1 to 25 of 45 CISM Jobs in Scotland

the ability to align security initiatives with business goals. Analytical and problem-solving skills for risk assessment and solutions. Experience in budgeting and resource management. Relevant certifications (e.g., CISSP, CISM, CISA). About The Company: Motability Operations is dedicated to providing worry-free mobility solutions to over 630,000 customers across the UK. We lease vehicles with insurance, maintenance, and More ❯

contexts to develop cyber strategy and manage cyber risk. Desire to work with large organisations trying to solve the latest cyber security problems. Relevant certifications, such as M.Inst.ISP, CISSP, CISM, CISA or an MSc in cyber security (or equivalent) or a related discipline. Practical experience across various areas of cyber security, such as cyber architecture, cyber GRC, cyber threat management More ❯

multiple strategies. Experience working autonomously with support escalation when needed. Creative problem-solving approach and proactive mindset. Excellent interpersonal skills for coaching and development. Professional certifications such as CISSP, CISM, CRISC, or similar are advantageous, along with knowledge of NIST and ISO27000. Knowledge of information security and risk management standards and concepts. Ability to communicate security concepts effectively to diverse More ❯

Experience with Microsoft Azure Security tools (Defender for Endpoint, Sentinel, Purview). Understanding of ITIL, data protection laws (UK GDPR), and payment card security. Security certifications such as CISSP, CISM, CISMP, or equivalent. #J-18808-Ljbffr More ❯

projects within complex organizations Ability to handle multiple projects and deadlines, ensuring timely delivery of compliance programs Desirable qualifications and experience: Information security qualifications such as CISSP, CISA, or CISM Familiarity with GRC cloud-based systems Experience of PCI DSS or a PCI QSA Experience auditing SWIFT CSCF Developing and providing training Writing policies and technical documents Managing a team More ❯

of conveying compliance and risk concepts to both technical and non-technical audiences Significant experience in control management for governance, compliance, IT audits, IS assurance, and risk management CISA, CISM, or equivalent certification preferred BSc or equivalent in an IT-related field preferred Ability to communicate effectively with technical teams to gather information and requirements Understanding of regulatory requirements (e.g. More ❯

of conveying compliance and risk concepts to both technical and non-technical audiences Significant experience in control management for governance, compliance, IT audits, IS assurance, and risk management CISA, CISM, or equivalent certification preferred BSc or equivalent in an IT-related field preferred Ability to communicate effectively with technical teams to gather information and requirements Understanding of regulatory requirements (e.g. More ❯

to these will be preferred: • MetricStream, Archer, ServiceNow GRC & SecOps, OneTrust QUALIFICATIONS B.E/B.Tech with MBA preferred. Candidates with following Certifications will be preferred: • CISA/CGEIT/CISM/CISSP/CIPP E • ISO 27001 Implementer, Lead Auditor • ITIL V3.0 More ❯

of cryptographic algorithms (AES, RSA, ECC), hardware security modules (HSMs), and secure key storage practices. Experience working in financial institutions or other highly regulated industries. Certifications such as CISSP, CISM, AWS Security Specialty, HashiCorp Certified Vault Associate or CCSK. Familiarity with NIST 800-57, PCI DSS, FIPS 140-2/3, ISO 27001, GDPR, FFIEC, and IoT security (NIST More ❯

DevOps for tracking work items. Ability to work independently and in agile teams. Excellent communication and stakeholder management skills are a must as always. Any formal certifications like CISA, CISM , or ISO27001 Lead Implementer/Auditor would be highly advantageous With a hybrid-working approach, my client is ideally seeking candidates from local Scottish-Market who can commit to regular More ❯

threat intelligence. Desirable Security Blue Team 1 or higher CompTIA Cyber Security Analyst SC-200 Microsoft Security Operations Analyst Certified Information System Security Professional (CISSP), Certified Information Security Manager (CISM), or another industry recognised cyber security certification. Full Membership of the Chartered Institute of Information Security (CIISec) - highly desirable. Chartered or Principal status via the UK Cyber Security Council in More ❯

threat intelligence. Desirable Security Blue Team 1 or higher CompTIA Cyber Security Analyst SC-200 Microsoft Security Operations Analyst Certified Information System Security Professional (CISSP), Certified Information Security Manager (CISM), or another industry recognised cyber security certification. Full Membership of the Chartered Institute of Information Security (CIISec) - highly desirable. Chartered or Principal status via the UK Cyber Security Council in More ❯

threat intelligence. Desirable Security Blue Team 1 or higher CompTIA Cyber Security Analyst SC-200 Microsoft Security Operations Analyst Certified Information System Security Professional (CISSP), Certified Information Security Manager (CISM), or another industry recognised cyber security certification. Full Membership of the Chartered Institute of Information Security (CIISec) - highly desirable. Chartered or Principal status via the UK Cyber Security Council in More ❯

