manage responses to customer security audits and assurance inquiries. Monitor regulatory changes and contribute to compliance initiatives such as DORA , NIS2 , and other applicable standards and frameworks (e.g., ISO27001, SOC 2, GDPR). Assist in the development, maintenance, and improvement of internal GRC processes, policies, and documentation. Collaborate with cross-functional teams (Security … a related field. Experience supporting sales processes, including responding to RFx security assessments. Solid understanding of cybersecurity principles, information security best practices, and regulatory requirements (DORA, NIS2, GDPR, ISO27001, SOC 2, etc.). Excellent written and verbal communication skills; able to translate technical concepts for non-technical audiences. Strong organizational skills with the … a proactive approach to problem-solving and attention to detail. Experience working in a SaaS, cloud, or technology-driven company is preferred. Professional certifications (such as CISM, CRISC, ISO27001Lead Implementer /Auditor, or similar) are a plus Additional Information We are proud to foster a diverse More ❯
we looking for? Strong experience delivering end-to-end security assurance in complex, fast-paced environments Broad knowledge of IT and security frameworks, regulations, and best practices (e.g., ISO27001, DPA, GDPR) Familiarity with security tools such as vulnerability scanners, SIEM, DDoS protection, remote access, authentication / authorisation technologies, and data loss prevention Understanding … risk to technical and non-technical stakeholders Self-driven, collaborative, and confident operating both independently and within teams Desirable Qualifications & Experience: Certifications such as CISSP, CISM, CISA, or ISO27001LeadAuditor/ Implementer Knowledge of the NIST Cybersecurity Framework Experience with Smart Metering or highly regulated environments … and Public Key Infrastructure (PKI) Understanding of Hardware Security Modules (HSMs) About the DCC: At the DCC, we believe in making Britain more connected, so we can all lead smarter, greener lives. That desire to make a difference is what drives us every day and it wouldn't be possible without our people. Each person at the More ❯
performing IT Audit or security control testing. Knowledge of internal audit methodologies, including risk assessment, execution, and reporting. Proficiency in industry standards and frameworks (e.g., NIST 800-53, ISO27001/ 27002). Familiarity with privacy regulations (e.g., GDPR, CCPA) and breach notification laws. Experience with sector-specific frameworks (e.g., HIPAA, PCI). Technical … analysis, and interpretation. Experience Researching and applying latest technologies. Experience with Agile methodology. Big 4 accounting experience. Hold a professional certification such as CISA, CISM, CISSP, PCI QSA, ISO27001LeadAuditor, or equivalent. Additional Information This is a permanent hybrid role in Costa Rica. No relocation available. More ❯
performing IT Audit or security control testing. Knowledge of internal audit methodologies, including risk assessment, execution, and reporting. Proficiency in industry standards and frameworks (e.g., NIST 800-53, ISO27001/ 27002). Familiarity with privacy regulations (e.g., GDPR, CCPA) and breach notification laws. Experience with sector-specific frameworks (e.g., HIPAA, PCI). Technical … analysis, and interpretation. Experience Researching and applying latest technologies. Experience with Agile methodology. Big 4 accounting experience. Hold a professional certification such as CISA, CISM, CISSP, PCI QSA, ISO27001LeadAuditor, or equivalent. Additional Information This is a permanent hybrid role in Costa Rica. No relocation available. More ❯
compliance , and remediation activities Background in regulated environments, preferably with experience in law enforcement , MOD , or Home Office programmes Desirable: Certifications such as CISSP , CISA , CISM , or ISO27001 LeadAuditor Experience engaging with senior stakeholders in public sector cyber or protective security roles More ❯
