1 to 25 of 34 ISO/IEC 27001 Jobs in the West Midlands

security framework, including: Security Architecture policies, principles, and standards for application across the organisation. Alignment to industry standards and regulation e.g. ISO / IEC 27001 / 27002 / 27005. Security specific patterns, models, and blueprints. Define as-is and to-be more »

methodologies such as SABSA and TOGAF Knowledge and understanding of UK government protective marking standards and industry standards, including PCI-DSS, ISO / IEC 27001, NIST, CIS, etc. Awareness of common exploits and vulnerabilities and how these may be prevented Previous hands-on more »

as securely as possible. Essential Skills: Experience in an Information Security Team. Maintaining security policies and conducting risk assessments. Managing security logs in Azure / Office 365. Website vulnerability scanning and remediation. Working with legal, audit, and compliance stakeholders. Desirable Skills: InfoSec training programs involvement. Experience in healthcare, pet … care, or services industry. Familiarity with the NIST framework. Knowledge: Global standards (NIST, ISO 27001 / 27002, PCI DSS, GDPR). Office 365 Security & Compliance toolset. Threat management and firewall principles. PCI DSS compliance. If this skill set matches yours please get In touch. more »

secrets management. Set up robust Role-Based Access Control (RBAC) and identity management. Establish secure remote access without IP whitelisting. Ensure compliance with ISO 27001 security standards. Collaborate on cloud strategy and system architecture improvements. Required Skills & Experience: Proven experience in Azure infrastructure and cloud security. … identity protection. Familiarity with Azure Key Vault and secret management. Understanding of serverless computing, Azure Front Door, and web app management. Knowledge of ISO 27001 compliance (preferred). Desired Certifications: Microsoft Certified: Azure Solutions Architect Expert Microsoft Certified: Azure Security Engineer Associate more »

Cyber Security Assurance Consultant (GRC / Information Assurance) 3 / 4 days a week on-site in Hereford Salary up to £70,000 (with some flexibility for excellent candidates) plus excellent benefits Are you: a driven , passionate and motivated Cyber / Information Security professional ? experienced in consulting … directly with customer stakeholders? specialised in GRC or Information Assurance ? able to demonstrate your experience leading audits and or implementations against relevant Security Standards / Frameworks, such as ISO 27001 , NIST , SOC2 , Secure by Design , HMG SPF , JSP 440 / 604 , etc. able to … you? Want to learn more? Apply with your CV and we'll arrange a conversation as soon as possible. Cyber Security Assurance Consultant (GRC / Information Assurance) 3 / 4 days a week on-site in Hereford Salary up to £70,000 (with some flexibility for excellent candidates more »

tcs.com or call TCS London Office number 02031552100 with the subject line: “Application Support Request”. Role: Sr. ServiceNow GRC Developer Job Type: Permanent / Fixed-Term Location: London (Hybrid – 3 days WFO) Number of hours: 40 hours per week – full time Careers at TCS: It means more TCS … you will also train the client team on user and admin levels. Key responsibilities: Implementing and delivering GRC technology enablement services using ServiceNow GRC / IRM platform User Management Entity Scoping leveraging CMDB Policy and Compliance Management Risk Management (Classic), Migrate existing risks to risk management module Audit Management … Lead discussions and workshops with clients to create a risk-aware culture through proper technology enablement of risk-related processes using ServiceNow GRC / IRM solutions. Design and architect solutions to automated client processes into GRC solutions to meet their unique requirements Consistently deliver quality client services and manage more »

Job Title: Solution Architect - Sentinel SME (L3) Work Arrangement: Hybrid Location: Coventry, UK Day Rate: £500 / 550 Assignment Details: Duration: 3 Months Role Description: The Solution Architect - Sentinel SME (L3) will play a pivotal role in designing, implementing, and optimizing Microsoft Sentinel as the core SIEM solution for … and vulnerability assessments, recommending architectural improvements as necessary. Consultation: Provide expert advice on security monitoring, log management, and incident response best practices. Key Skills / Knowledge / Experience: Proficient in designing, deploying, and managing Microsoft Sentinel in complex environments. Advanced skills in KQL (Kusto Query Language) for creating … Azure Monitor Agents, Log Analytics, and Event Hub. Understanding of regulatory standards and frameworks for IT and OT environments (e.g., NIS-R, GDPR, ISO 27001). Person Specification: Strong communication and collaboration skills to engage with both technical and non-technical stakeholders. Ability to thrive in more »

