20 of 20 Remote ISO/IEC 27002 (supersedes ISO/IEC 17799) Jobs

reviews, provide guidance on secure libraries and frameworks. Standards & Compliance Ensure products meet regulatory and defence standards (ISO 27001 / 27005, NIST 800-30 / 53, JSP 440 / 604, Def Stan 05-series). Lead the creation and maintenance … penetration tests and automated vulnerability scans; validate fixes. Oversee third-party security assessments as required. Continuous Improvement Drive security tooling and automation (CI / CD integration, SAST / DAST). Stay ahead of emerging threats and security technologies; evangelise best practices across teams. Qualifications & Experience Proven … product or application security within defence, government, or security-cleared environments. Deep knowledge of risk management frameworks (ISO 27001 / 2 / 5 / 31000, NIST 800-series) and Defence Standards (JSPs, Def Stan 05-138 / More ❯

a sound understanding of cyber and information security, including frameworks like NIST and ISO IEC 27002:202. It will be great if you also know about PCI-DSS V4.0 as well. Clear Communication - You'll be able to discuss these … a range of support to help you keep yourself well. We have the thrive mental health app, our colleague assistance programme available 24 / 7, our own, in-house mental health first aiders, support groups and a dedicated team to make sure we are covering your needs. There … team is here to provide the support you need to ensure a fair and accessible experience for all. Job posting end date: 04 / 05 / More ❯

a sound understanding of cyber and information security, including frameworks like NIST and ISO IEC 27002:202. It will be great if you also know about PCI-DSS V4.0 as well. Clear Communication -You'll be able to discuss these … a range of support to help you keep yourself well. We have the thrive mental health app, our colleague assistance programme available 24 / 7, our own, in-house mental health first aiders, support groups and a dedicated team to make sure we are covering your needs There … means we treat people fairly. We welcome applications from all suitably skilled persons regardless of their gender, age, race, disability, ethnic background, religion / belief, sexual orientation, gender reassignment or marital / family status. Please also note that we have a thorough referencing process, which includes More ❯

a sound understanding of cyber and information security, including frameworks like NIST and ISO IEC 27002:202. It will be great if you also know about PCI-DSS V4.0 as well. Clear Communication -You'll be able to discuss these … a range of support to help you keep yourself well. We have the thrive mental health app, our colleague assistance programme available 24 / 7, our own, in-house mental health first aiders, support groups and a dedicated team to make sure we are covering your needs There … means we treat people fairly. We welcome applications from all suitably skilled persons regardless of their gender, age, race, disability, ethnic background, religion / belief, sexual orientation, gender reassignment or marital / family status. Please also note that we have a thorough referencing process, which includes More ❯

a sound understanding of cyber and information security, including frameworks like NIST and ISO IEC 27002:202. It will be great if you also know about PCI-DSS V4.0 as well. Clear Communication -You'll be able to discuss these … a range of support to help you keep yourself well. We have the thrive mental health app, our colleague assistance programme available 24 / 7, our own, in-house mental health first aiders, support groups and a dedicated team to make sure we are covering your needs There … means we treat people fairly. We welcome applications from all suitably skilled persons regardless of their gender, age, race, disability, ethnic background, religion / belief, sexual orientation, gender reassignment or marital / family status. Please also note that we have a thorough referencing process, which includes More ❯

27001 Lead Auditor, or equivalent. Knowledge of industry standards and frameworks such as NIST 800-53, ISO 27001 / 27002, CIS Controls, COBIT. Experience with current automated and manual industry methods for evaluating security controls on prem and in cloud environments. More ❯

SIEM systems, such as Splunk, Sentinel, QRadar. Strong understanding of security standard methodologies and protocols, such as ISO 27001 / 27002, PCI DSS. Familiarity with security frameworks such as NIST, ISO, and CIS. Experience with programming languages such More ❯

design principles. Conduct threat modelling exercises to identify and mitigate potential risks. Ensure compliance with security regulations such as ISO27001, NIST 800-30 / 37 / 53, JSP 440, 604, and Defence Standards. Develop and maintain security documentation (e.g., RMADS, Security Assurance Documents, Security Management Plans … assessments, and remediation activities. The Person Key Skills & Experience: Strong knowledge of risk management frameworks and methodologies (ISO 27001 / 2, ISO27005 / 31000, NIST 800-30, NIST 800-53). Experience with defence and government security standards (JSPs, Def Stan … / 139). Proficiency in security testing tools, technologies, and techniques. Ability to analyze and mitigate security vulnerabilities effectively. Strong problem-solving, decision-making, and communication skills. Qualifications & Requirements: Degree in Cybersecurity, Computer Science, or a related field (or equivalent experience). Industry certifications such as CISSP, OSCP More ❯

design principles. Conduct threat modelling exercises to identify and mitigate potential risks. Ensure compliance with security regulations such as ISO27001, NIST 800-30 / 37 / 53, JSP 440, 604, and Defence Standards. Develop and maintain security documentation (e.g., RMADS, Security Assurance Documents, Security Management Plans … assessments, and remediation activities. The Person Key Skills & Experience: Strong knowledge of risk management frameworks and methodologies (ISO 27001 / 2, ISO27005 / 31000, NIST 800-30, NIST 800-53). Experience with defence and government security standards (JSPs, Def Stan … / 139). Proficiency in security testing tools, technologies, and techniques. Ability to analyze and mitigate security vulnerabilities effectively. Strong problem-solving, decision-making, and communication skills. Qualifications & Requirements: Degree in Cybersecurity, Computer Science, or a related field (or equivalent experience). Industry certifications such as CISSP, OSCP More ❯

