1 to 3 of 3 ISO/IEC 27001 Jobs in Guildford

Job Title: Security Engineer Location: Guildford, 5days / week in the office Job Type: Permanent, Full Time Salary: £65k SH1011 The Opportunity We are partnered with a Law firm, seeking an Infrastructure Engineer with a Security Focus to join the newly formed Cyber team. This role will involve supporting … countermeasures. • Develop and implement Security as Code practices. • Assist in securing data platforms, including Data Bricks, Azure SQL, and other in-house developed apps / plugins. • Collaborate on implementing internal SIEM using Sentinel and work towards establishing an internal SOC. • Support the Infrastructure team in configuring firewalls securely and … usage and support of Entra ID (previously Azure AD) for IAM, Identity Governance, and PIM. • Document security processes, tool configurations, and security service delivery / operation. • Assist the Infrastructure team in migrating external services to SSO and integrating other services with security tools. • Support the organization in achieving and more »

Azure Landing Zones security enhancement. Familiarity with Microsoft Entra ID and SOAR tooling. Ideally, experience in securing GitHub and data platforms. Knowledge of ISO 27001, Cyber Essentials Plus, and CIS. Scripting skills with Python and KQL. Strong English communication skills. more »

work successful candidates for this role will need to have SC clearance prior to starting with us and be eligible for DV clearance https: / / www.gov.uk / guidance / security-vetting-and-clearanc e Key responsibilities Working with clients remotely and onsite, you will support … proposals. Skills and experience required • A passion for, and understanding of, cyber security trends and threats, underpinned by a solid understanding of networking (TCP / IP) and DNS. • Knowledge and practical experience of applying NIST Cyber Security and Risk Management publications. • Effective business acumen and an understanding of the … cyber security challenges faced by organisations • Can evaluate cyber security risk at the technical, system process and / or organisational level measuring the associated business impact using a structured approach or methodology • Can document and articulate how to manage cyber security risk utilising a structured approach based on industry more »