1 to 16 of 16 ISO/IEC 27002 (supersedes ISO/IEC 17799) Jobs in the UK

Security Architecture policies, principles, and standards for application across the organisation. Alignment to industry standards and regulation e.g. ISO / IEC 27001 / 27002 / 27005. Security specific patterns, models, and blueprints. Define as more »

Security Architecture policies, principles, and standards for application across the organisation. Alignment to industry standards and regulation e.g. ISO / IEC 27001 / 27002 / 27005. Security specific patterns, models, and blueprints. Define as more »

Security Architecture policies, principles, and standards for application across the organisation. Alignment to industry standards and regulation e.g. ISO / IEC 27001 / 27002 / 27005. Security specific patterns, models, and blueprints. Define as more »

Network +, CompTIA Security +, CISM, CISSP or COBIT 5) Baseline knowledge of resilience frameworks (NIST CSF, ISO 27001 / 27002 and COBIT) For more information, please apply more »

Technology Risk Manager Up to £75,000 + Package London, United Kingdom (Hybrid Working) Gresham Hunt are currently seeking an experienced tech / cloud risk professional for a leading financial services client to join growing their Groupwide Technology Risk team in London. You will be tasked with ensuring … candidate will have: Extensive experience within Risk Management within the Financial Services industry. Experience in IT and Cloud controls testing is essential. Knowledge / experience with major cloud service providers, preferably AWS. Knowledge of various industry frameworks and controls such as ITIL, NIST, COBIT, ISO 27001 / 2. A broad, high-level IT or Cybersecurity background with exposure to areas such as cloud security, security architecture, IT infrastructure and security governance would be beneficial. Hold relevant industry certifications such as CCSP, CCSK, GCSA, CRISC Excellent communication skills with the more »

candidate will have: Extensive experience within Risk Management within the Financial Services industry. Experience in IT and Cloud controls testing is essential. Knowledge / experience with major cloud service providers, preferably AWS. Knowledge of various industry frameworks and controls such as ITIL, NIST, COBIT, ISO 27001 / 2. A broad, high-level IT or Cybersecurity background with exposure to areas such as cloud security, security architecture, IT infrastructure and security governance would be beneficial. Hold relevant industry certifications such as CCSP, CCSK, GCSA, CRISC Excellent communication skills with the more »

their customers financially better off. This is a brand new role for the business and it plays a key part in the Cyber / Information Security function. You will drive and enhance their current operational processes and contribute across Security Assurance, Threat Detection, Risk Management, CPSM & Threat Intelligence. … Skills required: Control Frameworks & Industry Standards (ISO27001, 27002, GDPR, NIST) Security Operations Performance Tracking Data Security, Malware Detection, Threat & Incident response For the right person this is a huge opportunity - considering the sustained growth that they're going through, this role has a dotted line to management or more »

level is necessary. An understanding of compliance and regulatory frameworks such as National Cyber Security Centre (NCSC) Cyber Assessment Framework (CAF) and ISA / IEC 62443, ISO / IEC 27001 / 27002 … GDPR.Working knowledge of security technologies including SIEM, SOAR, EDR, AV, IDS / IPS, NAC, AD, DLP, Web Filtering, Email Filtering, Behavioural Analytics.Knowledge of adversarial tactics, techniques, procedures (TTPs) and industry standard frameworks (Mitre ATT&CK). Experience working within a regulated environment, preferably Energy sector Critical National Infrastructure … CNI) Desirable: Bachelor's Degree in Cybersecurity, Computer Science, Information Systems, related field or equivalent training and / or experience. Professional Information Security certification by a recognised professional body such as Certified in Information Security Management (CISM), Certified Information Systems Security Professional (CISSP), certified Ethical Hacker (CEH), Global more »

