Mind Recruitment - Technology, Executive & IT Sales
IT Security, Data, Governance, Risk & Compliance (GRC) specialist to £95,000 plus excellent bonus and benefits package Security & Data Governance management, Risk & Compliance Strong stakeholder management experience ISO27001, NIST, GDPR, Data Governance frameworks Operational effectiveness, risk, compliance, policies, testing procedures Working alongside IT Security, Technology teams globally 3 days per week in the London office, occasional travel This global Insurance More ❯
london (city of london), south east england, united kingdom Hybrid / WFH Options
Anson McCade
security strategies, policies, and architectures. Lead on AI risk assessment, threat modelling, and mitigation planning. Ensure compliance with GDPR, the EU AI Act, and international security frameworks (ISO 27001, NIST, TOGAF, SABSA). Build and maintain secure AI architectures for complex models and pipelines. Oversee ethical AI governance, driving policy alignment and responsible AI adoption. Advise clients on secure cloud … security architecture, adversarial ML mitigation, and model governance. Current security certifications such as CISSP or CISM. Proven experience across cloud security, data privacy, and DevSecOps. Familiarity with frameworks including NIST, ISO 27001, TOGAF, SABSA. Excellent communication and stakeholder influence skills. Eligible for UK Security Clearance (SC). If you’re an experienced security architect or consultant ready to shape how More ❯
slough, south east england, united kingdom Hybrid / WFH Options
Anson McCade
security strategies, policies, and architectures. Lead on AI risk assessment, threat modelling, and mitigation planning. Ensure compliance with GDPR, the EU AI Act, and international security frameworks (ISO 27001, NIST, TOGAF, SABSA). Build and maintain secure AI architectures for complex models and pipelines. Oversee ethical AI governance, driving policy alignment and responsible AI adoption. Advise clients on secure cloud … security architecture, adversarial ML mitigation, and model governance. Current security certifications such as CISSP or CISM. Proven experience across cloud security, data privacy, and DevSecOps. Familiarity with frameworks including NIST, ISO 27001, TOGAF, SABSA. Excellent communication and stakeholder influence skills. Eligible for UK Security Clearance (SC). If you’re an experienced security architect or consultant ready to shape how More ❯
london, south east england, united kingdom Hybrid / WFH Options
Anson McCade
security strategies, policies, and architectures. Lead on AI risk assessment, threat modelling, and mitigation planning. Ensure compliance with GDPR, the EU AI Act, and international security frameworks (ISO 27001, NIST, TOGAF, SABSA). Build and maintain secure AI architectures for complex models and pipelines. Oversee ethical AI governance, driving policy alignment and responsible AI adoption. Advise clients on secure cloud … security architecture, adversarial ML mitigation, and model governance. Current security certifications such as CISSP or CISM. Proven experience across cloud security, data privacy, and DevSecOps. Familiarity with frameworks including NIST, ISO 27001, TOGAF, SABSA. Excellent communication and stakeholder influence skills. Eligible for UK Security Clearance (SC). If you’re an experienced security architect or consultant ready to shape how More ❯
security is embedded throughout the delivery lifecycle. This role is fully on-site in Basingstoke and will suit someone with a strong background in Secure by Design principles andNIST methodologies, who thrives in fast-paced, collaborative environments. Key Responsibilities: Lead the integration of security controls into infrastructure designs and solutions Act as the security subject matter expert across Scrum More ❯
the organisation through training, awareness campaigns, and policy enforcement. Maintain oversight of cyber KPIs, threat intelligence, and incident response protocols. Ensure compliance with relevant regulatory frameworks (e.g., PCI DSS, NIST, ISO 27001) Build and maintain strategic relationships with external partners, including regulators and the National Cyber Security Centre. Represent cyber security in major organisational change programmes and digital transformation initiatives. … professional body (e.g., (ISC), ISACA, BCS). Essential Knowledge and Experience Demonstrable experience leading cyber security in large, complex organisations. Deep understanding of cyber security frameworks andstandards (e.g., NIST, ISO 27001, PCI DSS). Proven track record of developing and delivering cyber strategies and managing risk at an enterprise level. Strong technical knowledge of modern security technologies and principles More ❯
