1 to 25 of 200 CISM Jobs in the UK

identity & access management, and physical security for on-premise environments Excellent communication skills with ability to influence senior stakeholders and board-level executives Preferred Experience Certifications such as CISSP, CISM, CISA, CCSK/CCSP, or relevant SANS/GIAC credentials Experience working with AI risk frameworks (e.g., NIST AI RMF, ISO/IEC 23894) and AI compliance initiatives Familiarity with More ❯

risk management structure Demonstrable experience of senior stakeholder management and relevant management reporting. Education/Qualifications: Essential Degree educated and/or equivalent experience.Preferred: Relevant certifications (e.g. CISA, CRISC, CISM, CISSP .) PERSONAL REQUIREMENTS Personal alignment to MUFG Values + Integrity & Responsibility + Professionalism & Teamwork + Challenge ourselves to grow Personal alignment to EMEA Cultural Principles + Client Centric + More ❯

States for any employer without current or future sponsorship. No OPT, CPT, STEM/OPT or visa sponsorship now or in future Desirable: GSEC, GCIA, GFE, GCFA, CISA, CISSP, CISM, or CIA certification(s) Development/Dev Ops/Engineering/Network/System Administration experience USD 173,900.00 - 289,800.00 Compensation: Compensation includes a base salary of $173,900.00 More ❯

in threat modelling & application security risk assessments, secure software development practices, including SecDevOps FAIR Open certified & experience in applying FAIR for cyber risk quantification Relevant industry certifications including CISSP, CISM, CISA Understanding of cyber risk frameworks or industry standards such as 800-53, ISO 27001/2, PCI, CIS 18, CMMC Qualifications Your Experience 4+ years of experience performing cyber More ❯

in threat modelling & application security risk assessments, secure software development practices, including SecDevOps FAIR Open certified & experience in applying FAIR for cyber risk quantification Relevant industry certifications including CISSP, CISM, CISA Understanding of cyber risk frameworks or industry standards such as 800-53, ISO 27001/2, PCI, CIS 18, CMMC Qualifications Your Experience 4+ years of experience performing cyber More ❯

in threat modelling & application security risk assessments, secure software development practices, including SecDevOps FAIR Open certified & experience in applying FAIR for cyber risk quantification Relevant industry certifications including CISSP, CISM, CISA Understanding of cyber risk frameworks or industry standards such as 800-53, ISO 27001/2, PCI, CIS 18, CMMC Qualifications Your Experience 4+ years of experience performing cyber More ❯

degree in Cybersecurity, Information Technology, or a STEM subject (or equivalent experience). Essential o Security Assurance certifications such as CCP, SIRA o Security certifications such as CISSP, SSCP, CISM, CRISC, CCSP, SABSA, or SANS GIAC (GSEC, GCCC, GCPM). o Demonstrable experience in designing and implementing secure infrastructure or cloud architectures. o Proven experience with risk assessment methodologies and More ❯

DSS Qualified Security Assessor (QSA) or Internal Security Assessor (ISA) NIST Cybersecurity Framework or CAF-related training/accreditation Certified Information Systems Security Professional (CISSP) Certified Information Security Manager (CISM) Certified Information Systems Auditor (CISA) Certified in Risk and Information Systems Control (CRISC) Years of Experience Minimum 3 years’ experience delivering GRC services in a consultancy or in-house security More ❯

in cloud security, DevSecOps, and secure software development lifecycle (SSDLC). Understanding of AI/ML systems security, including model attacks and data integrity risks. Relevant certifications preferred: CISSP, CISM, CISA, CEH, OSCP, CCSK, or blockchain security certifications. Desirable Skills & Experience Exceptional communication: Ability to articulate complex security concepts clearly to technical teams, senior management, and non-technical stakeholders. Strategic More ❯

risks into business-relevant language for both technical and non-technical stakeholders, including executive leadership. Education/Qualifications/Technical Competencies Essential Recognised cybersecurity certification: CISSP and/or CISM Strong knowledge of: Ivanti LANDesk, Qualys, Splunk Windows Server/Desktop, RHEL/OEL Linux PowerShell and Python scripting Proven experience leading strategic security initiatives and process automation in large More ❯

ability to (use) on the data available to inform decisions and actions Qualifications Certified in one of the following: Certified Information Systems Security Professional (CISSP) Certified Information Security Manager (CISM) Certified Information Systems Auditor (CISA) Certified in Risk and Information Systems Control (CRISC More ❯

ability to (use) on the data available to inform decisions and actions Qualifications Certified in one of the following: Certified Information Systems Security Professional (CISSP) Certified Information Security Manager (CISM) Certified Information Systems Auditor (CISA) Certified in Risk and Information Systems Control (CRISC More ❯

