8 of 8 ISO/IEC 27005 Jobs in England

Cyber Risk Analyst (Contract) Location: London / Southeast - Hybrid / Remote working Duration: 6+ months (12+ months programme of work) Day Rate: Up to £600 a day DOE (Inside IR35) Start date: ASAP. Overview We are seeking a skilled, proactive, and analytical Cyber Risk Analyst to support … compliance documentation aligned to industry standards, regulations, and legislative requirements, including but not limited to: NIS Directive - Cyber Assessment Framework (CAF) ISO / IEC 27001 and ISO / IEC 27002 NIST Cybersecurity Framework (CSF) 2.0 IEC 62443 GDPR ...

security requirements throughout the product and system development lifecycle . Lead threat modelling and risk assessments , applying recognised frameworks such as ISO / IEC 27001, NIST 800-30 / 53, and ISO 31000. Use and configure industry-standard threat-modelling tools (e.g. … advice on secure architectures, ensuring risks are understood, prioritised, and mitigated. Ensure compliance with MOD and HMG standards, including JSPs, Def Stan 05-138 / 05-139 , and ISN 23 / 09 Secure by Design . Support incident response, security investigations, and remediation activities for product and system ...

transformation roadmap that unifies fragmented processes into a single, clear model aligned to Trainline's risk appetite. Maintain key standards such as ISO 27001, ISO 22301, and PCI DSS, while ensuring they add real business value. Manage and develop the Risk and Compliance team, setting clear … leading and developing high-performing teams, setting clear goals and cultivating accountability and continuous improvement. Deep understanding of enterprise and cyber risk frameworks (ISO 27005, ISO 31000, NIST CSF) and how to communicate risk appetite in business terms. Excellent communication skills, with the ability ...

Experience Essential: Strong grounding in security engineering principles, practices and risk management. Experience working with a broad range of security controls (e.g., SIEM, IDS / IPS, firewalls, secure SDLC, cloud security configuration, CIS hardening, API security). Knowledge of security frameworks such as NIST, ISO … equivalent professional certification. Multi-year experience in a security engineering role. Desirable: CISSP certification. Cloud security certifications for AWS. Risk management experience (CRISC, ISO 27005, NIST RMF). Network security and coding experience (Python, Bash, PowerShell, GitHub). Penetration testing exposure. ...

Public Sector as part of a managed service. Have an excellent understanding of risk management and assessment principles and frameworks, such as ISO27005 and the NIST Cyber Security Framework. Work with multi-disciplinary teams, helping to ensure that products are delivered in a secure manner th click apply for full ...

Support secure development practices through guidance, code review input, and vulnerability assessment. Assess risks across technology, processes, and people using frameworks such as ISO 27005 and NIST . Review third-party and cloud service provider integrations to ensure appropriate technical and contractual security controls. Support incident ...

requests from the Information Security Engineering Lead. Required Skills & Qualifications: Significant experience in security engineering. Knowledge and understanding of Cloud security, with qualifications and / or certifications for AWS. Proficiency in a broad range of security controls including Secure Software Development Lifecycles, firewalls, email filtering, web applications firewalls … Desirable: CISSP - Certified Information Systems Security Professional. Cloud security qualifications and / or certifications for GCP and Azure. Extensive risk management experience (CRISC, ISO27005, NIST RMF). Skills in network security, coding (Python, Bash, PowerShell, GitHub), and penetration testing. Benefits: Engage in a high-impact, fast-paced role with ...

Public Sector as part of a managed service. Have an excellent understanding of risk management and assessment principles and frameworks, such as ISO27005 and the NIST Cyber Security Framework. Work with multi-disciplinary teams, helping to ensure that products are delivered in a secure manner that is aligned with … risk workshops with the various Authority departments, to align with wider customer transformational Security and risk management outcomes. Provide accurate and pragmatic remediation / risk management guidance / advice in balance with Business objectives and risk appetites. Have an understanding of risk assessment in an agile delivery environment. ...