threat monitoring, detection, and response using cloud-native security solutions such as Microsoft Defender, Sentinel, and SIEM platforms. • Ensure compliance with cloud security frameworks and regulatory requirements (ISO 27001, NIST, GDPR, SOC2, FCA). • Conduct regular security risk assessments, penetration tests, and vulnerability management across cloud services. • Oversee endpoint security, cloud network and API security for robust protection across all … Strong experience managing Microsoft 365 (Exchange, SharePoint, Teams), Azure cloud infrastructure, and security tools such as Microsoft Defender and Sentinel. • Security & Compliance: Deep knowledge of security frameworks (ISO 27001, NIST, CIS), compliance requirements (GDPR, SOC2), and risk management best practices. • Identity & Access Management (IAM): Expertise in Azure AD, MFA, Conditional Access, Single Sign-On (SSO), and Privileged Access Management (PAM More ❯
Sunbury-On-Thames, London, United Kingdom Hybrid / WFH Options
BP Energy
environments, including ICS, SCADA, and IIoT systems. Partner with engineering, operations, andTechnology teams to embed security across the full OT lifecycle. Establish governance frameworks, policies, and compliance programs (NIST, IEC 62443, ISO 27001, etc.) for OT cybersecurity. Lead a high-performing OT cybersecurity team, developing our people as well as technology. Oversee OT-focused vulnerability management, solutions development, conformance … leading OT/ICS cybersecurity programs in industries such as energy, utilities, oil & gas, manufacturing, or transportation. Deep knowledge of OT security standardsand frameworks (IEC 62443, NERC CIP, NIST CSF, MITRE ATT&CK for ICS). Strong grasp of industrial control systems design and OT/IT convergence challenges. Exceptional executive communication skills, with ability to engage both technical More ❯
guildford, south east england, united kingdom Hybrid / WFH Options
BP Energy
environments, including ICS, SCADA, and IIoT systems. Partner with engineering, operations, andTechnology teams to embed security across the full OT lifecycle. Establish governance frameworks, policies, and compliance programs (NIST, IEC 62443, ISO 27001, etc.) for OT cybersecurity. Lead a high-performing OT cybersecurity team, developing our people as well as technology. Oversee OT-focused vulnerability management, solutions development, conformance … leading OT/ICS cybersecurity programs in industries such as energy, utilities, oil & gas, manufacturing, or transportation. Deep knowledge of OT security standardsand frameworks (IEC 62443, NERC CIP, NIST CSF, MITRE ATT&CK for ICS). Strong grasp of industrial control systems design and OT/IT convergence challenges. Exceptional executive communication skills, with ability to engage both technical More ❯
sunbury, south east england, united kingdom Hybrid / WFH Options
BP Energy
environments, including ICS, SCADA, and IIoT systems. Partner with engineering, operations, andTechnology teams to embed security across the full OT lifecycle. Establish governance frameworks, policies, and compliance programs (NIST, IEC 62443, ISO 27001, etc.) for OT cybersecurity. Lead a high-performing OT cybersecurity team, developing our people as well as technology. Oversee OT-focused vulnerability management, solutions development, conformance … leading OT/ICS cybersecurity programs in industries such as energy, utilities, oil & gas, manufacturing, or transportation. Deep knowledge of OT security standardsand frameworks (IEC 62443, NERC CIP, NIST CSF, MITRE ATT&CK for ICS). Strong grasp of industrial control systems design and OT/IT convergence challenges. Exceptional executive communication skills, with ability to engage both technical More ❯
