Security+, CEH, CySA+, or Cloud Security Engineer. Extensive experience in cybersecurity, especially incident response and technical operations. Strong understanding of AWS and Azure cloud platforms. Familiarity with frameworks like NIST, ISO, COBIT, and OWASP. Proven success in leading and delivering security projects. Experience with PowerShell and automation. Consulting experience across IT and digital teams. Flexibility for occasional travel and out More ❯
bath, south west england, united kingdom Hybrid / WFH Options
Hargreaves Lansdown
experience to develop pragmatic solutions and resolve complex issues. Certifications such as CISSP, CEH, OSCP, or GSEC are preferred. Knowledge of security principles, practices, and frameworks, such as OWASP, NIST, and ISO. Awareness of security tools and technologies, such as SAST, DAST, IAST, SCA, WAF, IDS, IPS. Experience in conducting threat modelling and risk assessments. Interview process The interview process More ❯
portishead, south west england, united kingdom Hybrid / WFH Options
Capital One UK
Experience in Supply Chain Management Experience in a Risk Management role related to Information Security, Business Continuity Management, or Supply Chain Management Experience with risk assessments encompassing PCI DSS, NIST Framework, physical security controls, or IT operations management Experience communicating and presenting to senior management CISSP, CISA, or CRISC certification We are committed to creating a level playing field andMore ❯
life cycle Work closely with technical architects and business analysts to deliver robust and scalable designs that meet the business needs Must comply with security methodologies polices such as NIST CSF, SP800-160, Secure by Design and internal Cyber Security guidelines Maintaining a Project Schedule/WBS - Updating regularly and reporting progress to the PMO, and the Applications and Data More ❯
Def Stan 05-138, Def Stan 05-139) An understanding of MOD ISN 23/09 Secure by Design Knowledge of security frameworks, such as ISO/IEC 27001, NIST 800-30, NIST 800-53 or OWASP Working with risk management frameworks and methodologies (e.g., ISO 27001/2, ISO27005/31000, NIST 800-30, NIST 800-53) If this More ❯
