within Azure DevOps for infrastructure automation. Integrate security and compliance checks into DevOps workflows. Collaborate with architecture, platform, and security teams to ensure alignment with governance and compliance frameworks (NCSC, CIS Benchmarks, ISO27001). Produce clear documentation and support knowledge transfer across teams. Skills & Experience Proven hands-on experience with Terraform (advanced modules, state management, remote backends). Strong background More ❯
Market Harborough, Leicestershire, East Midlands, United Kingdom Hybrid / WFH Options
4C Resourcing
youll be doing Lead and deliver client engagements across governance, risk and compliance (GRC), including audits, assessments and improvement plans aligned to frameworks such as ISO/IEC 27001, NCSC CAF, and PCI DSS. Lead independent assurance, review and test security policies, procedures and controls; identify gaps; and recommend pragmatic remediation strategies. Develop and present security strategies that enhance resilience More ❯
Lichfield, Staffordshire, West Midlands, United Kingdom Hybrid / WFH Options
IO Associates
assurance roles (DITSO/WARP). Desired Skills * Broad knowledge of HMG CyberSecurity and Assurance policy and guidance. * Experience working with CCF, CAF, and NIST frameworks. * Familiarity with NCSC best practice and guidance. This is an excellent opportunity for an experienced Information Security Officer to play a pivotal role within the Defence sector, offering flexibility, autonomy, and the chance More ❯
Familiarity with threat modelling and architectural reviews, particularly in critical national infrastructure. Relevant certifications or credentials in IEC62443 or cybersecurity frameworks applicable to OT environments. Understanding of the NCSCCyber Assessment Framework (CAF) is highly desirable. Why Join? Known for the ability to think and act fast using energy intelligence, the mission is to enable the energy transition by More ❯
Employment Type: Permanent
Salary: £57000 - £60000/annum Pension,Medical,Incentive Plan,25 Ho
Immingham, Lincolnshire, North East, United Kingdom
Rullion Limited
Familiarity with threat modelling and architectural reviews, particularly in critical national infrastructure. Relevant certifications or credentials in IEC62443 or cybersecurity frameworks applicable to OT environments. Understanding of the NCSCCyber Assessment Framework (CAF) is highly desirable. Why Join? Known for the ability to think and act fast using energy intelligence, the mission is to enable the energy transition by More ❯
/RTU) - Familiarity with building networks across different technologies (Satelitte, Mobile, Fixed Line etc) - A strong emphasis on security with solutions that align to regulations/standards such as NCSC, NIS, NIST, ISO27001 etc - A background in OT from a Utilities, Telecoms, Engineering, Manufacturing, Automotive or heavily regulated industry More ❯
operations. Security Tools Support: Support the implementation, maintenance, and configuration of security tools and systems for prevention, detection, and response. Audit: Contribute to security audits (e.g. SOC Type II, NCSC CAF, ISO 27001) and ensure compliance with regulations and standards. Continuous Improvement: Automate event monitoring, detection, and response. Enhance alert use cases and log correlation processes to adapt to evolving … CISSP, AZ-500, GIAC/GCIA/GCIH, CASP+, CEH, or SIEM certifications. Strong knowledge of log correlation, analysis, forensics, and chain of custody requirements. Familiarity with regulatory frameworks (NCSC CAF, ISO/IEC 27001/27002, GDPR, CIS, NIST). Practical knowledge of SIEM, SOAR, EDR, AV, IDS/IPS, NAC, AD, DLP, web/email filtering, behavioural analytics More ❯
operations. Security Tools Support: Support the implementation, maintenance, and configuration of security tools and systems for prevention, detection, and response. Audit: Contribute to security audits (e.g. SOC Type II, NCSC CAF, ISO 27001) and ensure compliance with regulations and standards. Continuous Improvement: Automate event monitoring, detection, and response. Enhance alert use cases and log correlation processes to adapt to evolving … CISSP, AZ-500, GIAC/GCIA/GCIH, CASP+, CEH, or SIEM certifications. Strong knowledge of log correlation, analysis, forensics, and chain of custody requirements. Familiarity with regulatory frameworks (NCSC CAF, ISO/IEC 27001/27002, GDPR, CIS, NIST). Practical knowledge of SIEM, SOAR, EDR, AV, IDS/IPS, NAC, AD, DLP, web/email filtering, behavioural analytics More ❯
