2 of 2 Permanent ISO/IEC 27005 Jobs in London

transformation roadmap that unifies fragmented processes into a single, clear model aligned to Trainline's risk appetite. Maintain key standards such as ISO 27001, ISO 22301, and PCI DSS, while ensuring they add real business value. Manage and develop the Risk and Compliance team, setting clear … leading and developing high-performing teams, setting clear goals and cultivating accountability and continuous improvement. Deep understanding of enterprise and cyber risk frameworks (ISO 27005, ISO 31000, NIST CSF) and how to communicate risk appetite in business terms. Excellent communication skills, with the ability ...

Experience Essential: Strong grounding in security engineering principles, practices and risk management. Experience working with a broad range of security controls (e.g., SIEM, IDS / IPS, firewalls, secure SDLC, cloud security configuration, CIS hardening, API security). Knowledge of security frameworks such as NIST, ISO … equivalent professional certification. Multi-year experience in a security engineering role. Desirable: CISSP certification. Cloud security certifications for AWS. Risk management experience (CRISC, ISO 27005, NIST RMF). Network security and coding experience (Python, Bash, PowerShell, GitHub). Penetration testing exposure. ...