win plans. Maintain and update security policies, procedures, and incident response plans. Deliver security awareness training and advise clients on best practices. Support audits and compliance initiatives (ISO 27001, NIST, GDPR, etc.). Work cross-functionally with internal and external teams, including partner engagements. Research emerging threats and recommend security framework enhancements. Mentor and support junior security team members. What … and KQL. Proven skills in threat detection, incident response, and forensic analysis. Knowledge of SOAR tools (especially Palo Alto XSOAR or similar). Familiarity with compliance standards: ISO 27001, NIST, CIS, GDPR, HIPAA. Bonus: scripting/automation skills (Python, PowerShell, Bash). Deep understanding of Microsoft security technologies. Certifications such as CISSP, CEH, OSCP, CISM, or Security+ are highly desirable. More ❯
Loughton, Essex, South East, United Kingdom Hybrid / WFH Options
Profile 29
to manage external security operations. Desirable Certifications: Azure Security Engineer Associate, CISSP, OSCP (Offensive Security Certified Professional), CCSP, or equivalent. Experience with container security (Docker, Kubernetes). Knowledge ofNIST, ISO 27001, SOC 2 compliance frameworks. Familiarity with Zero Trust security principles. Other Stuff NB: Please only apply if you are able to work from their Debden (IG10) offices Monday More ❯
e.g. OT testing or other IT services). Collaborate with client teams to develop, document, and implement security policies, standards, and guidelines aligned with industry standards (e.g., ISO 27001, NIST). Assist in the deployment, configuration, and management of security infrastructure and technologies, including firewalls, intrusion detection/prevention systems, and secure network architectures. Provide guidance and support on Azure … is a nice to have. SKILLS: Working knowledge of cloud security architecture, specifically within Azure (or other Cloud platforms). Familiarity with security frameworks and compliance standards such as NIST, GDPR, PCI-DSS, DESC ISR. Strong problem-solving skills, with the ability to think creatively to solve complex security challenges. BENEFITS: Competitive Salary: Base salary commensurate with experience, plus performance More ❯
London, South East, England, United Kingdom Hybrid / WFH Options
Xpertise Recruitment Ltd
into CI/CD pipelines and DevOps operations Manage and interpret insights from cloud-native security tools (e.g., GuardDuty, Azure Defender) Ensure compliance with frameworks such as ISO 27001, NIST, GDPR, HIPAA Contribute to architectural design reviews, cloud migration planning, and documentation Support executive reporting by producing clear metrics for cyber risk posture Continuously track and respond to emerging threats More ❯
of working in large, complex technology programmes involving multiple concurrent projects with significant experience of delivering through offshore/nearshore strategic vendors. Knowledge of security frameworks & standards (ISO 27001, NIST, CIS, GDPR, SOC 2) Be experienced in 'hands on' technology software delivery from initiation to implementation. Have knowledge of programme and project management methodology and managing full lifecycle of programmes More ❯
Reading, Berkshire, United Kingdom Hybrid / WFH Options
Deloitte LLP
risk, as well as using GRC tools and guidance developed for Risk mitigation. Practical knowledge of information security standardsand risk assessment frameworks such as ISO 27001, SOC 2, NIST 800-32 Strong knowledge of cyber controls, policies, and procedures. Experience of delivering metrics for senior level audiences. Demonstrate analytical and problem-solving skills. Ability to communicate risks associated with More ❯
Guildford, Surrey, United Kingdom Hybrid / WFH Options
Deloitte LLP
risk, as well as using GRC tools and guidance developed for Risk mitigation. Practical knowledge of information security standardsand risk assessment frameworks such as ISO 27001, SOC 2, NIST 800-32 Strong knowledge of cyber controls, policies, and procedures. Experience of delivering metrics for senior level audiences. Demonstrate analytical and problem-solving skills. Ability to communicate risks associated with More ❯
Bexhill-On-Sea, East Sussex, South East, United Kingdom Hybrid / WFH Options
Hastings Direct
latest Azure security capabilities, threats, vulnerabilities, and industry trends will be essential. You will also support audit, compliance, and regulatory requirements, ensuring adherence to standards such as ISO 27001, NIST, and GDPR, and safeguarding the integrity and confidentiality of our systems and data. Skills we would love you to have Proven experience as a Security Architect or similar role with More ❯
London, South East, England, United Kingdom Hybrid / WFH Options
Pontoon
practises. Experience with security assessment and risk management methodologies. Proficiency in cloud security, particularly with Azure security tools and services. Familiarity with security standardsand frameworks (e.g., ISO 27001, NIST, CIS). Knowledge of security technologies such as firewalls and web proxies; experience with ZTNA, CTI, and threat modelling is beneficial. Excellent communication and interpersonal skills. Ability to work effectively More ❯
PO15, Whiteley, Hampshire, United Kingdom Hybrid / WFH Options
Stratospherec Ltd
following skills and experience: Strong expertise in defining, delivering, and supporting robust, resilient, and secure enterprise infrastructure. Experience with IT audits and compliance frameworks (CIS, PCI DSS, Cyber Essentials, NIST, ISO 27001). In-depth understanding of network security and compliance in regulated environments. Proven ability to secure high-value data (PCI cardholder data, PII) and implement security best practices. More ❯
London, South East, England, United Kingdom Hybrid / WFH Options
NEST Corporation
those responsibilities, bringing more specialist experience and knowledge. You will help to develop and improve our information security controls as we seek to improve our infosec maturity using the NIST framework as an externally assessed benchmark.This first line role combines a contract management aspect with the requirement for hands-on process operation for internally managed controls such as access reviews … the Corporate Technology IT Strategy 2030. The minimum criteria for this role are: Practical experience of operating information security controls under a certified ISMS using ISO 27001/12, NIST, CSF or other security standards. Practical experience working with third party suppliers in evidencing their compliance with security policies, standardsand controls to internal and external auditors. Understanding and experience More ❯
