experienced Director of Information Security. This individual will have a proven track record in managing security systems and ensuring compliance with standards (ISO 27001, NIST, SOC 2). This opportunity involves working cross- functionally with supporting teams taking a strategic 360 approach to security. You must be prepared to influence more »
Newcastle upon Tyne, Tyne and Wear, Tyne & Wear, United Kingdom Hybrid / WFH Options
Hays Technology
/Cloud environment, be experienced with the security principles surrounding business acquisitions and have a nice hybrid of traditional Information Security knowledge (ISO27001, GRC, NIST, Cyber Essentials Plus etc.) alongside a technical cyber understanding enabling them to create and ensure the adherence of policies in a cloud-focused SAAS business more »
Employment Type: Permanent
Salary: £80000 - £100000/annum plus bonuses and more benefits
controls (Data at Rest, Data in Transit, Public Key Infrastructure (PKI)), Security Monitoring and System Security Audit. Nationaland international security standards including the NIST Cyber Security Framework, Special Publication 800 Series and other industry frameworks. Familiarity with TOGAF and Archimate. Experience in MOD security policy, processes, and practices (inc more »
testing, and remediation. Strong knowledge of vulnerability scanning tools such as Nessus, Qualys, or similar. Understanding of industry frameworks andstandards, such as OWASP, NIST, and CVSS. Ability to analyze and interpret vulnerability data to prioritize and address risks effectively. Excellent communication skills, with the ability to convey complex technical more »
JIRA) * Ability to identify Threat Vectors in enterprise or cloud environments and design associated security/controls. * Knowledge of Enterprise security frameworks such as NIST Cybersecurity Framework. * Knowledge of Cyber-attack phases (e.g. Cyber Kill Chain and/or Mitre Attack Framework). * Knowledge of a broad range of security more »
Reading, England, United Kingdom Hybrid / WFH Options
Areti Group
of influencing and negotiating technical outcomes with external partners, including resolving conflicts arising from changing priorities. · Familiarity with common information security management frameworks like NIST, PCI, GDPR, ISO Series, OWASP, ITIL, ISF Standardsof Good Practice (SoGP), and ISACA’s Control Objectives for Information and related Technology (COBIT) frameworks. Areti more »
Watford, England, United Kingdom Hybrid / WFH Options
Addition+
to communicate complex IT findings and drive improvements in governance and risk management. Provide expert advice on IT controls and frameworks such as ISO, NIST, COBIT, and ITIL. Supervise and mentor junior team members, ensuring quality and adherence to audit methodology. Experience & Skills Required Strong IT audit experience, with a more »
policies, standards, guidelines, and procedures to ensure compliance with relevant regulations (e.g. GDPR, PCI DSS) and industry standards such as Cyber Essentials+, ISO 27001 & NIST guidelines. Managing the relationship(s) with 3rd party suppliers responsible for implementing and managing security monitoring tools and technologies, ensuring we detect and respond to more »
Professional. * Knowledge of UK/NATO Information Assurance standards, procedures & systems, including Government Functional Standard GovS 007: Security, HMG IS1&2, ISO27000 series standards, NIST SP800 series standards, JSP440, JSP604, guidance material provided by NCSC, CPNI and NIST. * Practical experience of producing Security Accreditation documentation * Practical experience of NCSC andmore »
Stanmore, England, United Kingdom Hybrid / WFH Options
Sky
as AWS, Azure, or GCP. Excellent interpersonal and communication skills for collaboration with internal teams and stakeholders. Good understanding of security frameworks such as NIST/SOC 2/ISO/IEC. Proficiency in documentation and presentation to effectively communicate technical solutions Preferred: Bachelor’s or master’s degree in more »
Assurance, Audit, Compliance and Risk knowledge, experience of IT Risk and assurance frameworks, and control assurance assessments (e.g. ISO 27001, PCI DSS, CIS 20, NIST, ISACA IT Risk). Theres a true flexible working culture and leading benefits. (Great pension, bonus, flexible working, etc). Although the team work remotely more »
also require skills in the likes of SIEM and familiar with the likes of DAST & SAST testing. Finally, strong knowledge of frameworks like ISO & NIST is required. Any experience of the OT/IoT sector would be very welcome too. If you're interested in Cloud Security, Security Engineering, Offensive more »
