1 to 25 of 26 ISO/IEC 27001 Jobs in Scotland

using technology to solve business problems, working in partnership with our clients to help in achieving their goals. About the role: Develop and maintain GRC frameworks aligned with ISO 27001, NIST, GDPR, and NIS2 standards Conduct risk assessments across business units, vendors, and projects Monitor regulatory changes and ensure compliance with legal and contractual obligations Support … Understanding of regulatory requirements, including cross-industry regulations (e.g., GDPR, Data Protection Act) and industry-specific regulations Knowledge of common information security management frameworks, such as ISO / IEC 27001, ITIL, COBIT as well as those from NIST, including 800-53 and Cybersecurity Framework Knowledge of OneTrust risk management toolset or similar preferred More ❯

using technology to solve business problems, working in partnership with our clients to help in achieving their goals. About the role: Develop and maintain GRC frameworks aligned with ISO 27001, NIST, GDPR, and NIS2 standards Conduct risk assessments across business units, vendors, and projects Monitor regulatory changes and ensure compliance with legal and contractual obligations Support … Understanding of regulatory requirements, including cross-industry regulations (e.g., GDPR, Data Protection Act) and industry-specific regulations Knowledge of common information security management frameworks, such as ISO / IEC 27001, ITIL, COBIT as well as those from NIST, including 800-53 and Cybersecurity Framework Knowledge of OneTrust risk management toolset or similar preferred More ❯

using technology to solve business problems, working in partnership with our clients to help in achieving their goals. About the role: Develop and maintain GRC frameworks aligned with ISO 27001, NIST, GDPR, and NIS2 standards Conduct risk assessments across business units, vendors, and projects Monitor regulatory changes and ensure compliance with legal and contractual obligations Support … Understanding of regulatory requirements, including cross-industry regulations (e.g., GDPR, Data Protection Act) and industry-specific regulations Knowledge of common information security management frameworks, such as ISO / IEC 27001, ITIL, COBIT as well as those from NIST, including 800-53 and Cybersecurity Framework Knowledge of OneTrust risk management toolset or similar preferred More ❯

Director or Partner level. Ensure that the project adheres to Deloitte's Cybersecurity capability framework, relevant information security regulations and industry standards. Examples include GDPR, EU AI Act, ISO 27001, NIST Cybersecurity Framework, and Cyber Essentials +. Communicate security awareness, concerns, and requirements to project stakeholders, including developers, project managers, and business leaders, to ensure alignment … or equivalent field. Excellent communication and stakeholder management abilities. Demonstrable ability to work in a fast-paced, deadline driven environment. Demonstrated excellence in a variety of competencies including teamwork / collaboration, analytical thinking, communication and influencing skills, and technical expertise. Ability to work with changing priorities and with multiple projects. Relevant certifications like Certified Information Systems Security Professional (CISSP … self to work every day. And you'll never stop growing, whatever your level. Discover more reasons to connect with us, our people and purpose-driven culture at deloitte.co.uk / careers More ❯

Director or Partner level. Ensure that the project adheres to Deloitte's Cybersecurity capability framework, relevant information security regulations and industry standards. Examples include GDPR, EU AI Act, ISO 27001, NIST Cybersecurity Framework, and Cyber Essentials +. Communicate security awareness, concerns, and requirements to project stakeholders, including developers, project managers, and business leaders, to ensure alignment … or equivalent field. Excellent communication and stakeholder management abilities. Demonstrable ability to work in a fast-paced, deadline driven environment. Demonstrated excellence in a variety of competencies including teamwork / collaboration, analytical thinking, communication and influencing skills, and technical expertise. Ability to work with changing priorities and with multiple projects. Relevant certifications like Certified Information Systems Security Professional (CISSP … self to work every day. And you'll never stop growing, whatever your level. Discover more reasons to connect with us, our people and purpose-driven culture at deloitte.co.uk / careers More ❯

translate security requirements into application design elements including documenting specific security criteria. Develop services by writing programming and scripting language. Act as a subject matter expert (SME) for CI / CD pipeline security tools, lead software debugging and guide engineers to resolve issues. Create and deliver automated assurance against Technical Security guidance and configurations. Implement business logic and technical … Code Role Criteria Essential Criteria Demonstrable experience in design, delivery and operation of cloud native vulnerability management, security monitoring and cyber incident management tools and processes within large Scottish / UK Public Sector and / or corporate industry (financial services). Demonstrable experience in designing, implementing and managing security solutions tailored for cloud environments and aligned to industry … standard cybersecurity frameworks such as NCSC CAF / NIST / CIS. This includes proficiency in securing cloud platforms such as AWS, Azure, understanding cloud-native security services, and expertise in configuring security groups, IAM policies, and network access controls. In depth experience and understanding of DevSecOps principles, emphasising the integration of security practices into the DevOps pipeline. This More ❯

