26 to 47 of 47 Remote ISO/IEC 27002 (supersedes ISO/IEC 17799) Jobs

ensuring alignment with the National Institute of Standards and Technology (NIST) Cyber Security Framework. Familiar with UK housing sector regulation, applicable standards and data protection requirements (e.g. GDPR, ISO27001, ISO27002, ISO27701) you'll be responsible cyber assurance to support the security posture across systems and services that support tenants and operations. You'll communicate the local action plan, explain how More ❯

ensuring alignment with the National Institute of Standards and Technology (NIST) Cyber Security Framework. Familiar with UK housing sector regulation, applicable standards and data protection requirements (e.g. GDPR, ISO27001, ISO27002, ISO27701) you'll be responsible cyber assurance to support the security posture across systems and services that support tenants and operations. You'll communicate the local action plan, explain how More ❯

ensuring alignment with the National Institute of Standards and Technology (NIST) Cyber Security Framework. Familiar with UK housing sector regulation, applicable standards and data protection requirements (e.g. GDPR, ISO27001, ISO27002, ISO27701) you'll be responsible cyber assurance to support the security posture across systems and services that support tenants and operations. You'll communicate the local action plan, explain how More ❯

technical concepts to non-technical people. Please note the minimum criteria for this role is: Practical experience of operating certified ISMS using ISO 27001 / 2, NIST CSF and other security standards in the design and management of information security controls. Practical experience working with third party suppliers to audit and evidence compliance with … more, as required) reduce or vary working hours reduce or vary the days worked work compressed hours job share For more information about our recruitment processclick here Directorate / Department Overview The Risk and Compliance vision is to become a trusted partner for the business. To enable this, the directorate teams’ shared objective is to enable the first … to ensure that no applicant or employee receives less favourable treatment because of their age, disability, gender identity, marital status, national origin, pregnancy or caring responsibilities, race, religion / belief, sex, sexual orientation or socio economic background. We also recognise the importance of diversity of thought and other forms of neurocognitive variation. Nest is a Disability Confident Leader More ❯

Security Control Tester / Security Control Assessor Our client is a global information services company and is seeking 3 seasoned security experts to lead the assessment and evaluation of security controls across systems and processes. As a Lead Security Control Assessor, you will oversee and conduct security control testing, verifying the design, implementation, and operational effectiveness of controls … CISSP, ISO 27001 Lead Auditor, or equivalent Knowledge of industry standards and frameworks such as NIST 800-53, ISO 27001 / 27002, CIS Controls, COBIT Strong communication and stakeholder management skills Experience with automated testing tools such as Sailpoint, Rapid7, Wiz.io, MS Defender Experience leveraging automation, data-driven More ❯

Information Security & Risk Specialist (ISO 27001:2022) - Energy Location: Brussels Hybrid: 2 days a week My client is looking for an Information Security Specialist to join the team in Brussels. The successful candidate will have the opportunity to work in a hybrid model, allowing for a blend of remote and in-office work to support a … equivalent are considered a strong asset. Proven experience in implementing and monitoring Information Security Management Systems (ISMS) is essential. Strong knowledge of information security standards such as ISO 27001:2022, ISO 27002. Technical expertise … in security technologies such as cryptography, network security, intrusion detection, access control models, authentication mechanisms, and security policies (GPOs). Experience with security monitoring tools (e.g., SIEM, IDS / IPS). Strong analytical and risk management skills, with the ability to assess and mitigate security risks. Strong experience in security governance, risk assessments, and project coordination. Familiarity with More ❯

offensive security tactics, techniques, and procedures and communicate knowledge of the same to other team members . Conduct ad-hoc offensive security testing using industry standard tools and / or internally developed tools. Lead report creation activities including compromise narratives and detailed technical findings with appropriate risk severity ratings, tactical and strategic recommendations to reduce risk levels, peer … at least one scripting language (Python, Ruby, PowerShell, Bash, etc.). Experience with at least one cloud environment (AWS, GCP, Azure). Experience attacking cloud, on-prem and / or hybrid environments from initial access all the way through actions on objective. Nice to have Previous experience of Red Team project delivery to include creation and execution of … as, but not limited to, GPEN, GXPN, GREM, eCPTX, eCPPT, OSCP, OSWE, CISSP, CPSA, CRT, etc. Knowledgeable in Industry Security standards (i.e.: TIBER-EU, CBEST, NIST Cyber Security Framework, ISO27002, etc.). Knowledgeable in Agile project management. Company Benefits Bonus Programme Equity Programme Employee Stock Purchase Plan (ESPP) Private Medical and Dental coverage Mental Health Benefit Programme Group Pension Plan More ❯

Architect (London | Hybrid | Cloud, NIST, SABSA) A leading global financial services firm is hiring an Enterprise Security Architect for a permanent position based in London (2 days onsite / week) . Key Tech & Frameworks: Cloud Security (SaaS, IaaS, Infrastructure) SABSA, NIST CSF, ISO 27001 / 2, SP 800-53, SANS Top More ❯

