18 of 18 Permanent ISO/IEC 27002 (supersedes ISO/IEC 17799) Jobs in the UK

affecting products Your skillset may include: Knowledge of HMG standards (including MOD-specific JSP, Def Stan 05-138, Def Stan 05-139) An understanding of MOD ISN 23 / 09 Secure by Design Knowledge of security frameworks, such as ISO / IEC 27001, NIST 800-30, NIST … or OWASP Working with risk management frameworks and methodologies (e.g., ISO 27001 / 2, ISO27005 / 31000, NIST 800-30, NIST 800-53) Please reach out to Lewis Dunn @ ARM if you are interested or simply have some questions - E: or DD: Disclaimer: This vacancy is being advertised by either Advanced Resource More ❯

affecting products Your skillset may include: Knowledge of HMG standards (including MOD-specific JSP, Def Stan 05-138, Def Stan 05-139) An understanding of MOD ISN 23 / 09 Secure by Design Knowledge of security frameworks, such as ISO / IEC 27001, NIST 800-30, NIST … or OWASP Working with risk management frameworks and methodologies (e.g., ISO 27001 / 2, ISO27005 / 31000, NIST 800-30, NIST 800-53) Please reach out to Lewis if you are interested or simply have some questions - E: or DD: (phone number removed) Disclaimer: This vacancy is being advertised by either Advanced More ❯

design). Perform security code reviews, provide guidance on secure libraries and frameworks. Standards & Compliance Ensure products meet regulatory and defence standards (ISO 27001 / 27005, NIST 800-30 / 53, JSP 440 / 604, Def Stan 05-series). Lead the creation and maintenance of security documentation (RMADS, Security … Testing & Assurance Design and execute penetration tests and automated vulnerability scans; validate fixes. Oversee third-party security assessments as required. Continuous Improvement Drive security tooling and automation (CI / CD integration, SAST / DAST). Stay ahead of emerging threats and security technologies; evangelise best practices across teams. Qualifications & Experience Proven experience (5+ years) in product … or application security within defence, government, or security-cleared environments. Deep knowledge of risk management frameworks (ISO 27001 / 2 / 5 / 31000, NIST 800-series) and Defence Standards (JSPs, Def Stan 05-138 / 139). Hands-on experience with security testing tools and techniques (SAST More ❯

on existing and emerging threats; and owns and develops the necessary IT security policies, standards, and procedures. Person Specification Qualifications Essential Formal certification (CISSP, CISM or CRISC) and / or formal training in information security standards and best practice (eg ISO 27001 / 2) Educated to Masters level or equivalent industry experience … strategically and develop long-term plans and strategies. Knowledge & experience of relevant legislation, standards and best practice (including Data Protection AcUGDPR, NIS Regulations, DSP Toolkit, Cyber Essentials, ISO 27001, NIST, NCSC & ICO standards & recommendations, etc.) Significant experience working on both strategic & operational matters and managing digital services, at a senior level Significant experience in delivering and … check for any previous criminal convictions. Employer details Employer name South Central Ambulance Service NHS Foundation Trust Address Bicester or Otterbourne Bicester OX26 6HR Employer's website https: / / scasjobs.co.uk / More ❯

Job Title: IT Security Manager Location: Hybrid in Buckinghamshire (2 days on-site) Job Type: Full-time, Permanent Salary: £60,000 - £67,000 + benefits Industry: Media / Broadcasting A leading Media / Broadcasting company based in Buckinghamshire are seeking an experienced IT Security Manager to join the Cyber Security team where you’ll mature the … Security solutions, including Defender, Sentinel, Entra ID, and Microsoft Purview. Deep knowledge and practical application of security frameworks and standards including CIS, ISO 27001 / 27002, GDPR, DPA, and Cyber Essentials. Proven experience managing or working closely with Security Operations Centres (SOC), including incident response and threat detection. Demonstrable background in implementing … risk-based security metrics. Ability to bridge security and IT operations teams, with effective stakeholder communication and collaboration. Security certifications such as CISSP, CISM, Microsoft Security (SC-100 / SC-200 / SC-300), or equivalent are highly desirable. Apply directly to learn more about this exciting opportunity or connect with me on LinkedIn to stay More ❯

