26 to 29 of 29 ISO/IEC 27005 Jobs in the UK

risk is measured, tracked, and embedded within broader technology and business decision-making frameworks. You'll leverage risk methodologies such as NIST and ISO 27005 to deliver detailed qualitative … and quantitative analysis, supporting effective security prioritisation and investment decisions. Key Responsibilities Perform detailed cyber and IT risk analysis using recognised frameworks (e.g. NIST, ISO27005) Collaborate pragmatically with technical and business stakeholders to undertake cyber risk assessments and influence control decisions Act as a subject matter expert and trusted advisor … effective risk governance. Essential Experience and Skills Demonstrable experience applying at least two recognised cyber and / or IT risk methodologies (e.g., NIST, ISO27005, FAIR, OCTAVE) Experience managing cyber risk in complex, geographically distributed organisations Strong documentation skills with the ability to manage and track detailed risk registers Excellent More ❯

Conduct risk assessments and update treatment plans in line with CIO scope. Perform audits in line with the Security Controls Framework (SCF) and ISO standards. Review and update Information Security Management System (ISMS) documentation and approved supplier status. Prepare for and facilitate CIO audits, liaising with auditing teams … skills with a proven track record of identifying and resolving issues quickly. Desirable experience in environmental safety and operational management support. Knowledge of ISO27001 / 27005 standards and the Security Controls Framework (desirable). Experience in delivering training and familiarisation sessions related to ISMS and CIO compliance More ❯

equivalent career experience in a relevant discipline. Understanding of Cyber Security Frameworks and standards (e.g., NCSC security principles, NIST Framework, ISO 27001, ISO27005, IEC62443). Cloud Platforms: Proficiency in AWS and Azure, covering core services like computing, storage, networking, and databases. Familiarity with cloud-native security tools such … PowerShell, Bash). Ability to analyse and utilize threat intelligence to enhance security measures. Experience with security tools such as firewalls, WAFs, intrusion detection / prevention systems, and vulnerability scanners. Conducting security audits and vulnerability assessments. Implementation and management of IAM policies. Risk assessment and mitigation in cloud environments. More ❯

Cambridge University Press & Assessment (CUPA) Location: Cambridge / Hybrid with 2 days a week minimum the office Contract: Permanent Join our organisation as a Security Risk Lead . Utilise your expertise and drive to safeguard operations in this impactful role. We are Cambridge University Press & Assessment, a world-leading … the organisation in industry forums. About you We are looking for someone with extensive knowledge of security risk management frameworks and methodologies (e.g., ISO 31000, 27001, 27005) and regulatory requirements in the industry. The ideal candidate will have a relevant degree in Risk Management, Finance, Business … regardless of demographic characteristics (age, disability, educational attainment, ethnicity, gender, marital status, neurodiversity, religion, sex, gender identity and sexual identity), cultural, or social class / background. We believe better outcomes come through diversity of thought, background and approach. We welcome applications from people from all backgrounds and communities, actively More ❯