controls and compliance with industry standards. Key Responsibilities: Conducting assurance reviews and risk assessments Embedding security into solution designs Supporting incident response and post-incident analysis Ensuring compliance with GDPR, ISO27001, NIST, and other frameworks Advising on threat modelling and mitigation strategies What We're Looking For: Strong understanding of security principles and frameworks Experience designing and implementing security controls More ❯
Eastleigh, Hampshire, United Kingdom Hybrid / WFH Options
Ageas
initiatives and annual revalidation activities. Collaborate with IT and business stakeholders to embed security into solution designs. Monitor compliance with internal policies, external regulations and industry good practice. (e.g., GDPR, ISO27001, CIS, ISF, NIST). Provide expert guidance on security best practices, threat modelling, and mitigation strategies. Support incident response and post-incident reviews from an architectural perspective. Skills and … and practical experience of Information Security processes, policies and tools. Strong understanding of security frameworks and relevant certifications including ISO27001, CISMP, CISSP, knowledge of DataProtection/GDPR, Information Security Forum, CiiSec Understanding of information security controls in particular those relating to assurance, business process, governance, security risk and education Good analysis and decision-making skills, work well More ❯