load balancer automated and manual assessment to deter and prevent exposure to cyber-attacks. PRIMARY RESPONSIBILITIES: Support the FAP by utilizing applicable DOD STIGs, NIST, DISA applicable orders, and NSA policy, guidelines, and regulations. Identify misconfigurations, conflicting rules, security gaps, firewall and load balancer security issues, optimize rule-sets, andmore »
experience in Cyber Assurance-based roles 👉Strong experience with security policies and frameworks (e.g. ISO27001, CIS, CAF) 👉A huge bonus would be experience with NIST 800-53 👉Strong experience with risk/security assessments 👉A solid background working within Defence/MOD/NATO 👉Must be a Sole British Nationalmore »
audit, and risk management. Good exposure to and experience of carrying out security reviews against recognised security control frameworks such as ISO27017/27001, NIST CSF, or PCI-DSS. Ability to evaluate the adequacy of cloud security controls, and how they are applied in a business context. Familiarity and use … Compliance Portal/Purview, Azure Information Protection (AIP), Azure Security Centre. Experience of carrying out security reviews against recognised security control frameworks such as NIST CSF. Effective interpersonal skills to engage and collaborate with multiple internal and external stakeholders. For any further queries regarding the role, please contact Danny Palmer more »
Chicago, Illinois, United States Hybrid / WFH Options
Request Technology
and CI/CD pipeline etc. Experience with distributed message brokers Kafka, RabbitMQ, ActiveMQ, Amazon Kinesis, etc. Familiarity with security standards such as the NIST CSF Related certifications Responsibilities Engineer and maintain Lab environments in Public Cloud and Data Centers using Infrastructure as Code techniques Collaborate with Engineering, Architecture andmore »
secure software development lifecycle Experience of working in public cloud environments (GCP, Azure & AWS) Knowledge of security frameworks andstandards such as OWASP andNIST Experience with programming languages such as Python, Java and .NET If you are interested in this position, please apply below. Reperio Human Capital acts as more »
You will be contributing to security considerations and controls in the design, development and integration of network infrastructures. Experience with Secure by Design andNIST methodologies is imperative to this role. Essential experience required for the Security Architect role; + Experience designing and documenting security solutions + Security design principles more »
Compliance Team's service offerings. The ideal candidate will have a strong background in ISO 27001 implementation and auditing, as well as expertise in NIST standards. Role Overview: As part of the Information Security & Compliance team, you will play a key role in supporting and advancing the Information Security program … and the clients they work with. Key Responsibilities: Contribute to the successful completion of security audits such as ISO 27001, ISO 27701, ISO 20000, NIST-CSF, and IASME Governance. Conduct and document internal and external audits Hands-on involvement in implementing and auditing ISO 27001 standards. Manage Third Party Risk more »
e.g.: XSS, CSRF, SQL injection, cookie/header/encoding manipulation, input/output validation, session replay). General knowledge of security industry standards (NIST, PCI, ISO), best practices (ITIL), regulations (DPA), news, and other relevant Cyber Security information. To be able to interpret business, technologyand threat drivers, andmore »
Employment Type: Permanent, Part Time, Work From Home
of testing efforts and the technical nuances of vulnerabilities. Ensure that all findings are documented following industry best practices and organizational standards (e.g., OWASP, NIST). Present findings and mitigation strategies to clients, stakeholders, and internal teams through both written reports and verbal presentations. Continuously update templates, frameworks, and methodologies more »
South Yorkshire, United Kingdom Hybrid / WFH Options
Som3
the infosec program. Responsibilities: Guaranteeing the protection of information assets and technologies Involvement in completion of security related audits such as ISO27001, ISO27701, ISO20000, NIST-CSF, IASME Governance Conduct and document internal audits for both the company and clients Hands-on experience in implementing and auditing ISO27001. Delivering security awareness … experience as well as InfoSec Operations experience Experience contributing to an Information Security Management System (ISMS) certified to ISO27001 standards Proven experience using the NIST framework. CISSP certification. Good knowledge of the Cyber Essentials Plus Scheme as well as UK & EU General Data Protection Regulation (GDPR) and the Data Protection more »
