1 to 25 of 40 ISO/IEC 27001 Jobs in the South West

security framework, including: Security Architecture policies, principles, and standards for application across the organisation. Alignment to industry standards and regulation e.g. ISO / IEC 27001 / 27002 / 27005. Security specific patterns, models, and blueprints. Define as-is and to-be more »

is addressed early in the development lifecycle. Review security best practice, remediating and implementing controls to ensure compliance. Implementing security gates within the CI / CD workflows to ensure secure deployments. Write Infrastructure-as-code to build secure infrastructure repeatedly. Proactively patch infrastructure and code. Engage in debates around … Dev SecOps engineering position. Strong experience securing cloud platforms, primarily AWS and Mongo Atlas. Exposure to Audits / Compliance / Security frameworks (ISO27001, SOC2, OWASP, SAMM, DSOMM). Knowledge of embedded security (IDE plugins, SAST, DAST, SCA). Experience performing vulnerability scanning / penetration testing. Threat detection … and prevention (IDS, IPS, SOC, Threat list blocking, WAF / SIEM). Cloud account management (e.g. AWS Control Tower / GuardDuty / Config / Security Hub / CloudTrail). Identity management (e.g. SAML / OAuth / OIDC / AWS IAM). Secret more »

Lead the audit / assessment of operations controls and processes against the required internal and industry standards, including but not limited to COBIT, ISO27001, NIST, PCI-DSS, Cyber Resilience Framework Develop a test strategy and produce control test plans to test the design and operational effectiveness of controls, ensuring … and deficiencies, risk exposures and adjustments to the operations risk profile to senior management and Second & Third Line of Defence, as appropriate Support control / action owners in the design of remediation action plans for identified control deficiencies Assist in establishing inherent risk ratings, control rating, and residual risk … interested in joining us at AXA, please don't hesitate to apply. About you What we’re looking for: Previous controls governance and assurance / audit experience in a large organisation Strong understanding of operational risk, control concepts and frameworks Excellent stakeholder management skills Good knowledge of industry best more »

role and requires both a broad technical knowledge of Cyber Security, as well as specific focused knowledge of CTI tools and processes. Knowledge and / or experience of modern IT Systems, particularly Microsoft solutions and network infrastructure is advantageous. Responsibilities: Proactively research and analyse emerging cyber threats, malware variants … risk level. Professional Experience: Demonstrable understanding of the Cybersecurity Ecosystem and Infrastructure Technologies (e.g. firewall logs, network security tools, malware detonation devices, proxies, IPS / IDS). Experience in secured cloud architectures (Azure, AWS, or similar) and engineering solutions. An understanding of operating systems and their programming interfaces such … Management. Experience designing a service, reviewing effectiveness of services, procurement, or business project work. Qualifications: One or more of the following industry certifications: SANS301 / SANS401 / FOR578, Crest CRTIA / CCTIM, Security+, or similar. Ideally a BSc or MSc in Cyber Security, preferably including modules on more »

Requirements gathering from stakeholders to ensure that the capabilities and solutions deliver the necessary improvements, meeting stakeholders expectations. Presenting to management, proactively raising concerns / issues / risks professionally with project members and escalating to management as required. Engaging with business and technical architects, designers, and analysts to … of seniorities. External resources: Management of external consultants, suppliers and specialists, as required. Budget: Some aspects of project finances will be managed. Key skills / competencies required: Essential Qualifications and Experience: Formal training and experience in at least one modern software development lifecycle / methodology (e.g., PRINCE2, Agile … changing environment. Desirable Experience working within either the ISO 27001 ISMS or NIST CSF Experience delivering any information security tools / capabilities such as, but not limited to, Data Loss Prevention, SIEM, Identity and Access Management, EDR / XDR The deadline for applications is more »

