record of delivering digital transformation programmes and managing remote IT operations In-depth knowledge of IT infrastructure, cloud platforms, cybersecurity, and enterprise architecture Experience with governance frameworks (e.g., ITIL, COBIT) and relevant certifications such as CISM, CISSP, TOGAF, Agile, or PRINCE2 Excellent leadership, strategic thinking, and communication skills Disclosure and Barring Service Check This post is subject to the Rehabilitation More ❯
GDPR, EU AI Act). Experience with third-party and outsourcing risk, AI and digital transformation risks. Experience of developing and operating Technology Risk Management Frameworks such as ITIL, COBIT, NIST, ISO. Demonstrable extensive relevant experience of technologyand change/operational risk in either a 1LoD or 2LoD capacity (2LoD preferable). Experience in scenario analysis and resilience impact More ❯
london, south east england, united kingdom Hybrid / WFH Options
Aztec
GDPR, EU AI Act). Experience with third-party and outsourcing risk, AI and digital transformation risks. Experience of developing and operating Technology Risk Management Frameworks such as ITIL, COBIT, NIST, ISO. Demonstrable extensive relevant experience of technologyand change/operational risk in either a 1LoD or 2LoD capacity (2LoD preferable). Experience in scenario analysis and resilience impact More ❯
standards, such as NIST, ISO 27001, or similar. General understanding of operational risk and risk-relatedcontrol frameworks and practices such (ISO 27001, NIST SP 800-53, NIST CSF, COBIT, ITIL, etc.). Experience with IAM tools and technologies, such as Microsoft Entra ID (formerly Azure Active Directory), SailPoint, or similar. Experience with CyberArk for user and service account privileged More ❯
standards, such as NIST, ISO 27001, or similar. General understanding of operational risk and risk-relatedcontrol frameworks and practices such (ISO 27001, NIST SP 800-53, NIST CSF, COBIT, ITIL, etc.). Experience with IAM tools and technologies, such as Microsoft Entra ID (formerly Azure Active Directory), SailPoint, or similar. Experience with CyberArk for user and service account privileged More ❯
and IT general controls (ITGCs). Excellent knowledge of a wide range of technology (infrastructure, applications, networking, cyber security, IT governance). Familiarity with IT control frameworks such as COBIT, NIST or ISO 27001. Experience with auditing tools and techniques, and proficiency in Microsoft Excel, Word, Outlook, Visio, PowerPoint, Access. Excellent analytical, problem-solving, verbal and written communication skills with More ❯
and IT general controls (ITGCs). Excellent knowledge of a wide range of technology (infrastructure, applications, networking, cyber security, IT governance). Familiarity with IT control frameworks such as COBIT, NIST or ISO 27001. Experience with auditing tools and techniques, and proficiency in Microsoft Excel, Word, Outlook, Visio, PowerPoint, Access. Excellent analytical, problem-solving, verbal and written communication skills with More ❯
and IT general controls (ITGCs). Excellent knowledge of a wide range of technology (infrastructure, applications, networking, cyber security, IT governance). Familiarity with IT control frameworks such as COBIT, NIST or ISO 27001. Experience with auditing tools and techniques, and proficiency in Microsoft Excel, Word, Outlook, Visio, PowerPoint, Access. Excellent analytical, problem-solving, verbal and written communication skills with More ❯
and IT general controls (ITGCs). Excellent knowledge of a wide range of technology (infrastructure, applications, networking, cyber security, IT governance). Familiarity with IT control frameworks such as COBIT, NIST or ISO 27001. Experience with auditing tools and techniques, and proficiency in Microsoft Excel, Word, Outlook, Visio, PowerPoint, Access. Excellent analytical, problem-solving, verbal and written communication skills with More ❯
