1 to 25 of 436 Permanent ISO/IEC 27001 Jobs

build, implement and facilitate a mechanism to aid BU's to assess and measure their security compliance to policies. Drive the development of BU / Divisional security roadmaps. Giving oversight of key non-conformities to feed into the CISO roadmap. Coach, train and educate the Company IT and Functions … and concepts with senior stakeholders. Experience of running information security risk governance processes and structures Familiarity with relevant industry standards for information security (e.g. ISO27001, NIST CSF) Experience of creating, implementing and assessing against information security policies and standards Creativity Able to analyse complex, ambiguous problems and summarise clearly with … people, bringing to life information security risks to the business, while maintaining a pragmatic outlook on likelihood and impact of the risk and cost / complexity of the mitigation. Ensuring initiatives / programmes are anchored in best practice whilst still being highly practical / pragmatic. Ability to more »

charges for non-standard items, complaints, changes to service System changes (software upgrades, introduction of new systems Non-standard requests (new software requests, different / more powerful laptops, etc) Acquisitions of businesses - guidance on how to absorb people and systems Security system monitoring - interpreting and managing output from the … Change management (internal authorisation for significant system changes) Assistance to senior management in relation to IT issues (for example, integration with a new time / billing system) Response to technological change (e.g. major updates to Microsoft software, introduction of AI-based systems) Accreditation for security certificates (Cyber Essentials Plus … possibly ISO 27001) Assistance with AAF and other audits Management of joiner / leaver process Business continuity plan & disaster recovery This is a hybrid position with 2 to 3 days in the office at the offices in Reading. The salary for this position is circa more »

financial future and achieve yours along the way with a rewarding career. As a Expert Vulnerability Analyst you will drives DFS Cybersecurity strategic Compliance / Vulnerability management decisions. You have oversight over Compliance / Vulnerability management roadmaps. You will consult on resilient support for next-generation systems to … the highly dynamic operating environment Mentor and provide leadership to the team ensuring assessments products are risk-based, accurate and meet the enterprise governance / service level agreement requirements. Provide expert level guidance and coaching for complex vendor assessments managing the risk appropriately. Demonstrate strong understanding of Third Party … 27001, SOC 2, SIG, and familiarity with security frameworks such as NIST 800-53, CSF, financial services related regulatory guidance / laws such as GLBA, FFIEC and international regulations such as GDPR. Collaborate closely with key stakeholders including internal business partners, second line, auditors, risk more »

gained within a software development working environment. Experience of ISO9001:2015 quality standard and maintaining a Quality Management System Any knowledge or experience of ISO27001 / 002 or maintaining an Information Security Management System would be advantageous but not essential. Experience of developing and managing an internal auditing programme more »

To be able to self-educate and attain industry standard IT accreditation Liaise with clients to analyse, review, identify and develop relationships the meet / exceed customer need Contribute to highest levels of prospect and customer satisfaction Make recommendations on improvements to Intercity services and service quality Key Skills … applications. As a specialist in secure technology solutions, all successful candidates will be subject to preemployment checks, so we can ensure compliance with our ISO27001 (Information Security) and Cyber Essentials Plus certifications.?We are committed to using any personal information you may give us in a secure and proper manner more »

policy, culture, audit, and risk management. Good exposure to and experience of carrying out security reviews against recognised security control frameworks such as ISO27017 / 27001, NIST CSF, or PCI-DSS. Ability to evaluate the adequacy of cloud security controls, and how they are applied in a … context. Familiarity and use of some of the following tools is a must: AWS Audit Manager, AWS Security Hub, Macie, Wiz, Microsoft Compliance Portal / Purview, Azure Information Protection (AIP), Azure Security Centre. Experience of carrying out security reviews against recognised security control frameworks such as NIST CSF. Effective more »

