201 to 225 of 673 Permanent ISO/IEC 27001 Jobs

security, identity management, cloud security, and endpoint security including knowledge of firewalls, intrusion detection systems, encryption, and other security technologies and industry standards and frameworks such as NIST, ISO 27001, and IEC 62443. Effective communication skills so that you can explain complex security concepts to non-technical stakeholders and for collaborating with other IT … and analytics, cyber security and more. Flexible benefits to fit your life Enjoy discounts on private healthcare and gym memberships. Wellbeing benefits like a free online GP and 24 / 7 counselling service. Interest-free loans on tech and transport season tickets, or a new bike with our Cycle to Work scheme. As well as generous family entitlements such … paternity leave. Work with an equal opportunity employer SSE will make any reasonable adjustments you need to ensure that your application and experience with us is positive. Please contact / 01738 xxxxxx to discuss how we can support you. We're dedicated to fostering an open and inclusive workplace where people from all backgrounds can thrive. We create equal More ❯

prioritisation of functional and non-functional requirements across the UK business units. * Translate approved requirements into clear user stories, detailed acceptance criteria, and well-defined delivery plans within Jira / Confluence. * Portfolio & Road-map Planning: * Build and maintain a consolidated UK IT demand portfolio, strategically balancing new initiatives, essential technical debt reduction, and business-as-usual (BAU) activities. * Facilitate … the UK. * Demonstrable success in managing technology initiatives within complex, multi-platform environments (experience in e-commerce, shipping, or logistics is highly advantageous). * Strong practical knowledge of Agile / Scrum methodologies, effective backlog management, proficient use of Jira / Confluence, understanding of API concepts, and awareness of UX / UI best practices. * Hands-on experience establishing … e.g., sales performance, margin improvement, EBITDA contribution). Education & Certifications * Bachelor's degree in Computer Science, Information Systems, Business, or a related field. * Desirable: * Relevant certifications such as Agile / Scrum (e.g., PSM, CSM), ITIL, Prince2, security certifications (e.g., CISSP), or ISO 27001 awareness. Key Performance Indicators (KPIs) * Project delivery performance (on-time / More ❯

SUMMARY: We are seeking a Subject Matter Expert in Network hardware and software configurations and support. The ideal candidate will be highly skilled in troubleshooting & supporting end-user and / or systems requiring timely solutions. Expertise in LAN, WAN, MAN, load balancing & Wireless administration. Demonstrated knowledge utilizing network diagnostic and management tools to include packet and traffic analysis network … to incorporate into IT solutions. Demonstrated expertise in technical communications with a strong desire to achieve customer satisfaction; will work alongside USSS staff from the Network, Cyber Security and / or Server branches to provide technical support. Demonstrated expertise in Software Defined Networking product and support Demonstrated expertise in hyperconverged network product and support. Demonstrated experience as a technical … to problems of unusual complexity which require a high degree of ingenuity, creativity, and innovation. Challenges are frequently unique and solutions may serve as precedent for future decisions. • Discretion / Latitude - Works under consultative direction toward long-range goals and objectives. Assignments are often self-initiated. Virtually self-supervisory. • Impact - Decisions effect the financial, employee, or public relations posture More ❯

the spirit of regulatory frameworks. Key Areas of Responsibility: Regulatory Implementation & Frameworks Assist in establishing a comprehensive resilience framework that meets DORA standards and other recognised guidelines (e.g. ISO 22301, ISO 27001, NIST). Draft internal controls, policies, training content, and risk assessment methodologies. Contribute to core DORA workstreams such as ICT risk management More ❯

skills and experience Strong stakeholder management skills A strong understanding of enterprise ICT and security principles A strong understanding of cloud security concepts and technologies Understanding of the CI / CD process and security integrations Audit experience (eg ISO 9001 / 27001) is desirable Excellent communication and collaboration skills What we offer A competitive More ❯

continually enhancing our Governance, Risk, and Compliance approach to help secure BASF. WHAT YOU OFFER experience of international Cyber Security standards and regulations (such as BSI IT Grundschutz, ISO 27001, NIST SP 800-34, ITIL, GDPR, NIS2, TISAX, DORA, etc.) knowlegde in dealing with lawyers and legal experts from other entities preferably 5-6 years of More ❯

continually enhancing our Governance, Risk, and Compliance approach to help secure BASF. WHAT YOU OFFER experience of international Cyber Security standards and regulations (such as BSI IT Grundschutz, ISO 27001, NIST SP 800-34, ITIL, GDPR, NIS2, TISAX, DORA, etc.) knowlegde in dealing with lawyers and legal experts from other entities preferably 5-6 years of More ❯

