10 of 10 CRISC Jobs in Central London

management. Knowledge of cloud security. Qualifications and certifications: Degree in a technology discipline (Computer Science, Information Management, Computer Engineering, Cybersecurity or equivalent) Professional certifications such as CISSP, CISA, CISM, CRISC, SABSA, or equivalent. Deep expertise in risk management frameworks, including ISO 27001, NIST SP 800-53, and SANS Top 20 Critical Security Controls. Experience with cloud security solutions and services More ❯

GRC processes. Key Requirements Proven hands-on experience with ServiceNow IRM and risk quantification methodologies. Strong knowledge of ISO 27001, NIST CSF, and NIST SP800-53. Certifications such as CRISC, CISM, CISSP, or FAIR are desirable. Excellent stakeholder management and communication skills. Experience in third-party cyber risk management and post-incident analysis. Background in large-scale technical environments (e.g. More ❯

of security frameworks including ISO27001/2, Cyber Essentials Plus, CIS Top 20, Data Protection Act 2018, OWASP Top 10 Have a relevant industry certification such as CISSP, CISM, CRISC, BRMP or similar You'll be able to be yourself; we'll recognise and value you for who you are and celebrate and reward your contributions to the business. We More ❯

GCP). Strong knowledge of compliance automation tools (ServiceNow GRC, OneTrust, Archer, or similar). Excellent communication and stakeholder management skills, including C-level engagement. Preferred Certifications CISM, CISA, CRISC, CISSP, ISO 27001 Lead Implementer/Auditor, CCSK, AWS Security Specialty, GDPR Practitioner. If you’re a cybersecurity professional passionate about compliance and looking to take on a new challenge More ❯

processes. Excellent written and verbal communication skills (German or English; both preferred). Strong organizational skills with the ability to manage multiple priorities. Nice-to-Have Professional certifications (CISM, CRISC, ISO 27001 Lead Implementer, or similar). Experience working with SaaS platforms (AWS, Azure, Salesforce, HubSpot, etc.). Familiarity with vendor risk management and third-party security assessments. Exposure to More ❯

Engineer background Proven experience collaborating with software development teams and implementing technical controls. Skilled in articulating technical risks in terms of business impact. Professional certifications such as CISM, CISSP, CRISC, ISO 27001 Lead Auditor, and hands-on experience with GRC tools (e.g., Vanta, Drata) are highly desirable. Responsible for developing and maintaining security policies in alignment with ISO 27001, GDPR More ❯

is in Surrey. This is a very broad role, so there's no chance you'll be getting bored anytime soon. Experience: One or more of CISA, CISSP or CRISC Good working knowledge of NIST and COBIT frameworks Data centre/network and workplace architectures Security tooling, risk analysis, or governance roles TCP/IP, HTTP/S, SMTP), proxy More ❯

in tech, change or operational risk within financial services. Strong understanding of PRA/FCA expectations, DORA and resilience frameworks. Excellent communication and stakeholder engagement skills. Professional certifications (CISA, CRISC, CISSP, PRINCE2) are desirable but not essential. If you’re interested in exploring the roles and have experience within technology risk, please apply for the position or feel free to More ❯

still reading, then great, the wish-list hasn't scared you off yet!! Another thing that would be desirable is that you are certified in either CISA; CISSP or CRISC, and have a good working knowledge of NIST and COBIT frameworks. I'm going to stop there. If you tick the boxes above, please send me your cv as a More ❯

Build in-house incident response process for third-party operated platforms Build and report operational metrics Facilitate security testing Establish foundational threat management capability. Certifications such as CISSP, CISM, CRISC, are desirable but not essential. 10+ years working in a similar role Experience working in a global security function and working with outsourced providers More ❯