security. Develop and maintain automation scripts (e.g., PowerShell, Python, Java) to streamline IAM processes and migrations. Advise on IAM-related compliance and governance requirements using frameworks such as ISO, NIST, and Zero Trust architectures. Collaborate with client stakeholders to define IAM strategies aligned to business objectives and security standards. Contribute to the secure integration of cloud, enterprise IT, OT, and … Azure AD, Ping Identity, Saviynt, SailPoint). Strong understanding of IAM concepts: SSO, MFA, RBAC, LDAP, OAuth, SAML, OpenID Connect, provisioning. Knowledge of security protocols, frameworks, and architectures (e.g., NIST, ISO, Zero Trust). Proven experience in cloud IAM across AWS, Azure, and/or GCP environments. Proficiency in scripting/programming (PowerShell, Python, or Java) for IAM automation. Practical More ❯
london (city of london), south east england, united kingdom
Anson McCade
ethical AI principles and align architectures with frameworks such as the EU AI Act and GDPR. Evaluate and implement AI/ML security tools, ensuring adherence to ISO 27001, NIST, TOGAF, and SABSA standards. Collaborate with cross-functional teams to embed DevSecOps practices within AI/ML lifecycles. What We’re Looking For 7+ years’ experience in cybersecurity architecture, including … privacy, and adversarial ML mitigation . Expertise in cloud security (AWS, Azure, or GCP). Current security certification (CISSP, CISM, or equivalent). Knowledge of security frameworks such as NIST, ISO 27001, TOGAF, and SABSA. If you thrive at the intersection of cybersecurity, AI, and client engagement — apply today and help shape the future of secure innovation. More ❯
ethical AI principles and align architectures with frameworks such as the EU AI Act and GDPR. Evaluate and implement AI/ML security tools, ensuring adherence to ISO 27001, NIST, TOGAF, and SABSA standards. Collaborate with cross-functional teams to embed DevSecOps practices within AI/ML lifecycles. What We’re Looking For 7+ years’ experience in cybersecurity architecture, including … privacy, and adversarial ML mitigation . Expertise in cloud security (AWS, Azure, or GCP). Current security certification (CISSP, CISM, or equivalent). Knowledge of security frameworks such as NIST, ISO 27001, TOGAF, and SABSA. If you thrive at the intersection of cybersecurity, AI, and client engagement — apply today and help shape the future of secure innovation. More ❯
ethical AI principles and align architectures with frameworks such as the EU AI Act and GDPR. Evaluate and implement AI/ML security tools, ensuring adherence to ISO 27001, NIST, TOGAF, and SABSA standards. Collaborate with cross-functional teams to embed DevSecOps practices within AI/ML lifecycles. What We’re Looking For 7+ years’ experience in cybersecurity architecture, including … privacy, and adversarial ML mitigation . Expertise in cloud security (AWS, Azure, or GCP). Current security certification (CISSP, CISM, or equivalent). Knowledge of security frameworks such as NIST, ISO 27001, TOGAF, and SABSA. If you thrive at the intersection of cybersecurity, AI, and client engagement — apply today and help shape the future of secure innovation. More ❯
We are the security engineering team, skilled in cybersecurity, cloud security, application security, and regulatory compliance. Our global distribution allows us to leverage unique experiences and skillsets to build and operate security services that safeguard our platform. We prioritize a More ❯
london (city of london), south east england, united kingdom
HCLTech
accounts. • Managing sales, pre-sales and delivery team of consultants for all regional engagements • Designing solutions related to Cyber Risk engagement on assessment and implementation of frameworks such as NIST 800-53 r5, NIST CSF2.0, CIS, ISO27K • Designing solutions related to advisory & consulting engagements around regulatory risk & compliances such as DORA, NIS2, GDPR, SOX ITGC, PCI-DSS, HIPAA, Data Privacy … services (preferable candidates from Big4 organizations) • Capabilities of executing atleast 3-4 advisory/consulting engagements. • Technical Knowledge around information security, business continuity andtechnology risk assessments. ISO 27K, NIST, AI Governance, CIS etc. • Good compliance understanding of industry domains such as BFSI – (SOX, FFIEC, PCI-DSS, BASEL, MAS etc.), Healthcare & Life-sciences – (HIPAA, Hi-Trust, FDA CFR, GxP Compliance … Telecom, Retail, Data Privacy (GDPR, CCPA) Energy & Utilities (NERC, FERC) Information Security (ISO 27000, NIST, CIS) TPRM • Business Resiliency & Cyber Recovery, ZTA • GRC Project & Program Management • Excellent written and verbal communications skills • Should be able to travel 70%-80% on short as well as long term engagements. PLATFORM/TOOL EXPERTISE • Experience on the below mentioned tools is not mandated More ❯
