4 of 4 ISO/IEC 27001 Jobs in Lanarkshire

using technology to solve business problems, working in partnership with our clients to help in achieving their goals. About the role: Develop and maintain GRC frameworks aligned with ISO 27001, NIST, GDPR, and NIS2 standards Conduct risk assessments across business units, vendors, and projects Monitor regulatory changes and ensure compliance with legal and contractual obligations Support … Understanding of regulatory requirements, including cross-industry regulations (e.g., GDPR, Data Protection Act) and industry-specific regulations Knowledge of common information security management frameworks, such as ISO / IEC 27001, ITIL, COBIT as well as those from NIST, including 800-53 and Cybersecurity Framework Knowledge of OneTrust risk management toolset or similar preferred More ❯

Security Operations Lead -Salary £65-75,000 -Fixed Term Contract - 12 months -Glasgow / Remote First Role Brand new opportunity to the market for a seasoned Security Operations Lead to join my financial services client, as they continue on their transformational journey of growth and improvement for the business. You will work alongside a team of Security Analysts within … team and leading the response to security incidents. Key Experience (A blend of): Strong, practical knowledge of security frameworks and industry standards Regulatory requirement expertise - Cyber Essentials Plus, ISO 27001 and GDPR Microsoft security tools - Defender, Entra ID, Purview Cloud platform exposure - Azure preferred Broad experience of configuring and management of SIEM tooling Certifications CISSP, CISM More ❯

and development teams. Key Responsibilities: Design and implement security controls across containerised environments using Kubernetes and OpenShift Ensure secure configuration and access management within GitLab version control and CI / CD pipelines Integrate and secure telemetry tools including Cribl, Elastic, Splunk, Fluentd, and Syslog Conduct threat modelling, vulnerability assessments, and risk analysis for the telemetry pipeline Collaborate with DevOps … of security architecture, policies, and incident response procedures Required Skills & Experience: Strong hands-on experience with Kubernetes and OpenShift in secure production environments Proficiency in GitLab and secure CI / CD pipeline practices Familiarity with telemetry and logging tools: Cribl, Elastic, Splunk, Fluentd, and Syslog Deep understanding of networking protocols, firewalls, VPNs, and security principles Experience with security frameworks … e.g., NIST, ISO 27001) and compliance requirements Knowledge of container security tools (e.g., Aqua, Twistlock, Trivy) and vulnerability scanners Excellent analytical and communication skills Preferred Qualifications: Certifications such as CISSP, CISM, CKS (Certified Kubernetes Security Specialist), or equivalent Experience in building MVPs or working in startup-like environments Familiarity with cloud security (AWS, Azure, GCP More ❯

fit.What you’ll be doing: Developing and delivering compliance strategy and frameworks. Leading internal audits to check policies and processes are being followed. Managing ISO accreditations (ISO9001, ISO27001, ISO22301, ISO45001, ISO14001). Overseeing PCI and FCA compliance requirements. Managing and testing business continuity plans. Identifying risks and working with senior leaders to address them. Drafting, updating, and rolling … cyber security partners. Spotting opportunities for smarter ways of working and driving improvements. What we’re looking for: 3+ years’ experience in compliance, risk, or audit. Experience with ISO standards and external audits. Strong background in policy writing and review. Knowledge of data protection legislation and its impact on businesses. Excellent communication and relationship-building skills. Confident working More ❯