Cyber Security Engineer - Cardiff A leading firm in Cardiff requires a Cyber Security Engineer with good experience in cyber security / IT security. This role can be hybrid working, with 3 days in the office, and the rest working from home. You will join a Cyber Security Operations (SecOps … + Benefits + Some home working. To apply press apply now or send your CV to matthew.leach @ circlerecruitment.com Keywords: IT Security / Cyber Security / ISO 27001 / Networking / Patching / Systems / Cardiff Circle Recruitment is acting as more »

for those standards to be adopted. Ensuring capability meets the required information security standards that Sopra Banking Software need to conform to (e.g., ISO 27001), conformity to those standards can be clearly demonstrated and evidenced. Taking on all tasks and responsibilities that is required of the more »

and support capability, that is customer focused as well as responsive to business change, as well as offering a scalable & flexible service. Evaluate & propose / recommend emerging technologies in line with business objectives including the Business justification and ROI activities. Work with infrastructure manager to establish of adherence to … ensure data quality, integrity and security standards are defined, achieved & maintained e.g. ISO 27001, Cyber Essentials, GDPR and similar accreditations / authorisations. Technical Skills and Attributes Experience of working with suppliers and datacentre colocation providers. Proven IT support & management experience in Microsoft Windows Server 2019+ … Ubuntu, Entra, Intune, MS SQL, SQL AlwaysOn IIS, Azure. Virtualised environments including VMWare, Xen, Azure. A good understanding of networking to include L7 Firewalls / WAFs, HAProxy etc. Data security & integrity (Cyber Essentials Plus etc) Management of network monitoring portals e.g. N-Central, Zabbix & Grafana. Experience with working within more »

Privacy Standards and Frameworks (e.g. ISO 27001, NIST, CIS). Working directly with engineering teams and architects to review system / data architectures through the development of patterns and industry best practice. Understanding and articulating the impact of vulnerabilities and required controls and mitigations on … to reach consensus. Nice to have Skills Formal security certifications e.g. CISSP, CISM, AWS Solutions Architect Working within environments utilising DevOps, DevSecOps, SRE, CI / CD, Infrastructure & Security as Code (Docker, Git, Terraform) Good understanding of Data Protection & GDPR Package Up to £65k per annum dependant on skills and more »

in the case of major incidents and threat priorities where vital. The design of the service based on the use of an external 24 / 7 hybrid MDR aims to reduce the need for this, and it will be within the gift of the individual to optimise these arrangements. … About you You should have extensive technical experience (plus 5 years) working with information security and / or technology in senior technical positions. You will bring substantive senior experience of managing technology and information security major incidents and demonstrable best practice. You will have an excellent knowledge of IT … Linux, AWS, Vulnerability management and SIEM, DRM. We would expect you to have a familiarity with industry security standards such as NIST, Cyber Essentials, ISO27001 and GDPR. You should also have experience with internal / external Security and Governance audits. more »

services and features, including IAM, VPC, EC2, S3, RDS, Lambda, and CloudFormation. - Strong understanding of security best practices, principles, and frameworks, such as ISO 27001 controls and NIST Guidelines. - Experience in implementing security automation using scripting languages e.g. Python and infrastructure-as-code (IaC) tools. - Ability more »

notch work within set timelines and budgets. - Strong team player with the ability to work both independently and collaboratively. - Experience in conducting SOC1 and / or SOC2, ISO 27001 attestations is a significant advantage. IT Auditor In accordance with the Employment Agencies and Employment Businesses more »

capacity planning. Identify security vulnerabilities and eliminate them with strategic solutions that increase data security in-line with ISO 27001 / SOX Create processes and standards for selection, implementation, and support of systems Manage IT staff, with responsibility for employing, evaluation, training, guidance, disciplinary procedures … Equal Opportunities, Data Protection, Code of Conduct, and Information Security. Critical Competencies: You will have previously maintained a similar position as Head of IT / IT Director in a medium sized organisation where you have been responsible for applications through to infrastructure and service management through to change You … data can drive value, growth, and good customer experience. Translating business strategy into technical strategy and subsequent successful delivery Extensive experience of delivering technology / digital change with a good working knowledge of Agile / Scrum project management and change approaches. Aware of cybersecurity best practice and standards more »