accounts. • Managing sales, pre-sales and delivery team of consultants for all regional engagements • Designing solutions related to Cyber Risk engagement on assessment and implementation of frameworks such as NIST 800-53 r5, NIST CSF2.0, CIS, ISO27K • Designing solutions related to advisory & consulting engagements around regulatory risk & compliances such as DORA, NIS2, GDPR, SOX ITGC, PCI-DSS, HIPAA, Data Privacy … services (preferable candidates from Big4 organizations) • Capabilities of executing atleast 3-4 advisory/consulting engagements. • Technical Knowledge around information security, business continuity andtechnology risk assessments. ISO 27K, NIST, AI Governance, CIS etc. • Good compliance understanding of industry domains such as BFSI – (SOX, FFIEC, PCI-DSS, BASEL, MAS etc.), Healthcare & Life-sciences – (HIPAA, Hi-Trust, FDA CFR, GxP Compliance … Telecom, Retail, Data Privacy (GDPR, CCPA) Energy & Utilities (NERC, FERC) Information Security (ISO 27000, NIST, CIS) TPRM • Business Resiliency & Cyber Recovery, ZTA • GRC Project & Program Management • Excellent written and verbal communications skills • Should be able to travel 70%-80% on short as well as long term engagements. PLATFORM/TOOL EXPERTISE • Experience on the below mentioned tools is not mandated More ❯
accounts. • Managing sales, pre-sales and delivery team of consultants for all regional engagements • Designing solutions related to Cyber Risk engagement on assessment and implementation of frameworks such as NIST 800-53 r5, NIST CSF2.0, CIS, ISO27K • Designing solutions related to advisory & consulting engagements around regulatory risk & compliances such as DORA, NIS2, GDPR, SOX ITGC, PCI-DSS, HIPAA, Data Privacy … services (preferable candidates from Big4 organizations) • Capabilities of executing atleast 3-4 advisory/consulting engagements. • Technical Knowledge around information security, business continuity andtechnology risk assessments. ISO 27K, NIST, AI Governance, CIS etc. • Good compliance understanding of industry domains such as BFSI – (SOX, FFIEC, PCI-DSS, BASEL, MAS etc.), Healthcare & Life-sciences – (HIPAA, Hi-Trust, FDA CFR, GxP Compliance … Telecom, Retail, Data Privacy (GDPR, CCPA) Energy & Utilities (NERC, FERC) Information Security (ISO 27000, NIST, CIS) TPRM • Business Resiliency & Cyber Recovery, ZTA • GRC Project & Program Management • Excellent written and verbal communications skills • Should be able to travel 70%-80% on short as well as long term engagements. PLATFORM/TOOL EXPERTISE • Experience on the below mentioned tools is not mandated More ❯
Snelshall West, Milton Keynes, Buckinghamshire, England, United Kingdom
DS Smith
management response is well defined. Engage risk review and assurance activities across existing suppliers. Provide IT and business advice on aspects of security standardsand regulations such as ISO27001, NIST CSF, PCI DSS, NISD and NIS2. Engage with I&T system owners to provide training in relation to information security, cyber resilience, phishing, and facilitation of cyber scenario desktop simulations … controls and consequences across both IT and manufacturing environments in manufacturing or similar industries. Experience working with information security standardsand frameworks such as and regulations such as ISO27001, NIST CSF, PCI DSS, NISD and NIS2. Proven analytical, problem-solving, planning, project delivery and supplier work packages management skills. Demonstrable experience of engaging across all levels of a company in More ❯
framework, ensuring effective identification, assessment, and remediation of risks. Conduct detailed risk and control assessments across business units, projects, vendors, and IT systems, aligning with standards like ISO 27001, NIST CSF, and CIS Controls. Manage and enhance Third-Party Risk Management, including cybersecurity assessments of external partners and suppliers. Collaborate with stakeholders to develop and track cyber risk treatment plans … while fostering strong relationships to embed a risk-aware culture across the organisation. Experience you will have: Expertise in cybersecurity risk frameworks and compliance, including CIS Controls, ISO 27001, NIST CSF, GDPR, SOX, and PCI. Strong technical and analytical skills, with the ability to assess risks, identify gaps, and propose mitigation strategies across IT systems and third parties. Excellent communication More ❯