development Lead efforts to assess and mature security practices across the enterprise Stay abreast of industry trends, frameworks, and regulations (e.g., GDPR, ISO 27001 / 2, SANS Top 20 Critical Security Controls, NIST CSF, SP 800-53, PFMI, CPMI ISOCO and FFIEC handbook, SABSA) to ensure the organization is proactive in addressing emerging security … day, we run a range of initiatives that support employees sense of belonging and physical, emotional and mental well-being. Our extensive benefits for employees typically include: Vacation / annual leave: 25 days in UK / Asia + 3 life days, 23 in US + 3 life days Private medical and dental cover and life insurance … US Locate for your day hybrid working 2 days a week in office. Access to Discover our learning platform with 1000+ courses from LinkedIn Learning. Paid parental leave / Coaching and support services Heads down days with no meetings on the last Friday of every month Diversity Council / Affinity groups (Womens Forum, Black Employee Network More ❯

testing. Knowledge of internal audit methodologies, including risk assessment, execution, and reporting. Proficiency in industry standards and frameworks (e.g., NIST 800-53, ISO 27001 / 27002). Familiarity with privacy regulations (e.g., GDPR, CCPA) and breach notification laws. Experience with sector-specific frameworks (e.g., HIPAA, PCI). Technical Skills Proficiency with security … value yours. Experian's culture, people, and environments are main differentiators. We take our people's agenda very seriously. We focus on what matters; diversity and inclusion, work / life balance, flexible work, development, engagement, collaboration, wellness, rewards & recognitions, volunteering the list goes on! Our benefits include: Medical, life and dental insurance, Asociacion Solidarista, International Share Save Plan … Flex Work / Work from home, Paid time off, Annual Performance Bonus, Education Reimbursement, Family Bonding, Bereavement Leave, Referral Program, and more. Experian Careers - Creating a better tomorrow together Find out what its like to work for Experian by clicking here Experian is proud to be an Equal Opportunity and Affirmative Action employer. Our goal is to create More ❯

testing. Knowledge of internal audit methodologies, including risk assessment, execution, and reporting. Proficiency in industry standards and frameworks (e.g., NIST 800-53, ISO 27001 / 27002). Familiarity with privacy regulations (e.g., GDPR, CCPA) and breach notification laws. Experience with sector-specific frameworks (e.g., HIPAA, PCI). Technical Skills Proficiency with security … value yours. Experian's culture, people, and environments are main differentiators. We take our people's agenda very seriously. We focus on what matters; diversity and inclusion, work / life balance, flexible work, development, engagement, collaboration, wellness, rewards & recognitions, volunteering the list goes on! Our benefits include: Medical, life and dental insurance, Asociacion Solidarista, International Share Save Plan … Flex Work / Work from home, Paid time off, Annual Performance Bonus, Education Reimbursement, Family Bonding, Bereavement Leave, Referral Program, and more. Experian Careers - Creating a better tomorrow together Find out what its like to work for Experian by clicking here Experian is proud to be an Equal Opportunity and Affirmative Action employer. Our goal is to create More ❯

SLA’s and KPI’s for our customers leveraging vulnerability and assessment tools such as Qualys and Microsoft’s EDR offering. Analyse vulnerability test reports and provide remediation / mitigation plans to the team. Integrate with our vendors and security providers to identify the most up-to-date information on the latest vulnerabilities and deliver key awareness and … s Operation team to plan and implement internal security adoption across all our platforms including our hosted cloud platform, aligning to CE+, ISO 27001 / 27002 and ITIL. With the Technical Services Manager, identify and implement the best practice security posture for LIMA’s Managed Services Engineers when working with customers and … with technical accreditations or demonstrable experience in security and vulnerability remediation technologies: Security Tooling: OWASP ZAP, Nmap, Wireshark Assessment Tooling: Nessus, Qualys, etc Remediation Tooling: Microsoft Endpoint Management / Intune Microsoft Security / Compliance: MFA,?Conditional Access, SSPR, DLP, IPM, IRM, DKIM, MCAS Application packaging for automated deployment Intermediate scripting experience utilising PowerShell or Python You More ❯

the audience. Ability to work with others effectively, with 3rd parties, internal teams, promoting knowledge sharing within and across teams. A good understanding of security frameworks including ISO27001 / 2, Cyber Essentials Plus, CIS Top 20, Data Protection Act 2018, OWASP Top 10. Have or be working towards relevant industry certification such as CISSP, CISM, CRISC or similar. More ❯

outputs and outcomes and provide reporting and feedback when required. Support, when necessary, the development of opportunities by contributing as an SME in response to client RFPs and / or the construction of proposal documents and responses. Develop timely, accurate reporting that can convey technical findings to non-technical audiences at all levels when necessary. When required, work … with the Director of Cyber Advisory and Head Consultant to continuously improve capability, enhance & integrate service offerings, and build the Professional Services team Skills / Must have: 5 years in a client-facing information / cyber security / GRC role Professional certifications including but not limited to CISSP, CCSP, CISM, CRISC, CISA, CDPSE. Experience … in auditing and implementing security standards such as ISO 27001 / 2, NIST CSF, and others. Exceptional verbal, written communication, and presentation skills. Ability to articulate technical requirements to non-technical audiences. Proven self-management skills and ability to work on multiple assignments concurrently. Ability to travel to meet business needs. Benefits: Opportunity to More ❯

