to gather requirements and translate them into secure technical designs. Evaluate and recommend security products, tools, and technologies. Ensure solutions meet compliance, data privacy, and regulatory requirements (e.g., GDPR, HIPAA, ISO 27001). Support solution implementation teams with architecture guidance and technical documentation. Maintain up-to-date knowledge of emerging security threats and best practices to continuously enhance solution designs. More ❯
slough, south east england, united kingdom Hybrid / WFH Options
TECEZE
and compliance: Build security-by-design into solution proposals; incorporate best practices for data protection, vulnerability management, IAM, SOC/IR readiness, and regulatory requirements relevant to SMBs (e.g., HIPAA, PCI-DSS, GDPR nuances as applicable). Customer engagement and discovery: Conduct customer workshops, requirements gathering, current-state assessments, risk analyses, ROI/tco analysis, and roadmaps that translate business More ❯
with business goals and technical feasibility. Governance & Risk Management Establish best practices for prompt engineering, model safety, bias mitigation, and responsible AI. Ensure compliance with data privacy regulations (GDPR, HIPAA, etc.) and internal governance policies. Define monitoring and observability strategies for GenAI systems in production. Stakeholder Engagement Translate business requirements into technical specifications and solution blueprints. Present architectural decisions andMore ❯
enterprise applications, and endpoint devices Utilise systems management tools such as Google Analytics, or similar for monitoring and asset control Ensure endpoint compliance with healthcare IT security standards, including HIPAAand internal cybersecurity policies Support hardware lifecycle management, including imaging, asset tagging Maintain IT service records via ticketing systems, ensuring SLA compliance and escalation where necessary Assist in the preparation More ❯
the firm, including General Counsel, Information Security, and Emerging Tech Risk teams, helping to shape best practices and ensure compliance with regulations such as UK/EU GDPR, DORA, HIPAA, and EU AI Act. The role offers a dynamic mix of hands-on risk management, internal auditing, and strategic input into global processes. It’s ideal for someone with a … General Counsel on data sourcing and best practice Ideal Profile: 2–5 years’ experience in data protection, risk, or compliance Strong working knowledge of UK/EU GDPR, DORA, HIPAA, and ISO27001 Experience in professional services (law firm experience is a plus) Confident stakeholder engagement and communication skills *Visa sponsorship is not available for this position More ❯
as NIST 800-53 r5, NIST CSF2.0, CIS, ISO27K • Designing solutions related to advisory & consulting engagements around regulatory risk & compliances such as DORA, NIS2, GDPR, SOX ITGC, PCI-DSS, HIPAA, Data Privacy, NHS, FFIEC etc. • Develop knowledge base, re-usable components for GRC advisory services. • Responsible for development and enhancements of GRC services, team and delivery capabilities. • Manage local partners … technology risk assessments. ISO 27K, NIST, AI Governance, CIS etc. • Good compliance understanding of industry domains such as BFSI – (SOX, FFIEC, PCI-DSS, BASEL, MAS etc.), Healthcare & Life-sciences – (HIPAA, Hi-Trust, FDA CFR, GxP Compliance), Telecom, Retail, Data Privacy (GDPR, CCPA) Energy & Utilities (NERC, FERC) Information Security (ISO 27000, NIST, CIS) TPRM • Business Resiliency & Cyber Recovery, ZTA • GRC Project More ❯