Developers can deliver against. Key Responsibilities Collaborate with client users and conduct research to gather and analyse requirements, including prioritisation. Create detailed requirement specifications / User stories and supporting documentation. Liaise with Business Development and software developers to assess options, clarify concerns and agree solution designs. Manage change requests … application) Adhere to best working practices as defined in ISO & Policies. Any other task as directed by the Line Manager. Key results / objectives 1) Generate defined and agreed User Stories / requirements with clear understanding of how they meet client needs and the underpinning solution … quality, reliability and performance of the product solutions to: Meet client and company expectations. Develop robust, reliable solutions in new sectors. Create an outstanding / intuitive user experience. Produce an outstanding quality product in the competitive market. Qualifications Proven eligibility to work in the UK. Minimum HND or NVQ more »

secure way. Will need to have good knowledge of AWS architecture best practices and best-in-class security standards Review relevant Cyber Risk alerts / notifications and MODCERT notices, assess impact on and vulnerability of our solution, define actions to take and work with the technical teams to design … with the latest security threats and trends and proactively identify potential security risks Assist in compliance audits and certifications such as SOC 2, ISO 27001 Self-driven … with ability to work in fast paced, changing environment and deliver results for key milestones targets Align with existing Leidos delivery standards and identify / craft / suggest improvements thereon Required Skills: Strong experience designing and implementing security controls and best practices Bachelor degree in Computer Science, Information more »

policy, culture, audit, and risk management. Good exposure to and experience of carrying out security reviews against recognised security control frameworks such as ISO27017 / 27001, NIST CSF, or PCI-DSS. Ability to evaluate the adequacy of cloud security controls, and how they are applied in a … context. Familiarity and use of some of the following tools is a must: AWS Audit Manager, AWS Security Hub, Macie, Wiz, Microsoft Compliance Portal / Purview, Azure Information Protection (AIP), Azure Security Centre. Experience of carrying out security reviews against recognised security control frameworks such as NIST CSF. Effective more »

graduate level qualification in IT or technical subject Relevant professional certification to CISSP, CISM, CISA, CRISC, ISO 27001 Lead Implementer / Auditor etc Proven track record of leadership, preferably with a history of involvement in cyber related transformation projects and the effective development and implementation more »

security provisions within a global, fast-paced organisation Strong understanding of best practice in relation to Cyber Security Experience of working in environments using ISO27001 or Cyber Essentials Plus would be beneficial Strong knowledge of security tooling and technologies including SIEM, vulnerability management, DLP etc Good knowledge and understanding of more »

deliver against. Key Responsibilities o Collaborate with client users and conduct research to gather and analyse requirements, including prioritisation. o Create detailed requirement specifications / User stories and supporting documentation. o Liaise with Business Development and software developers to assess options, clarify concerns and agree solution designs. o Manage … as directed by the Line Manager. Role Criteria Essential o Proven eligibility to work in the UK. o Minimum HND or NVQ Level 3 / 4 in a science based subject. o A Level Maths, or similar o A Level English, or similar, with good grammar and attention to … detail. o A degree in Computer Science or equivalent. Skills and Expertise o Ability to confidently communicate technical / non-technical issues with clients. o Experience in capturing client requirements and generating quality User stories. o Logical and Analytical mindset to understand business needs and translate to technical solution. more »

your mastery in cyber security. Strong background in security architecture and risk management. Familiarity with cyber security standards such as NIST CSF and ISO 27001 Interviews are scheduled to take place next week so if you are interested in hearing more about this and other roles more »

within a global organisation A proven track record of working to best practice in relation to Cyber Security Experience of working in environments using ISO27001 or Cyber Essentials Plus Strong knowledge of security tooling and technologies including SIEM, vulnerability management or similar Experience of Cloud platforms, either AWS or Azure more »

for those standards to be adopted. Ensuring capability meets the required information security standards that Sopra Banking Software need to conform to (e.g., ISO 27001), conformity to those standards can be clearly demonstrated and evidenced. Taking on all tasks and responsibilities that is required of the more »

for those standards to be adopted. Ensuring capability meets the required information security standards that Sopra Banking Software need to conform to (e.g., ISO 27001), conformity to those standards can be clearly demonstrated and evidenced. Taking on all tasks and responsibilities that is required of the more »

obligations. 4. Deputise for or assist Operations and Data Centre Managers where required and available. 5. Create, maintain, and adhere to documented procedures, ISO 27001, best practices, checklists and be held responsible for your work. 6. Make sure all works are recorded correctly in line with … approval from managers. 18. Take responsibility for Serverfarm assets, resources and consumables, ensuring security, tidiness, cleanliness and correct stock levels. 19. Understand the customer / supplier relationships within our contracts and be conscious of them when representing Serverfarm in customer and supplier forums where required. 20. Operate in a … a critical technology environment. 2. Can work from a complex High-Level Design (HLD) or Patching Schedule unsupervised. 3. Experience in using StruxureWare DCE / DCO & TrackIT toolsets, would be beneficial. 4. Working additional hours or on call may be required in this role. 5. Evidence of self-management more »

