objectives and possible targets What You'll Bring: Experience with the examination or implementation of technical controls, such as SOC 2, ISO, TISAX or NIST 800-53 Excellent verbal and written communication skills Has demonstrable skill working with internal and external stakeholders Experience engaging with external auditing bodies Knowledge ofmore »
Solihull, West Midlands, United Kingdom Hybrid / WFH Options
Indotronix Avani UK Ltd
including IAM, VPC, EC2, S3, RDS, Lambda, and CloudFormation. Strong understanding of security best practices, principles, and frameworks, such as ISO 27001 controls andNIST Guidelines. Experience in implementing security automation using scripting languages e.g. Python and infrastructure-as-code (IaC) tools. Ability to perform security threat modeling and risk more »
Engineering Delivery Team with a candidate who will be proficient in running hands-on risk assessments in line with industry good practice (ISO 27001, NIST, JSP 440). You'll also lead the development of risk-based cybersecurity requirements and provide essential technical guidance. Your responsibilities will include conducting in more »
Solihull, West Midlands, United Kingdom Hybrid / WFH Options
Indotronix Avani UK Ltd
including IAM, VPC, EC2, S3, RDS, Lambda, and CloudFormation. - Strong understanding of security best practices, principles, and frameworks, such as ISO 27001 controls andNIST Guidelines. - Experience in implementing security automation using scripting languages e.g. Python and infrastructure-as-code (IaC) tools. - Ability to perform security threat modeling and risk more »
Weymouth, Dorset, South West, United Kingdom Hybrid / WFH Options
Iceberg Cyber Security Ltd
Engineering Delivery Team with a candidate who will be proficient in running hands-on risk assessments in line with industry good practice (ISO 27001, NIST, JSP 440). You'll also lead the development of risk-based cybersecurity requirements and provide essential technical guidance. Your responsibilities will include conducting in more »
have a strong knowledge of Application Security testing methodologies and awareness of industry standardsand regulations e.g. ISO 27001/2, PCI-DSS, ISF, NIST You're familiar with a variety oftechnologyand testing tools including GitHub, Dynamic Application Security Testing (DAST) tools such as Burp Suite, OWASP ZAP more »
Sunderland, Slough, South East Hybrid / WFH Options
Client Server
have a strong knowledge of Application Security testing methodologies and awareness of industry standardsand regulations e.g. ISO 27001/2, PCI-DSS, ISF, NIST You're familiar with a variety oftechnologyand testing tools including GitHub, Dynamic Application Security Testing (DAST) tools such as Burp Suite, OWASP ZAP more »
Slough, Berkshire, South East, United Kingdom Hybrid / WFH Options
Client Server
have a strong knowledge of Application Security testing methodologies and awareness of industry standardsand regulations e.g. ISO 27001/2, PCI-DSS, ISF, NIST You're familiar with a variety oftechnologyand testing tools including GitHub, Dynamic Application Security Testing (DAST) tools such as Burp Suite, OWASP ZAP more »
security testing technologies/techniques, security defect/remediation testing, security hardening practices across platforms. Possess familiarity with industry standardsand frameworks such as NIST, ISO, and OWASP. Possess an understanding of cloud, networking, web architecture, content delivery platforms, filesystem operation, patching, and security. Knowledge if identifying emerging threats, leverage more »
London, England, United Kingdom Hybrid / WFH Options
Pioneer Search
financial services Previous experience in managing technology projects, particularly cyber security, and infrastructure related Familiarity with IT security and control frameworks like ISO27001 andNIST Possess exceptional interpersonal abilities and be capable of creating productive professional relationships with a diverse range of stakeholders Ability to implement projects and prioritize tasks more »
Relevant experience as an Information Security Manager or Analyst within a large, complex corporate environment. Experience with key standards e.g. ISO27001, Cyber Essentials+, GDPR, NIST etc. Strong technical skillset with the ability to engage with stakeholders at all levels. Previous experience in a regulated sector would be beneficial but is more »
Brighton, Sussex, United Kingdom Hybrid / WFH Options
JNC Recruitment Ltd
Expert in Active Directory & Azure Active Directory/Entra ID Strong knowledge of IAM & PAM Windows Server & OS Device, mobile & web security best practices (NIST, ISO, Cyber Essentials) Regulatory & Compliance frameworks (GDPR, HIPAA, SOX, PCI DSS) IAM, ITIL & Security certifications desirable In line with the Conduct Regulations 2003, when advertising more »
