17 of 17 Remote Permanent ISO/IEC 27002 (supersedes ISO/IEC 17799) Jobs

processes. Evaluate and recommend new security tools and technologies based on organizational needs. Define and maintain security reference architectures, standards, and best practices. Support compliance efforts (e.g., ISO 27001, NIS 2, GDPR) through architectural guidance and documentation. Conduct risk assessments, security reviews, and threat modeling at the architectural level for new systems and changes. Assist in … Core Competencies Familiarity with enterprise security architecture frameworks (e.g., Zero Trust Network Architecture, NIST CSF). Knowledge of standards and frameworks such as ISO / IEC 27001 / 27002 and MITRE ATT&CK. Hands-on experience with cloud security (AWS, Azure, or GCP), IAM / … and prioritize risks based on business impact. Analytical mindset with a proactive approach to identifying and resolving security issues. Assets Relevant certifications such as CISSP, CISM, CCSP, AWS / Azure security certifications. Native Dutch OR French speaker with strong proficiency in the other national language and English. Offer Stable 9-to-5 role in a dynamic and collaborative More ❯

development Lead efforts to assess and mature security practices across the enterprise Stay abreast of industry trends, frameworks, and regulations (e.g., GDPR, ISO 27001 / 2, SANS Top 20 Critical Security Controls, NIST CSF, SP 800-53, PFMI, CPMI ISOCO and FFIEC handbook, SABSA) to ensure the organization is proactive in addressing emerging security … day,’ we run a range of initiatives that support employees’ sense of belonging and physical, emotional and mental well-being. Our extensive benefits for employees typically include: Vacation / annual leave: 25 days in UK / Asia + 3 life days, 23 in US + 3 life days Private medical and dental cover and life insurance … days ‘Locate for your day’ hybrid working – 2 days a week in office. Access to Discover – our learning platform with 1000+ courses from LinkedIn Learning. Paid parental leave / Coaching and support services Career development / LinkedIn Learning ‘Heads down days’ with no meetings on the last Friday of every month Wellbeing / Mental More ❯

development Lead efforts to assess and mature security practices across the enterprise Stay abreast of industry trends, frameworks, and regulations (e.g., GDPR, ISO 27001 / 2, SANS Top 20 Critical Security Controls, NIST CSF, SP 800-53, PFMI, CPMI ISOCO and FFIEC handbook, SABSA) to ensure the organization is proactive in addressing emerging security … day,’ we run a range of initiatives that support employees’ sense of belonging and physical, emotional and mental well-being. Our extensive benefits for employees typically include: Vacation / annual leave: 25 days in UK / Asia + 3 life days, 23 in US + 3 life days Private medical and dental cover and life insurance … days ‘Locate for your day’ hybrid working – 2 days a week in office. Access to Discover – our learning platform with 1000+ courses from LinkedIn Learning. Paid parental leave / Coaching and support services Career development / LinkedIn Learning ‘Heads down days’ with no meetings on the last Friday of every month Wellbeing / Mental More ❯

degree level (or equivalent) ideally in computer science or a related field Familiarity with internationally recognised IT Security standards and frameworks such as Cyber Essentials, NIST, or ISO27001 / 2 Understanding of how IT Security tooling such as Firewalls, AV, Proxies and IDS / IPS operate Familiar with the Microsoft stack including desktops, servers and cloud More ❯

ensuring alignment with the National Institute of Standards and Technology (NIST) Cyber Security Framework. Familiar with UK housing sector regulation, applicable standards and data protection requirements (e.g. GDPR, ISO27001, ISO27002, ISO27701) you'll be responsible cyber assurance to support the security posture across systems and services that support tenants and operations. You'll communicate the local action plan, explain how More ❯

ensuring alignment with the National Institute of Standards and Technology (NIST) Cyber Security Framework. Familiar with UK housing sector regulation, applicable standards and data protection requirements (e.g. GDPR, ISO27001, ISO27002, ISO27701) you'll be responsible cyber assurance to support the security posture across systems and services that support tenants and operations. You'll communicate the local action plan, explain how More ❯

ensuring alignment with the National Institute of Standards and Technology (NIST) Cyber Security Framework. Familiar with UK housing sector regulation, applicable standards and data protection requirements (e.g. GDPR, ISO27001, ISO27002, ISO27701) you'll be responsible cyber assurance to support the security posture across systems and services that support tenants and operations. You'll communicate the local action plan, explain how More ❯

ensuring alignment with the National Institute of Standards and Technology (NIST) Cyber Security Framework. Familiar with UK housing sector regulation, applicable standards and data protection requirements (e.g. GDPR, ISO27001, ISO27002, ISO27701) you'll be responsible cyber assurance to support the security posture across systems and services that support tenants and operations. You'll communicate the local action plan, explain how More ❯

Security Control Tester / Security Control Assessor Our client is a global information services company and is seeking 3 seasoned security experts to lead the assessment and evaluation of security controls across systems and processes. As a Lead Security Control Assessor, you will oversee and conduct security control testing, verifying the design, implementation, and operational effectiveness of controls … CISSP, ISO 27001 Lead Auditor, or equivalent Knowledge of industry standards and frameworks such as NIST 800-53, ISO 27001 / 27002, CIS Controls, COBIT Strong communication and stakeholder management skills Experience with automated testing tools such as Sailpoint, Rapid7, Wiz.io, MS Defender Experience leveraging automation, data-driven More ❯