development Lead efforts to assess and mature security practices across the enterprise Stay abreast of industry trends, frameworks, and regulations (e.g., GDPR, ISO 27001 / 2, SANS Top 20 Critical Security Controls, NIST CSF, SP 800-53, PFMI, CPMI ISOCO and FFIEC handbook, SABSA) to ensure the organization is proactive in addressing emerging security … fostering an environment in which everyone feels comfortable to be who they are, and inclusion is valued. All employees have access to our inclusive benefits, including: Holiday - UK / Asia: 25 holiday days and 3 'life days' (in addition to bank holidays). US: 23 holiday days. 2 paid volunteer days so that you can actively support causes … Employee Network and Pride Network) in support of our organisational commitment to embrace and always be learning more about DE&I. Hybrid working to promote a healthy work / life balance, enabling employees to work collaboratively in the office when needed and work from home when they don't. Active support of flexible working for all employees where More ❯

Architect (London | Hybrid | Cloud, NIST, SABSA) A leading global financial services firm is hiring an Enterprise Security Architect for a permanent position based in London (2 days onsite / week) . Key Tech & Frameworks: Cloud Security (SaaS, IaaS, Infrastructure) SABSA, NIST CSF, ISO 27001 / 2, SP 800-53, SANS Top More ❯

Active Directory, and Azure AD Ability to understand and articulate interoperability between technologies and design pragmatic security solutions for the bank Effective collaboration with internal and external SMEs / partner organizations Experience with frameworks such as ISO 27001 / 2, SOC, NIST, or COBIT About You Skills Recognized leading security qualification or More ❯

metrics across IS teams, prepare regulatory submissions, and track compliance. ISMS Support: Maintain the Information Security Management System (ISMS) in line with ISO 27001 / 27002. Manage governance forums, minutes, and documentation. Policies & Standards: Develop GRC policies, standards, and procedures. Track exceptions, monitor risk, and report on performance and compliance. Controls Framework: Strengthen the … identifying threats and making smart, independent decisions. A working knowledge of ISO 27001 and aligning businesses to compliance frameworks. Confidence presenting to senior internal / external stakeholders. Excellent communication skills and a collaborative mindset. Culture fit really matters here. What’s In It For You? Freedom to shape the role. Real autonomy to define … the GRC roadmap alongside the manager. Ongoing investment in you. The team is already completing certs like CISM, CRISC, OT & Cloud, ISO Lead Implementer, and more. Award-winning employer. Recognised for diversity, digital transformation, and consistently ranked among the UK’s top employers. Real cyber focus. Not just ticking compliance boxes. Cyber is a business priority. More ❯

against the increasing threat landscape. You will support pre-sales engagements through gaining an understanding of client requirements and in technical pre-sales discussions, ensuring the solution and / or service meets client expectations. Job Role Responsibilities Act as a subject matter expert on cybersecurity, the current threat landscape and keep up to date with trends and innovations … general advice and guidance Deliver technical training and enablement sessions to sales teams, partners, and customers, empowering stakeholders with the knowledge and skills needed to effectively position and / or sell Bechtle Security offerings Engage, alongside Account Managers, with customers to address technical challenges, provide solution recommendations, and overcome obstacles. Build strong relationships with customers based on trust … stages and handling preferred o Knowledge and / or experience using endpoint detection and threat management products Good knowledge and awareness of global Information Security Standards including ISO27002, CIS, NCSE CAF, NIST CSF Advisor in advanced cybersecurity services including SSE, SASE, SIEM, MDR / EDR Experience working with security frameworks and / or market More ❯

Sales, Cybersecurity or similar technical consultancy role (MSP / reseller experience preferred). Strong understanding of incident response, SOC operations, and endpoint security. Familiarity with security standards (ISO27002, CIS, NIST, CAF). Experience with technologies such as SSE, SASE, SIEM, MDR / EDR. Confident in customer-facing engagements and solution design. Excellent communication, documentation and stakeholder More ❯

Sales, Cybersecurity or similar technical consultancy role (MSP / reseller experience preferred). Strong understanding of incident response, SOC operations, and endpoint security. Familiarity with security standards (ISO27002, CIS, NIST, CAF). Experience with technologies such as SSE, SASE, SIEM, MDR / EDR. Confident in customer-facing engagements and solution design. Excellent communication, documentation and stakeholder More ❯