Role: Senior Security Consultant Location: Hybrid between Manchester / London / Cheltenham / Leeds and remote Thanks for checking out our job opening; we are excited that YOU are interested in learning more about NCC Group. We are on a mission to make society a safer and … look at our website here to learn more about why we’re one of the leading global Cyber Security and Risk Mitigation business… https: // www.nccgroup.com / uk / The Opportunity: NCC Group provides Information Assurance consultancy to help businesses protect critical systems and information. … audits Incident response planning On-demand augmentation roles Risk advisory and assurance Cyber maturity assessments Supply chain assurance Incident response readiness and planning Gold / Silver / Bronze tabletops Alongside our core services, we have a range of bespoke services to help organisations protect their systems and information more »
security framework, including: Security Architecture policies, principles, and standards for application across the organisation. Alignment to industry standards and regulation e.g. ISO/IEC 27001 / 27002 / 27005. Security specific patterns, models, and blueprints. Define as-is and to-be security architectures. more »
OT estate. What You'll Bring: The individual should be educated to degree level in a relevant discipline and must be one of CISM / CISSP / CISA / TOGAF / CRISC. Must have 5 years’ cyber security experience. Must have proven expertise in Compliance Management … Assessment Framework. Good understanding and practical experience of Cyber Security Frameworks and standards such as NCSC security principles, NIST Framework, ISO 27001, ISO27005, IEC62443 etc. Excellent command of written English. Strong interpersonal and relationship building skills. Role will require Security Clearance This is an excellent opportunity to join more »
Leading the business to deliver frequent risk assessments for approval by supported business functions and the Control & Cyber Strategy Manager, ensuring registers are maintained / amended as required. Leading and managing a team of Operational Technology Cyber risk specialists who will conduct risk assessments of NIS Critical systems. Ensuring … with leadership to report on risk posture, metrics, mitigation strategies and investment priorities. Experience Demonstrable experience utilising risk assessment methodologies (e.g., NIST 800-30, ISO27005, IEC 62443, FAIR). Demonstrable experience working with industry best practices and security control frameworks (e.g., NIST 800 53, ISO … across the business. Confidence to challenge, take ownership of complex challenges, lead risk assessments, agree and build future improvement plans. Moderate understanding of ICS / SCADA (e.g., IEC 62443 framework). Understanding of UK Network & Information Systems (NIS) Regulations desirable. Communicating complex messages both orally & in writing more »
and maintaining an enjoyable working environment. Skills and experience we’re looking for: Experience utilising Risk Assessment methods and frameworks (IRAM2, OCTAVE, NIST, ISO27005 etc). Exposure to Information Security Management System frameworks and standards and their application. Partnered with knowledge of governance processes and … practices, including ISMS monitoring and control management frameworks such as, ISO, ISF and COBIT, their relationships to other frameworks and the application within a financial services environment. Good working knowledge of one or more security technologies and domains, including, but not limited to network security, cyber security, data more »
