Glasgow Area, Scotland, United Kingdom Hybrid / WFH Options
DGH Recruitment Ltd
Information Security Officer (ISO27001/ NIST / CISA / CISM) Hybrid working policy: 2-3 days per week in the office. DGH Recruitment are currently recruiting on behalf of a leading global client who are looking for an Information Security Officer to … to security incident investigations and remediation efforts. - Review vendor security documentation, such as questionnaires, audits, and certifications, to evaluate their security posture. Required Skills / Experience: - Strong knowledge of information security principles, best practices, and standards (e.g., ISO27001, NIST). - Experience in conducting vendor … CISM, or similar (preferred) - Knowledge of regulatory requirements related to data privacy and protection (preferred) Information Security Officer (ISO27001/ NIST / CISA / CISM) In accordance with the Employment Agencies and Employment Businesses Regulations 2003, this position is advertised based upon more »
the review and assessment of Key Controls globally, and identify and escalate any deficiencies within the control assessment process Risk Management Liaise with internal / external auditors and regulatory bodies during audits and assessments, ensuring the timely and accurate provision of information and addressing any findings or recommendations Work … certifications such as CISM (Certified Information Systems Manager), CRISC (Certified in Risk and Information Systems Control), ISO27001 Lead Implementer / Auditor, or equivalent are desirable Advanced Microsoft 365 skills (Excel / PowerPoint) are preferred Experience in risk management and assessment Knowledge of General … IT Controls (GITC) assessments Familiarity with one or more industry frameworks and standards such as ITIL, COBIT, NIST Cybersecurity Framework, and ISO27001 Strong communication skills, both verbal and written, with the ability to present technical information to non-technical stakeholders effectively Demonstrated ability to work more »
Dehradun and five fully owned international subsidiaries in US, Canada, Australia, UK, and Middle East. RMSI is a CMMI Level 5 assessed and ISO27001 & ISO 9001:2015 certified company. Adopting these standards ensures that we provide the highest levels of software development processes … and information security to our clients. RMSI has also achieved IS0 14001:2015 (for compliance of Environmental Management System) and ISO 45001:2018 certification (for compliance of Occupational Health and Safety Management). Roles Responsibilities Investigation of datasets to recommend changes to improve data quality Data manipulation in more »
Dunbar, East Lothian, Scotland, United Kingdom Hybrid / WFH Options
Risktec Solutions Ltd
or degree qualification and possess the following knowledge and expertise such as: An understanding of relevant industry security standards and frameworks such as IEC 62443, ISO27001 or NIST 800. Working knowledge of typical OT plant computing such as ICS, SCADA, DCS, PLC, HMI more »
Glasgow, Scotland, United Kingdom Hybrid / WFH Options
Cathcart Technology
The business is currently embarking on a digital journey , so you will be working alongside the digital team to work on initiatives and current / upcoming projects. You will use your strong knowledge and experience to apply best practices and regulatory requirements to assess and mitigate security risks across … audits, ensuring compliance with policies and regulatory requirements , and providing security awareness training and guidance to all staff. You will have the following skills / experience: - ** Experience within a similar role ** Knowledge of regulatory requirements / data protection – GDPR, CCPA ** Certifications such as CISA and CISM , or similar … would be preferred ** Extensive knowledge of information security principles, best practices, and standards – ISO27001 A really exciting time to join the company as they continue their digital journey, a chance to put your strong skill set and knowledge to use, as well as learning cross more »
Transformation Security Lead| 6 Month Contract | (Inside IR35) | Hybrid (Edinburgh / Glasgow 1 day pw) | Starting ASAP Day Rate: £Market Rate Main Duties: Ensure solutions delivered through the corporate transformation portfolio, including automation solutions, are designed and built securely to address information security risks to confidentiality, integrity and availability … Review architecture definitions against business requirements and compliance with security architecture policies, standards and patterns. Engage with senior stakeholders within SG and customer organisations / public bodies to advise on security architecture and controls and ensure joined up security when delivering services across these bodies. Work with external suppliers … including cloud software as a services vendors, services / system integrator and other cloud technology vendors to ensure end to end security for corporate services being transformed. Work closely with iTECS Cyber Security & Defence team colleagues to allow oversight by the Chief Information Security Officer (CISO) and align ways more »
