well as using GRC tools and guidance developed for Risk mitigation.Practical knowledge of information security standards and risk assessment frameworks such as ISO 27001, SOC2, NIST 800-32KPI/KRIStrong knowledge of cyber controls, policies, and procedures.Experience of delivering metrics for senior level audiences.Demonstrate analytical andmore »
to-face meetings. What we're looking for from you: Commerical experience within InfoSec role Understanding of Security frameworks and standards (Cybersecurity Framework, ISO27001, SOC2) Excellent analytical and problem-solving skills with a keen attention to detail A fiercely diverse environment with 60% of their employees being female! They have more »
solid understanding of industry standards (NIST Cybersecurity Framework, NIST RMF and ISO/IEC 27001 etc.), and regulatory standards such as (HIPAA, SOX, GDPR, SOC2, PCI etc.) Experience with control testing and validation (e.g. NIST 800-53 etc.) Experience developing cybersecurity metrics and reporting involving various areas and stakeholders Experience more »
commitment to ongoing learning in technical concepts and technologies. Familiarity with IT security policies and technical standards (e.g., ISO 27001, NIST, Cyber Essentials, COBIT, SOC2 Type II, etc.). Proficiency in report writing. Qualifications Bachelor's degree in Computer Science (or related field) 4 + years of more »
meetings. What we're looking for from you: BSc or MSc in InfoSec or CompSci Understanding of Security frameworks and standards (Cybersecurity Framework, ISO27001, SOC2) Excellent analytical and problem-solving skills with a keen attention to detail Experience taking minutes and notes A fiercely diverse environment with 60% of their more »
This role would suit those with an extensive history in building and managing Engineering teams, and with significant technical experience of the Microsoft Security stack with a focus on Purview DLP, IRM and Defender. This is a remote role, with more »
the importance of an iron-clad security posture. The ideal Lead Security Engineer will have experience with the following: We need a minimum of 2 years as a Security Engineer, with a proven track record in most areas mentioned above. You're an Azure security champion, particularly its security … like SIEM, IDPS, Cloud Security, and EDR is a big plus. Experience with Zscaler, CrowdStrike, or Qualys Web3 and DeFi Experience with ISO27001 andSOC2 If you are an experienced Security Engineer looking to step up into a Lead Security Engineer position at a rapidly growing digital assets company, please more »
City Of London, England, United Kingdom Hybrid / WFH Options
Mimecast
cyber security and ESG certification programme, and the successful candidate will need extensive experience in compliance activities associated with ISO 27001, ISO 9001 andSOC2 as a minimum . The nature of this position requires contact with company employees at all levels as well as contact with … carbon emission Assist in the coordination of Internal and External ESG materiality assessment and stakeholder engagement triage Manage GHG emissions reporting including Scope 1, 2, and 3 emissions calculations, as applicable, for internal and external reporting. Lead, coordinate and review requirements for ESG annual assessments and rating submissions.(i.e. … setting of Environmental Management system objectives and possible targets What You'll Bring: Experience with the examination or implementation of technical controls, such as SOC2, ISO, TISAX or NIST 800-53 Excellent verbal and written communication skills Has demonstrable skill working with internal and external stakeholders Experience more »
London, England, United Kingdom Hybrid / WFH Options
Sportradar
Good understanding of information security principles and frameworks, data protection and regulatory compliance (example: ISO27001, GDPR, PCI DSS etc.). Third party assurance experience (SOC 1, SOC2 etc). Experience with complex IT/Application environment and data analytics. Experience with SQL, ACL, Tableau, PowerBI, or more »
Greater London, England, United Kingdom Hybrid / WFH Options
Zebra People
though not essential. This role will be working very closely with the Platform Lead and InfoSec lead so you’ll be happy working to SOC2 compliance standards (you don’t have to have done so before though). As well as the above, they’re keen to meet people who more »
SOC2 Program Manager Day Rate: Up to £1000 Inside IR35 DOE The Client: A leading Insurance Firm requires a SOC2 Program Manager! Location: Flexible but has to be UK based with the capacity to commute to Central London when required. Duration: 6 Months Rolling Contract The Role: The SOC2 Program … Manager will support the functions for the client with delivery of SOC2 program. This role will be an interim/consulting role supporting all segment and functional leads in delivery of the SOC2 program. Key Requirements: A successful SOC2 Program Manager will have the following competencies: Large program experience Deep … and support constructively Confidentiality Resourcefulness and organizational agility Leadership Problem Solving Drive for results Expert communications and stakeholder management Key responsibilities: Drive delivery of SOC2 program workstream Pro-actively collaborate with technology and information and cyber security functional stakeholders andcontrols owners Pro-actively communicate the progress to all levels more »
have a deep understanding of cloud platforms (Azure, AWS), be well-versed in DevOps, Agile methodologies, and ITIL with relevant certifications. Experience with audits (SOC2, ISO27001, SOX, CE+) is essential. You will be responsible for leading BAU support, including ticket management and documentation, setting technical direction, ensuring the team's more »
Central London, London, United Kingdom Hybrid / WFH Options
Hireful
through an MSSP, in a cloud-based environment. - Knowledge of security compliance standards relevant to the SaaS industry, such as PCI, GDPR, ISO 27001, SOC2, NIST - Skills in leveraging application monitoring tools- AWS monitoring/alert tools (CloudTrail, GuardDuty), Qualys tools and SIEM experience, to detect and respond to security more »