access management, encryption, and network security. Support the development and enforcement of cloud security policies, standardsand procedures. Ensure alignment with industry standards (e.g., NIST, CIS), regulations, and best practices. Monitor cloud environments for security incidents and vulnerabilities.Support the development and maintenance of incident response and disaster recovery plans for … Security at Sky and in establishing and maintaining relations with stakeholders across multiple departments within an Enterprise environment. An understanding of security frameworks e.g., NIST, ISO27001. Team overview Cyber Security Our products, platforms and technologies are constantly evolving thats why keeping Sky safe from cyber-attacks is one of our more »
including but not limited to: Security governance and risk management approaches, tools, and techniques. Threat modelling (e.g. STRIDE) and socio-technical risk assessment (e.g. NIST 800-30) methodologies. Attack classification and characterisation frameworks (e.g. MITRE ATT&CK) Computer, Network and Cloud Security architectures and controls, System Hardening, Secure Boundary Protection … Transit, Public Key Infrastructure (PKI)), Security Monitoring and System Security Audit. Nationaland international security standards including the International Standards Organisation (ISO) 27000 series, NIST Cyber Security Framework, Risk Management Framework, and Special Publication 800 Series, NCSC Cyber Assessment Framework, and other industry frameworks. Familiarity with NCSC and industry best more »
management practices. Engage in penetration testing using industry-standard tools such as Nessus and Qualys, ensuring compliance with key security standards (Cyber Essentials Plus, NIST, ISO 27001, GDPR). Apply your extensive knowledge of infrastructure technologies, including Windows Server, Linux, and databases, to address complex security vulnerabilities. Manage relationships with … of penetration testing methodologies and familiarity with tools like Nessus and Qualys. Strong knowledge of key security standardsand regulations, including Cyber Essentials Plus, NIST, ISO 27001, and GDPR. Excellent analytical skills for resolving complex vulnerabilities, with a broad technical background in infrastructure technologies. Outstanding organisational skills and the ability more »
management practices. Engage in penetration testing using industry-standard tools such as Nessus and Qualys, ensuring compliance with key security standards (Cyber Essentials Plus, NIST, ISO 27001, GDPR). Apply your extensive knowledge of infrastructure technologies, including Windows Server, Linux, and databases, to address complex security vulnerabilities. Manage relationships with … of penetration testing methodologies and familiarity with tools like Nessus and Qualys. Strong knowledge of key security standardsand regulations, including Cyber Essentials Plus, NIST, ISO 27001, and GDPR. Excellent analytical skills for resolving complex vulnerabilities, with a broad technical background in infrastructure technologies. Outstanding organisational skills and the ability more »
continuous improvement for information security. Evaluate and assess cyber security controls across the business and its third party vendors to ensure compliance with the NIST Cyber Security Framework (CSF). Conduct comprehensive risk assessments using the NIST CSF. Use risk management techniques to identify cyber threats, risks and issues in … on experience conducting cyber risk assessments and developing cyber risk mitigation strategies. Hands-on knowledge and experience working with recognised security frameworks such as, NIST CSF, ISO27001 etc. Hands-on experience managing and maintaining cybersecurity compliance with regulatory frameworks such as FCA, PRA, NYDFS etc. If this sounds like your more »
/or operational leadership experience. 10+ years experience in USG cyber risk management, assessments and authorization (A&A), certification & accreditation (C&A) and using NIST Special Publications (SP) (e.g.: SP800-30, SP800-37, SP800-53, etc.) 10+ years experience in designing and engineering enterprise IT solutions within the USG using … NIST SP (e.g.: SP800-60, SP800-64, SP800-80, SP800-122, SP800-137, SP800-146, SP800-160, SP800-204, SP800-207, SP800-213, etc.) Current Certified Information Systems Security Professional (CISSP) certification. Clearance: All Department of Homeland Security CBP SOC employees are required to favorably pass a 5-year (BI more »
Spalding, Lincolnshire, East Midlands, United Kingdom Hybrid / WFH Options
InterGen (UK) Ltd