2nd Line IT Service Desk Analyst Job Type: Permanent Full-Time - Hybrid 3 days in the office / 2 days WFHLocation: Edinburgh City Centre Salary: £28,000.00-£35,000 (depending on experience) MUST HAVE A DRIVERS LICENSE Hours of work: The hours of work are 37.5 per week between 7:30 - 18:00 with 1h lunch break (rotating shifts … management (ISO 27001 and ISO 9001 certifications) by adhering consistently to policies and procedures. 2nd Line IT Service Desk Analyst Knowledge, Skills, and / or Abilities Required: To perform this job successfully, an individual must be able to perform each essential duty satisfactorily. The requirements listed below are representative of the knowledge, skill … and / or ability required. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions. Bachelor's degree in information technology, Computer Science, or related field (or equivalent work experience). Knowledge of ITIL Framework; ideally having an ITIL Foundation 3+ years' experience in an IT Service Desk / Helpdesk Function Experience with More ❯

2nd Line IT Service Desk Analyst Job Type: Permanent Full-Time - Hybrid 3 days in the office / 2 days WFH Location: Edinburgh City Centre Salary: £28,000.00-£35,000 (depending on experience) MUST HAVE A DRIVERS LICENSE Hours of work: The hours of work are 37.5 per week between 7:30 - 18:00 with 1h lunch break (rotating … management (ISO 27001 and ISO 9001 certifications) by adhering consistently to policies and procedures. 2nd Line IT Service Desk Analyst Knowledge, Skills, and / or Abilities Required: To perform this job successfully, an individual must be able to perform each essential duty satisfactorily. The requirements listed below are representative of the knowledge, skill … and / or ability required. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions. Bachelor's degree in information technology, Computer Science, or related field (or equivalent work experience). Knowledge of ITIL Framework; ideally having an ITIL Foundation 3+ years' experience in an IT Service Desk / Helpdesk Function Experience with More ❯

2nd Line IT Service Desk Analyst Job Type: Permanent Full-Time - Hybrid 3 days in the office / 2 days WFH Location: Edinburgh City Centre Salary: 28,000.00- 35,000 (depending on experience) MUST HAVE A DRIVERS LICENSE Hours of work: The hours of work are 37.5 per week between 7:30 - 18:00 with 1h lunch break (rotating … management (ISO 27001 and ISO 9001 certifications) by adhering consistently to policies and procedures. 2nd Line IT Service Desk Analyst Knowledge, Skills, and / or Abilities Required: To perform this job successfully, an individual must be able to perform each essential duty satisfactorily. The requirements listed below are representative of the knowledge, skill … and / or ability required. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions. Bachelor's degree in information technology, Computer Science, or related field (or equivalent work experience). Knowledge of ITIL Framework; ideally having an ITIL Foundation 3+ years' experience in an IT Service Desk / Helpdesk Function Experience with More ❯

experience as a Firewall Engineer or Network Security Engineer. Strong knowledge of firewall platforms such as Cisco ASA, Palo Alto Networks, Fortinet, or Check Point. Experience with VPNs, IDS / IPS, and network protocols (TCP / IP, DNS, HTTP / S, etc.). Familiarity with security standards such as ISO 27001, NIST, or More ❯

