Email Security, Data Loss Prevention, Anti-Virus and Endpoint Protection. Experience of Control Frameworks and Industry standards such as ISO 27001 ISMS, ISO 27002, NIST CSF, NIST SP 800-53 GDPR, PCI DSS, Payment Services Directive 2 (PSD2), Cyber Essentials, CIS Benchmarks and Digital Operational Resilience Act (DORA) Experience ofmore »
experienced Director of Information Security. This individual will have a proven track record in managing security systems and ensuring compliance with standards (ISO 27001, NIST, SOC 2). This opportunity involves working cross- functionally with supporting teams taking a strategic 360 approach to security. You must be prepared to influence more »
Newcastle upon Tyne, Tyne and Wear, Tyne & Wear, United Kingdom Hybrid / WFH Options
Hays Technology
/Cloud environment, be experienced with the security principles surrounding business acquisitions and have a nice hybrid of traditional Information Security knowledge (ISO27001, GRC, NIST, Cyber Essentials Plus etc.) alongside a technical cyber understanding enabling them to create and ensure the adherence of policies in a cloud-focused SAAS business more »
Employment Type: Permanent
Salary: £80000 - £100000/annum plus bonuses and more benefits
controls (Data at Rest, Data in Transit, Public Key Infrastructure (PKI)), Security Monitoring and System Security Audit. Nationaland international security standards including the NIST Cyber Security Framework, Special Publication 800 Series and other industry frameworks. Familiarity with TOGAF and Archimate. Experience in MOD security policy, processes, and practices (inc more »
of 5 years' experience working within Information Security. Experience working in the financial industry Desirable Qualifications ISACA CISA, CISM or CRISC Understanding of ISO27000, NIST CSF, Cyber Essentials and audit processes. Good written and verbal communication skills, interpersonal and collaborative skills, and the ability to communicate security and risk-related more »
Birmingham, England, United Kingdom Hybrid / WFH Options
CRG Recruitment Ltd
control maturity assessments. Experience of overseeing and leading remediation of security assessments, technical testing, and vulnerability analysis including Cyber Essentials, Cyber Essentials Plus, andNIST CSF. Experience in incident response and overseeing improvement actions such as development and tuning of security monitoring, alerting, and reporting. Technical knowledge and broad hands more »
policies, standards, guidelines, and procedures to ensure compliance with relevant regulations (e.g. GDPR, PCI DSS) and industry standards such as Cyber Essentials+, ISO 27001 & NIST guidelines. Managing the relationship(s) with 3rd party suppliers responsible for implementing and managing security monitoring tools and technologies, ensuring we detect and respond to more »
also require skills in the likes of SIEM and familiar with the likes of DAST & SAST testing. Finally, strong knowledge of frameworks like ISO & NIST is required. Any experience of the OT/IoT sector would be very welcome too. If you're interested in Cloud Security, Security Engineering, Offensive more »
including AZ 104 You have a good knowledge of DevOps and IaC concepts You have a good understanding of cloud based security (e.g. ISO27001, NIST, CIS, OWASP, SOC2) and Identity and Access Management (IAM) within Azure You're familiar with ARM templates and/or Pulumi You have automation andmore »
and tools to deploy, monitor, and administer Cloud applications and the underlying services for Cloud. Experience with industry standard Cloud security frameworks (such as NIST, CSA and MITRE ATT&CK) and Cloud controls integration into DevSecOps toolchain Knowledge and experience of building Cloud security patterns aligned to industry best practice more »
including experience in information security, business continuity planning, business impact assessments, crisis management and cyber security. Working knowledge and/or expertise of ISO27001, NIST, CAF or other industry standards. Knowledge and general understanding of EU Digital Operational Resilience Act (DORA) and Network and Information Security (NIS2) Directive. Knowledge ofmore »
and applications. Maintain Windows server and Unix based servers, O365 and administer MS Azure. Implement and maintain information security controls in line with ISO27001, NISTand DORA standards. Support the Bank’s VMware and Citrix virtual infrastructure. Maintain the bank’s Business Continuity and Disaster recovery plan and procedure. Lead more »
DMARC, SPF, DKIM • Strong Scripting (e.g., PowerShell or Python) • Security automation frameworks • Security platform management • Vulnerability management tools • Privilege Access Management • Industry-standard frameworks (NIST, SANS) and best practices controls (CIS) About Us ComfortDelGro is one of the largest land transport companies in the world, with a presence in more »
