Technology Services team is responsible for all infrastructure, end user computing, onsite support and delivery of technology projects. It has responsibility for 95,000 devices and infrastructure across 900+ sites.

The requirement is to deliver against the initial phase of the security monitoring project-onboarding 67 critical services and 72+ services proactively monitored by our in-house SOC (Security Operations Centre).

Please note that this role requires a current SC Clearance

Essential Criteria for the Role

2+ years in security platforms management (SIEM, SOAR).
Expertise in enterprise-level monitoring and supporting large user bases (10,000+ users).
Experience in creating/managing security playbooks and knowledge of public sector standards.
Experience in Xsiam correlation/ playbooks.
Excellent communication skills, able to articulate technical concepts to diverse audiences.
Technical requirements
Proven experience with Cortex XDR, Cortex Data Lake, and Cortex XSOAR.
Solid understanding of cloud security, network/system security fundamentals, and scripting for automation.
Desirable Qualifications
Familiarity with compliance and security standards (GDPR, HIPAA, NIST).
Familiarity with Infrastructure as Code

Cyber Security Engineer- 3 months+ - £(Apply online only)pd Inside IR35 - Hybrid ( 1-2 days on site in London)

Damia Group Limited acts as an employment agency for permanent recruitment and employment business for the supply of temporary workers. By applying for this job you accept our Data Protection Policy which can be found on our website.

Please note that no terminology in this advert is intended to discriminate on the grounds of a person's gender, marital status, race, religion, colour, age, disability or sexual orientation. Every candidate will be assessed only in accordance with their merits, qualifications and ability to perform the duties of the job.

Damia Group is acting as an Employment Business in relation to this vacancy and in accordance to Conduct Regulations 2003.

Security Architect / Cloud Security Engineer

We are seeking a Security Architect to bridge the gap between governance, engineering, and business strategy. This role will focus on embedding security as code into enterprise ways of working, ensuring frameworks are practical, scalable, and enable rather than block delivery. You will help shape security policies and standards, then implement them directly in code to support developer adoption.

Key Responsibilities:

Engineering & Delivery

• Convert technology and governance standards into policies as code .
• Integrate policies and controls via APIs .
• Design and build scalable automation using AWS, Python, Terraform, and CI/CD tooling .
• Drive adoption of security and governance through practical, developer-friendly solutions.

Business Strategy & Governance

• Translate governance objectives into actionable outcomes.
• Define frameworks that align with enterprise priorities .
• Help embed governance into team workflows without adding unnecessary bureaucracy.

Domain Expertise

• Apply knowledge of enterprise technology, cloud, security, or compliance to support delivery.
• Ensure policies and controls align with industry standards and best practice.
• Influence adoption across engineering and business teams.

What We're Looking For:

• Cloud Engineering: AWS (essential), plus understanding of multi-cloud environments
• Skills in Terraform, Python, and CI/CD tooling .
• Security as Code / DevSecOps: Experience embedding security into engineering pipelines.
• Governance & Strategy: Designing frameworks and governance models for enterprise technology.
• Domain Expertise: Strong knowledge of enterprise technology, security, or compliance .
• Ability to collaborate across engineering, business, and security functions .
• Strong awareness of governance and control frameworks in enterprise environments.
• Excellent communication and influencing skills , with the ability to win stakeholder buy-in.

If this role is of interest to you then please contact David Eales with your up to date CV.

Junior Information Security Consultant - Canary Wharf/London - Hybrid - To 35,000

Global client has a fantastic opportunity for a Junior Information Security Consultant to work with their existing team to manage the portfolio of security controls, this includes level 1 triage of alerts and performing daily checks across multiple security systems, manage and maintain technical controls to meet specific security requirements and implement approved configuration changes.

As a Junior Information Security Consultant you will work with information security leadership to deploy agreed changes to security requirements and address identified security risks, raise information security awareness and support training activities, assist in the coordination and completion of information security operations documentation, collaborate on IT projects to ensure that security issues are addressed throughout the project life cycle, advise security administrators on normal and exception-based processing of security authorization requests, research and evaluate new threats and advises on any necessary communication or extra controls to counter these, manage ServiceNow tickets assigned to (members of) the security team and escalate when deadlines are likely to be missed, Incident Detection and Response, ie provide 1st and 2nd line support and analysis during and after a security incident whilst ensuring guidelines for the recording of security incidents are followed.

As a Junior Information Security Consultant you will have the ability to demonstrate a knowledge and appreciation of the current IT threats and security measures, this requires a combination of good business awareness and technical IT knowledge or experience, ideally have 2+ years of relevant work experience, some knowledge of IT security should be demonstrated though either the work experience or qualifications, possess knowledge and understanding of information risk concepts and principles, as a means of relating business needs to security controls, have technical knowledge of mainstream operating systems (mainly Microsoft Windows) and understanding of security technologies, such as network security appliances, identity and access management (IAM) systems, anti-malware solutions and desktop security tools, basic knowledge of network infrastructure and risk assessment methods and technologies.