Eligibility of Security clearance is mandatory Are you interested in joining a team that will design and implement a data security strategy? The team / department The Cyber and Information Resilience (C&IR) Team is a department that has been formed to respond to the growing threat from cyber … data life cycle management, data loss prevention or the supporting of these security solutions * Experience implementing policy modules for automation across industry standards including ISO27001 and GDPR * Working knowledge of Microsoft Purview functionality, ability to deliver the best business solution to ensure compliance across the Microsoft Office Suite of products more »

People Team. Information Security Management: Collaborate on implementing company-wide information security controls. Manage End User Vulnerability and Patch Management Program. Ensure compliance with ISO27001 standards for end-user technical controls. Support ISO27001 certification and audit program maintenance. Manage device refresh programs and licensing agreement compliance. Maintain end-user assets … verbal. Proven ability to build effective relationships and manage time efficiently. Capability to drive change collaboratively and secure consensus. Experience in the Financial Services / Insurance Industry is beneficial but not essential. From here on out, an interesting role awaits with an employer of choice. Somewhere that you can more »

Quality Assurance & Computer Systems Validation. Advise & support system owners, project managers or suppliers in the validation of computer systems according to internal & external GxP / GAMP specifications (eg in the field of production systems SW, SW development, MES or database systems). Independently prepare the necessary documentation & execution of … tests. Support the continuous development of IT processes (eg further development of internal CSV processes or certification of IT service areas according to ISO 27001: Information Security). Act as a key contact person as a CSV expert for customers & audits. Review & approval CSV & system documentation. … Annex 11 / FDA: 21CFR Part 11). Ideally experienced in the Medical Technology Sector. A knowledge of important IT Standards & Methods (eg ISO27001, ISO 80002-2, ITIL) or ISO 13485:2016 QMS for Medical Devices. Your Profile: Completed relevant Scientific or Technical University Degree. more »

in the case of major incidents and threat priorities where vital. The design of the service based on the use of an external 24 / 7 hybrid MDR aims to reduce the need for this, and it will be within the gift of the individual to optimise these arrangements. … About you You should have extensive technical experience (plus 5 years) working with information security and / or technology in senior technical positions. You will bring substantive senior experience of managing technology and information security major incidents and demonstrable best practice. You will have an excellent knowledge of IT … Linux, AWS, Vulnerability management and SIEM, DRM. We would expect you to have a familiarity with industry security standards such as NIST, Cyber Essentials, ISO27001 and GDPR. You should also have experience with internal / external Security and Governance audits. more »

technical information including security policies. Experience in IT security incident management Practical knowledge of information security risks, controls and frameworks (e.g., NIST, COS or ISO27001) Experience of security withing Azure / Cloud environment, Mimecast or similar email security gateways, Crowdstrike or similar EDR solution and Rapid7 or similar vulnerability more »

both technical and non-technical resources and stakeholders amongst customers and staff. Manage additions, deletions and changes in line with the companies ISO9001 and ISO27001 quality and information security systems. Maintaining system updates across the estate in line with Cyber Essentials plus requirements. Role Profile The role holder will use … record in a platform role and have experience in producing appropriate documentation. Key Responsibilities and Accountabilities Responsible for the technical delivery of technical systems / network projects on the most secure, reliable and resilient platforms. To ensure compliance with the defined security policies regarding access to the Internal systems … Server Virtualisation (Hyper-V, VMWare) Microsoft Cloud Technologies (Azure, M365, Intune, Endpoint, AutoPilot) Microsoft Windows Technologies - Server & Desktop Storage (SAN, NAS) Networking Fundamentals (TCP / IP, DHCP, DNS, routing and switching) Server & Desktop hardware Ability to contribute to departmental processes Willingness to adapt and think outside the box Desirable more »

