51 to 72 of 72 ISO/IEC 27002 (supersedes ISO/IEC 17799) Jobs in England

Lutine Bell are working with a leading Insurance organisation who are looking to appoint a Technology Risk / Information & Cyber Security Executive to join the wider Risk function. You will ensure compliance with regulatory and legal obligations while managing technology and information security risks across the business. In this role, you’ll collaborate with teams to strengthen operational … resilience, evaluate third-party technology providers, and support incident response and investigations. Experience: Cyber Security Knowledge – Solid understanding of cyber / information security frameworks such as NIST and ISO / IEC 27002:2022 Strong Communication Skills – Ability to translate technical concepts into accessible language for a More ❯

you will collaborate with teams to strengthen operational resilience, evaluate third-party technology providers, and support incident response and investigations. Experience: Cyber Security Knowledge: Solid understanding of cyber / information security frameworks such as NIST and ISO / IEC 27002:2022. Strong Communication Skills: Ability to More ❯

Social network you want to login / join with: Information Technology Risk Manager, East Sussex Client: Lutine Bell Location: East Sussex, United Kingdom Job Category: Other EU work permit required: Yes Job Views: 1 Posted: 25.05.2025 Expiry Date: 09.07.2025 Job Description: Lutine Bell is working with a leading insurance organization seeking to appoint a Technology Risk Manager to … You will collaborate with teams to strengthen operational resilience, evaluate third-party technology providers, and support incident response and investigations. Experience: Cyber Security Knowledge: Solid understanding of cyber / information security frameworks such as NIST and ISO / IEC 27002:2022. Strong Communication Skills: Ability to More ❯

of all mitigating controls to both Business and Technology risk committees as appropriate. The scope of this role covers all Technology Risks; IT Strategy and Architecture, Service Management / Stability, Capacity / Capability Management, Disaster Recovery and Crisis Management. This role will also integrate the output from the Information Security Risk and Transformation Risk teams into … the overall risk reporting for each Business Unit. You’ll help us make health happen through: Interpreting and communicating to the Business Unit changes to Risk Polices, Business / IT Strategy, legislation that impact the existing Risk and Control Framework. Identifying and assessing Technology Management and Information Security issues so that control environments are properly defined and residual … in Information Technology audits or IT Assurance (e.g., CISSP, CISM, CISA, CRISC, CCAK) A sound understanding of British and International Security Standards (e.g., ISO / IEC 27001, ISO / IEC 27002, NIST, CIS-20, PCIDSS) and the UK More ❯

of all mitigating controls to both Business and Technology risk committees as appropriate. The scope of this role covers all Technology Risks; IT Strategy and Architecture, Service Management / Stability, Capacity / Capability Management, Disaster Recovery and Crisis Management. This role will also integrate the output from the Information Security Risk and Transformation Risk teams into … the overall risk reporting for each Business Unit. You’ll Help Us Make Health Happen Through Interpreting and communicating to the Business Unit changes to Risk Polices, Business / IT Strategy, legislation that impact the existing Risk and Control Framework. Identifying and assessing Technology Management and Information Security issues so that control environments are properly defined and residual … in Information Technology audits or IT Assurance (e.g., CISSP, CISM, CISA, CRISC, CCAK) A sound understanding of British and International Security Standards (e.g., ISO / IEC 27001, ISO / IEC 27002, NIST, CIS-20, PCIDSS) and the UK More ❯

improvement and knowledge sharing across teams. What We’re Looking For Technical Experience & Knowledge Experience with risk management frameworks and methodologies such as ISO / IEC 27001 / 2, ISO27005 / 31000, NIST 800-30, NIST 800-53. Strong understanding of security standards and frameworks … including OWASP, Secure by Design principles, and MOD-specific guidelines (e.g., JSP, Def Stan 05-138 / 139). Familiarity with HMG security principles and assurance frameworks is advantageous. Comfortable using threat modelling tools and implementing mitigation strategies. Experience with NIST standards. (this is an absolute must) Key Competencies Strong communicator with the ability to present complex information More ❯