The Role - Remote with travel We have a brand-new role for a Cyber Security Engineer to join our IT Team! This is an exciting new opportunity to provide support in the cyber security space, to help us drive our more »
management practices. Engage in penetration testing using industry-standard tools such as Nessus and Qualys, ensuring compliance with key security standards (Cyber Essentials Plus, NIST, ISO 27001, GDPR). Apply your extensive knowledge of infrastructure technologies, including Windows Server, Linux, and databases, to address complex security vulnerabilities. Manage relationships with … of penetration testing methodologies and familiarity with tools like Nessus and Qualys. Strong knowledge of key security standardsand regulations, including Cyber Essentials Plus, NIST, ISO 27001, and GDPR. Excellent analytical skills for resolving complex vulnerabilities, with a broad technical background in infrastructure technologies. Outstanding organisational skills and the ability more »
for providing technical consultancy and security architecture services. You will also support the wider team in delivering GRC engagements (such as ISO 27001 andNIST CSF), although the core focus is on your technical skill set and delivery. Key Responsibilities: Design, implement, and oversee technical security architecture for various environments. … SABSA Chartered Architect , or OT are a bonus but not essential. Experience or certifications in CISSP , CISM , or GRC frameworks like ISO 27001 andNIST CSF are desirable but not mandatory. What We Offer: A competitive package for the right candidate. Not your typical consulting firm – a culture of flexibility more »
Manchester Area, United Kingdom Hybrid / WFH Options
Maxwell Bond
SIEM/M365/ISO 27001/PCI-DSS/NIST SIEM/M365/ISO 27001/PCI-DSS/NIST Job: Information Security Analyst Salary: £65,000 PA + 10% bonus Location: Manchester/Hybrid Maxwell Bond are working in partnership with a market-leading fintech business in … require more information, please contact Dan Rowland on 0161 840 1021 or dan.rowland@maxwellbond.co.uk SIEM/M365/ISO 27001/PCI-DSS/NIST SIEM/M365/ISO 27001/PCI-DSS/NISTmore »
GRC professional who enjoys working with multiple clients on GRC projects. Key Responsibilities: Conduct and support assessments and audits to ensure adherence to ISO27001, NIST CSF, and other relevant frameworks, while identifying areas for enhancement and providing clients with an analysis of their compliance status. Develop and implement incident response … of experience in a similar GRC role (including policy/documentation reviews & auditing). Proven track record in successfully maintaining information security standards (ISO27001, NIST, etc.). Excellent written and oral communication skills for liaising with external stakeholders conveying complex compliance information. Ability to analyse data, identify key issues, andmore »
Position: Information Security Manager Location: London Salary: £55,000 About Us: We are working with a leading player in the Legal Sector who are on the hunt for an experienced and meticulous Information Security Manager to join their ranks in more »
Position: Information Security Manager Location: London Salary: £55,000 About Us: We are working with a leading player in the Legal Sector who are on the hunt for an experienced and meticulous Information Security Manager to join their ranks in more »
utilise your skills and experience in Cybersecurity? Are you passionate about providing technical expertise on Information Security Management System (ISMS) based on ISO 27001, NIST, identifying areas for continual improvement? Join us as an ISO 27001 Lead Auditor! Careers at TCS: It means more TCS is a purpose-led transformation … with Information Security Management policies, procedures, guidelines, and processes. Key responsibilities: Conduct audits of clients' Information Security Management System (ISMS) based on ISO 27001, NIST, and other applicable standards to assess compliance and identify areas for continual improvement. Conduct independent and objective assessments of the ISMS, evaluating the design, implementation … in ISO 27001/2 standards for consulting, collaboration, implementation & auditing is highly desirable. A strong understanding of information security frameworks like ISO 27001, NIST Cybersecurity Framework (CSF), GDPR, CIS or similar. Experience planning, preparing, and delivering internal and external audits, including Compliance Audits. Experience and knowledge of Cyber/ more »
Newcastle upon Tyne, Tyne and Wear, Tyne & Wear, United Kingdom
Harvey Nash
The Opportunity: This is an excellent opportunity to join a UK based leading professional services organisation. In this role, you will have the chance to shape and influence the organisation's security landscape, working closely with senior leadership to ensure more »