line with regulatory frameworks such as GDPR, FCA, and PRA. Essential skills: Familiarity with PCI-DSS, UK Financial Services regulatory requirements and ISO27001 / 2 or NIST Cyber security experience with IAM / PAM tools such as SailPoint, Okta, CyberArk, BeyondTrust or Thycotic. Understanding of IAM … authorisation, and accounting controls. Experience within directory services such as Active Directory, LDAP, and Azure AD. Desirable: Security related qualification e.g. CISSP, CISA / M, SANS GIAC. So, if you feel your skills and experience align with the prerequisites for this role. Then please get in touch and more »

to both technical and nontechnical audiences, flexes style to suit the needs of the audience A good understanding of security frameworks including ISO27001 / 2, Cyber Essentials Plus, CIS Top 20, Data Protection Act 2018, OWASP Top 10 Have a relevant industry certification such as CISSP, CISM, CRISC more »

some experience in assurance testing techniques and methodologies. Bachelor's Degree in Cybersecurity, Computer Science, Information Systems, related field or equivalent training and / or experience. Professional Information Security certification by a recognised professional body such as Certified in Information Security Management (CISM), Certified Information Systems Security Professional … come first. An understanding of compliance and regulatory frameworks such as the National Cyber Security Centre (NCSC) Cyber Assessment Framework (CAF) and ISA / IEC 62443, ISO / IEC 27001 / 27002 … and GDPR. Working knowledge of security technologies including SIEM, SOAR, EDR, AV, IDS / IPS, NAC, AD, DLP, Web Filtering, Email Filtering, Behavioural Analytics. Knowledge of adversarial tactics, techniques, procedures (TTPs) and industry standard frameworks (Mitre ATT&CK). Experience working within a regulated environment, preferably Energy sector more »

FTK and live response analysis. Furthermore, familiarity with Windows and Linux enterprise environments and systems such as Active Directory, Office 365, FWs, IPS / IDS, SIEMs, etc. is required. Excellent written and verbal communication skills are required. When not responding to breaches, you will conduct enterprise threat hunting … role, you may be required to travel, either within the country or internationally. Required Technical and Professional Expertise • Hands-on experience with hardware / software tools used in incident response, computer forensics, network security assessments, and / or application security. • Experience within incident response teams and … security related vulnerabilities, common attack vectors, and mitigations. • Familiarity with various security frameworks and standards such as ISO 27001 / 2, PCI DSS, NIST800-53, 800-171, and applicable data privacy laws and regulations. • Experience with Incident Response tabletop exercises, with a focus on more »

Security +, CISM, CISSP, or COBIT 5. -Demonstrate a fundamental understanding of frameworks such as NIST CSF, ISO 27001 / 27002, and COBIT. -Experience in Operational Technology Security, with the ability to identify and address IT and operational vulnerabilities, is preferred. Interested more »

with 8300+ staff and 100+ sites globally. The ideal candidate should have a minimum of three years of hands-on experience in Security / Infrastructure within an enterprise environment. Requirements: Proficiency in enterprise information security standards, including Cyber Essentials, ISO 27001, 27002 more »

Cyber Security Consultant - Security Assurance - 2 / 3 days a week on Site (Tadley) - £65k to £80k + benefits Due to the nature of the work - holding current, high level valid UK government security clearance is highly advantageous. We are looking for experienced Cyber Security Consultant - Security / … to ensure that the client-based security teams uphold the highest standards. Whilst also acting as a group wide SME for direct queries / questions relating to Cyber Security Assurance. Typical day to day responsibilities: Management of the client's security documentation, including the creation and review of … standards for application across the organisation and within the supply chain. Alignment to industry standards and regulation, e.g. ISO / IEC 27001 / 27002 / 27005. Define as-is and to-be security standards. more »

disaster recovery plans and capabilities, addressing any identified gaps for continuous improvement. Technical Experience: Demonstrated two years of practical experience in security and / or infrastructure within a corporate setting Familiarity with enterprise information security standards like Cyber Essentials, ISO 27001, 27002 more »