Southampton, Hampshire, United Kingdom Hybrid / WFH Options
NICE
all about? The Information Security Analyst is primarily responsible for ensuring compliance with information security frameworks such as Cyber Essentials, Cyber Essentials Plus, ISO27001, ISO 27701, ISO 42001, GDPR, and DORA. This role focuses on internal audits … and preparing for external audits. Gap Assessments: Facilitate and / or conduct internal gap assessments and audit readiness evaluations for frameworks such as ISO27001, GDPR, and DORA. Framework Tracking: Monitor updates to Cyber Essentials, ISO, and regulatory frameworks and ensure … vulnerabilities in coordination with IT and Security Operations teams. Have you got what it takes? Strong expertise in audit and compliance frameworks, including ISO27001, ISO 27701, ISO 42001, GDPR, DORA, Cyber Essentials, and Cyber Essentials Plus. Familiarity More ❯
other IT services). Collaborate with client teams to develop, document, and implement security policies, standards, and guidelines aligned with industry standards (e.g., ISO27001, NIST). Assist in the deployment, configuration, and management of security infrastructure and technologies, including firewalls, intrusion detection / … off. CERTIFICATIONS: CCNP / CCNA is nice to have. CREST / OSCP is nice to have. Microsoft and / or other cloud providers. ISO27001Leadauditor is a nice to have. SKILLS: Working knowledge of cloud security More ❯
control, and compliance effectiveness, you'll work across functions to support operational resilience and maintain alignment with global security and regulatory frameworks including: - ISO/IEC27001:2022 - NIST Cybersecurity Framework - PCI-DSS 4.0.1 - UK GDPR, NIS2 Directive, CAP1753, and related sector obligations … to relevant stakeholders Colloborate with procurement and key suppliers to ensure their ongoing security posture meets Virgin Atlantic requirements Conduct internal reviews against ISO, NIST, PCI, UK GDPR, and emerging requirements Support internal / external audits, evidence readiness, and corrective action tracking Maintain the policy and control … networks and systems is incorporated in project design. About you CRISC / CISA / CISM certification through ISACA or an equivalent professional body. ISO27001Lead Implementer /Auditor certification Sound knowledge of information security governance practices, working More ❯
or IA Architect (or similar). Eligibility to obtain and maintain high-level UK security clearance . Desirable: Senior CESG certification (SCCP). ISO27001LeadAuditor or Implementer. Membership with a relevant professional body such as MInstISP. More ❯
environments. Desirable Certifications CompTIA Security+, CISSP, CISM, CCSP, TOGAF, SABSA SCF. CESG Certified Cyber Professional (CCP) in Security Architecture or Risk Management. ISO27001 Lead Auditor. Why Join DXC Technology? At DXC, you will work on high-profile security projects, collaborating with some of the industry's top More ❯