cybersecurity programme, ensuring compliance with DORA and ISO 27001 standards. Develop and implement information security strategies, policies, and procedures in line with NIST CSF, NIST 800-53, CIS, andCOBIT frameworks. Conduct risk assessments and audits to ensure compliance with regulatory standards and best practices, including ISAE3402 and SOC2. Author, review, and maintain IT security policies and procedures to support … IT security leadership, preferably within fintech, financial services, or crypto-asset sectors. Proven expertise in implementing information security and risk frameworks (NIST CSF, ISO 27001, NIST 800-53, CIS, COBIT). In-depth knowledge of DORA requirements, and risk management for ICT assets, including crypto platforms. Strong understanding of auditing frameworks such as ISAE3402 and SOC2. Demonstrated experience in authoring More ❯
cybersecurity programme, ensuring compliance with DORA and ISO 27001 standards. Develop and implement information security strategies, policies, and procedures in line with NIST CSF, NIST 800-53, CIS, andCOBIT frameworks. Conduct risk assessments and audits to ensure compliance with regulatory standards and best practices, including ISAE3402 and SOC2. Author, review, and maintain IT security policies and procedures to support … IT security leadership, preferably within fintech, financial services, or crypto-asset sectors. Proven expertise in implementing information security and risk frameworks (NIST CSF, ISO 27001, NIST 800-53, CIS, COBIT). In-depth knowledge of DORA requirements, and risk management for ICT assets, including crypto platforms. Strong understanding of auditing frameworks such as ISAE3402 and SOC2. Demonstrated experience in authoring More ❯
Staines-upon-Thames, Middlesex, England, United Kingdom
Bupa UK
of third party assurance activities, either for supplier or customer assurance. Extensive knowledge of IT risk management within GRC function, preferably processes, concepts, terminology andcontrol frameworks e.g. ISACA, COBIT, ITIL. Certified in CISA or relevant certifications with one of the following: CISM, CISSP, equivalent experience. Strong knowledge of relevant laws, regulations, and industry standards e.g. UK GDPR, ISO More ❯
one end to end programme process including the use of ServiceNow Integrated Risk Management module to support integrated IT risk Management processes. An understanding of the principals around CMMI, COBIT, ITIL, PMI, Prince2, ISO27001, SOC2. Cybersecurity or IT Risk Management experience which should include either control testing or compliance assessment experience. A strong understanding of system development life cycles approaches More ❯
Reading, Berkshire, United Kingdom Hybrid / WFH Options
Deloitte LLP
one end to end programme process including the use of ServiceNow Integrated Risk Management module to support integrated IT risk Management processes. An understanding of the principals around CMMI, COBIT, ITIL, PMI, Prince2, ISO27001, SOC2. Cybersecurity or IT Risk Management experience which should include either control testing or compliance assessment experience. A strong understanding of system development life cycles approaches More ❯
Leeds, Yorkshire, United Kingdom Hybrid / WFH Options
Deloitte LLP
one end to end programme process including the use of ServiceNow Integrated Risk Management module to support integrated IT risk Management processes. An understanding of the principals around CMMI, COBIT, ITIL, PMI, Prince2, ISO27001, SOC2. Cybersecurity or IT Risk Management experience which should include either control testing or compliance assessment experience. A strong understanding of system development life cycles approaches More ❯
Manchester, Lancashire, United Kingdom Hybrid / WFH Options
Deloitte LLP
one end to end programme process including the use of ServiceNow Integrated Risk Management module to support integrated IT risk Management processes. An understanding of the principals around CMMI, COBIT, ITIL, PMI, Prince2, ISO27001, SOC2. Cybersecurity or IT Risk Management experience which should include either control testing or compliance assessment experience. A strong understanding of system development life cycles approaches More ❯
Guildford, Surrey, United Kingdom Hybrid / WFH Options
Deloitte LLP
one end to end programme process including the use of ServiceNow Integrated Risk Management module to support integrated IT risk Management processes. An understanding of the principals around CMMI, COBIT, ITIL, PMI, Prince2, ISO27001, SOC2. Cybersecurity or IT Risk Management experience which should include either control testing or compliance assessment experience. A strong understanding of system development life cycles approaches More ❯