This is a superb career opportunity with an organisation that offers a salary of upto 35,000 plus bonus upto 10%, salary review to 10%, hybrid and a great benefits package that includes: Pension (NYK contribute 7% of salary (up to a max of 10% based on employee contributions), Healthcare, Employee Assistance Programme / Interest free travel season ticket loan (upon completion of probation / Gym Membership / Medical cover / Health Cash Plan etc.

This role is commutable from London, Home counties, London, Kent, Hertfordshire, Essex, Cambridgeshire, Berkshire, Sussex, Hampshire, Oxfordshire

--- Fusion People are committed to promoting equal opportunities to people regardless of age, gender, religion, belief, race, sexuality or disability. We operate as an employment agency and employment business. You'll find a wide selection of vacancies on our website.

My client, a leading organisation in the Financial Services sector, is currently seeking two experienced contractors to join their Security Controls Assessor team. This is a strategic initiative focused on preparing for the upcoming NIS2 regulation, with a strong emphasis on regulatory assurance and cross-entity alignment.

• Lead and support activities related to NIS2 readiness and regulatory assurance

• Assess existing policies, standards, processes, and technical environments against NIS2 and other relevant frameworks

• Conduct entity-specific assessments and asset-level assurance testing

• Assist with NIS2 registration processes and incident reporting readiness across multiple entities

• Collaborate with stakeholders across business units, project teams, and EGSO to ensure cohesive support

• Document the organisation's regulatory posture, ISRG priorities, gaps, risks, and sustainability of compliance efforts

• Provide regular updates to the EMAP Information Security Regulatory Governance Specialist

This is a fantastic opportunity to contribute to a high-impact regulatory programme within a complex, multi-entity financial environment. If you're experienced in security controls assessment, regulatory compliance, and NIS2 alignment, this role offers both strategic influence and operational depth.

Please click here to find out more about our Key Information Documents. Please note that the documents provided contain generic information. If we are successful in finding you an assignment, you will receive a Key Information Document which will be specific to the vendor set-up you have chosen and your placement.

To find out more about Huxley, please visit (url removed)

Huxley, a trading division of SThree Partnership LLP is acting as an Employment Business in relation to this vacancy | Registered office | 8 Bishopsgate, London, EC2N 4BQ, United Kingdom | Partnership Number | OC(phone number removed) England and Wales

Cyber Security Programme Manager - Contract

Location: Bishopsgate, London (Hybrid - 3 days onsite)
Contract Length: 6 months
IR35 Status: Outside IR35
Start Date: ASAP
Day Rate: Competitive

A leading organisation in the construction sector is seeking a Cyber Security Programme Manager to oversee the delivery of strategic security programmes within a Microsoft Azure environment. This role will support the business in strengthening its security posture across infrastructure, data, and identity, while ensuring compliance with industry standards.

Key Responsibilities:

• Lead the planning and execution of cybersecurity programmes across the organisation
• Manage stakeholder relationships across IT, operations, and compliance teams
• Implement and optimise Microsoft security tools and frameworks
• Ensure alignment with regulatory and industry standards (e.g. ISO 27001, GDPR)
• Support the business in adopting secure-by-design and Zero Trust principles

Tech Environment:

• Microsoft Sentinel
• Microsoft Defender (Cloud, Endpoint, Office 365)
• Microsoft Entra ID (Azure AD)
• Microsoft Purview (Data Governance & DLP)
• Microsoft Intune
• Azure Security Center

Candidate Profile:

• Experience delivering cyber programmes in Microsoft environments
• Strong understanding of Azure security architecture and tooling
• Background in construction, infrastructure, or related industries is beneficial
• Excellent communication and stakeholder management skills
• Relevant certifications (e.g. SC-100, CISSP, CISM) are desirable

Project Manager (Digital Forensics) - 6 Months Contract

Remote

(Apply online only)/day - Inside IR35

Context:
Our client needs to create their own Digital Enforcement Unit which is a complex area of work. They need a a Project Manager to scope how this unit would look to create a business case with the intention of moving digital forensics forward at the department.

Experience:

• PM experience in the digital forensics space (experience with the Police, NCA, MOD, etc.)
• Knowledge and an understanding of the ISO 17025:2017 and Forensic Science Regulator accreditation
• Eligibility for SC Clearance

Call me, Alex Manea, at NonStop Recruitment now for a confidential conversation. Contact me on .com or (phone number removed), please send your CV in word format OR if this does not sound like the opportunity for you, but you are a professional working across the Public Sector, please feel free to get in touch, to see other opportunities we may have within this field.

Disability Confident

As a member of the Disability Confident Scheme, our client guarantees to interview all candidates who have a disability and who meet all the essential criteria for the vacancy. In cases where we have a high volume of candidates who have a disability who meet all the essential criteria, we will interview the best candidates from within that group. This scheme encourages candidates with a disability and/or neurodivergence to apply. In exceptional circumstances, we may also need to apply the desirable criteria in our shortlisting process which may include holding active security clearance.

Armed Forces Covenant

Our client guarantees to interview veterans or spouses / partners of military personnel who meet all the essential criteria for the vacancy. In cases where we have a high volume of ex-military candidates / military spouses or partners, who meet all of the essential criteria, we will interview the best candidates from within that group. In exceptional circumstances, we may also need to apply the desirable criteria in our shortlisting process which may include holding active security clearance.

