to mitigate risks and breaches. Work collaboratively with other departments to ensure comprehensive security awareness and compliance with industry standards and regulations. Conduct regular security assessments, vulnerability testing, and riskanalysis to identify and address potential threats. Maintain up-to-date knowledge of emerging cybersecurity trends, technologies, and best practices. Prepare and present reports on the status of More ❯
to mitigate risks and breaches. Work collaboratively with other departments to ensure comprehensive security awareness and compliance with industry standards and regulations. Conduct regular security assessments, vulnerability testing, and riskanalysis to identify and address potential threats. Maintain up-to-date knowledge of emerging cybersecurity trends, technologies, and best practices. Prepare and present reports on the status of More ❯
Rednal, Birmingham, United Kingdom Hybrid / WFH Options
Kerv
or similar tools Manage secrets and configurations using Azure Key Vault Participate in code reviews and contribute to continuous improvement of testing practices Participate in test planning, estimation, and riskanalysis activities Report and track defects, and work with the development team to resolve issues Contribute to the continuous improvement and maintenance of automated testing frameworks, processes and More ❯
Birmingham, Staffordshire, United Kingdom Hybrid / WFH Options
Kerv Digital for Digital Transformation
or similar tools Manage secrets and configurations using Azure Key Vault Participate in code reviews and contribute to continuous improvement of testing practices Participate in test planning, estimation, and riskanalysis activities Report and track defects, and work with the development team to resolve issues Contribute to the continuous improvement and maintenance of automated testing frameworks, processes and More ❯
Birmingham, Staffordshire, United Kingdom Hybrid / WFH Options
Kerv Digital for Digital Transformation
and business analysts to understand requirements and design test cases Report and track defects, and work with the development team to resolve issues Participate in test planning, estimation, and riskanalysis activities Contribute to the continuous improvement of automated testing processes and methodologies Required Experience: Minimum of 3 years' experience in both manual and automated testing at all More ❯
coding, design reviews, and architecture assessments. Lead the implementation of DevSecOps practices, integrating security into CI/CD pipelines. Identify and remediate application-level vulnerabilities through static/dynamic analysis, manual code review, and security testing. Collaborate with engineering and platform teams to secure APIs, microservices, and containerized workloads. Evaluate and implement security tools for secure code analysis … in application security architecture. Deep knowledge of OWASP Top 10, SANS CWE Top 25, and secure coding best practices. Familiarity with threat modelling methodologies such as STRIDE and architectural risk analysis. Hands-on experience with tools such as SAST/DAST/IAST, Snyk, SonarQube, Burp Suite, Veracode, or similar. Strong understanding of cloud platforms) and modern development architectures More ❯
Birmingham, West Midlands, West Midlands (County), United Kingdom
Crimson
and £50,000 plus benefits depending on experience. Key Responsibilities * Develop, implement and maintain comprehensive IT security processes and procedures in support of achieving ISO 27001. * Conduct security audits, risk assessments and compliance reporting to identify vulnerabilities and recommend corrective actions. * Collaborate with various departments to ensure comprehensive security awareness and adherence to established policies. * Proactively monitor and analyse … to ensure clear understanding across the organisation. * Stay up-to-date with the latest security trends, technologies, and regulations to continuously improve our security practices. * Conduct vulnerability assessments and risk analysis. * Conduct Security Audits and Assessments: Perform regular security assessments to ensure compliance with industry standards. * Create and maintain security policies to ensure data confidentiality, integrity, and availability. * Communicate … security risks and recommendations to management. * Support incident response. Critical Skills for Success * Experience in IT security compliance or a related field. * Proven experience with security audits, risk assessments, and compliance reporting. * Proficiency in using security tools and technologies. * Strong analytical and problem-solving skills. * Excellent communication and collaboration abilities. Interested?! Send your up-to-date CV to Emma More ❯
arena. Our client is passionate about innovation using leading-edge technologies to create scalable and user-centric digital solutions. Responsibilities: Focus on the delivery of 1st line security controls analysis while undertaking deep riskanalysis to identify trends and gaps. Produce and present risk reports to the senior management team, ensuring accuracy with factual information. Translate … non-technical stakeholders such as decision makers. Ensure the reports are framed in a way which reflects all compensatory controls in place. Criteria: Proven experience in technical security controls analysis across various platforms such as networks, cloud, legacy systems, and web-based applications. Proven experience in scoping and planning security testing through interpretation of architecture diagrams. Ability to prioritize … appropriate security controls to mitigate cyber security risks. Evidence of working with key stakeholders such as product owners and SMEs (Subject Matter Experts), enabling them to make well-informed risk-based decisions. A deep understanding of threats and cyber attacks using local and strategic threat information in decision-making and planning. Proven experience in MI and risk-related More ❯
coding, design reviews, and architecture assessments. Lead the implementation of DevSecOps practices, integrating security into CI/CD pipelines. Identify and remediate application-level vulnerabilities through static/dynamic analysis, manual code review, and security testing. Collaborate with engineering and platform teams to secure APIs, microservices, and containerized workloads. Evaluate and implement security tools for secure code analysis … in application security architecture. Deep knowledge of OWASP Top 10, SANS CWE Top 25, and secure coding best practices. Familiarity with threat modelling methodologies such as STRIDE and architectural risk analysis. Hands-on experience with tools such as SAST/DAST/IAST, Snyk, SonarQube, Burp Suite, Veracode, or similar. Strong understanding of cloud platforms) and modern development architectures More ❯
Birmingham, England, United Kingdom Hybrid / WFH Options
JR United Kingdom
high-trust team and that can work autonomously while they build their InfoSec capability to ensures regulatory compliance, information security maturity, and readiness for the next audit, tender or risk review. Control/Compliance Assessment Duties: Schedule and Coordinate Assessments : Schedule and coordinate control assessments with control owners, asset custodians, and third parties. Evaluate Controls : Assess the design and … evidence is well-organised and accessible. Notify Deviations : Author notifications of business process and procedure deviations to inform the Information Security team and other relevant parties across the organisation. RiskAnalysis Reports : Author analysis reports that define the impact of control deficiencies or gaps on identified risks. Communicate Findings : Communicate findings to Security leadership, clearly describing issues More ❯
UK, Europe, the USA, and the UAE, there may be opportunities for international travel depending on project needs and interests. Skills required are: Capability to develop/maintain a risk register Facilitate risk workshops with Project Managers – identify risks, causes, impacts, actions Facilitate capture of cost and time impacts of risks Manage draw-down process as risk events occur Calculate EMV and undertake Quantitative Risk Cost Analysis (QCRA) Understanding of Quantitative Schedule RiskAnalysis (QSRA) and (preferably) the ability to undertake the analysis Preferably knowledge of power infrastructure and/or substation projects Good communications skills and comfortable working with external clients More ❯