finish. Bonus points if you bring: Experience with AppSec and DevSecOps. Hands-on knowledge of Azure, AWS, and/or Google Cloud. Familiarity with standards like ISO2700X, ISO31000, NIST800, PCI-DSS. Certifications such as CISSP, CCSP, CRISC, CISM, or SABSA. Why QBE? At My Best? At QBE, we want our people to feel rewarded and inspired to perform at More ❯
with major cloud providers like AWS, Azure, and GCP. Understanding of data and privacy and security standards such as GDPR, CCPA/CPRA, NIST 800-53, ISO 27001, HIPAA, PCI-DSS, GLBA, and NYDFS. Familiarity with datasecurity frameworks including DSPM (DataSecurity Posture Management). Experience with modern cloud computing including Linux, Kubernetes, or various data systems More ❯
challenges, designing pragmatic governance models, and influencing security strategy at scale this could be your next move. Key Responsibilities Translate international standards (NIST CSF, ISO 27001, GDPR, SOC 2, PCIDSS, CSA CCM) into actionable policies and controls. Design and implement unified compliance frameworks across cloud, hybrid, and enterprise systems. Lead internal and external audits, certification readiness, and More ❯
challenges, designing pragmatic governance models, and influencing security strategy at scale this could be your next move. Key Responsibilities Translate international standards (NIST CSF, ISO 27001, GDPR, SOC 2, PCIDSS, CSA CCM) into actionable policies and controls. Design and implement unified compliance frameworks across cloud, hybrid, and enterprise systems. Lead internal and external audits, certification readiness, and More ❯
challenges, designing pragmatic governance models, and influencing security strategy at scale this could be your next move. Key Responsibilities Translate international standards (NIST CSF, ISO 27001, GDPR, SOC 2, PCIDSS, CSA CCM) into actionable policies and controls. Design and implement unified compliance frameworks across cloud, hybrid, and enterprise systems. Lead internal and external audits, certification readiness, and More ❯
challenges, designing pragmatic governance models, and influencing security strategy at scale this could be your next move. Key Responsibilities Translate international standards (NIST CSF, ISO 27001, GDPR, SOC 2, PCIDSS, CSA CCM) into actionable policies and controls. Design and implement unified compliance frameworks across cloud, hybrid, and enterprise systems. Lead internal and external audits, certification readiness, and More ❯
challenges, designing pragmatic governance models, and influencing security strategy at scale this could be your next move. Key Responsibilities Translate international standards (NIST CSF, ISO 27001, GDPR, SOC 2, PCIDSS, CSA CCM) into actionable policies and controls. Design and implement unified compliance frameworks across cloud, hybrid, and enterprise systems. Lead internal and external audits, certification readiness, and More ❯
london (city of london), south east england, united kingdom
Discovered MENA
challenges, designing pragmatic governance models, and influencing security strategy at scale this could be your next move. Key Responsibilities Translate international standards (NIST CSF, ISO 27001, GDPR, SOC 2, PCIDSS, CSA CCM) into actionable policies and controls. Design and implement unified compliance frameworks across cloud, hybrid, and enterprise systems. Lead internal and external audits, certification readiness, and More ❯
email. Understanding of encryption algorithms, hash functions, and key management practices. Experience in designing secure architectures in hybrid or cloud environments. Knowledge of compliance and regulatory standards such as PCIDSS, HIPAA, SOX, GDPR, NIST 800-53. Preferred Qualifications: Certifications: CISSP, CISM, CEH, GIAC, Microsoft Certified: Identity and Access, or other IDAM equivalent Technologies. Experience with Zero More ❯
simplifying regulatory challenges, designing pragmatic governance models, and influencing security strategy at scale this could be your next move. Translate international standards (NIST CSF, ISO 27001, GDPR, SOC 2, PCIDSS, CSA CCM) into actionable policies and controls. Design and implement unified compliance frameworks across cloud, hybrid, and enterprise systems. Lead internal and external audits, certification readiness, and More ❯
