annual external audits required to support certification. Ensure data security and compliance with relevant legal, regulatory, contractual and policy requirements. Ensure process and requirements are met to support GDPR compliance and protection of personal data. Maintain and improve level of compliance with ISO 27001:2022 and Cyber Essentials Plus requirements. Work in partnership with development staff to embed More ❯
CD pipelines and cloud deployments. Manage output from cloud-native security tools (e.g., AWS GuardDuty, Azure Defender). Ensure compliance with industry regulations and standards (e.g., ISO 27001, NIST, GDPR, HIPAA). Provide security guidance on architecture, design reviews, and cloud migrations. Create and maintain cloud security documentation, training materials, and incident response playbooks. Stay current on emerging cloud security More ❯
improve the organization's defences. Policy and Compliance: Establish and enforce security policies, standards, and guidelines to ensure compliance with regulatory requirements and industry frameworks (e.g., ISO 27001, NIST, GDPR). Conduct regular audits and assessments to identify gaps and ensure adherence to security policies. Reporting and Communication: Provide regular updates to senior leadership on the organization's security posture More ❯
compliance with ISO27001 certification requirements, including managing audits, reviews, and continual improvement of the Information Security Management System (ISMS). Stay abreast of and ensure adherence to regulations (e.g., GDPR, NIS2, DORA) and other relevant legal and contractual obligations, as well as application security standards. Risk Management: Lead the information security risk management process, including identification, assessment, treatment, and monitoring More ❯
compliance with ISO27001 certification requirements, including managing audits, reviews, and continual improvement of the Information Security Management System (ISMS). Stay abreast of and ensure adherence to regulations (e.g., GDPR, NIS2, DORA) and other relevant legal and contractual obligations, as well as application security standards. Risk Management : Lead the information security risk management process, including identification, assessment, treatment, and monitoring More ❯
compliance with ISO27001 certification requirements, including managing audits, reviews, and continual improvement of the Information Security Management System (ISMS). Stay abreast of and ensure adherence to regulations (e.g., GDPR, NIS2, DORA) and other relevant legal and contractual obligations, as well as application security standards. Risk Management : Lead the information security risk management process, including identification, assessment, treatment, and monitoring More ❯
Services. Experience in semi / fully unstructured datasets and NoSQL environments Awareness of working in a regulated environment, with experience of data legislation and cyber security accreditations e.g., GDPR, ISO27001, Cyber Essentials. Expertise in Business Intelligence, ideally via Power BI for data visualization and reporting Use of DevOps (CI / CD) concepts to test, schedule, and deploy to More ❯
foster a strong security-first culture Compliance & Governance Work in partnership with the Compliance Manager and DPO to ensure security measures support dataprotection obligations (e.g. UK GDPR). Maintain up-to-date records of security incidents, policies, and audit logs - ensuring documentation is meaningful and accessible. Support leadership with security input into market entry, overseas operations, and More ❯
consumption. Data Management and Governance: Strong knowledge of data management principles and best practices, including data governance frameworks. Experience with data security and compliance regulations (GDPR, CCPA, HIPAA, etc.). Leadership and Communication: Exceptional leadership skills to manage and guide a team of architects and technical experts. Excellent communication and interpersonal skills, with a proven ability More ❯
level objectives (SLOs) and key performance indicators (KPIs) for all security services. Compliance, Governance & Risk Management: Ensure alignment with global compliance requirements such as ISO 27001, NIST, SOC 2, GDPR, and others. Partner with governance, legal, and ISRM teams to implement enforceable policies and standards across identity, endpoint, and data domains. Operationalize policy enforcement through automated controls and continuous More ❯
Ensure high availability, disaster recovery, and data integrity across platforms. Perform database modeling, normalization, and capacity planning. Establish data security policies, access controls, and compliance processes (e.g., GDPR, HIPAA). Mentor junior database developers and provide technical leadership on database solutions. Work with stakeholders to understand data needs and translate them into technical solutions. Required Skills & Qualifications More ❯
remediation measures. Monitor systems, networks, and logs then Investigate security breaches, incidents, and other cybersecurity events. Oversight of compliance for regulatory compliance requirements, such as SOC2, HIPAA, ISO 27001, GDPR etc, and ensure our systems adhere to these standards Conduct security awareness training sessions, enabling the business. Who you are Cloud security enthusiast - You're comfortable navigating AWS and GCP More ❯