continually enhancing our Governance, Risk, and Compliance approach to help secure BASF. WHAT YOU OFFER experience of international Cyber Security standards and regulations (such as BSI IT Grundschutz, ISO 27001, NIST SP 800-34, ITIL, GDPR, NIS2, TISAX, DORA, etc.) knowlegde in dealing with lawyers and legal experts from other entities preferably 5-6 years of More ❯

continually enhancing our Governance, Risk, and Compliance approach to help secure BASF. WHAT YOU OFFER experience of international Cyber Security standards and regulations (such as BSI IT Grundschutz, ISO 27001, NIST SP 800-34, ITIL, GDPR, NIS2, TISAX, DORA, etc.) knowlegde in dealing with lawyers and legal experts from other entities preferably 5-6 years of More ❯

Will be required to travel to client sites occasionally / SC CLEARED OR CLEARABLE* Our client is a Digital Transformation and Cyber Security Consultancy and are currently looking for a Cyber Security Consultant to join their dynamic team! They offer innovative digital and cyber security solutions to their clients who are from the public and private sectors. You'll … aligned with industry standards (e.g., ISO 27001, NIST). Assist in the deployment, configuration, and management of security infrastructure and technologies, including firewalls, intrusion detection / prevention systems, and secure network architectures. Provide guidance and support on Azure security practices, leveraging expertise in Microsoft Azure security frameworks and best practices. Stay updated with the latest … Energy or Construction industry projects is a plus. Experience in writing technical proposals along with other teams to deliver robust statement of works for client sign off. CERTIFICATIONS: CCNP / CCNA is nice to have. CREST / OSCP is nice to have. Microsoft and / or other cloud providers. SKILLS: Working knowledge of cloud security architecture, specifically More ❯

best practice (e.g., NIST CSF, OWASP SAMM), and compliance frameworks (SOC 2, ISO 27001, GDPR). Secure SDLC & DevSecOps - Build and maintain guardrails for static / dynamic analysis, container and IaC scanning, SBOM management, and supply-chain security; automate enforcement through CI / CD pipelines. Cloud & Infrastructure Security - Design and implement robust controls for … AWS (primary) and Azure / GCP (secondary): IAM, network segmentation, KMS, secrets management, WAF, EDR, and zero-trust patterns. Identity & Access Management (IAM) - Own enterprise IAM strategy, including RBAC, least-privilege provisioning, SSO, federation (OIDC / SAML), and privileged-access workflows. Monitoring, Detection & Response - Define audit logging, metrics, and telemetry requirements; integrate with SIEM / SOAR to … can be an enabler to success as an engineer. Experience working within high-sensitivity data environments Strong awareness of compliance standards and the requirements on software teams, especially for ISO27001 and SOC2. FedRAMP experience advantageous. Demonstrated experience performing threat modelling, penetration test scoping, and vulnerability management. Deep understanding of IAM concepts, encryption / key-management, and secure network design. More ❯

ownership of your work - through the software development lifecycle. Analyse, plan, design, implement, test, deploy, monitor. Follow the team's guidelines - deliver high-quality software. Working with others - provide / receive guidance, pair program, provide feedback or opinion on subjects, advise or be advised by other team members. Work as a part of a team - and work productively with … the wider company. Awareness of the sensitive nature of our data - following our data protection guidelines. Being fully aware of our ways of working - within our regulatory standards (ISO 13485, ISO 27001). ️ We want to hear from … you if you Have experience in the following tech stack: Frontend: React, State Management, React Native (optional but advantageous) Backend: Node, JavaScript, TypeScript Databases: MySQL Infrastructure: AWS (EC2, SNS / SQS, RDS, ES), Linux Docker Have experience in: Familiarity with Publish-Subscribe pattern Experience of working with Jira, BitBucket and Git Experience in working within a regulated SDLC process More ❯

assessments and audits of cloud infrastructure and applications. Respond to security incidents and vulnerabilities in the cloud. Collaborate with DevOps and IT teams to integrate security controls into CI / CD pipelines and cloud deployments. Manage output from cloud-native security tools (e.g., AWS GuardDuty, Azure Defender). Ensure compliance with industry regulations and standards (e.g., ISO … skills with the ability to explain complex security issues to non-technical stakeholders. Knowledge of Zero Trust architecture and security frameworks (e.g., MITRE ATT&CK). Experience in red / blue team exercises. Familiarity with cloud-native security tools and infrastructure-as-code (e.g., Azure Policy, ARM / Bicep, Terraform). Experience of the Specialty and Lloyd's … / Companies market insurance industry Experience in regulated industries. Qualifications Education & Certifications: Bachelor's degree in computer science, Information Security, or a related field. Relevant certifications such as: Certified Cloud Security Professional (CCSP) AWS Certified Security - Specialty Microsoft Certified: Azure Security Engineer Associate CISSP, CISM, or equivalent What We Offer The Tokio Marine HCC Group of Companies offers a More ❯