AWS environments. Lead incident response, vulnerability assessments and pentest co-ordination. Manage IAM systems and support Engineering teams with threat modelling and secure development practices. Own ISO27001, Cyber Essentials+, PCI-DSS and GDPR compliance. Manage physical security (access control etc) What experience do you need? 2+ years experience within Cyber Security hands on experience with SIEM, Vulnerability scanners More ❯
AWS environments. Lead incident response, vulnerability assessments and pentest co-ordination. Manage IAM systems and support Engineering teams with threat modelling and secure development practices. Own ISO27001, Cyber Essentials+, PCI-DSS and GDPR compliance. Manage physical security (access control etc) What experience do you need? 2+ years experience within Cyber Security - hands on experience with SIEM, Vulnerability scanners More ❯
AWS environments. Lead incident response, vulnerability assessments and pentest co-ordination. Manage IAM systems and support Engineering teams with threat modelling and secure development practices. Own ISO27001, Cyber Essentials+, PCI-DSS and GDPR compliance. Manage physical security (access control etc) What experience do you need? 2+ years experience within Cyber Security – hands on experience with SIEM, Vulnerability scanners More ❯
Reading, Berkshire, England, United Kingdom Hybrid / WFH Options
Proactive Appointments
A security professional qualification such as CISSP, CISM, CCSP, CISA, ISO27001 Lead Implementor/Auditor, CEH or equivalent Cloud Computing experience from multiple vendors (O365, Azure, AWS, Google, etc.) PCI-DSS GRC Cyber Security Analyst Due to the volume of applications received for positions, it will not be possible to respond to all applications and only applicants who More ❯
City of London, London, United Kingdom Hybrid / WFH Options
ECS
Security Architect, you will be responsible for: Design secure AWS landing zones using IAM, KMS, GuardDuty, and WAF. Conduct risk assessments and ensure compliance with ISO 27001, GDPR, and PCI-DSS. Embed and validate security controls throughout migrations. Architect IAM policies and implement Zero Trust principles. Automate security in CI/CD pipelines with AWS Config and IaC tools. More ❯
just in theory. Vulnerability and risk management – and how to avoid both being reduced to spreadsheets. Frameworks like NIST, MITRE ATT&CK, Cyber Kill Chain, and compliance stuff like PCI-DSS. SIEMs, WAFs, DLPs, EDRs, and all the other acronym-heavy tools you’ve learned to assess critically. You’ll do well here if: You speak fluent “tech” and More ❯
just in theory. Vulnerability and risk management – and how to avoid both being reduced to spreadsheets. Frameworks like NIST, MITRE ATT&CK, Cyber Kill Chain, and compliance stuff like PCI-DSS. SIEMs, WAFs, DLPs, EDRs, and all the other acronym-heavy tools you've learned to assess critically. You'll do well here if: You speak fluent "tech" and More ❯
united kingdom, united kingdom Hybrid / WFH Options
London Strategy
programs. Deep knowledge of enterprise security domains (network, cloud, IAM, application, endpoint, data, and OT security). Strong familiarity with frameworks and standards (ISO 27001, NIST, COBIT, CIS, GDPR, PCI-DSS). Excellent stakeholder management skills, with the ability to influence CIOs, CISOs, and senior executives. Native or fluent German, with strong written and verbal communication skills in More ❯
business operations. Security and Compliance Implement and enforce network security policies and procedures to safeguard the integrity and confidentiality of organizational data. Ensure compliance with industry standards, including NIST, PCI-DSS, and GDPR, by enforcing firewall, VPN, and other security measures. Collaboration and Leadership Work closely with cross-functional teams, including cybersecurity, cloud architects, systems engineers, and external More ❯
Edinburgh, Midlothian, United Kingdom Hybrid / WFH Options
Kosli Enterprise
scripting languages (Python, Go, YAML, JSON etc.) A background in financial services or similar regulated industries. Familiarity with compliance frameworks, and security requirements (e.g., ISO 27001, SOC 2, SOX, PCIDSS, FedRAMP, FFIEC, NYDFS, and SEC compliance requirements) A track record in consulting, solutions architecture, or technical coaching. Interest in technical sales and supporting go-to-market strategies. More ❯