Job Title: Project Manager – Digital Forensics

Location: Remote (occasional travel may be required)

Contract Duration : 7 Months

Daily Rate: £600/day (Umbrella – Maximum)

IR35 Status : Inside IR35

Security Clearance: Must be eligible for SC

Minimum Requirement:

• MUST have PM experience in the digital forensics space
• Knowledge and an understanding of the ISO 17025:2017
• Understanding of Forensic Science Regulator accreditation.

This role has been created to scope out the possibility of creating an internal Digital Forensics Unit.

This will include:

• Assessing and understanding the digital forensics need of the organisation
• Assessing what equipment, accreditation and staffing would be required to run and manage a Digital Forensics Unit
• Conducting a cost benefit analysis of this compared to current arrangements
• Develop relationships at a national and regional level with other LEA’s around Digital Forensics
• Managing the current digital forensics contract to ensure it is fit for purpose
• Support the development of written policies and procedures relating to the capture and storage of digital evidence
• Keeping abreast of developments, policies, legislation and best practice around Digital Forensics to inform Agency leaders

You must have the following experience:

• A strong understanding of Digital Forensics which is sufficient to understand the strengths and limitations within Criminal Justice
• Understanding of ISO 17025:2017 and Forensic Science Regulator accreditation
• Overseeing the development and management of complex projects
• Multi agency and partner working
• Horizon scanning to keep abreast of emerging agendas and issues
• Carrying out research activities and projects using a range of techniques and methods
• Presenting data and information in a wide range of formats for a range of audiences at all levels

Security Clearance: Eligible for SC

Disability Confident

As a member of the disability confident scheme, CLIENT guarantees to interview all candidates who have a disability and who meet all the essential criteria for the vacancy. In cases where we have a high volume of candidates who have a disability who meet all the essential criteria, we will interview the best candidates from within that group.

Armed Forces Covenant

CLIENT is proud to support the Armed Forces Covenant and as such, we guarantee to interview all veterans or spouses / partners of military personnel who meet all the essential criteria for the vacancy. In cases where we have a high volume of ex-military candidates / military spouses or partners, who meet all of the essential criteria, we will interview the best candidates from within that group.

If you qualify for the above, please notify us on (phone number removed).

We will be in touch to discuss your suitability and arrange your Guaranteed Interview.

Should you require reasonable adjustments at any point during the recruitment process or if there is a more accessible way for us to communicate, please do let me know.

To apply for this role please submit your latest CV or contact Aspect Resources on (phone number removed)

SC Cleared Data Consultant – London – Up to £100,000 per annum

Are you a data-driven professional with a passion for delivering impactful solutions? Do you excel in translating complex data challenges into actionable insights? If so, Morela has an exciting opportunity for you.

Morela is proud to partner with one of the UK's leading data consultancies, renowned for their innovative approach to data integration and analytics. As they continue to expand, they're seeking a skilled SC Cleared Data Consultant to join their dynamic team. This role is perfect for someone who combines technical expertise with a consultative mindset, aiming to drive value across diverse projects.

You'll be part of a forward-thinking consultancy that operates at the intersection of advanced technology and real-world impact. Serving both public and private sectors, their services encompass strategic advisory, digital transformation, and end-to-end data engineering. As an SC Cleared Data Consultant, you'll play a crucial role in designing and implementing data solutions that empower clients to make informed decisions.

Core Responsibilities

• Data Integration: Connect and harmonise data from multiple sources, ensuring clean, reliable, and compliant data pipelines.
• Data Modelling: Design and manage data models to create logical data structures that enhance accessibility and usability.
• Application Development: Build full-stack applications using tools such as Python, SQL, and relevant frameworks, delivering intuitive user interfaces and interactive workflows.
• Data Governance: Implement data lineage tracking and access controls to uphold compliance with organisational and regulatory standards.
• Client Collaboration: Engage with clients to understand their needs, provide training sessions, and promote best practices for effective adoption and utilisation of data platforms.
• Continuous Improvement: Contribute to internal capability building by improving frameworks, delivery processes, and team development across the consultancy.

What We’re Looking For

• SC Cleared : In this position, you will already be SC cleared.
• Technical Expertise: Proven experience in data engineering, software development, or systems integration, preferably within AI, analytics, or enterprise platforms.
• Problem-Solving Skills: Strong analytical abilities with a knack for troubleshooting and optimising complex data workflows.
• Communication Skills: Excellent ability to engage with both technical and non-technical stakeholders, providing clear and confident guidance.
• Adaptability: Comfortable working across various sectors and with diverse clients, adjusting approaches as needed.
• Travel Readiness: Open to occasional travel (up to 25%) depending on project requirements.
• Palantir Foundry experience is an added bonus!

As a SC Cleared Data Consultant , you’ll lead the charge on some of the most complex, high-impact data programmes in the UK, helping clients unlock the power of their data while mentoring the next generation of engineering talent.

Please do not hesitate to reply and reach out to Morela today to find out more!