Reading, Berkshire, South East, United Kingdom Hybrid / WFH Options
LA International Computer Consultants Ltd
ensure proper actions are taken to block further attacks. 5. Compliance and Risk Management: o Ensure all incident response activities align with industry standards, regulations, and best practices (e.g., NIST, ISO 27001, GDPR, HIPAA). o Work with legal and compliance teams to manage incidents within the scope of data privacy laws and regulations. Key Skills & Experience: o Proficient in More ❯
London, South East, England, United Kingdom Hybrid / WFH Options
Sanderson
complex organisations Strong understanding of cyber risk, threat management, and technical security controls Excellent stakeholder management and communication skills Experience with governance, risk, and compliance frameworks (e.g., ISO 27001, NIST, GDPR) PRINCE2, PMP, or similar project management certification desirable Knowledge of cloud security (Azure/AWS) a plus Reasonable Adjustments: Respect and equality are core values to us. We are More ❯
accountability, and inclusion. The ideal candidate will have: Proven senior leadership experience in information security within large, complex organizations. Deep knowledge of information security standardsand frameworks (e.g., CIS, NIST, ISO-27001). Experience managing PCI-DSS compliance across multiple payment channels. Strong understanding of GDPR and experience leading a privacy team. Experience leading and developing teams of specialists. Exceptional More ❯
iDP (identity providers) Email authentication (SPF, DKIM, DMARC) Networking and protocols such as DNS, LDAP, HTTP Experience with security standardsand frameworks such as ISO, MITRE and/or NIST CISSP, CCSP or other industry certification is beneficial. In addition to the above, if you have a consultative approach to problem solving and/or have a desire to pivot More ❯
London, South East, England, United Kingdom Hybrid / WFH Options
Sanderson
changes, and industry best practices. Required Skills & Experience: Proven experience in Information Security, Cybersecurity, and/or Information Privacy. Deep understanding of regulatory frameworks: GDPR, DPA 2018, ISO 27001, NIST , and FCA guidelines. Strong knowledge of security controls, data lifecycle management, and access control models. Experience within the banking or financial services sector is essential. Demonstrated ability to engage with More ❯
for employees. What you'll need to succeed Ideally, above 5 years of experience in cybersecurity or a related field. Knowledge of security frameworks andstandards (e.g., ISO 27001, NIST). Experience with security tools and technologies (e.g., firewalls, IDS/IPS). Excellent problem-solving and analytical skills. Strong communication and interpersonal skills. Ability to work independently and as More ❯
Employment Type: Permanent
Salary: £55000 - £65000/annum Up to £65k plus great benefits
London, South East, England, United Kingdom Hybrid / WFH Options
Clarion
and one of LinkedIn's Top Companies 2024 Do you have proven experience in cyber security, information assurance or resilience management? If you have a strong working knowledge of the NIST Cyber Security Framework then this could be your chance to join us! We're looking for someone with excellent communication skills to work across the business to provide assurance … on Clarion's cybersecurity strategy, ensuring alignment with the NationalInstituteofStandardsandTechnology (NIST) Cyber Security Framework. Familiar with UK housing sector regulation, applicable standardsand data protection requirements (e.g. GDPR, ISO27001, ISO27002, ISO27701) you'll be responsible cyber assurance to support the security posture across systems and services that support tenants and operations. You'll communicate the More ❯
Staines-upon-Thames, Middlesex, England, United Kingdom
Bupa UK
Job Description: Technology External Assurance Analyst Contract: Hybrid – (1 day per week in office preferred) Location: Staines (TW18 3DZ) or Leeds (LS5 3BF) Permanent - Full time 37.5hours Salary range: £55,000– £65,000 (depending on experience & location) We consider all More ❯
Aldershot, Hampshire, South East, United Kingdom Hybrid / WFH Options
JLA Resourcing Ltd
policies, access controls, and malware protections Lead incident identification and response efforts, ensuring swift containment and root cause analysis Oversee system hardening and compliance with industry standards (CIS, STIG, NIST) Contribute to strategic security planning and advise engineering and programme leadership on cyber risks Provide oversight and review of technical documentation, ensuring quality and audit readiness Represent cyber security in … in defence, government, or secure sectors Advanced knowledge of AWS security services, network security, endpoint protection, and vulnerability management Strong working knowledge of compliance frameworks andstandards (CIS, STIG, NIST, Government Functional Standard 007) Proven ability to lead security planning, risk assessments, and incident response activities Excellent documentation, communication, and collaboration skills Eligibility for DV (Developed Vetting) clearance Experience leading More ❯
senior management. Skills Preferred Skills/Requirements Ideally around 5 years of experience in cybersecurity or a related field. Knowledge of security frameworks andstandards (e.g., ISO 27001, ITIL, NIST). Experience with security tools and technologies (e.g., firewalls, IDS/IPS). Excellent problem-solving and analytical skills. Strong communication and interpersonal skills. Ability to work independently and as More ❯
Winchester, Hampshire, United Kingdom Hybrid / WFH Options
Arqiva
management principles and security controls Interest in developing expertise in auditing, compliance, and risk Desirable (nice to have) Knowledge of other standards or frameworks such as Cyber Essentials Plus, NIST Cyber Security Framework, or ISO27701 Awareness of legal and regulatory requirements (e.g., NIS Directive, Telecom Security Act, Data Protection Act) We are the undisputed leader in UK TV and radio More ❯