KMS). Proficiency with Infrastructure as Code (Terraform, CloudFormation, etc.). Experience with container security (Docker, Kubernetes, etc.). Familiarity with security frameworks and standards (e.g., CIS benchmarks, NIST800-53, SOC 2). Relevant certifications are a plus (e.g., AWS Security Specialty, CCSP, CISSP). What we offer Play a key role in shaping the More ❯
Assurance Risk Assessment and Risk Treatment Plans Establish security requirements for cloud-based solutions by evaluating business strategies and requirements, implementing security standards such as ISO 27000 series, NIST, CSF, and CSA Identify and deliver appropriate controls based on industry standards (e.g. CCM) to drive cloud and customer security solutions framework based on business risk and cloud native … IAM Cloud security concepts, technologies and best practices for delivering security across IaaS, PaaS, SaaS and Serverless architectures Implementing Information Security and Privacy Standards and Frameworks (e.g. ISO 27k, NIST800-53, CIS, GDPR) Leading security working groups and external security testing (ITHC, Penetration Testing, etc) of cloud solutions at high HMG classification levels (OFFICIAL required, SECRET desirable) or equivalent in More ❯
with OT/ICS networking Strong background in industrial firewalls and network segmentation Familiar with common OT protocols and monitoring tools Knowledge of industry security standards (IEC 62443, NIST800-82) Certifications are welcome but not required. Interested? Send your CV or get in touch for a chat. More ❯
SIEM, endpoint protection, and identity management systems. Investigate security incidents, perform root cause analysis, and recommend corrective actions. Assist in compliance efforts with standards such as ISO 27001, NIST, and MOD-specific frameworks (e.g., JSPs, DEFSTANs). Contribute to risk assessments and the development of RMADS and other assurance documentation. Stay current with emerging threats, technologies, and regulatory … of network security, threat intelligence, and incident response. Familiarity with SIEM platforms, firewalls, IDS/IPS, and endpoint protection tools. Experience with regulatory frameworks such as ISO 27001, NIST SP800, and MOD standards. Ability to interpret and apply security controls in complex, multi-vendor environments. Excellent analytical, communication, and stakeholder engagement skills. Desirable Certifications such as CISSP, CISM More ❯
client projects: Design and manage comprehensive security programmes tailored to diverse environments, including hybrid IT/OT settings. Deliver projects aligned with industry frameworks and compliance requirements, such as NIST800-53, ISO27001, NIST CSF, NIS 2, DORA. Leverage emerging technologies such as AI, IoT, cloud solutions, and advanced threat detection systems. Advise on their application, assess their suitability More ❯
client projects: Design and manage comprehensive security programmes tailored to diverse environments, including hybrid IT/OT settings. Deliver projects aligned with industry frameworks and compliance requirements, such as NIST800-53, ISO27001, NIST CSF, NIS 2, DORA. Leverage emerging technologies such as AI, IoT, cloud solutions, and advanced threat detection systems. Advise on their application, assess their suitability More ❯