higher) in Computer Science, Information Systems, Engineering, or related field. • MBA or postgraduate qualification (desirable). • ITIL v4 Managing Professional or ITIL Expert (mandatory). • Certifications in ISO 27001, COBIT, Microsoft Azure, Lean Six Sigma, Prince2, or SAFe Agilist. Leadership & Communication • Gravitas to influence regulators and auditors. • Exceptional stakeholder management and communication skills. • Commercial acumen for budgeting, vendor negotiation, andMore ❯
higher) in Computer Science, Information Systems, Engineering, or related field. • MBA or postgraduate qualification (desirable). • ITIL v4 Managing Professional or ITIL Expert (mandatory). • Certifications in ISO 27001, COBIT, Microsoft Azure, Lean Six Sigma, Prince2, or SAFe Agilist. Leadership & Communication • Gravitas to influence regulators and auditors. • Exceptional stakeholder management and communication skills. • Commercial acumen for budgeting, vendor negotiation, andMore ❯
government clients is highly desirable.* Must be a British National and SC cleared or eligible.Desirable:* Experience working in regulated or high-security environments.* Knowledge of additional frameworks such as COBIT, ITIL, or GDPR.* Project management experience or qualifications (e.g., PRINCE2, Agile).Disclaimer:Adecco are operating as an Employment Agency. Adecco are an equal opportunities employer and we are on the More ❯
clients is highly desirable. * Must be a British National and SC cleared or eligible. Desirable: * Experience working in regulated or high-security environments. * Knowledge of additional frameworks such as COBIT, ITIL, or GDPR. * Project management experience or qualifications (e.g., PRINCE2, Agile). Disclaimer: Adecco are operating as an Employment Agency. Adecco are an equal opportunities employer and we are on More ❯
fast-paced environment and independently manage priorities and challenges to balance delivery across multiple initiatives, stakeholders etc. • Understanding and practical experience of applying IT management/governance frameworks (e.g. COBIT, IT-CMF) • Knowledge of the legal and regulatory environment within which easyJet operates as well as specific relevant regulations and standards such as NIS, GDPR, PCI DSS etc. • Knowledge of … topic-specific framework & methodologies in areas such as Risk Management (ISO 31000) IT management (e.g. COBIT) Information Security (NIST, ISF, ISO 27001), Service Delivery (e.g. ITIL) etc. What we can offer you Business Area Primary Location More ❯
and implement disaster recovery procedures. Manage cybersecurity projects to ensure timely delivery within budget. Perform or coordinate security assessments, penetration tests, and vulnerability scans. Ensure compliance with frameworks like COBIT, NIST, ISO, PCI, GDPR, HIPAA, etc. Provide internal support for security issues within SLAs. Evaluate and implement CIS controls as needed. Contribute to cybersecurity strategic planning and budgeting. Follow change More ❯
Manchester, North West, United Kingdom Hybrid / WFH Options
Experis
Lead the design and implementation of security management processes for a new service offering. Develop and maintain a unified ISMS aligned with ISO/IEC 27001, NIST, PRISMA, andCoBIT frameworks. Conduct gap analyses and risk assessments to ensure compliance with relevant security standards and regulatory requirements. Collaborate with stakeholders across technical and business teams to embed security best practices … are in place and effective. Essential Skills & Experience: Proven experience in information assurance, cyber security, or risk management roles. Strong knowledge and practical experience with ISO27001, NIST, PRISMA, andCoBIT frameworks. Demonstrated ability to design and implement ISMS in complex, multi-stakeholder environments. Excellent communication and stakeholder engagement skills. Relevant certifications such as CISSP, CISM, ISO27001 Lead Implementer/Auditor More ❯
As a Lead Security Control Assessor, you will be responsible for leading the assessment and evaluation of security controls across systems and processes both on-premise and in the cloud, to ensure they effectively mitigate risks and comply with regulatory More ❯