to help maintain, operate and scale the cloud infrastructure that will support the Barts Health Data Platform which will be used by the DSIT funded PharosAI project (https: / / www.pharosai.co.uk / ). This is a role that will expose you to world-leading research relating to patient and health care data - implementing the … helping to support researchers and clinicians to develop and implement exciting data analysis projects to personalise the treatment of patients. For more information on the work see https: / / data.bartshealth.nhs.uk / The successful candidate will have: Extensive experience of working with cloud services ideally within the NHS, academia or in the private sector. … of the key tasks and responsibilities of the role, and the person specification outlines the qualifications, skills, experience, and knowledge required. For both documents, please view the attachment / s below. Person Specification Experience Substantial experience in leading the analysis of different complex technical / architectural solutions (e.g., cost, time, complexity, suitability, usability, etc.), around unique More ❯

to help maintain, operate and scale the cloud infrastructure that will support the Barts Health Data Platform which will be used by the DSIT funded PharosAI project (https: / / www.pharosai.co.uk / ). Job Summary Barts Health is one of the largest NHS trusts in the country, and one of Britain's leading healthcare … to help maintain, operate and scale the cloud infrastructure that will support the Barts Health Data Platform which will be used by the DSIT funded PharosAI project (https: / / www.pharosai.co.uk / ). This is a role that will expose you to world-leading research relating to patient and health care data - implementing the … helping to support researchers and clinicians to develop and implement exciting data analysis projects to personalise the treatment of patients. For more information on the work see https: / / data.bartshealth.nhs.uk / The Successful Candidate Will Have: Extensive experience of working with cloud services ideally within the NHS, academia or in the private sector. More ❯

px. This may include working as part of a larger program of works ranging from the ICT Annual Delivery Plan to business growth initiatives such as site transitions / acquisitions in the UK and Abroad. In this role, you will serve as a pillar of px's Information Security program by driving and managing InfoSec activities, ensuring success … twice-yearly development and performance reviews to help maintain & develop your contributions and competence. Degree in relevant ICT subject Previous experience as an Information Security Manager leading cyber / data security & compliance teams in a similar sized organisation(s). Experience managing an enterprise risk register. Experience … managing InfoSec gathering and reporting metrics. Experience spearheading offensive security activities. Certifications such as CISSP, CISM, CISA, or similar are highly preferred. Experience of Cyber Essentials, NIST, CAFM and ISO27002 standards and a proven track record in delivering against them. What you will receive from us : Contribution towards eye test and glasses Online company discount benefits site including cinema tickets More ❯

understanding of security concepts. Demonstrable expertise in cryptography, certificate management, and networking protocols. Hands-on experience with PKI technologies and standards such as X.509, OCSP, and CRL. Scripting / coding skills in various languages for automation. Knowledge of IT and Cybersecurity frameworks, such as NIST, FIPS, CSF, CIS, ISO 27001 / 2. … Working knowledge of Cloud provider security architecture design patterns, and key control methods - Bring your own key, Hold your own key, partitioned HSMs. Experience with OWASP Web / API vulnerabilities and compensating controls (CSRF, XSS, SQLI, etc.) Understand how business, engineering, IT, and security processes align, and how to research, test, and implement solutions to complex objectives. Hands … on experience in Information Security, specifically in PKI / Cryptography (on-premise and cloud) and secrets management. Experience in building Certificate Policy (CP) and Certificate Practice Statements (CPS). Experience with vendors such as Venafi, Hashicorp, Microsoft, Thales, etc. In-depth knowledge of Certificate Lifecycle Management, PKI Strategy and Design, and PKI Implementation. Experience producing and reviewing Technical More ❯

