CISSP, ISO 27001 Lead Auditor, or equivalent. Knowledge of industry standards and frameworks such as NIST 800-53, ISO 27001 /27002, CIS Controls, COBIT. Experience with current automated and manual industry methods for evaluating security controls on Perm and in cloud environments. Capable of communicating complex information … to apply security governance, risk, and control principles. Proficiency in automation and data analytics tools (e.g., Excel, Tableau, Alteryx, and Power-BI). Ability to apply critical reading / thinking skills to identify systemic issues from analysing testing data. Ability to facilitate small to medium sized group meetings and communicate complex ideas. Agile working methodology experience. GCS is More ❯
Bristol, Avon, South West, United Kingdom Hybrid / WFH Options
Defence
Clearly communicate risks to technical and non-technical stakeholders. What We're Looking For Essential Experience: Deep understanding of security frameworks: NIST (especially 800-30, 800-53) , ISO27001 / 2, ISO27005, and OWASP. Experience with Secure by Design principles and MOD-specific guidelines (e.g. JSP, Def Stan 05-138 / 139). Familiarity with HMG security More ❯
Old Down, Gloucestershire, United Kingdom Hybrid / WFH Options
Matchtech
Clearly communicate risks to technical and non-technical stakeholders. What We're Looking For Essential Experience: Deep understanding of security frameworks: NIST (especially 800-30, 800-53) , ISO27001 / 2, ISO27005, and OWASP. Experience with Secure by Design principles and MOD-specific guidelines (e.g. JSP, Def Stan 05-138 / 139). Familiarity with HMG security More ❯
multiple stakeholders to support continuous improvement of the control testing programme. I am therefore keen to speak with candidates who have: A proven background in Security Controls Assesment / IT Audit for large corporate clients. Professional certifications in CISA, CISM, CISSP, ISO 27001 Lead Auditor, or equivalent experience Familiarity with frameworks such as NIST … ISO 27001 /27002, CIS, COBIT Strong skills in security control tools like SailPoint, Wiz, or Rapid7 Comfortable using tools like RSA Archer, ServiceNow, Kanban Boards and Jira Adept at working in agile teams and communicating effectively across all levels Knowledge of Excel, Tableau, Alteryx, and PowerBI would be desirable Interested? Apply More ❯
Employment Type: Contract
Rate: £400 - £450 per day + Umbrella - inside IR35
multiple stakeholders to support continuous improvement of the control testing programme. I am therefore keen to speak with candidates who have: A proven background in Security Controls Assesment / IT Audit for large corporate clients. Experience of working in a Lead role, coordinating and managing work deliverables of other members of the team Professional certifications in CISA, CISM … CISSP, ISO 27001 Lead Auditor, or equivalent experience Familiarity with frameworks such as NIST 800-53, ISO 27001 /27002, CIS, COBIT Strong skills in security control tools like SailPoint, Wiz, or Rapid7 Comfortable using tools like RSA Archer, ServiceNow, Kanban Boards and Jira Adept at working in More ❯
Employment Type: Contract
Rate: £500 - £550 per day + Umbrella - inside IR35