their Engineering Delivery Team with a candidate who will be proficient in running hands-on risk assessments in line with industry good practice (ISO 27001, NIST, JSP 440). You'll also lead the development of risk-based cybersecurity requirements and provide essential technical guidance. Your more »

to maintain efficient and secure operations. ? Develop, implement, and monitor a strategic, comprehensive enterprise information security and IT risk management program. ? Manage compliance of ISO27001, Cyber Essentials Plus, NHS DSCR, and other regulatory standards. ? Regular security audits, risk assessments, and uphold our annual compliance certifications. ? Oversee a network of … processes, following DevOps best practices. Qualifications: ? Proven expertise as an IT Manager focusing on infrastructure and compliance. ? Solid grasp of compliance frameworks such as ISO27001 and Cyber Essentials Plus. ? A minimum of 3 years in IT systems management with a robust compliance and security background. ? Strong knowledge of technical infrastructure … science, IT, Cybersecurity or a related field, or equivalent experience. Other considerations The business operates a first responder roster in Infrastructure to provide 24 / 7 / 365 support to respond to operational & environmental service requirements. This post maybe part of an on-call rolling roster & the post more »

role you will be identifying risks to products and providing guidance on how to enhance and align them with industry frameworks such as ISO 27001, NIST, and JSP 440 and making sure the risks have been mitigated effectively. My client has a huge … training budget for this team and utilizes this to up-skill and train their staff offering a clear ladder up the hierarchy into senior / lead positions. Due to the sensitive nature of the work, Security Clearance (SC) is essential, making this position exclusively available to UK nationals . more »

Cyber Security Officer NCSC, ISO27001, CIPT, CISSP, CISM, CISA Up to 50k depending on skills and experience Hybrid will need to be onsite when required (2-3 Days a week). You need to live within commutable distance of Salisbury and due to our clients location, own transport is essential … and compliance, this role is fundamental in ensuring our client complies with its ongoing information security obligations, including but not limited to: MOD Accreditation, ISO27001 and Cyber Essentials Plus. What you will Need To Have: Minimum of 5 years hands-on experience of delivering information security best practice Experience of … simulations and training. Experience / understanding of National Cyber Security Centre (NCSC) best practices and guidance Experience of leading and conducting audits (especially ISO27001) is essential in this role. Familiar with principles of good data governance, cyber security and data protection. Ability to work across multiple technical projects simultaneously more »

You will have experience with these: Creating and managing networks and virtual infrastructure Assessing network performance and functionality Implementing security practices Understanding of ISO 27001 Managing Azure infrastructure Performing backups Conducting migrations from On-premises to SharePoint within M365 Job Type: Permanent Location: Cheltenham (3 days more »

You will have experience with these: Creating and managing networks and virtual infrastructure Assessing network performance and functionality Implementing security practices Understanding of ISO 27001 Managing Azure infrastructure Performing backups Conducting migrations from On-premises to SharePoint within M365 Job Type: Permanent Location: Cheltenham (3 days more »

Staying updated with industry trends and integrating best practices. Collaborating with teams to align processes with strategic goals. Ensuring adherence to standards like ISO 27001 and providing evidence of compliance. Understanding the broader architectural context and advocating for suitable solutions. Qualifications We are interested in hearing … free employee share scheme Private medical insurance - provided by Bupa Eyecare Vouchers -free eye test buannually Health Cash Plan - provided by Westfield Health Gym / Health Club Discounts Flu Vaccinations Cycle to work scheme We take pride in rewarding our colleagues through Summer parties, treat days in the offices more »

Staying updated with industry trends and integrating best practices. Collaborating with teams to align processes with strategic goals. Ensuring adherence to standards like ISO 27001 and providing evidence of compliance. Understanding the broader architectural context and advocating for suitable solutions. What are we looking for?: We more »

and optimizing operational processes and ways of working. Staying updated on industry best practices and champion their adoption. Ensuring adherence to standards like ISO 27001 and providing evidence of compliance. Offering on-call support to manage out of hours outages impacting our SLAs and striving to more »