requests, problem and change tickets via support teams or Jira, including escalations from the business. Responsible for the technical delivery, maintenance, and scalability of security infrastructure, including IDS / NBA, NAC, WAF, content filtering, DLP, and CASB systems. Contribute to the development and maintenance of security policies, standards, procedures, and technical documentation, ensuring compliance. Participate in compliance management … you will need: Understanding of cybersecurity risks and their impact on stakeholders. Experience in IT security infrastructure and engineering. Proven experience with cloud environments such as Azure and / or AWS. Deep knowledge of network protocols, network security, and systems like proxies, SASE, WAF, email security gateways, SSO, CASB, DLP, IDS, IPS, NAC. Knowledge of the financial services … industry and asset management (preferred). Strong understanding of application security and related technologies. Familiarity with OWASP Top 10, SANS Top 20, ISO27001 / 2, and security best practices. Our promise to you: Competitive salary, discretionary bonus, and comprehensive benefits including holiday allowance, pension, healthcare, life assurance, and discounts. Training and internal career progression opportunities, with around More ❯

Clearly communicate risks to technical and non-technical stakeholders. What We're Looking For Essential Experience: Deep understanding of security frameworks: NIST (especially 800-30, 800-53) , ISO27001 / 2, ISO27005, and OWASP. Experience with Secure by Design principles and MOD-specific guidelines (e.g. JSP, Def Stan 05-138 / 139). Familiarity with HMG security More ❯

Clearly communicate risks to technical and non-technical stakeholders. What We're Looking For Essential Experience: Deep understanding of security frameworks: NIST (especially 800-30, 800-53) , ISO27001 / 2, ISO27005, and OWASP. Experience with Secure by Design principles and MOD-specific guidelines (e.g. JSP, Def Stan 05-138 / 139). Familiarity with HMG security More ❯

Clearly communicate risks to technical and non-technical stakeholders. What We're Looking For Essential Experience: Deep understanding of security frameworks: NIST (especially 800-30, 800-53) , ISO27001 / 2, ISO27005, and OWASP. Experience with Secure by Design principles and MOD-specific guidelines (e.g. JSP, Def Stan 05-138 / 139). Familiarity with HMG security More ❯

Social network you want to login / join with: Do you have experience in Security Infrastructure? Do you have experience in Secure by Design? Do you want to work with an industry-leading company? If your answers are yes to these, then this could be the role for you! As the Product Security Architect, you will be working … efforts for security breaches affecting products Knowledge of HMG standards (including MOD-specific JSP, Def Stan 05-138, Def Stan 05-139) An understanding of MOD ISN 23 / 09 Secure by Design Knowledge of security frameworks, such as ISO / IEC 27001, NIST 800-30, NIST … or OWASP Working with risk management frameworks and methodologies (e.g., ISO 27001 / 2, ISO27005 / 31000, NIST 800-30, NIST 800-53) If this all sounds like something you will be interested in then simply apply and we can discuss the opportunity further! #J-18808-Ljbffr More ❯

multiple stakeholders to support continuous improvement of the control testing programme. I am therefore keen to speak with candidates who have: A proven background in Security Controls Assesment / IT Audit for large corporate clients. Professional certifications in CISA, CISM, CISSP, ISO 27001 Lead Auditor, or equivalent experience Familiarity with frameworks such as NIST … ISO 27001 / 27002, CIS, COBIT Strong skills in security control tools like SailPoint, Wiz, or Rapid7 Comfortable using tools like RSA Archer, ServiceNow, Kanban Boards and Jira Adept at working in agile teams and communicating effectively across all levels Knowledge of Excel, Tableau, Alteryx, and PowerBI would be desirable Interested? Apply More ❯