including AZ 104 You have a good knowledge of DevOps and IaC concepts You have a good understanding of cloud based security (e.g. ISO27001, NIST, CIS, OWASP, SOC2) and Identity and Access Management (IAM) within Azure You're familiar with ARM templates and/or Pulumi You have automation andmore »
and tools to deploy, monitor, and administer Cloud applications and the underlying services for Cloud. Experience with industry standard Cloud security frameworks (such as NIST, CSA and MITRE ATT&CK) and Cloud controls integration into DevSecOps toolchain Knowledge and experience of building Cloud security patterns aligned to industry best practice more »
Stanmore, England, United Kingdom Hybrid / WFH Options
Sky
as AWS, Azure, or GCP. Excellent interpersonal and communication skills for collaboration with internal teams and stakeholders. Good understanding of security frameworks such as NIST/SOC 2/ISO/IEC. Proficiency in documentation and presentation to effectively communicate technical solutions. Preferred: Bachelor’s or master’s degree in more »
Stanmore, England, United Kingdom Hybrid / WFH Options
Sky
as AWS, Azure, or GCP. Excellent interpersonal and communication skills for collaboration with internal teams and stakeholders. Good understanding of security frameworks such as NIST/SOC 2/ISO/IEC. Proficiency in documentation and presentation to effectively communicate technical solutions. A natural team player, continuously and proactively communicating more »
DMARC, SPF, DKIM • Strong Scripting (e.g., PowerShell or Python) • Security automation frameworks • Security platform management • Vulnerability management tools • Privilege Access Management • Industry-standard frameworks (NIST, SANS) and best practices controls (CIS) About Us ComfortDelGro is one of the largest land transport companies in the world, with a presence in more »
to understand emerging Cyber Security threats and events Knowledge of internal and/or external regulatory policies, standards, procedures, and controls (e.g., COBIT, COSO, NIST, ISO27xx) Ability to drive technical consensus and facilitate agreements with challenging stakeholders Ability to understand business visions and strategy Strong communication (oral and written) andmore »
to understand emerging Cyber Security threats and events Knowledge of internal and/or external regulatory policies, standards, procedures, and controls (e.g., COBIT, COSO, NIST, ISO27xx) Ability to drive technical consensus and facilitate agreements with challenging stakeholders Ability to understand business visions and strategy Strong communication (oral and written) andmore »
understanding and practical experience in technology risk and/or audit Proficiency in IT risk management processes, frameworks, and protocols such as COBIT andNIST Strong communication and analytical skills, essential for stakeholder management and evaluating risk data Keeping abreast of technological developments, trends, and emerging threats to effectively mitigate more »
Information Security Risk management and understand the monitoring of Cloud and Web platforms Ensure business is aligned with industry Frameworks such ISO27001/2, NISTand ITIL ERM Framework, Risk Reporting and Monitoring Support embedding of the ERM Framework, with a focus on Technologyand Change Risks. Promote and embed more »
/Non-financial Risk, preferably in the financial service or technology space. Knowledge of security, industry, and regulatory compliance frameworks and drivers such as NIST, ISO, SOC2, GDPR. The ability to identify, analyse and propose risk mitigating actions risks in cloud-native environments. Exposure to policy and procedure creation, technical more »
with a solid grasp of key technical considerations. - Knowledge and experience in using Architectural Frameworks including TOGAF - Knowledge and experience ofStandards including ISO, NIST, CSA , etc.. - Experience in Development of Outputs including Reference Architectures, Roadmaps, Design Patterns, Technical Standards, Policies and Principles, - Experience in Designing Security Controls from Non more »
progressive team and organisation. Qualifications Experience Requirements Practical knowledge of security standardsand frameworks, such as those provided through IASME, Cyber Essentials, ISO 27001, NIST or equivalent, and designing solutions to achieve these. Relevant technical certifications such as those provided by Microsoft, Cisco, or security toolset providers Demonstrable experience working more »
AWS, Azure or GCP Proficiency in cloud platforms such as AWS, Azure, or GCP. Strong understanding of security frameworks, compliance standards, and regulations (e.g., NIST, ISO 27001, PCI DSS). Experience with security assessment tools and techniques. Cloud Security Architect - Remote - £140K more »