security breaches. Provide security guidance and training to teams across the organization. Key Skills & Experience: Strong knowledge of security frameworks (ISO 27001, NIST 800-30 / 53, OWASP) . Experience with risk management methodologies and compliance with MOD and HMG security standards (JSP, Def Stan 05-138 / 139). Proficiency in security threat More ❯

security breaches. Provide security guidance and training to teams across the organization. Key Skills & Experience: Strong knowledge of security frameworks (ISO 27001, NIST 800-30 / 53, OWASP) . Experience with risk management methodologies and compliance with MOD and HMG security standards (JSP, Def Stan 05-138 / 139). Proficiency in security threat More ❯

organization's information security strategy and framework for Europe. This critical role involves overseeing all aspects of information security, including a strong focus on application security, ensuring compliance with ISO27001 standards, financial services regulations, and other relevant legal and contractual requirements. As a senior leader of the Enterprise Information Security team, the role will also be accountable to provide information … Governance : Develop, implement, and maintain a comprehensive information security strategy aligned with business objectives and risk tolerance. Establish and enforce information security policies, procedures, and standards in accordance with ISO27001, customer requirements, relevant legislation, and application security best practices. Communication : Develop and maintain an organization-wide security culture. Build and implement a company-wide communication strategy to promote information security … posture, including application security vulnerabilities and risks, risks, and compliance status to the Trayport Board, other internal sub-Boards, and relevant stakeholders. Compliance and Assurance : Ensure ongoing compliance with ISO27001 certification requirements, including managing audits, reviews, and continual improvement of the Information Security Management System (ISMS). Stay abreast of and ensure adherence to regulations (e.g., GDPR, NIS2, DORA) and More ❯

intelligence and improve the organization's defences. Policy and Compliance: Establish and enforce security policies, standards, and guidelines to ensure compliance with regulatory requirements and industry frameworks (e.g., ISO 27001, NIST, GDPR). Conduct regular audits and assessments to identify gaps and ensure adherence to security policies. Reporting and Communication: Provide regular updates to senior leadership More ❯

Designing, implementing, and managing network security architectures to protect against cyber threats ️ Monitoring network traffic, identifying potential vulnerabilities, and mitigating security risks ️ Configuring and maintaining firewalls, VPNs, intrusion detection / prevention systems (IDS / IPS), and other security devices ️ Conducting regular security audits and vulnerability assessments on network infrastructure ️ Collaborating with IT and security teams to develop and … latest network security trends, threats, and technologies ️ Providing guidance and training to teams on best practices for network security ️ Ensuring compliance with industry standards and regulations (e.g., GDPR, ISO 27001, NIST) What … We're Looking For: ️ Proven experience as a Network Security Engineer or in a similar role focused on network security ️ Strong knowledge of network security protocols, firewalls, VPNs, IDS / IPS, and encryption technologies ️ Experience with network monitoring tools (e.g., Wireshark, SolarWinds, Nagios) and security incident management tools ️ Proficiency in network administration (e.g., TCP / IP, routing, switching More ❯

Sentinel - essential Microsoft Purview, Compliance Manager and related compliance tools Entra ID (Azure AD), Conditional Access and Identity Governance Data Loss Prevention, sensitivity labels and insider risk management ISO 27001, SOC 2, GDPR and NIS2 frameworks PowerShell … scripting and use of Microsoft Graph API Working across cloud, infrastructure and application teams Certifications required: AZ-500 SC-100 (or working towards) One or more of MS-500 / SC-400 / SC-900 The following are desired: CISSP, CISM, CCSP Interested? Please apply below. Senior Cloud Security Engineer, Azure Security Engineer, Azure Security Consultant, Cloud Security More ❯