internal audit methodologies, including risk assessment, execution, and reporting. Proficiency in industry standards and frameworks (e.g., NIST 800-53, ISO 27001 / 27002). Familiarity with privacy regulations (e.g., GDPR, CCPA) and breach notification laws. Experience with sector-specific frameworks (e.g., HIPAA, PCI). Technical Skills Proficiency with security tools (SailPoint, Rapid7, Wiz.io , MS Defender, SIEM, vulnerability management, penetration testing More ❯
internal audit methodologies, including risk assessment, execution, and reporting. Proficiency in industry standards and frameworks (e.g., NIST 800-53, ISO 27001 / 27002). Familiarity with privacy regulations (e.g., GDPR, CCPA) and breach notification laws. Experience with sector-specific frameworks (e.g., HIPAA, PCI). Technical Skills Proficiency with security tools (SailPoint, Rapid7, Wiz.io , MS Defender, SIEM, vulnerability management, penetration testing More ❯
and customer feedback. Infrastructure And Security Ensure robust system architecture and IT infrastructure that supports business operations. Oversee cybersecurity measures to protect company and customer data, complying to GDPR requirements. Ensure interworking between on prem, private cloud and public cloud infrastructure to support platforms and products Optimize private and public cloud infrastructure, usage and cost, DevOps pipelines, and technical More ❯
skills & knowledge: Broad knowledge of cyber security concepts including cryptography, authentication and authorization, access control, secure architectures, threat modeling, vulnerabilities and software security. Strong knowledge of regulatory requirements (e.g. GDPR, ISO27001, PCI-DSS) and experience in regulatory reporting. 3-5 years of experience in GRC, risk management, or compliance. A bachelor's degree in computer science, Cyber Security or similar More ❯
IaC), automated testing, containerisation (Docker, Kubernetes), and CI / CD pipelines Working knowledge of embedding compliance and security in ML systems, including governance, access controls, and regulatory alignment (e.g., GDPR, HIPAA) Proficient with modern AI tooling and ecosystems, including Hugging Face, Cursor, vector DBs, and productivity tools that accelerate GenAI development Expertise in GenAI and LLMs, with hands-on experience More ❯
requirements (NFRs) into technical designs. Lead on data architecture directioncovering modelling, database strategy, data flows, and integration patterns. Guide data governance, retention, and compliance practices (e.g., GDPR, ISO standards). Technical Design & Development Oversight Define storage, publishing, and metadata strategies to support analytics and operational goals. Shape database schemas, data warehouse strategies, and ensure dataMore ❯
understanding of machine learning, data science and AI technologies Detailed knowledge of the EU AI Act and its obligations, and / or familiarity with adjacent regulations e.g., GDPR We back you with benefits that support your holistic well-being so you can be and deliver your best. This means caring for you and your loved ones' physical, financial More ❯
or Fintech environment. Educated to degree level in a relevant subject and / or hold a technology professional qualification. Deep technical knowledge of technology related regulation (e.g., DORA, GDPR, EU AI Act). Experience with third-party and outsourcing risk, AI and digital transformation risks. Experience of developing and operating Technology Risk Management Frameworks such as ITIL, COBIT More ❯
systems (infrastructure and applications) as needed or in accordance with the security strategic plan. Ensures successful compliance of dataprotection and security requirements within applicable legislation (e.g., GDPR, UK DataProtection Act etc.). Conducts assessment on the security of new applications and programs prior to installation or upgrade and within the Software Development Lifecycle. Participates More ❯
and forensic analysis tools. Familiarity with KQL be beneficial for automating tasks and conducting advanced analysis. Beneficial: Understanding of dataprotection laws, regulations, and compliance requirements (e.g., GDPR, CCPA, HIPAA). Industry certifications such as Certified Information Systems Security Professional (CISSP) or Certified Information Privacy Professional (CIPP). Prior experience in cyber security roles in areas such as More ❯
and interoperability frameworks Familiarity with: Secure Software Development Lifecycles (SSDLC) Vulnerability management and penetration testing coordination SaaS or multi-tenant platform delivery models Dataprotection regulations (e.g. GDPR, ISO 27001) Disaster Recovery (DR), high availability (HA), and business continuity planning Observability tooling: Prometheus, Grafana, Azure Monitor, Log Analytics Role Context This senior role sits at the intersection of More ❯
leading discussions with more senior stakeholders and acting as a point of escalations. Ensure compliance with legal, regulatory, and professional obligations, including client confidentiality, dataprotection (e.g., GDPR), and audit requirements in architecture and engineering work. Act as a key liaison with Risk, Legal, and Compliance teams to align platform security with client contracts and industry expectations. Team More ❯