ll Be Doing Acting as a trusted point of contact, delivering excellent customer service across the business. Supporting and maintaining Citrix environments, Visualfiles, storage, and backup solutions. Providing 2nd / 3rd line support for infrastructure-related incidents and requests. Monitoring and managing servers, storage, and networks across multiple office locations. Ensuring backup, recovery, and security measures are in place … infrastructure projects, upgrades, and system improvements. What We're Looking For Solid knowledge of Windows Server, Active Directory, Group Policy, networking. Strong hands-on experience with Citrix Virtual Apps / Desktops. Background in Visualfiles administration / support. Experience with storage (SAN), backup tools (Veeam, Commvault), and virtualisation (VMware / Hyper-V). Previous experience working in a … Certified Associate or Microsoft Certified: Azure Administrator . Knowledge of Microsoft Azure or other cloud platforms. Familiarity with ITIL practices and service management tools. Exposure to other case management / legal applications (e.g., SOS). Why Apply? Chance to work on both day-to-day support and strategic IT projects . Wide technical exposure in a professional, supportive environment. More ❯

ll Be Doing Acting as a trusted point of contact, delivering excellent customer service across the business. Supporting and maintaining Citrix environments, Visualfiles, storage, and backup solutions. Providing 2nd / 3rd line support for infrastructure-related incidents and requests. Monitoring and managing servers, storage, and networks across multiple office locations. Ensuring backup, recovery, and security measures are in place … infrastructure projects, upgrades, and system improvements. What We're Looking For Solid knowledge of Windows Server, Active Directory, Group Policy, networking. Strong hands-on experience with Citrix Virtual Apps / Desktops. Background in Visualfiles administration / support. Experience with storage (SAN), backup tools (Veeam, Commvault), and virtualisation (VMware / Hyper-V). Previous experience working in a … Certified Associate or Microsoft Certified: Azure Administrator . Knowledge of Microsoft Azure or other cloud platforms. Familiarity with ITIL practices and service management tools. Exposure to other case management / legal applications (e.g., SOS). Why Apply? Chance to work on both day-to-day support and strategic IT projects . Wide technical exposure in a professional, supportive environment. More ❯

Security Operations Lead -Salary £65-75,000 -Fixed Term Contract - 12 months -Glasgow / Remote First Role Brand new opportunity to the market for a seasoned Security Operations Lead to join my financial services client, as they continue on their transformational journey of growth and improvement for the business. You will work alongside a team of Security Analysts within … team and leading the response to security incidents. Key Experience (A blend of): Strong, practical knowledge of security frameworks and industry standards Regulatory requirement expertise - Cyber Essentials Plus, ISO 27001 and GDPR Microsoft security tools - Defender, Entra ID, Purview Cloud platform exposure - Azure preferred Broad experience of configuring and management of SIEM tooling Certifications CISSP, CISM More ❯

Strong knowledge of Windows and Mac operating systems, including troubleshooting and administration Proficiency with Microsoft Office 365, Active Directory, and cloud-based services Understanding of network fundamentals including TCP / IP, DNS, DHCP, and VPN technologies Experience with ticketing systems (Jira Service Management, or similar) Familiarity with cybersecurity tools and concepts including firewalls, antivirus, and endpoint protection Basic scripting … maintain accurate records Industry Knowledge Understanding of ITIL framework and IT service management best practices Knowledge of cybersecurity principles and common threats Awareness of data protection regulations (GDPR, ISO 27001) and compliance requirements Familiarity with business continuity and disaster recovery concepts Desirable Qualifications Industry certifications such as CompTIA A+, Network+, Security+, or Microsoft certifications Experience in … I Know I Have Done A Great Job If: I consistently achieve first-call resolution rates above 75% for incidents within my scope Customer satisfaction scores remain above 4.5 / 5 for all support interactions I meet or exceed agreed SLA targets for response and resolution times End users provide positive feedback about the quality and professionalism of support More ❯

Business Line Enabling Functions Job Type Permanent / FTC Date published 05-Jun-2025 19325 Connect to your Industry Deloitte Technology works at the forefront of technology development and processes to support and protect Deloitte around the world. In this truly global environment, we operate not in "what is" but rather "what can be" to help Deloitte deliver and … and evaluation of risk, as well as using GRC tools and guidance developed for Risk mitigation. Practical knowledge of information security standards and risk assessment frameworks such as ISO 27001, SOC 2, NIST 800-32. Strong knowledge of cyber controls, policies, and procedures. Experience of delivering metrics for senior level audiences. Demonstrate analytical and problem … self to work every day. And you'll never stop growing, whatever your level. Discover more reasons to connect with us, our people and purpose-driven culture at deloitte.co.uk / careers WPFULL SLICSS BAGLOB LOCGAT LOCREA LOCALB More ❯

