5 of 5 ISO/IEC 27002 (supersedes ISO/IEC 17799) Jobs in the UK

product and system development lifecycle . Lead threat modelling and risk assessments , applying recognised frameworks such as ISO / IEC 27001, NIST 800-30 / 53, and ISO 31000. Use and configure industry-standard … secure architectures, ensuring risks are understood, prioritised, and mitigated. Ensure compliance with MOD and HMG standards, including JSPs, Def Stan 05-138 / 05-139 , and ISN 23 / 09 Secure by Design . Support incident response, security investigations, and remediation activities for product and system ...

This role focuses on shaping and delivering security solutions for complex customer needs. You’ll lead discovery sessions, design architectures for SIEM, XDR / MDR, cloud security, translating requirements into clear proposals and reference designs. Your responsibilities include managing technical responses for RFPs, delivering demos, supporting sales with … might be occasional travel. Responsibilities: • Discovery & Solution Shaping: Lead customer workshops to clarify requirements, challenge assumptions, and define optimal security architectures (e.g., SIEM / XDR / MDR, cloud security, EASM / TI / DRP). • Solution Design: Convert business needs into reference ...

technologies such as Splunk, Sentinel, and QRadar. Thorough grasp of security standard methodologies and protocols, for instance ISO 27001 / 27002, PCI DSS. Familiarity with security frameworks such as NIST, ISO, and CIS. Experience with programming languages such ...

with other stakeholders to establish the accreditation program and workstreams' governance framework, ensuring adherence to those standards. Establish and document project scope, milestone / detailed plans and risks, and then use as a basis for all discussions across the program to ensure full agreement. Engage with partners … delivering accreditations (end-to-end). Technical knowledge of specific security standards such as PCI DSS, HIPAA, ISO 27001 / 2, CCM, NIST. Experience presenting to board level. Project management skills running projects end-to-end; project initiation, planning / scheduling, execution ...

line with industry best practice and regulatory legislation. In addition, this role will support the coordination and response to activities affiliated with external / internal IT audits as well as due diligence exercises requested by our external business partners and those we perform on our suppliers. … responsibilities of the role are: Development and delivery of information security policy aligned to industry recognised frameworks (typically ISO27001 / 2) Exception to policy process management and reporting Management reporting on the status of Information Security and the security change programme. Partner with Business and Technology teams ...