offensive security tactics, techniques, and procedures and communicate knowledge of the same to other team members . Conduct ad-hoc offensive security testing using industry standard tools and / or internally developed tools. Lead report creation activities including compromise narratives and detailed technical findings with appropriate risk severity ratings, tactical and strategic recommendations to reduce risk levels, peer … at least one scripting language (Python, Ruby, PowerShell, Bash, etc.). Experience with at least one cloud environment (AWS, GCP, Azure). Experience attacking cloud, on-prem and / or hybrid environments from initial access all the way through actions on objective. Nice to have Previous experience of Red Team project delivery to include creation and execution of … as, but not limited to, GPEN, GXPN, GREM, eCPTX, eCPPT, OSCP, OSWE, CISSP, CPSA, CRT, etc. Knowledgeable in Industry Security standards (i.e.: TIBER-EU, CBEST, NIST Cyber Security Framework, ISO27002, etc.). Knowledgeable in Agile project management. Company Benefits Bonus Programme Equity Programme Employee Stock Purchase Plan (ESPP) Private Medical and Dental coverage Mental Health Benefit Programme Group Pension Plan More ❯

Information Security & Risk Specialist (ISO 27001:2022) - Energy Location: Brussels Hybrid: 2 days a week My client is looking for an Information Security Specialist to join the team in Brussels. The successful candidate will have the opportunity to work in a hybrid model, allowing for a blend of remote and in-office work to support a … equivalent are considered a strong asset. Proven experience in implementing and monitoring Information Security Management Systems (ISMS) is essential. Strong knowledge of information security standards such as ISO 27001:2022, ISO 27002. Technical expertise … in security technologies such as cryptography, network security, intrusion detection, access control models, authentication mechanisms, and security policies (GPOs). Experience with security monitoring tools (e.g., SIEM, IDS / IPS). Strong analytical and risk management skills, with the ability to assess and mitigate security risks. Strong experience in security governance, risk assessments, and project coordination. Familiarity with More ❯

Active Directory, and Azure AD Ability to understand and articulate interoperability between technologies and design pragmatic security solutions for the bank Effective collaboration with internal and external SMEs / partner organizations Experience with frameworks such as ISO 27001 / 2, SOC, NIST, or COBIT About You Skills Recognized leading security qualification or More ❯

reviews and ensure secure-by-design principles. Conduct threat modelling exercises to identify and mitigate potential risks. Ensure compliance with security regulations such as ISO27001, NIST 800-30 / 37 / 53, JSP 440, 604, and Defence Standards. Develop and maintain security documentation (e.g., RMADS, Security Assurance Documents, Security Management Plans). Conduct penetration testing, vulnerability … assessments, and remediation activities. The Person Key Skills & Experience: Strong knowledge of risk management frameworks and methodologies (ISO 27001 / 2, ISO27005 / 31000, NIST 800-30, NIST 800-53). Experience with defence and government security standards (JSPs, Def Stan 05-138 / 139). Proficiency in security testing More ❯

services in line with design and security policies. Monitoring and administering the installation and integration of corporate network communications, including routers, switches, firewalls, DMZ, servers, telephony and LAN / WAN communication services. Managing the IP space across the organisation ensuring VLANs, IP Subnet, DNS, DHCP, VPNs, and VoIP traffic is well designed, secure and optimised. Ensuring best practices … Planning lifecycle renewals, 'hotswap' procedures and emergency hardware failure protocols. Providing regular service status updates to line management and agree and monitor service availability targets. Ensuring the active / active WAN bandwidth and connectivity services are sufficient, balanced and perform efficiently. Planning and testing failover of critical operational services. Researching latest networking developments and recommend any actions that … is preferred. Experience in a Technical IT role maintaining secure networks in a MS Windows environment in a multi-disciplined organisation. Expert knowledge of and experience in LAN / WAN / VLAN communications, VPN configuration and enterprise wireless networking. Experience of Dell switches with fibre is preferable. CCNA / CCNP accreditation is a bonus More ❯

improvement and knowledge sharing across teams. What We’re Looking For Technical Experience & Knowledge Experience with risk management frameworks and methodologies such as ISO / IEC 27001 / 2, ISO27005 / 31000, NIST 800-30, NIST 800-53. Strong understanding of security standards and frameworks … including OWASP, Secure by Design principles, and MOD-specific guidelines (e.g., JSP, Def Stan 05-138 / 139). Familiarity with HMG security principles and assurance frameworks is advantageous. Comfortable using threat modelling tools and implementing mitigation strategies. Experience with NIST standards. (this is an absolute must) Key Competencies Strong communicator with the ability to present complex information More ❯

design). Perform security code reviews, provide guidance on secure libraries and frameworks. Standards & Compliance Ensure products meet regulatory and defence standards (ISO 27001 / 27005, NIST 800-30 / 53, JSP 440 / 604, Def Stan 05-series). Lead the creation and maintenance of security documentation (RMADS, Security … Testing & Assurance Design and execute penetration tests and automated vulnerability scans; validate fixes. Oversee third-party security assessments as required. Continuous Improvement Drive security tooling and automation (CI / CD integration, SAST / DAST). Stay ahead of emerging threats and security technologies; evangelise best practices across teams. Qualifications & Experience Proven experience (5+ years) in product … or application security within defence, government, or security-cleared environments. Deep knowledge of risk management frameworks (ISO 27001 / 2 / 5 / 31000, NIST 800-series) and Defence Standards (JSPs, Def Stan 05-138 / 139). Hands-on experience with security testing tools and techniques (SAST More ❯

or similar technical consulting role, ideally within an MSP / Reseller Strong understanding of cybersecurity technologies and frameworks (e.g., SSE, SIEM, SASE, MDR / EDR, ISO27002, NIST) Confident in leading technical customer conversations, developing tailored solutions, and producing supporting documentation Relevant vendor certifications and / or experience working with endpoint protection and incident response More ❯