Transformation Security Lead| 6 Month Contract | (Inside IR35) | Hybrid (Edinburgh / Glasgow 1 day pw) | Starting ASAP Day Rate: £Market Rate Main Duties: Ensure solutions delivered through the corporate transformation portfolio, including automation solutions, are designed and built securely to address information security risks to confidentiality, integrity and availability … Review architecture definitions against business requirements and compliance with security architecture policies, standards and patterns. Engage with senior stakeholders within SG and customer organisations / public bodies to advise on security architecture and controls and ensure joined up security when delivering services across these bodies. Work with external suppliers … including cloud software as a services vendors, services / system integrator and other cloud technology vendors to ensure end to end security for corporate services being transformed. Work closely with iTECS Cyber Security & Defence team colleagues to allow oversight by the Chief Information Security Officer (CISO) and align ways more »
losses and support sustainable growth across Technology and Oversight risk. Essential Skills: • Proficient in Technology and Resilience Risks and Control Frameworks such as COBIT, ISO27001, and ITIL. • Collaborates effectively with Technology, Business, and Project teams to apply risk and control context. • Likely currently working in a Technology or resilience risk more »
of documenting and reporting product or service quality levels. A relevant professional qualification cyber security or protective security. Working knowledge of NIST 800-53, ISO27001 or other cyber security frameworks. Demonstrable experience of managing complexity in a working context. Behaviours We'll assess you against these behaviours during the selection more »
culture of compliance, risk awareness, and continuous improvement within the organisation Excellent time management skills Personable with excellent written and verbal communication skills ISO27001 Certified with experience of aligning processes to the standard Effective influencing and negotiation skills in an environment where resources may not more »
City Of Edinburgh, Scotland, United Kingdom Hybrid / WFH Options
NRG
technical understanding of data center infrastructure • Understanding of the UK regulatory regime relevant to the data center industry particularly around H&S legislation, ISO27001, 14000, and PCI. Key Responsibilities: · Be a role model of the values and behaviors of your team, driving service excellence and more »
and analytical skills, identifying and assessing risk, threats, patterns and trends Experience delivering security frameworks such, business is currently using NIST framework, experience across ISO27001, Cyber Essentials and PCI DSS would also be beneficial. Vulnerability and Threat management Managing policy / standards and associated control environment, including metrics and … from a range of scenarios Experience working hand in glove with more technical execution functions to ensure security is by design (developers) and network / infrastructure improvements are coordinated and take account of security outcomes. You will have … Strong governance, risk and guidance experience Experience around Controls Environments Experience … level and across the business Experience working in w regulated industry, ideally financial services although other regulated industries considered Experience on educating on risk / information security for everyone in the business. The Good Stuff... 6% employer pension contribution Flexible benefits allowance to add to your salary or buy more »
oversight of Cyber Security Risks. What you’ll bring Experience of embedding and support end-to-end risk management activity in the assigned area / domain (Risk Identification, Assessment and Mitigation and Issue Management) based on a standard risk management framework. Excellent oral and written communication, analytical, organisational, and … risk management and solutions from concept to delivery. Experience operating within / testing against Cyber Security Risk and Control Frameworks such as NIST, ISO27001, ISO27002. Possess an industry recognised qualification such as CRISC, CISSP, CISM, CISA, or certification. This role is urgent in nature so please email your CV more »
a Cyber Security risk Manager. What you'll bring Experience of embedding and support end-to-end risk management activity in the assigned area / domain (Risk Identification, Assessment and Mitigation and Issue Management) based on a standard risk management framework. Excellent oral and written communication, analytical, organisational, and … risk management and solutions from concept to delivery. Experience operating within / testing against Cyber Security Risk and Control Frameworks such as NIST, ISO27001, ISO27002. Possess an industry recognised qualification such as CRISC, CISSP, CISM, CISA, or certification. Reach out to find out more! InterQuest Group is acting as … this vacancy. InterQuest Group is an equal opportunities employer and we welcome applications from all suitably qualified persons regardless of age, disability, gender, religion / belief, race, marriage, civil partnership, pregnancy, maternity, sex or sexual orientation. Please make us aware if you require any reasonable adjustments throughout the recruitment more »
a Cyber Security risk Manager. What you’ll bring Experience of embedding and support end-to-end risk management activity in the assigned area / domain (Risk Identification, Assessment and Mitigation and Issue Management) based on a standard risk management framework. Excellent oral and written communication, analytical, organisational, and … risk management and solutions from concept to delivery. Experience operating within / testing against Cyber Security Risk and Control Frameworks such as NIST, ISO27001, ISO27002. Possess an industry recognised qualification such as CRISC, CISSP, CISM, CISA, or certification. Reach out to find out more more »