minimum, BCM certified under ISO 22301 or qualified BCM institute member with good understanding of IT risk and control frameworks, such as, CISA,COBIT, NIST, ISO 27001 or equivalent. more »
to understand emerging Cyber Security threats and events Knowledge of internal and/or external regulatory policies, standards, procedures, and controls (e.g., COBIT, COSO, NIST, ISO27xx) Ability to drive technical consensus and facilitate agreements with challenging stakeholders Ability to understand business visions and strategy Strong communication (oral and written) andmore »
to understand emerging Cyber Security threats and events Knowledge of internal and/or external regulatory policies, standards, procedures, and controls (e.g., COBIT, COSO, NIST, ISO27xx) Ability to drive technical consensus and facilitate agreements with challenging stakeholders Ability to understand business visions and strategy Strong communication (oral and written) andmore »
Information Security Risk management and understand the monitoring of Cloud and Web platforms Ensure business is aligned with industry Frameworks such ISO27001/2, NISTand ITIL ERM Framework, Risk Reporting and Monitoring Support embedding of the ERM Framework, with a focus on Technologyand Change Risks. Promote and embed more »
Greater London, England, United Kingdom Hybrid / WFH Options
Made Tech
Up-to-date understanding of, and ensuring compliance to, security standardsand regulations including GDS Technology Code of Practice, NCSC Cyber Principles, ISO27001, SoC, NIST, PCI, and GDPR Up-to-date understanding of testing the security of software and infrastructure using appropriate security tools including automated cloud-based tooling Up more »
Bristol, Avon, South West, United Kingdom Hybrid / WFH Options
Hargreaves Lansdown Asset Management Limited
at influencing and negotiating. Certifications such as CISSP, CEH, OSCP, or GSEC are preferrable. Knowledge of security principles, practices, and frameworks, such as OWASP, NIST, and ISO Awareness of security tools and technologies, such as SAST, DAST, IAST, SCA, WAF, IDS, IPS. Experience in conducting threat modelling and risk assessments. more »
equivalent experience or exposure to both infrastructure and applications • Knowledge of IT general computer controls, Information Security controls, and related processes and frameworks (i.e. NIST, COBIT, COSO, ISO) • Knowledge of third party assurance reporting and frameworks (SOC, ISAE3000) is a plus • Exposure to multiple computing environments (i.e. Mainframe, UNIX/ more »
candidates with experience in: Extensive Cyber Security background working Assurance, Compliance, Consultant based roles. Strong experience working with Security policies and frameworks (e.g. ISO27001, NIST, OWASP, CIS, JSP's) Experience working with central government clients on classified programmes of work Must have active eDV (UK**) Clearance Our client is looking more »
experience in identifying and managing security vulnerabilities. Prior experience in Qualys if preferred. of Cyber Security Frameworks andstandards such as NCSC security principles, NIST Framework, ISO 27001, ISO27005, IEC62443 etc. desired: CompTIA Network+, Security+, CySA+, AWS Practitioner (or equivalents) This is a hybrid role, but the organization is relatively more »
of post-trade market infrastructures (e.g. CSD), knowledge of Enterprise Architecture frameworks (e.g. TOGAF,SAFE), Cyber Security Architecture and RISK frameworks (SABSA, ISO 27k, NIST,..) and relevant experience with Agile operating models and frameworks are extra assets. Being proficient in English is required. Please do send an up to more »
Solihull, West Midlands, United Kingdom Hybrid / WFH Options
Indotronix Avani UK Ltd
including IAM, VPC, EC2, S3, RDS, Lambda, and CloudFormation. - Strong understanding of security best practices, principles, and frameworks, such as ISO 27001 controls andNIST Guidelines. - Experience in implementing security automation using scripting languages e.g. Python and infrastructure-as-code (IaC) tools. - Ability to perform security threat modeling and risk more »
Bristol, Avon, South West, United Kingdom Hybrid / WFH Options
Hargreaves Lansdown Asset Management Limited
issues. Certifications such as CISSP, CEH, OSCP, or GSEC are preferred but not required. Knowledge of security principles, practices, and frameworks, such as OWASP, NIST, and ISO. Awareness of security tools and technologies, such as SAST, DAST, IAST, SCA, WAF, IDS, IPS. Experience in conducting threat modeling and risk assessments. more »