Sentinel - essential Microsoft Purview, Compliance Manager and related compliance tools Entra ID (Azure AD), Conditional Access and Identity Governance Data Loss Prevention, sensitivity labels and insider risk management ISO 27001, SOC 2, GDPR and NIS2 frameworks PowerShell … scripting and use of Microsoft Graph API Working across cloud, infrastructure and application teams Certifications required: AZ-500 SC-100 (or working towards) One or more of MS-500 / SC-400 / SC-900 The following are desired: CISSP, CISM, CCSP Interested? Please apply below. Senior Cloud Security Engineer, Azure Security Engineer, Azure Security Consultant, Cloud Security More ❯

address, and continuously improve security control effectiveness. Oversee the management of external security assessments and ensure remediation plans are executed effectively. Maintain relevant security certifications such as Cyber Essentials / Plus and support the business in aligning with broader security frameworks (e.g., NIST CSF, CIS Controls). Awareness & Security Culture Lead internal training, briefings and onboarding sessions to build … experience in a technical security role, ideally within complex or high-risk operational environments. Practical experience with cloud platforms (e.g. AWS, Azure), endpoint protection, IAM, vulnerability management, and SIEM / logging tools. Strong understanding of cyber threats, insider risk, security engineering principles and network security. Demonstrated experience managing the response to cyber incidents. Familiar with automating tasks with Python … 27001 beneficial but not essential. Understanding of UK data protection law and its practical application within a security programme. Security certifications (e.g. CISSP, CISM, CCSP, GIAC / SANS, AWS Security Specialty, or similar) are a plus. Ability to build effective working relationships across technical and non-technical stakeholders. Strong analytical, communication, and problem-solving skills. Experience More ❯

reduce manual intervention. Support the company in integration of new technologies. Work with our IT security and compliance team to improve IT security and maintain the company's ISO 27001 certification, Cyber Essentials Plus, and BSI C5. Actively participate in on-call and platform service, troubleshooting, resolving issues, and handling escalations to other technical teams, senior More ❯

Team, DevOps, and Compliance Teams to ensure the security of our infrastructure and data. Key Responsibilities: Monitor and analyse security alerts from various tools such as WAF, SIEM, IDS / IPS, firewalls, and endpoint protection platforms. Investigate and respond to security incidents, including containment, eradication, and recovery. Conduct vulnerability assessments and coordinate remediation efforts. Perform threat hunting and behavioural … initiatives (e.g., ISO 27001, NIST, GDPR). Document incidents, procedures, and technical findings clearly and accurately. Ensure timely management and resolution of tickets, both internal / partner and third-party suppliers. Remain up to date with the latest security threats, trends, and technologies. Skill Requirements: Microsoft Defender Extended Detection &Response (XDR): Familiarity with Microsoft Security … Portfolio of products. Network Security: Understanding of TCP / IP, DNS, VPNs, firewalls, and packet analysis (e.g., Wireshark). Threat Intelligence: Use of platforms like MISP, Recorded Future, or ThreatConnect. Vulnerability Management: Experience with tools like Tenable Nessus, Qualys. Scripting &Automation: Proficiency in Python, PowerShell, or Bash for automating security tasks. Cloud Security: Knowledge of MS Azure. Privileged / More ❯

Category: Software Development / Engineering Main location: United Kingdom, England - South West, Gloucester Position ID: J0725-1061 Employment Type: Full Time CGI UK Careers – Your mission found here By playing this video you consent to Google / YouTube processing your data and using cookies – Learn more. Position Description: The Space, Defence and Intelligence business unit in CGI is … candidates will possess a good understanding of engineering principals, and broad understanding of full-stack software technologies, with hands-on expertise in application development, and tooling within a secure / on-prem environment, combined with a passion for application of best practices. Your future duties and responsibilities: • Architect, Build & Operate Cloud Infrastructure Design and deploy scalable, secure, and fault … and shift, re architecture) seamlessly to the cloud with minimal downtime. • Automation & Infrastructure as Code (IaC) Use Terraform, CloudFormation, Ansible, or similar tools to automate cloud resource provisioning, CI / CD pipeline deployments, and configuration management. • Security & Compliance Oversight Implement IAM, encryption, VPC / NSG policies and ensure compliance with standards (e.g. GDPR, ISO 27001 More ❯

pharma environments, manage internal and external audits, and influence the company's quality strategy in collaboration with technical and customer-facing teams. If you are experienced in GxP, ISO, and EU regulatory frameworks, this is your opportunity to make a lasting impact in a high-growth, innovation-focused environment. Accountabilities: Maintain compliance across products and operations, particularly focusing … on EU regulations such as GxP, ISO 9001, and Annex 11. Work closely with Product, Engineering, Quality, and Customer Success teams to ensure the platform meets customer validation and compliance needs. Own and enhance the GxP Package to support clients in achieving faster regulatory approvals and validations. Lead internal audits and prepare the organization for external assessments (e.g. … ISO 9001, ISO 27001, SOC 2 Type II). Ensure the Quality Management System (QMS) is up to date and aligned with evolving industry standards. Act as a point of contact for compliance during sales cycles and customer engagements. Maintain comprehensive documentation and drive cross-functional consistency across regulatory processes. 10+ years of experience More ❯