and development teams. Key Responsibilities Design and implement security controls across containerised environments using Kubernetes and OpenShift Ensure secure configuration and access management within GitLab version control and CI / CD pipelines Integrate and secure telemetry tools including Cribl, Elastic, Splunk, Fluentd, and Syslog Conduct threat modelling, vulnerability assessments, and risk analysis for the telemetry pipeline Collaborate with DevOps … of security architecture, policies, and incident response procedures Required Skills & Experience Strong hands-on experience with Kubernetes and OpenShift in secure production environments Proficiency in GitLab and secure CI / CD pipeline practices Familiarity with telemetry and logging tools: Cribl, Elastic, Splunk, Fluentd, and Syslog Deep understanding of networking protocols, firewalls, VPNs, and security principles Experience with security frameworks … e.g., NIST, ISO 27001) and compliance requirements Knowledge of container security tools (e.g., Aqua, Twistlock, Trivy) and vulnerability scanners Excellent analytical and communication skills Preferred Qualifications Certifications such as CISSP, CISM, CKS (Certified Kubernetes Security Specialist), or equivalent Experience in building MVPs or working in startup-like environments Familiarity with cloud security (AWS, Azure, GCP More ❯

and development teams. Key Responsibilities: Design and implement security controls across containerised environments using Kubernetes and OpenShift Ensure secure configuration and access management within GitLab version control and CI / CD pipelines Integrate and secure telemetry tools including Cribl, Elastic, Splunk, Fluentd, and Syslog Conduct threat modelling, vulnerability assessments, and risk analysis for the telemetry pipeline Collaborate with DevOps … of security architecture, policies, and incident response procedures Required Skills & Experience: Strong hands-on experience with Kubernetes and OpenShift in secure production environments Proficiency in GitLab and secure CI / CD pipeline practices Familiarity with telemetry and logging tools: Cribl, Elastic, Splunk, Fluentd, and Syslog Deep understanding of networking protocols, firewalls, VPNs, and security principles Experience with security frameworks … e.g., NIST, ISO 27001) and compliance requirements Knowledge of container security tools (e.g., Aqua, Twistlock, Trivy) and vulnerability scanners Excellent analytical and communication skills Preferred Qualifications: Certifications such as CISSP, CISM, CKS (Certified Kubernetes Security Specialist), or equivalent Experience in building MVPs or working in startup-like environments Familiarity with cloud security (AWS, Azure, GCP More ❯

and development teams. Key Responsibilities: Design and implement security controls across containerised environments using Kubernetes and OpenShift Ensure secure configuration and access management within GitLab version control and CI / CD pipelines Integrate and secure telemetry tools including Cribl, Elastic, Splunk, Fluentd, and Syslog Conduct threat modelling, vulnerability assessments, and risk analysis for the telemetry pipeline Collaborate with DevOps … of security architecture, policies, and incident response procedures Required Skills & Experience: Strong hands-on experience with Kubernetes and OpenShift in secure production environments Proficiency in GitLab and secure CI / CD pipeline practices Familiarity with telemetry and logging tools: Cribl, Elastic, Splunk, Fluentd, and Syslog Deep understanding of networking protocols, firewalls, VPNs, and security principles Experience with security frameworks … e.g., NIST, ISO 27001) and compliance requirements Knowledge of container security tools (e.g., Aqua, Twistlock, Trivy) and vulnerability scanners Excellent analytical and communication skills Preferred Qualifications: Certifications such as CISSP, CISM, CKS (Certified Kubernetes Security Specialist), or equivalent Experience in building MVPs or working in startup-like environments Familiarity with cloud security (AWS, Azure, GCP More ❯

analysis and remediation efforts for certificate expirations, key compromise, or misconfigurations. Collaboration & Reporting Work closely with DevOps, Infrastructure, and Application Security teams to integrate KCS best practices into CI / CD pipelines and cloud environments. Provide regular reports on KCS health, risk posture, and compliance metrics to senior leadership. Required Qualifications: 5+ years of experience in cybersecurity or infrastructure … operations, with a focus on cryptographic asset management. Strong understanding of PKI, TLS / SSL, HSMs, and secrets management tools. Proficiency in cryptographic protocols (OCSP, CRL, TSA). Hands-on experience with HSMs (e.g., Thales, SafeNet) and PKI platforms (e.g., Entrust, eMudhra). Experience with cloud-native KMS solutions (e.g., AWS KMS, Azure Key Vault, GCP Cloud KMS). … PowerShell, Terraform). Excellent leadership, communication, and problem-solving skills. What we will do for you: Competitive compensation Pension scheme DXC Select Our comprehensive benefits package (includes private health / medical insurance, childcare vouchers, gym membership and more) Perks at Work (discounts on technology, groceries, travel and more) DXC incentives (recognition tools, employee lunches, regular social events etc) At More ❯

