13 of 13 CRISC Jobs in Edinburgh

support escalation when needed. Creative problem-solving approach and proactive mindset. Excellent interpersonal skills for coaching and development. Professional certifications such as CISSP, CISM, CRISC, or similar are advantageous, along with knowledge of NIST and ISO27000. Knowledge of information security and risk management standards and concepts. Ability to communicate security More ❯

improvement in initiatives, systems implementations, etc. Direct experience with compliance audits, e.g., SOX, SOC2, HIPAA, ISO27001, PCI, etc. Professional Certifications such as CISSP, CISM, CRISC and/or CISA or working towards such a certification preferred. Ability to present ideas/solutions and communicate clearly, concisely, and accurately with others More ❯

platform tools like CASB, CSPM, CWPP, and containerization security. Desirable Criteria CCSP (Certified Cloud Security Professional). CISSP (Certified Information Systems Security Professional). CRISC (Certified in Risk and Information Systems Control). Microsoft Cybersecurity Expert incl. M365 Security, Azure Security, Identity & Access Management and Security Operations. AWS Security. NIST More ❯

processes and tools like Smartsheet is preferred. Knowledge of IT architectures and global company structures. Willingness to obtain professional certifications such as CISSP, CISM, CRISC, or CISA within two years. Excellent communication skills, including technical and business writing. Resourceful, self-motivated, with strong critical thinking and organizational skills. Ability to More ❯

and conducting user access reviews. Familiarity with cloud Technology and IT infrastructure. Strong knowledge of NIST frameworks (CSF, 800-53) and CIS Controls. Certifications: CRISC, CISSP, CISM, or CISA preferred (equivalent experience considered). #J-18808-Ljbffr More ❯

you’ll need knowledge of risks and controls associated with information and cyber security, including industry frameworks such as NIST, ISF SOGP, MITRE, COBIT, CRISC and similar, as well as risks associated with technology outsourcing. On top of this, you’ll bring: A breadth of demonstrable knowledge across all cyber More ❯

GDPR or CCPA . Understanding of risk management principles, ideally within a 2nd line or governance function. Relevant industry certifications such as CISSP, CISM, CRISC, CDPSE, CompTIA Security+ or similar. Strong technical awareness across areas like application security , incident response , and data privacy . Seniority level Seniority level Mid-Senior More ❯

Payments Scheme compliance experience. Experience of DevSecOps and securing containers, microservices, serverless computing. One or more of the following qualifications (or equivalent): CISM, CISSP, CRISC, CISA, CISMP. ABOUT WORKING FOR US Our focus is to ensure we're inclusive every day, building an organisation that reflects modern society and celebrates More ❯

Payments Scheme compliance experience. Experience of DevSecOps and securing containers, microservices, serverless computing. One or more of the following qualifications (or equivalent): CISM, CISSP, CRISC, CISA, CISMP. ABOUT WORKING FOR US Our focus is to ensure we're inclusive every day, building an organisation that reflects modern society and celebrates More ❯

franchise, , to enable informed discussions of risk. Knowledge of 1st line risk frameworks, IT General controls, outsourcing risks, including industry frameworks such as COBIT, CRISC, SOX are key. We’re looking for a highly skilled individual with a proven ability to deliver high quality outcomes and experience of applying technology More ❯

within systems development and technology change, is essential. Deep understanding of IT governance frameworks is necessary for effective risk assessment. Professional certifications such as CRISC, CISSP, CGEIT, CISM, Prince2, or ITIL are desirable. Familiarity with systems development methodologies including Agile, DevOps, Hybrid, or Waterfall is also important. Strong problem-solving More ❯

Experience: Certifications: QSA (Qualified Security Assessor) or ISA (Internal Security Assessor) desirable but not required. Other security certifications such as CISSP, CISM, CISA, or CRISC are advantageous. Strong understanding of PCI DSS requirements, controls, and assessment processes. Hands-on experience with security controls, cloud environments, and security architecture. Experience with More ❯

you have the following skills and experiences – A deep understanding of technology risk management practices. Experience with IT governance frameworks. Hold certifications such as CRISC, CISSP, CGEIT, CISM, Prince2 or ITIL. Skilled in systems development methodologies such as Agile, DevOps, Hybrid or Waterfall To find out more call Alasdair Walker More ❯