level experience as a Cyber Security Professional? Join us to shape the security technology and tooling strategy for HMRC and influence the UK Public Sector. Enjoy a healthy work / life balance while making a significant impact. HMRC are now one of the most digitally advanced tax authorities in the world and are continuing to spend the next five … strategic platforms. In addition, you may be encouraged to undertake line management responsibilities developing and managing a team. You may be expected to own and develop CSTS capabilities and / or services. Person specification Ideal candidate: A business and technology leader in the strategic selection, development and delivery of technical security controls and services. Focused expertise to develop and … encryption systems, infrastructure, risks, weaknesses and mitigations. Knowledge and Experience of Modernised Security Operations Centre including Attack Surface Management. Cloud Security & Risk applied to all service and deployment ISO standards including 27001, 27002, 27005, 270017, 27018, 22301 and NIST CSF 2.0. Technical Security within one or many of the following domains: Identity and Access Management: Expertise More ❯
field. Professional certifications such as CSSLP, CISSP, CISM, or CEH are preferred. Proven experience in information security or cybersecurity roles. Strong knowledge of security frameworks and standards (eg, ISO27001, NIST). Excellent analytical and problem-solving skills. Ability to communicate complex security concepts. Experience with security tools and technologies (SCA, IAST, DAST, SIEM). Understanding More ❯
security measures to protect organisational assets from cyber threats and ensuring compliance with industry standards. Key Responsibilities Assist in the planning and implementation of security controls and testing to ISO27001 standards. Perform business impact analyses (BIA) across key technology processes, systems, and facilities, identifying gaps in critical information gathered and recorded. Communicate significant changes in Business Continuity plans to the … Security methodologies, standards, and technologies, including ISO27001. Previous experience in an Information Security or Enterprise Risk role. Awareness of Business Continuity and IT standards, policies, and frameworks, including ISO22301 / BCMS. Business Continuity Management knowledge with proven experience in this area. Knowledge of IT with an … understanding of system architecture interdependencies, enabling effective communication with IT personnel. Strong documentation, analytical, and presentation skills. Desirable Knowledge, Skills, and Experience Qualifications such as CISA, CISM, CEH, or ISO27001 Lead Implementer / Auditor. Experience engaging with senior management and managing relationships. Previous experience handling Information Security incidents. Benefits This role offers a competitive salary based on skills and More ❯
way Work closely with digital, cybersecurity, platform, and business teams to translate strategic goals into practical technical designs Champion security-by-design and compliance with frameworks like NIS2 and ISO27001 Guide architectural decisions across Azure, Power Platform, M365, and related tools Steer innovation, solution modernisation, and cloud governance Manage a team of solution architects, developing capability and fostering a culture More ❯
Edinburgh, Midlothian, Scotland, United Kingdom Hybrid / WFH Options
Reed
protocols to defend the organisation’s assets against cyber threats, while ensuring adherence to relevant industry regulations and standards. Key responsibilities: Help implement and test security controls aligned with ISO27001, including policy development and compliance checks. Conduct business impact analyses to identify gaps in critical systems and processes. Support the team with disaster recovery and business continuity planning, ensuring backup … understand risks and mitigation strategies. Plan and carry out security audits, tracking follow-up actions. Report on risk and compliance issues within set timelines. Help coordinate third-party penetration / vulnerability testing and follow up on findings. Perform internal security testing of web apps and infrastructure. Support staff with security awareness training and track completion. Respond to security incidents … ability to liaise effectively with technical teams. Excellent documentation, analytical, and presentation abilities. Self-motivated and able to work independently. Ideally holding certifications such as CompTIA Security+, CEH, or ISO27001 Lead Implementer. Experience engaging with senior management and building strong relationships. Hands-on experience managing security incidents. Familiarity with penetration testing and vulnerability management tools. Benefits: Salary up to £50.000 More ❯
across IT and OT environments. Ensure alignment with digital strategy, regulatory standards, best practices, and regulatory requirements. Manage and mentor a team of solution architects. Embed cybersecurity, compliance (e.g. ISO27001, NIS2), and future-ready design into all technical solutions. About you: Proven experience in architecture leadership within complex digital programmes Strong background in cloud platforms (ideally Azure), M365, APIs, and … system integration Deep understanding of governance, risk, and compliance in regulated / public environments Strong stakeholder engagement and team leadership skills Why apply? This is an opportunity to shape major public services through strategic technology leadership. You will contribute to a nationally important digital investment portfolio (£40-£50M annually), with a focus on sustainability, innovation, and service improvement. Flexible More ❯