affecting products Your skillset may include: Knowledge of HMG standards (including MOD-specific JSP, Def Stan 05-138, Def Stan 05-139) An understanding of MOD ISN 23 / 09 Secure by Design Knowledge of security frameworks, such as ISO / IEC 27001, NIST 800-30, NIST … or OWASP Working with risk management frameworks and methodologies (e.g., ISO 27001 / 2, ISO27005 / 31000, NIST 800-30, NIST 800-53) If this all sounds like something you will be interested in then simply apply and we can discuss the opportunity further More ❯

multiple stakeholders to support continuous improvement of the control testing programme. I am therefore keen to speak with candidates who have: A proven background in Security Controls Assesment / IT Audit for large corporate clients. Experience of working in a Lead role, coordinating and managing work deliverables of other members of the team Professional certifications in CISA, CISM … CISSP, ISO 27001 Lead Auditor, or equivalent experience Familiarity with frameworks such as NIST 800-53, ISO 27001 / 27002, CIS, COBIT Strong skills in security control tools like SailPoint, Wiz, or Rapid7 Comfortable using tools like RSA Archer, ServiceNow, Kanban Boards and Jira Adept at working in More ❯

affecting products Your skillset may include: Knowledge of HMG standards (including MOD-specific JSP, Def Stan 05-138, Def Stan 05-139) An understanding of MOD ISN 23 / 09 Secure by Design Knowledge of security frameworks, such as ISO / IEC 27001, NIST 800-30, NIST … or OWASP Working with risk management frameworks and methodologies (e.g., ISO 27001 / 2, ISO27005 / 31000, NIST 800-30, NIST 800-53) If this all sounds like something you will be interested in then simply apply and we can discuss the opportunity further! Product Security Architect Permanent role Based in Bristol More ❯

Date Posted: 2024-09-09 Country: United Kingdom Location: GBR01:Harlow, Essex, Kao One, Kao Park, Harlow, CM17 9NA Position Role Type: Unspecified Facility Security Officer (FSO) / Security Controller / Programme Security Officer (PSO). Location(s): UK Sites / Hybrid – Portsmouth minimum 3 days every month plus travel to other locations on … occasion / as required. Summary of Role: Raytheon UK (RUK) has a fantastic opportunity for a Professional and dedicated Programme Security Officer to join the Raytheon Selborne Programme, delivering training transformation for the Royal Navy as part of Team Fisher. Raytheon UK’s role within Team Fisher is to deliver training design, transformation and training equipment support across … training, education, inductions, and briefings. Security management of visitors and contractors. Auditing of security systems and data-protection compliance. Working with the Digital Technology team to ensure projects / company’s networks remain secure and compliant with legislative policies. Accountable to the contracting authority for the Security Aspects Letter (SAL) and managing the flow down of SAL requirements More ❯

of Defence Standards , especially DefStan 05–138 and DefStan 05–139 . Familiarity with threat modelling tools and methodologies. Solid understanding of ISO 27001 / 2 , ISO 31000 , and JSPs . Strong communication skills with the ability to simplify complex risks for non–technical stakeholders. A passion for secure design More ❯

Social network you want to login / join with: Tower Manager Data Centre & Cloud Services, Slough col-narrow-left Location: Slough, European Union Job Category: Information Technology - col-narrow-right Job Reference: 2rc1k5hu-66348 Job Views: 2 Posted: 27.05.2025 Expiry Date: 11.07.2025 col-wide Job Description: We want you to grow with us We are expanding our IT … Cloud services, ensuring performance, availability and business continuity. Develop and maintain technology standards and roadmaps, ensuring alignment with IT governance frameworks (ITIL, ISO 27001 / 2, GDPR) and industry best practices. Identify and implement IT solutions in project environments that enhance scalability, support new service needs, increase operational efficiency, and strengthen security—contributing directly … with vendor management, contract performance tracking, and budget awareness. And always: Ability to work effectively in a complex collaborative, matrix environment with virtual teams in a multi-cultural / geographically diverse environment Strong problem-solving and troubleshooting skills, with the capacity for mature judgment in challenging situations A strong command of spoken and written English is a must More ❯