cross-functional response coordination Excellent communication skills - able to translate technical security for commercial and executive audiences Experience supporting tender responses and client security assurance Preferred: Professional certifications: CISSP, CISM, CISA, or equivalent Higher education sector experience Multi-tenant SaaS architecture security experience DevSecOps and CI/CD security integration knowledge Security frameworks: NIST, CIS Controls, OWASP Multi-jurisdictional data More ❯

cross-functional response coordination Excellent communication skills - able to translate technical security for commercial and executive audiences Experience supporting tender responses and client security assurance Preferred: Professional certifications: CISSP, CISM, CISA, or equivalent Higher education sector experience Multi-tenant SaaS architecture security experience DevSecOps and CI/CD security integration knowledge Security frameworks: NIST, CIS Controls, OWASP Multi-jurisdictional data More ❯

governance, risk management, and compliance. Hands-on experience with cloud, network, and identity security. Familiarity with UK public sector standards (e.g. PSN, NCSC, GDPR). Relevant certifications desirable (CISSP, CISM, ISO 27001 Lead Auditor, etc.). More ❯

management Familiarity with ISO 27001/27002 and related standards Awareness of modern threats, malware, and security analytics Experience (5+ years) in cyber security roles preferred Desirable certifications: CISSP, CISM, CCSP, CRISC (or equivalent) Experience across areas such as AD, PKI, SIEM, SOAR, cryptography, or virtualization (VMware) Eligibility for SC Clearance is mandatory. Eligibility to work in the UK is More ❯

practices. Leadership: Deputise for the Head of Security GRC as required; mentor and support colleagues within the team. Experience & Skills Required: Relevant security and compliance certifications such as CISMP, CISM, GDPR, CISSp or PCI. Proven experience in information security, governance, risk, and compliance roles. Strong understanding of security best practices, standards, and control frameworks. Knowledge of GRC principles, security auditing More ❯

secure development lifecycle (SDLC). Experienced in incident response and cross-functional coordination. Confident supporting tenders and delivering client security assurance. Preferrable If You. Professional certifications such as CISSP, CISM, CISA, or equivalent. Experience in or supporting the higher education sector. Strong understanding of multi-tenant SaaS security. Knowledge of DevSecOps and integrating security in CI/CD pipelines. Familiarity More ❯

Demonstrated success leading or building CSOCs or security programmes . Strong documentation and design skills (HLD/LLD). Excellent communication, stakeholder management, and project leadership. Certifications (Highly Desirable) CISM - Certified Information Security Manager Microsoft Certified: Azure Security Engineer CCNP/CCIE (Security/R&S) CCSA/CCSE (Checkpoint) JNCIA (Juniper) CEH - Certified Ethical Hacker More ❯

service delivery. Provide security input for vendor assessments, third-party risk, and M&A due diligence. Candidate Profile: Proven senior leadership experience in information, cyber, or data security. CISSP, CISM, or CISA certified (or equivalent). Track record of delivering security programs aligned to ISO 27001, NIST, PCI DSS, and Cyber Essentials Plus. Hands-on experience with cloud platforms (Azure More ❯

service delivery. Provide security input for vendor assessments, third-party risk, and M&A due diligence. Candidate Profile: Proven senior leadership experience in information, cyber, or data security. CISSP, CISM, or CISA certified (or equivalent). Track record of delivering security programs aligned to ISO 27001, NIST, PCI DSS, and Cyber Essentials Plus. Hands-on experience with cloud platforms (Azure More ❯

service delivery. Provide security input for vendor assessments, third-party risk, and M&A due diligence. Candidate Profile: Proven senior leadership experience in information, cyber, or data security. CISSP, CISM, or CISA certified (or equivalent). Track record of delivering security programs aligned to ISO 27001, NIST, PCI DSS, and Cyber Essentials Plus. Hands-on experience with cloud platforms (Azure More ❯

service delivery. Provide security input for vendor assessments, third-party risk, and M&A due diligence. Candidate Profile: Proven senior leadership experience in information, cyber, or data security. CISSP, CISM, or CISA certified (or equivalent). Track record of delivering security programs aligned to ISO 27001, NIST, PCI DSS, and Cyber Essentials Plus. Hands-on experience with cloud platforms (Azure More ❯

with data privacy frameworks and principles. Experience working with private equity or infrastructure investment funds. Relevant cloud or security certifications (e.g., AWS Certified Security, Azure Security Engineer Associate, CISSP, CISM). Salary More ❯

partners, including regulators and the National Cyber Security Centre. Represent cyber security in major organisational change programmes and digital transformation initiatives. Essential Qualifications Professional security certification such as CISSP, CISM, or equivalent. Degree in Cyber Security, Information Security, or Digital Technology, or equivalent professional experience (minimum 10 years in cyber security roles, with at least 5 years in a senior More ❯