Active Directory, and Azure AD Ability to understand and articulate interoperability between technologies and design pragmatic security solutions for the bank Effective collaboration with internal and external SMEs / partner organizations Experience with frameworks such as ISO 27001 / 2, SOC, NIST, or COBIT About You Skills Recognized leading security qualification or More ❯

reviews and ensure secure-by-design principles. Conduct threat modelling exercises to identify and mitigate potential risks. Ensure compliance with security regulations such as ISO27001, NIST 800-30 / 37 / 53, JSP 440, 604, and Defence Standards. Develop and maintain security documentation (e.g., RMADS, Security Assurance Documents, Security Management Plans). Conduct penetration testing, vulnerability … assessments, and remediation activities. The Person Key Skills & Experience: Strong knowledge of risk management frameworks and methodologies (ISO 27001 / 2, ISO27005 / 31000, NIST 800-30, NIST 800-53). Experience with defence and government security standards (JSPs, Def Stan 05-138 / 139). Proficiency in security testing More ❯

technical concepts to non-technical people. Please note the minimum criteria for this role is: Practical experience of operating certified ISMS using ISO 27001 / 2, NIST CSF and other security standards in the design and management of information security controls. Practical experience working with third party suppliers to audit and evidence compliance with … as required) reduce or vary working hours reduce or vary the days worked work compressed hours job share For more information about our recruitment process click here Directorate / Department Overview The Risk and Compliance vision is to become a trusted partner for the business. To enable this, the directorate teams' shared objective is to enable the first … to ensure that no applicant or employee receives less favourable treatment because of their age, disability, gender identity, marital status, national origin, pregnancy or caring responsibilities, race, religion / belief, sex, sexual orientation or socio economic background. We also recognise the importance of diversity of thought and other forms of neurocognitive variation. Nest is a Disability Confident Leader More ❯

Job Description Role Overview We're looking for a pragmatic, risk-focused Information Security Manager to work within Nest and maintain our ISO 27001 certified corporation Information Security Management System (ISMS). We sit in the second line of defence and advise the business on security risks, incidents, audits, assurance, and the implementation and monitoring of … technical concepts to non-technical people. Please note the minimum criteria for this role is: Practical experience of operating certified ISMS using ISO 27001 / 2, NIST CSF, and other security standards in the design and management of information security controls. Practical experience working with third-party suppliers to audit and evidence compliance with More ❯

Social network you want to login / join with: IT Risk & Control Assurance Manager, Staines-upon-Thames col-narrow-left Client: Bupa Location: Staines-upon-Thames, United Kingdom Job Category: Other - EU work permit required: Yes col-narrow-right Job Reference: 3e794b305c32 Job Views: 4 Posted: 27.06.2025 Expiry Date: 11.08.2025 col-wide Job Description: Job Description: IT … of all mitigating controls to both Business and Technology risk committees as appropriate. The scope of this role covers all Technology Risks; IT Strategy and Architecture, Service Management / Stability, Capacity / Capability Management, Disaster Recovery and Crisis Management. This role will also integrate the output from the Information Security Risk and Transformation Risk teams into … the overall risk reporting for each Business Unit. You’ll help us make health happen through: Interpreting and communicating to the Business Unit changes to Risk Polices, Business / IT Strategy, legislation that impact the existing Risk and Control Framework. Identifying and assessing Technology Management and Information Security issues so that control environments are properly defined and residual More ❯

Manager, Cybersecurity, Global will be part of the leadership team responsible for protecting a rapidly expanding global enterprise. The OT Manager, Cybersecurity, will audit the Industrial Control System / Operational Technology (ICS / OT) environment and perform risk / vulnerability assessments leading to the development of an enterprise strategy / design plan. … The OT Manager, Cybersecurity, will lead the team on implementation (hands-on configuration) of the enterprise ICS / OT systems Additional responsibilities include research, classification, and root cause analysis of security events that occur within the environment. The ideal candidate will have security industry knowledge that evolves with current and emerging vulnerabilities and threats, as well as an … 3+ years of experience performing security assessments in an OT environment. Excellent leadership skills as this is a people manager role. Strong understanding of cybersecurity frameworks for ICS / OT environments Strong understanding of OT network communication protocols and industrial networking topologies. Familiarity with NIST (National Institute of Standards and Technology) Special Publication 800-61 Revision 2, Computer More ❯

services in line with design and security policies. Monitoring and administering the installation and integration of corporate network communications, including routers, switches, firewalls, DMZ, servers, telephony and LAN / WAN communication services. Managing the IP space across the organisation ensuring VLANs, IP Subnet, DNS, DHCP, VPNs, and VoIP traffic is well designed, secure and optimised. Ensuring best practices … Planning lifecycle renewals, 'hotswap' procedures and emergency hardware failure protocols. Providing regular service status updates to line management and agree and monitor service availability targets. Ensuring the active / active WAN bandwidth and connectivity services are sufficient, balanced and perform efficiently. Planning and testing failover of critical operational services. Researching latest networking developments and recommend any actions that … is preferred. Experience in a Technical IT role maintaining secure networks in a MS Windows environment in a multi-disciplined organisation. Expert knowledge of and experience in LAN / WAN / VLAN communications, VPN configuration and enterprise wireless networking. Experience of Dell switches with fibre is preferable. CCNA / CCNP accreditation is a bonus More ❯