Milton Keynes, Buckinghamshire, South East, United Kingdom
Sanderson Recruitment
framework, ensuring effective identification, assessment, and remediation of risks. Conduct detailed risk and control assessments across business units, projects, vendors, and IT systems, aligning with standards like ISO 27001, NIST CSF, and CIS Controls. Manage and enhance Third-Party Risk Management, including cybersecurity assessments of external partners and suppliers. Collaborate with stakeholders to develop and track cyber risk treatment plans … while fostering strong relationships to embed a risk-aware culture across the organisation. Experience you will have: Expertise in cybersecurity risk frameworks and compliance, including CIS Controls, ISO 27001, NIST CSF, GDPR, SOX, and PCI. Strong technical and analytical skills, with the ability to assess risks, identify gaps, and propose mitigation strategies across IT systems and third parties. Excellent communication More ❯
findings Apply both test of Design and Operating Effectiveness methodologies Use sampling techniques (random and judgemental) to evaluate control performance Monitoring compliance with industry cyber security standards such as NISTand CIS Reporting & Analysis Evidence reviews Prepare detailed reports on control testing outcomes, including ratings and observations Support the development of dashboards and governance reports Track and monitor Key Risk … demonstrable experience in the following: IT audit, compliance or governance Risk management and risk assessment methodologies Control frameworks (e.g., ISO 27001, COBIT). Standardsand frameworks, e.g. ITIL, ITSM, NIST Project management and stakeholder management With the following skills: Broad technical awareness: Microsoft Azure, Service Desk, SQL, Information Security etc Strong analytical and documentation skills Proficiency in Excel, SharePoint, PowerBI More ❯
Oxfordshire, England, United Kingdom Hybrid / WFH Options
Tank Recruitment
trusted advisor to clients, leading Quarterly Security Reviews and presenting clear business-focused risk assessments. Own security governance processes, ensuring compliance with frameworks such as Cyber Essentials, ISO27001, andNIST . Oversee patching, vulnerability management, and internal infrastructure security. Collaborate across service delivery, project, and account management teams to embed security consistently. Mentor and develop Security Analysts, ensuring certifications and … into actionable business outcomes for C-level stakeholders. The ideal candidate will have: 5+ years in IT security or MSP environments . Strong knowledge of Cyber Essentials, ISO27001, or NIST frameworks. Experience in vulnerability management, patch governance, and cloud security (M365/Azure). Excellent communication skills with the ability to influence both technical teams and business leaders. (Desirable) Certifications More ❯
Hatfield, Hertfordshire, South East, United Kingdom Hybrid / WFH Options
Synergize Consulting Limited
Strong communication skills. Experience producing intelligence reports for varied audiences. Familiarity with cyber threats, threat actors, attack vectors, and vulnerabilities. Knowledge of information assurance standardsand frameworks including CIS, NIST, ISO 27001, Cyber Essentials/Essentials Plus, GDPR. Knowledge of threat cyber security frameworks such as MITRE ATT&CK, Kill Chain andNIST CSF 2.0. The ideal candidate will combine More ❯
London, South East, England, United Kingdom Hybrid / WFH Options
Arc IT Recruitment
mitigation plans. Contribute to periodic operational risk assessments and formal risk reporting processes. Compliance Support IT control compliance reviews and assessments against internal standardsand frameworks (e.g., ISO 27001, NIST). Assist control owners in performing control self-assessments and audit readiness activities. Help coordinate compliance attestations across internal teams and third-party providers. Participate in periodic maturity assessments and … of IT risk management principles, control frameworks and compliance processes. Experience conducting IT risk assessments, control testing and evidence gathering for audits. Knowledge of frameworks such as ISO 27001, NIST or COBIT. Strong analytical skills and attention to detail with excellent documentation and reporting abilities. Confident communicator, able to engage effectively with technical and non-technical stakeholders. Exposure to financial More ❯