to enhance IT performance. Coordinate integration of all systems and processes within the IMS, ensuring conformity with relevant certified business standards such as ISO 27001. Report on IT function and role performance to the Operations Manager, escalating issues to appropriate Directors when necessary. Define and apply an information … staff development. Providing hands-on IT support when required Support and mentor IT staff in carrying out duties and responsibilities effectively. Core Business Skills / Experience Minimum 5 years of experience in a similar IT management role, preferably within the construction or related industry. Proven track record of coordinating more »
Greater Edinburgh Area, United Kingdom Hybrid / WFH Options
TechForce Cyber
Role Type: Hybrid based out of Aberdeen / Edinburgh offices with national client site travel. Company Overview: TechForce Cyber is an established cybersecurity consultancy based in the UK, renowned for delivering bespoke security solutions. The company is deeply committed to safeguarding digital assets and ensuring the integrity of clients … teaming, and targeted attack simulations. Requirements: Minimum of 1-2 year of experience in a Penetration Testing role. Relevant industry certifications such as CPSA / CRT, OSCP, CSTM, or working towards CCT or similar certifications. Eligibility for SC Clearance. Excellent report writing skills and a high standard of written … penetration testing concepts and best practices. Experience with tools like Nessus, Appscan, Burp Suite, Nipper, and Trustwave. Knowledge of information security frameworks such as ISO27001, NIST, and CIS. Enthusiasm and a keen interest in professional development within cybersecurity. Driving Licence is essential. Opportunities: Join an established security practice in a more »
projects as part of the broader IT strategy. Microsoft Windows operating system administration (Server 2016+, Windows 10+), including Active Directory and Group Policies. TCP / IP, Ethernet networking and network security. Experience of supporting users and team members with varying levels of technical skills and abilities. Capable of documenting … a project team Experience of working with IT Helpdesk Software (ideally Jira and Jira ITSM) Experience of working within a recognised framework, e.g. ITIL, ISO27001, ISO22301 Dell SAN Management (Compellent) Oracle Database administration PowerShell Scripting Familiarity with Data Centre Operations Familiarity with SQL Developer Linux installation and administration Experience of more »
Technology / Operational Risk Manager I am working with a Bank based in Edinburgh who are looking for Technology Risk Manager to sit within their Operational Risk team, which is second line of defence (2LOD). This role will oversee Technology and Resilience risks to help ensure the Bank … and / or Resilience risk Good understanding of frameworks and how this can be applied. This can include (but not limited to) COBIT, ISO27001, ISO27002 Financial Services expereince - Preferred! Strong communication skills and ability to work effectively within diverse teams This is a hybrid role – expectations are to go more »
Vendor & Supply risk, as well as risk assessments around the project delivery, to identify vulnerabilities and provide recommendations. Strong understanding of Security Principles e.g. ISO27001 and NIST. Strong knowledge of Data Security e.g. GDPR Understanding of security & compliance frameworks and holding assessments relating to these. Self-starter and driven. Why … If this aligns with your career goals, please click “apply,” and a member of the Provn team will contact you to discuss this ISO position further. Provn Talent Solutions Ltd is operating as an employment agency under the Conduct of Employment Agencies and Employment Businesses Regulations 2003. Your more »
Edinburgh, Scotland, United Kingdom Hybrid / WFH Options
Moon Executive Search
needs, and delivering tailored GRC solutions. Regulatory Compliance : Ensure the organisation and its clients adhere to relevant regulatory requirements (e.g., GDPR, NIS Directive, ISO standards) through continuous monitoring and adherence initiatives. Policy and Procedure Oversight : Develop and enhance GRC policies, procedures, and controls for the MSP and its … within GRC management, ideally within an IT MSP or relevant industry, profound knowledge of industry relevant regulatory requirements and standards. Must have experience with ISO27001, ISO9001, CE & CE+ more »
Edinburgh, Midlothian, Scotland, United Kingdom Hybrid / WFH Options
Moon Consulting
needs, and delivering tailored GRC solutions. Regulatory Compliance : Ensure the organisation and its clients adhere to relevant regulatory requirements (e.g., GDPR, NIS Directive, ISO standards) through continuous monitoring and adherence initiatives. Policy and Procedure Oversight : Develop and enhance GRC policies, procedures, and controls for the MSP and its … within GRC management, ideally within an IT MSP or relevant industry, profound knowledge of industry relevant regulatory requirements and standards. Must have experience with ISO27001, ISO9001, CE & CE+ more »