and external partners to enhance incident response and cyber resilience. Candidate Requirements Experience in a cyber security risk management role. Strong understanding of cyber security frameworks and standards (ISO 27001, SOC2, NIST, GDPR). Excellent analytical, communication, and stakeholder engagement skills. Proficient in risk assessment tools and methodologies. Professional certifications such as CRISC, CISM, or CISSP More ❯

ISO 27001, NIST, etc. IT Degree advantageous. A minimum of 5 years experience at least 3 of which must be at 3rd Line Support Engineer / Infrastructure & Network level. At least 2 years IT experience within in a contact centre environment. Excellent Microsoft administration skills to include Azure AD, Intune, O365, Entra, Exchange, SharePoint. Excellent More ❯

Microsoft Defender for Cloud Sentinel (SIEM) Azure Security Center Azure Policy & Role-Based Access Control (RBAC) Microsoft Purview and Compliance tools Familiarity with security frameworks such as NIST, ISO 27001, or CIS. Experience with scripting (PowerShell, KQL) and automation for security operations. Relevant certifications (e.g., AZ-500 , SC-200 , SC-300 ) are highly desirable. What's More ❯

a continuous improvement ethos Responsible for ensuring that the team test and build activities follow agreed governance and processes Proactively apply HMG IA technical security controls according to ISO 27001 & the Security Policy Framework (SPF) Behavioural Understanding yourself to be a leader (and the impact of your behaviour on others in a project team focused on … the organisation, champion our culture of learning, development, cross-company collaboration and teamwork Work across several multi-disciplinary teams to deliver highly focused and successful digital services Provide project / delivery management support when required Effective management and delegation of tasks within the team Applies progress over perfection principle Takes full responsibility for decisions and deliversa Inner composure, recovers … and other Agile methodologies Advocate of DevOps principles Experience working in a Microsoft Azure Cloud first team Experience with Azure DevOs Essential Technical Experience of MS Dynamics CRM and / or PowerApps platform Has a deep understanding of architectural principals such as SOA and Micro-Services Technical aptitude Proficiency in one or more of these languages: C#, Python, JavaScript More ❯

demonstrate strong identity skills and have the ambition to utilise Deloitte's leading training opportunities to enhance and extend their capabilities. Proven experience of incident management, crisis management, and / or an operationally relevant role; A detailed understanding of the subject of Cyber Incident Response including a detailed understanding of key technical concepts and methodologies, attacker techniques, and threat … financial and people management; Experience in leading business development activities in the Private Sector; Strong commercial awareness and business acumen, including specifically an excellent understanding of business processes and / or supporting technology; Experience or familiarity in managing contracts; Excellent verbal and written communication skills, with the ability to tailor communications to people from a wide range of backgrounds … Security clearance, or is willing to undergo the security vetting process; Strong academics, including a minimum of 2.1 degree or equivalent experience Familiarity with information security frameworks such as ISO27001, NIST etc; Willingness to operate as part of an 'on-call roster', travelling to assist our UK and EMEA clients when required in an incident management capacity; Connect to your More ❯

environment for every teammate that's welcoming, respectful and inclusive, with great opportunity for professional growth. Find your future with us. Location: RAAF Base Edinburgh, South Australia Category: MIS / IT Position Type: Permanent Job Reference: BOE / A Attachments: No File Attached The Opportunity BDA is looking for a Senior Cyber Security Analyst who will join the … successful in this role you will have: Qualifications, certification or relevant experience in a cybersecurity-related field Experience in security risk management and applying frameworks under the DSPF, ISM, ISO27001, etc. Experience with Defence Assessment and Authorisation (A&A) processes. Experience in vulnerability management tools, Windows and Linux cybersecurity, OT environments, and developing / reviewing security processes and procedures. More ❯