An understanding of HR management Knowledge of Managed Service industry Ability to produce clear and concise reports and documents Experience in a technical support / assurance environment or a similar customer-facing role Display strong understanding of ITIL methodology and disciplines. Excellent communication, leadership, and interpersonal skills Strong analytical … applications. As a specialist in secure technology solutions, all successful candidates will be subject to preemployment checks, so we can ensure compliance with our ISO27001 (Information Security) and Cyber Essentials Plus certifications.?We are committed to using any personal information you may give us in a secure and proper manner more »

our client based just north of Cambridge. You will be responsible for all things security within the department, ranging from handling incidents to reviewing / creating policies and documentation. Responsibilities: * Provide expertise and guidance on cyber security risks, threats, opportunities, and capabilities * Advise colleagues on security requirements * Offer guidance … with internal security policies * Create and update IT governance * Ensure incidents are logged, monitored and tracked * Alignment of security practices with accreditations including ISO 27001, Cyber Essentials Plus, NIST and CIS frameworks * Vulnerability testing, risk analysis and internal security assessments Requirements: * Degree level qualification or equivalent more »

Presales Solutions Consultant (Cybersecurity) - £55,000 - £65,000 + benefits London (Hybrid) ISP / MSP Overview: A market leading organisation operating within the ISP / MSP space are looking for an experienced Pre-Sales Solutions Consultant to join their growing team in London on a hybrid basis. Role … and experience with the Microsoft suite of services to secure the Modern Workplace (Defender, Intune & Sentinel) as well as advanced, cloud-based services (SOC / SIEM, MDR / EDR). In addition, customers will need expert guidance in protecting their data, securing their IT infrastructure and working securely … SD-WAN, SASE, LAN, WiFi & Cybersecurity Experience in recommending and designing solutions to meet compliance standards such as CE / CE+ / ISO27001 Microsoft, Cisco, Meraki & Fortinet certifications Package: £55,000 - £65,000 Annual Bonus Benefits Hybrid Working Presales Solutions Consultant (Cybersecurity) - £55,000 - £65,000 + benefits more »

Presales Solutions Consultant (Cybersecurity) - £55,000 - £65,000 + benefits - London (Hybrid) - ISP / MSP Overview: A market leading organisation operating within the ISP / MSP space are looking for an experienced Pre-Sales Solutions Consultant to join their growing team in London on a hybrid basis. Role … and experience with the Microsoft suite of services to secure the Modern Workplace (Defender, Intune & Sentinel) as well as advanced, cloud-based services (SOC / SIEM, MDR / EDR). In addition, customers will need expert guidance in protecting their data, securing their IT infrastructure and working securely … SD-WAN, SASE, LAN, WiFi & Cybersecurity Experience in recommending and designing solutions to meet compliance standards such as CE / CE+ / ISO27001 Microsoft, Cisco, Meraki & Fortinet certifications Package: £55,000 - £65,000 Annual Bonus Benefits Hybrid Working Presales Solutions Consultant (Cybersecurity) - £55,000 - £65,000 + benefits more »

solutions, including all the 3rd party managed services Maintain the overall security of Company network, systems, and data Monitor security access and manage IDS / IPS configurations Establishing and implementing security 'best-practice' standards as well as departmental policies and procedures Responsible for Security scanning and the efficient remediation … Developing and managing security plans with vendors Audit activities of administrators and conduct Security awareness training Must have: Bachelor's Degree in Computer Science / … Information Technology or equivalent experience Demonstrable skills and capability in Security leadership and 3rd party management experience CISSP certification preferred. Compliance knowledge required in ISO27001, PCI and GDPR. Possibly a certified ethical hacker Knowledge of Security technologies is essential, such as network appliances, firewall administration, AD, IAM, PAM, SIEM, UEBA more »