improvement and knowledge sharing across teams. What We’re Looking For Technical Experience & Knowledge Experience with risk management frameworks and methodologies such as ISO / IEC 27001 / 2, ISO27005 / 31000, NIST 800-30, NIST 800-53. Strong understanding of security standards and frameworks … including OWASP, Secure by Design principles, and MOD-specific guidelines (e.g., JSP, Def Stan 05-138 / 139). Familiarity with HMG security principles and assurance frameworks is advantageous. Comfortable using threat modelling tools and implementing mitigation strategies. Experience with NIST standards. (this is an absolute must) Key Competencies Strong communicator with the ability to present complex information More ❯

design). Perform security code reviews, provide guidance on secure libraries and frameworks. Standards & Compliance Ensure products meet regulatory and defence standards (ISO 27001 / 27005, NIST 800-30 / 53, JSP 440 / 604, Def Stan 05-series). Lead the creation and maintenance of security documentation (RMADS, Security … Testing & Assurance Design and execute penetration tests and automated vulnerability scans; validate fixes. Oversee third-party security assessments as required. Continuous Improvement Drive security tooling and automation (CI / CD integration, SAST / DAST). Stay ahead of emerging threats and security technologies; evangelise best practices across teams. Qualifications & Experience Proven experience (5+ years) in product … or application security within defence, government, or security-cleared environments. Deep knowledge of risk management frameworks (ISO 27001 / 2 / 5 / 31000, NIST 800-series) and Defence Standards (JSPs, Def Stan 05-138 / 139). Hands-on experience with security testing tools and techniques (SAST More ❯

or similar technical consulting role, ideally within an MSP / Reseller Strong understanding of cybersecurity technologies and frameworks (e.g., SSE, SIEM, SASE, MDR / EDR, ISO27002, NIST) Confident in leading technical customer conversations, developing tailored solutions, and producing supporting documentation Relevant vendor certifications and / or experience working with endpoint protection and incident response More ❯

Clearly communicate risks to technical and non-technical stakeholders. What We're Looking For Essential Experience: Deep understanding of security frameworks: NIST (especially 800-30, 800-53) , ISO27001 / 2, ISO27005, and OWASP. Experience with Secure by Design principles and MOD-specific guidelines (e.g. JSP, Def Stan 05-138 / 139). Familiarity with HMG security More ❯

employer reflecting how our employees are at the very heart of Version 1 and what we do: UK & Ireland's premier AWS, Microsoft & Oracle partner 3400+ strong, €350 / £300m revenue business 10+ years as a Great Place to Work in Ireland & UK Best Workplace for Women in the UK & Ireland by GPTW Best Workplace for Wellbeing in … and with clients Qualifications Minimum of 5 years’ practical experience, gained within the last 7 years in Business Analysis, with a track record in large scale change and / or technology … programmes / projects Experience of information security, cyber security and privacy protection, centred on the ISO27001:2022 information security standard and the detailed controls set out in ISO27002:2022 ISO27001:2022 Internal Auditor certification or willingness to be trained in this Able to produce business process maps and other functional and business-facing documentation to a very high More ❯

Social network you want to login / join with: Remarkable people, trusted by clients to design and advance the world. Wood is recruiting for a Network & Cyber Security Engineerexperienced in Automation and Control Network design and implementation to join our Systems Integration team as part of Woods Consulting business unitto support across our UK projects. This is a … hybrid / remote role that can be based at any of the following UK offices: Aberdeen, Staines, Reading, Glasgow or Northampton with the expectation of travel as required. Applicants must be able to pass HMG Baseline Personnel Security Standard (BPSS) check. Wood is deeply committed to the development of their people and recognises the importance of growing a … Network & Cyber Security Engineer, you will assist in the provision of cyber security, networking, secure architectures, solutions, vulnerability and risk assessments, technologies and procedures to support Wood assignments / project teams and clients. This is an ideal opportunity for an individual with previous project experience who has the capability to discover vulnerabilities and risks in networks, software systems More ❯

for the Platform Engineer (Developer Experience) role at Rightmove Join to apply for the Platform Engineer (Developer Experience) role at Rightmove Role: Platform Engineer (Developer Experience) Location: London / Hybrid Reporting to: Platform Engineering Manager This role represents a unique opportunity for a mid-level engineer with a strong Java foundation to expand their expertise into Platform Engineering … the infrastructure complexities for developers, enabling developers to build and deliver microservices efficiently. Success in this role requires balancing hands-on Java service maintenance with platform architecture, CI / CD pipeline design, and developer enablement. A typical week as a Platform Engineer in Developer Experience team might involve: Maintaining Java services owned by the Developer Experience team. Working … the number of requests through automation and building auditable self-service tooling, documentation and training. Operational Excellence: participate in the out-of-hours on-call rota (1 week / month - competitive additional compensation offered). Required Skills Experience with modern Java: to write clean, efficient, and well-documented code. Experience with test frameworks: JUnit and Mockito is essential. More ❯