topics About you Minimum of 5 years’ experience in a similar role. A degree in computer science or a related technology-based subject, or industry-recognized certifications such as CISM, CRISC are preferred Knowledge and experience with risk management frameworks, risk assessment methodologies and cybersecurity frameworks, such as ISO27001 and NIS2 Experience of conducting risk assessments and conducting security control More ❯

topics About you Minimum of 5 years’ experience in a similar role. A degree in computer science or a related technology-based subject, or industry-recognized certifications such as CISM, CRISC are preferred Knowledge and experience with risk management frameworks, risk assessment methodologies and cybersecurity frameworks, such as ISO27001 and NIS2 Experience of conducting risk assessments and conducting security control More ❯

ISO27001, NIST, PRISMA, and CoBIT frameworks. Demonstrated ability to design and implement ISMS in complex, multi-stakeholder environments. Excellent communication and stakeholder engagement skills. Relevant certifications such as CISSP, CISM, ISO27001 Lead Implementer/Auditor, or equivalent. Eligibility for SC clearance or active SC clearance is required. #J-18808-Ljbffr More ❯

educated, with significant experience of inputting into the IT security strategy of an organisation of similar size and scale to ScottishPower, and preferably hold relevant industry qualifications (e.g., CISSP, CISM and ISO27001). You’ll have proven experience and knowledge of - Security Risk Management including the development, recommendation, and delivery of remediation plans Assessing technical designs across multiple IT/ More ❯

with infrastructure automation tools Understanding of scientific computing software and frameworks Previous experience in biotech or pharmaceutical industries Experience with cloud platforms (AWS, Azure) ITIL certification Security certifications (CISSP, CISM, or similar) Experience with GxP compliance Experience with pharmaceutical industry regulations Previous experience managing technical debt in regulated environments AskBio Inc . click apply for full job details More ❯

with infrastructure automation tools Understanding of scientific computing software and frameworks Previous experience in biotech or pharmaceutical industries Experience with cloud platforms (AWS, Azure) ITIL certification Security certifications (CISSP, CISM, or similar) Experience with GxP compliance Experience with pharmaceutical industry regulations Previous experience managing technical debt in regulated environments AskBio Inc. (AskBio) is an Equal Opportunity Employer and does not More ❯

fast-paced environment with a proactive approach to security threats. Willingness to participate in an on-call rotation for incident response. Desirable Skills & Qualifications Professional certifications such as CISSP, CISM, CEH, GIAC. Familiarity with ITIL Service Management processes (Change, Incident & Problem Management). Experience in eDiscovery and digital forensics. Knowledge of operational security controls and product stacks. What's In More ❯

exposure to key regulatory frameworks like GDPR or CCPA . Understanding of risk management principles, ideally within a 2nd line or governance function. Relevant industry certifications such as CISSP, CISM, CRISC, CDPSE, CompTIA Security+ or similar. Strong technical awareness across areas like application security , incident response , and data privacy . Seniority level Seniority level Mid-Senior level Employment type Employment More ❯

projects, and drive client success. Knowledge of cybersecurity frameworks and compliance (e.g., NIST, ISO 27001). Certifications : CyberArk certifications (e.g., CyberArk Defender, Sentry) preferred. Relevant security certifications (e.g., CISSP, CISM) are a plus. Additional Skills : Problem-solving and analytical thinking. Strong project management and organizational skills. Ability to adapt to evolving technologies and business needs. Customer-focused mindset with strong More ❯

to provide pragmatic security solutions tailored to business needs. Ability to explain complex security concepts to both technical and non-technical audiences. What would be great to have CISSP, CISM, 62443 cyber security certificates Cyber Assessment Framework, NIST CSF, NIST SP 800-82, IEC ISA 99/62443, CIS Controls Strong understanding of IT and OT security risks Knowledge of More ❯

exposure to key regulatory frameworks like GDPR or CCPA . Understanding of risk management principles, ideally within a 2nd line or governance function. Relevant industry certifications such as CISSP, CISM, CRISC, CDPSE, CompTIA Security+ or similar. Strong technical awareness across areas like application security , incident response , and data privacy . More ❯

exposure to key regulatory frameworks like GDPR or CCPA . Understanding of risk management principles, ideally within a 2nd line or governance function. Relevant industry certifications such as CISSP, CISM, CRISC, CDPSE, CompTIA Security+ or similar. Strong technical awareness across areas like application security , incident response , and data privacy . #J-18808-Ljbffr More ❯