8 of 8 ISO/IEC 27002 (supersedes ISO/IEC 17799) Jobs in the UK excluding London

affecting products Your skillset may include: Knowledge of HMG standards (including MOD-specific JSP, Def Stan 05-138, Def Stan 05-139) An understanding of MOD ISN 23 / 09 Secure by Design Knowledge of security frameworks, such as ISO / IEC 27001, NIST 800-30, NIST … or OWASP Working with risk management frameworks and methodologies (e.g., ISO 27001 / 2, ISO27005 / 31000, NIST 800-30, NIST 800-53) If this all sounds like something you will be interested in then simply apply and we can discuss the opportunity further! Product Security Architect Permanent role Based in Bristol More ❯

design). Perform security code reviews, provide guidance on secure libraries and frameworks. Standards & Compliance Ensure products meet regulatory and defence standards (ISO 27001 / 27005, NIST 800-30 / 53, JSP 440 / 604, Def Stan 05-series). Lead the creation and maintenance of security documentation (RMADS, Security … Testing & Assurance Design and execute penetration tests and automated vulnerability scans; validate fixes. Oversee third-party security assessments as required. Continuous Improvement Drive security tooling and automation (CI / CD integration, SAST / DAST). Stay ahead of emerging threats and security technologies; evangelise best practices across teams. Qualifications & Experience Proven experience (5+ years) in product … or application security within defence, government, or security-cleared environments. Deep knowledge of risk management frameworks (ISO 27001 / 2 / 5 / 31000, NIST 800-series) and Defence Standards (JSPs, Def Stan 05-138 / 139). Hands-on experience with security testing tools and techniques (SAST More ❯

Job Description Role – Cybersecurity Delivery Manager Location: Milton Keynes / London / United Kingdom Job Responsibilities - Functional Domain Responsibility:  Previous work experience managing below three or more Cybersecurity delivery engagements o Audit principles and associated compensating controls o Enterprise Security architecture o Cloud Security o Vulnerability Management o E-Mail security o Web Application Firewall o … Cyber Incident Management (CERT) Delivery Operations & Excellence:  Manage & maintain steady state global delivery operations (Green)  Manage Operational / delivery issues & escalations  Ensure continuous communication & coordination with client in the event of issue / escalation  Ensure SLA / SLO attainment & process compliance along with high customer satisfaction  Act as first point of escalation for the … delivery team, account team & Client stakeholders.  Review the outcomes of the transition projects to capture learnings & disseminate across organization Technical Skills –  Basic Knowledge on security models such as ITIL, ISO27002, PCI DSS and Cobit 5  Experience on Security tools & Technologies  Integration of testing mechanisms with industry best practices such as OWASP & NIST  Good Understanding of IT security policy, procedure, design More ❯

Job Title: IT Security Manager Location: Hybrid in Buckinghamshire (2 days on-site) Job Type: Full-time, Permanent Salary: £60,000 - £67,000 + benefits Industry: Media / Broadcasting A leading Media / Broadcasting company based in Buckinghamshire are seeking an experienced IT Security Manager to join the Cyber Security team where you’ll mature the … Security solutions, including Defender, Sentinel, Entra ID, and Microsoft Purview. Deep knowledge and practical application of security frameworks and standards including CIS, ISO 27001 / 27002, GDPR, DPA, and Cyber Essentials. Proven experience managing or working closely with Security Operations Centres (SOC), including incident response and threat detection. Demonstrable background in implementing … risk-based security metrics. Ability to bridge security and IT operations teams, with effective stakeholder communication and collaboration. Security certifications such as CISSP, CISM, Microsoft Security (SC-100 / SC-200 / SC-300), or equivalent are highly desirable. Apply directly to learn more about this exciting opportunity or connect with me on LinkedIn to stay More ❯

outputs and outcomes and provide reporting and feedback when required. Support, when necessary, the development of opportunities by contributing as an SME in response to client RFPs and / or the construction of proposal documents and responses. Develop timely, accurate reporting that can convey technical findings to non-technical audiences at all levels when necessary. When required, work … with the Director of Cyber Advisory and Head Consultant to continuously improve capability, enhance & integrate service offerings, and build the Professional Services team Skills / Must have: 5 years in a client-facing information / cyber security / GRC role Professional certifications including but not limited to CISSP, CCSP, CISM, CRISC, CISA, CDPSE. Experience … in auditing and implementing security standards such as ISO 27001 / 2, NIST CSF, and others. Exceptional verbal, written communication, and presentation skills. Ability to articulate technical requirements to non-technical audiences. Proven self-management skills and ability to work on multiple assignments concurrently. Ability to travel to meet business needs. Benefits: Opportunity to More ❯

SP800-37, ISO27001) Practical experience of risk assessment processes (NIST SP800-30 and ISO 27005) Practical experience of applying security controls (NIST SP800-53 and ISO27002) Practical experience of Secure by Design requirements (ISN 2023 / 09) Demonstrable experience of writing IA Technical Risk Assessments and the management of these Assessments Ability to interpret More ❯

Your new company An exciting opportunity has arisen with a high-profile client based in the Reading / Oxford region. They are continually at the forefront of security standards and are seeking a seasoned, confident and reliable Interim Chief Information Security Officer (CISO) to support their teams during a period of change in leadership. Your new role You … mitigation strategy Seasoned exposure to developing and delivering security strategies for critical infrastructure CISSP, CISP, CISM or equivalent qualifications Experience with CtberEssential, ISO 27001 / 2 Security Clearance (either SC or DV) is highly desirable. What you'll get in return A rewarding contract alongside a pioneering organisation for an initial 3-month initial More ❯

Your new company An exciting opportunity has arisen with a high-profile client based in the Reading / Oxford region. They are continually at the forefront of security standards and are seeking a seasoned, confident and reliable Interim Chief Information Security Officer (CISO) to support their teams during a period of change in leadership. Your new role You … mitigation strategy Seasoned exposure to developing and delivering security strategies for critical infrastructure CISSP, CISP, CISM or equivalent qualifications Experience with CtberEssential, ISO 27001 / 2 Security Clearance (either SC or DV) is highly desirable. What you'll get in return A rewarding contract alongside a pioneering organisation for an initial 3-month initial More ❯