Brighton, East Sussex, South East, United Kingdom Hybrid / WFH Options
JNC Recruitment Ltd
Expert in Active Directory & Azure Active Directory/Entra ID Strong knowledge of IAM & PAM Windows Server & OS Device, mobile & web security best practices (NIST, ISO, Cyber Essentials) Regulatory & Compliance frameworks (GDPR, HIPAA, SOX, PCI DSS) IAM, ITIL & Security certifications desirable In line with the Conduct Regulations 2003, when advertising more »
Bristol, Avon, South West, United Kingdom Hybrid / WFH Options
Iceberg Cyber Security Ltd
you will be identifying risks to products and providing guidance on how to enhance and align them with industry frameworks such as ISO 27001, NIST, and JSP 440 and making sure the risks have been mitigated effectively. My client has a huge training budget for this team and utilizes this more »
Bristol, Avon, South West, United Kingdom Hybrid / WFH Options
Hargreaves Lansdown Asset Management Limited
audit, and risk management. Good exposure to and experience of carrying out security reviews against recognised security control frameworks such as ISO27017/27001, NIST CSF, or PCI-DSS. Ability to evaluate the adequacy of cloud security controls, and how they are applied in a business context. Familiarity and use … Compliance Portal/Purview, Azure Information Protection (AIP), Azure Security Centre. Experience of carrying out security reviews against recognised security control frameworks such as NIST CSF. Effective interpersonal skills to engage and collaborate with multiple internal and external stakeholders. Interview process The interview process for this role will be a more »
Employment Type: Permanent, Part Time, Work From Home
Clitheroe, Lancashire, North West, United Kingdom Hybrid / WFH Options
Johnson Matthey Plc
of Cyber Security good practice and implementation of Cyber Security solutions. Knowledge of various Cyber Security and Safety related regulations andstandards i.e OG86, NIST Framework, IEC 62443 etc. (Desirable) How you will be rewarded: We offer a competitive compensation and benefits package including bonus, excellent pension contributions and generous more »
at all levels. '€¢Strong written and oral communication skills '€¢Active SC Clearance, or ability to obtain SC clearance Experience of following Cyber Security Frameworks: '€¢ NIST Cybersecurity Framework (CSF): Understand the five core functions of Identify, Protect, Detect, Respond, and Recover. Familiar with the framework's guidelines for managing and reducing … cyber risks, in particular NIST 800.53. '€¢ ISO/IEC 27001: Comprehend the international standard for information security management systems (ISMS). Knowledge about risk assessment, controls, and continuous improvement. '€¢ CIS Controls: Be aware of the Centre for Internet Security's critical security controls. These provide a prioritized approach to enhance more »
at all levels. Strong written and oral communication skills Active SC Clearance, or ability to obtain SC clearance Experience of following Cyber Security Frameworks: NIST Cybersecurity Framework (CSF): Understand the five core functions of Identify, Protect, Detect, Respond, and Recover. Familiar with the framework’s guidelines for managing and reducing … cyber risks, in particular NIST 800.53. ISO/IEC 27001: Comprehend the international standard for information security management systems (ISMS). Knowledge about risk assessment, controls, and continuous improvement. CIS Controls : Be aware of the Centre for Internet Security’s critical security controls. These provide a prioritized approach to enhance more »
Birmingham, England, United Kingdom Hybrid / WFH Options
Digital Waffle
compliance tools such as SailPoint, Tenable, and Microsoft Security Suite. Experience evaluating controls over IT processes. Knowledge of security control frameworks such as ISO27001, NIST CSF, andNIST 800-171. Strong attention to detail and accuracy in document analysis. Benefits: Competitive salary Comprehensive benefits package Opportunities for professional development more »
relevant laws, regulations, and industry guidelines. comprehensive security assessments, including health checks and gap analysis against standards like the Cyber Assessment Framework (CAF) andNIST CSF 2.0, to gauge and enhance clients' security posture. and implement OT Security Policies, Procedures, Guidelines, and Work Instructions as part of a CSMS, ensuring … within the water, gas, oil, nuclear, energy, and rail sectors. clients in transitioning to or implementing frameworks like ISA-62443-3-3 and the NIST Cybersecurity Framework (CSF) 2.0, ensuring governance practices are in place andstandards like NIST SP 800-82 are met. complex security challenges within Industrial Control … industry considerations. Evaluation Experience: Experience in conducting detailed security assessments, audits, and gap analyses against standards, frameworks and guidance such as HSE OG-86, NIST SP 800-82, CAF, and/or NIST CSF 2.0, to evaluate and enhance clients' security posture. Development Skill: Ability in crafting comprehensive OT Security more »