Role Title: Security Consultant Duration: contract to run until 02 / 10 / 2025 Location: London / Knutsford. Hybrid 2-3 days a week onsite Rate: up to £378 p / d Umbrella inside IR35 Role purpose / summary This … role of the Senior Security Consultant is to take a primary role in the delivery of the Security Solutions Consultancy services. Key Skills / requirements: Essential Skills / Basic Qualifications: Demonstrable understanding of security solutions and designs from a people, process and technology perspective; including security … technologies, controls and assessment methodologies. Strong relationship, communication and stakeholder management skills. Knowledge of information security frameworks and standards such as ISO27001 / 2, NIST, PCI DSS and their application into diverse environments. Security qualification. Desirable skills / Preferred Qualifications: Experience with a Consultancy practice. Good More ❯

Role Title: Security Consultant Duration: contract to run until 02 / 10 / 2025 Location: London / Knutsford. Hybrid 2-3 days a week onsite Rate: up to £378 p / d Umbrella inside IR35 Role purpose / summary This … role of the Senior Security Consultant is to take a primary role in the delivery of the Security Solutions Consultancy services. Key Skills / requirements: Essential Skills / Basic Qualifications: Demonstrable understanding of security solutions and designs from a people, process and technology perspective; including security … technologies, controls and assessment methodologies. Strong relationship, communication and stakeholder management skills. Knowledge of information security frameworks and standards such as ISO27001 / 2, NIST, PCI DSS and their application into diverse environments. Security qualification. Desirable skills / Preferred Qualifications: Experience with a Consultancy practice. Good More ❯

Culture: Join a team that values innovation, client success, and your professional development. Key Responsibilities: Conducting comprehensive security assessments, including PCI DSS, ISO27001 / 27002, SWIFT Security, and Cloud compliance. Preparing executive and technical reports detailing findings, security gaps, and actionable recommendations. Leading PCI DSS Gap … with technologies such as Cloud, Virtualization, Network Firewalls, Web Application Firewalls, and encryption. Bonus Skills (Desirable): Experience delivering training on PCI DSS and / or ISO27001. Knowledge of multiple information security frameworks with the expertise to conduct gap analysis and assessments (ISO 27001, SOC2 More ❯

AWS, GCP, Azure) and driving security policies and guide rails Experience working within a structured governance framework IT Security Qualification such as CISA / CISSP or BCS and PCI / ISA qualification Industry and Regulatory Experience The security architect is expected to have documented experience with … Frameworks Payment Card Industry Data Security Standard (PCI-DSS) General Data Protection Regulation (GDPR) and Privacy Practices ISO 27001 / 2 Knowledge of OWASP 10 NIST Cybersecurity Framework (CSF) CIS and Benchmarking By joining Morrisons, you not only become an essential asset to our More ❯

AWS, GCP, Azure) and driving security policies and guide rails Experience working within a structured governance framework IT Security Qualification such as CISA / CISSP or BCS and PCI / ISA qualification Industry and Regulatory Experience The security architect is expected to have documented experience with … Frameworks Payment Card Industry Data Security Standard (PCI-DSS) General Data Protection Regulation (GDPR) and Privacy Practices ISO 27001 / 2 Knowledge of OWASP 10 NIST Cybersecurity Framework (CSF) CIS and Benchmarking By joining Morrisons, you not only become an essential asset to our More ❯

and taking a pragmatic approach to designing security solutions for the bank Can work effectively and efficiently with internal and external SME's / Partner organisations Experience with frameworks such as ISO 27001 / 2, SOC, NIST, or COBIT About You Skills More ❯

Pre-Sales or a similar role within an MSP / Reseller organization Experience in cybersecurity incident response and familiarity with industry standards (ISO27002, NIST, etc.) Expertise in endpoint detection, threat management, and advanced cybersecurity services (SSE, SASE, SIEM, MDR / EDR) Strong communication, organizational, and problem More ❯

ongoing information security compliance programme that delivers assurance of control performance Ensuring the ongoing compliance of baseline industry security standards such as ISO27001 / 2 are met Providing effective assurance of MIB's controls and control frameworks Providing a focal point for information security expertise Key Outputs Governance … approved and recorded. Completion of InfoSec risk assessments and workshops. Ensuring that InfoSec risk governance and control frameworks are maintained and that risks / issues are reported and escalated appropriately. Review, challenge and track the implementation and effectiveness of controls and risk mitigation treatment plans as a result … of leading information security risk assessments Proven experience in writing Information Security policies, procedures and standards Experience in maintaining all aspects of ISO27001 / 2 compliance Working knowledge of standard risk management / control frameworks such as ISF, NIST, ISO and ITIL. More ❯

Must have you had experience from other high-tech innovation organizations and knowledge of several different IT service areas. Deep expertise in ISO27001 / 2, NIST, NIS2, and SOX compliance. Strong knowledge in cybersecurity operations, risk management, BCP / DRP. Experience with audits, assessments, and governance More ❯

Security Consultant Location: Hybrid 2 to 3 days in office - Knutsford, Cheshire 6 Month contract initially £350 - £375 P / D (Umbrella-PAYE) One of our blue chip clients are looking for a Security Consultant to join the team on a long term programme of work. Key Responsibilities … security technologies, controls and assessment methodologies. * Strong relationship, communication and stakeholder management skills. * Knowledge of information security frameworks and standards such as ISO27001 / 2, NIST, PCI DSS and their application into diverse environments. * Security qualification. This is a great opportunity on a long running programme of work. More ❯

candidate will possess the following: Proven experience working with information security controls and regulatory standards (e.g., NIST, ISO 27001 / 2, COBIT). Experience in developing and maintaining Information Security policies and standards that support an improvement in security culture. A passion for driving More ❯