Cyber Risk Advisory GRC Consultant - (ISO27001, Cyber Essentials, NIST, Third Party Relationship Management) - REMOTE Want to join a healthy, happy, collaborative, multicultural inclusive work environment? Our client could be your next employer! We are working with a pure-play cyber security consultancy that is going through a period of significant … Advisory Consultant. The ideal candidates will have a broad range of cyber risk advisory skills including but not limited to Governance, Risk and Compliance, NIST, ISO 27001, Risk Assessments, Third-Party Risk Management/Supplier assessments and Cyber Essentials. This is a superb opportunity for someone who is NOT getting … You will be responsible for identifying and assessing risks by conducting internal audits and gap analyses against security frameworks such as ISO 27001 andNIST, providing solutions to prevent threats affecting clients’ networks and improving the overall risk posture. You will also liaise with C-level stakeholders to discuss the more »
lead technical teams and manage service providers effectively. Familiarity with threat intelligence sources and incident prioritization. Understanding of cybersecurity regulations andstandards (e.g., GDPR, NIST). Working knowledge of the MITRE ATT&CK framework. Understanding of relevant cybersecurity regulations andstandards (e.g., GDPR, HIPAA, NIST) If you feel like this more »
City of London, London, United Kingdom Hybrid / WFH Options
DGH Recruitment
Information Security Officer (ISO 27001/NIST/CISA/CISM) Hybrid working policy: 2-3 days per week in the office. DGH Recruitment are currently recruiting on behalf of a leading global client who are looking for an Information Security Officer to join the team on a permanent basis … and certifications, to evaluate their security posture. Required Skills/Experience: - Strong knowledge of information security principles, best practices, andstandards (e.g., ISO 27001, NIST). - Experience in conducting vendor risk assessments and project security risk assessments. - Familiarity with security frameworks and assessment methodologies. - Professional certifications such as CISA, CISM … or similar (preferred) - Knowledge of regulatory requirements related to data privacy and protection (preferred) Information Security Officer (ISO 27001/NIST/CISA/CISM) In accordance with the Employment Agencies and Employment Businesses Regulations 2003, this position is advertised based upon DGH Recruitment Limited having first sought approval ofmore »
Familiarity with CI/CD tools like CircleCI, Jenkins, Azure DevOps. - Knowledge of frameworks in the Software Development Lifecycle such as OWASP top 10, NIST, etc. - Experience configuring infrastructure and application alerts, alarms, and notifications. Desired Skills: - Proven experience in roles like DevSecOps Engineer or Security Engineer. - Knowledge of secure … coding principles. - Strong analytical, decision-making, and conflict resolution skills. - Familiarity with Git version control and industry security standards such as OWASP top 10, NIST, ISO 27001, or CIS benchmarks. Additional Information: - This position can be 100% remote, with the possibility of occasional in-office work. - For candidates located quite more »
Manchester, North West, United Kingdom Hybrid / WFH Options
Circle Group
Head of Information Security & Risk Key words - PCI DSS, SOC2, NIST, ISO, CISSP This is a brand new and greenfield role for a Head of Information Security & Risk to join a global multi-billion-pound turnover business. The role of Head of Information Security and Risk involves overseeing security measures … with managerial experience, as you'll be responsible for a small team and their work load, and ideally have exposure to: PCI DSS, SOC2, NISTand ISO 27001. CISSP would also be preferred. The role is hybrid and the candidate can be based pretty much anywhere in the UK as … further more detailed information please press apply now or drop me a message jon.brass @ Circlerecruitment .com Head of Information Security & Risk - PCI DSS, SOC2, NIST, ISO, CISSP Circle Recruitment is acting as an Employment Agency in relation to this vacancy. Earn yourself a referral bonus if you refer somebody else more »