infrastructure. Oversee security operations for Windows and *nix operating systems, including public and private cloud hosting. Develop in-house tools and security-related applications / controls as needed. Leverage IT security monitoring tools and SIEM solutions to identify and mitigate risks. Perform vulnerability assessments and network auditing using IT … testing tools, including data discovery solutions. Support CI / CD pipelines and maintain code repositories to enhance secure software development practices. Identify areas for improvement, following change control processes and IT governance frameworks. Communicate technical security matters to a non-technical audience effectively. Essential Skills and Experience: Strong expertise … protocols, and cloud environments. Demonstrable experience architecting and maintaining security systems. Familiarity with IT / Cyber / Information Security frameworks such as ISO27001, ITIL, and Cobit . Hands-on experience with CI / CD pipelines and modern development tools. Strong people facilitation skills and the ability to more »

Qualifications, e.g. CCP, CISSP, CISM (or able to achieve) Proven experience of assessing and managing risk in line with industry good practice (NIST, ISO 27001) Significant experience with using security baselines, mitigations and controls Engineering background and or strong familiarity with a life cycle phased approach … as SPF, JSP 440 and JSP604 and production of Risk Management Accreditation Document Set (RMADS) Knowledge of the challenges affecting security of Operational Technologies / Industrial Control Systems and approaches to secure them Project Management exposure Benefits: You’ll receive benefits including a competitive pension scheme, enhanced annual leave more »

Qualifications, e.g. CCP, CISSP, CISM (or able to achieve) Proven experience of assessing and managing risk in line with industry good practice (NIST, ISO 27001) Significant experience with using security baselines, mitigations and controls Engineering background and or strong familiarity with a life cycle phased approach … as SPF, JSP 440 and JSP604 and production of Risk Management Accreditation Document Set (RMADS) Knowledge of the challenges affecting security of Operational Technologies / Industrial Control Systems and approaches to secure them Project Management exposure Benefits: You’ll receive benefits including a competitive pension scheme, enhanced annual leave more »

Qualifications, e.g. CCP, CISSP, CISM (or able to achieve) Proven experience of assessing and managing risk in line with industry good practice (NIST, ISO 27001) Significant experience with using security baselines, mitigations and controls Engineering background and or strong familiarity with a life cycle phased approach … as SPF, JSP 440 and JSP604 and production of Risk Management Accreditation Document Set (RMADS) Knowledge of the challenges affecting security of Operational Technologies / Industrial Control Systems and approaches to secure them Project Management exposure Benefits: You’ll receive benefits including a competitive pension scheme, enhanced annual leave more »

Qualifications, e.g. CCP, CISSP, CISM (or able to achieve) Proven experience of assessing and managing risk in line with industry good practice (NIST, ISO 27001) Significant experience with using security baselines, mitigations and controls Engineering background and or strong familiarity with a life cycle phased approach … as SPF, JSP 440 and JSP604 and production of Risk Management Accreditation Document Set (RMADS) Knowledge of the challenges affecting security of Operational Technologies / Industrial Control Systems and approaches to secure them Project Management exposure Benefits: You’ll receive benefits including a competitive pension scheme, enhanced annual leave more »

Qualifications, e.g. CCP, CISSP, CISM (or able to achieve) Proven experience of assessing and managing risk in line with industry good practice (NIST, ISO 27001) Significant experience with using security baselines, mitigations and controls Engineering background and or strong familiarity with a life cycle phased approach … as SPF, JSP 440 and JSP604 and production of Risk Management Accreditation Document Set (RMADS) Knowledge of the challenges affecting security of Operational Technologies / Industrial Control Systems and approaches to secure them Project Management exposure Benefits: You’ll receive benefits including a competitive pension scheme, enhanced annual leave more »

Qualifications, e.g. CCP, CISSP, CISM (or able to achieve) Proven experience of assessing and managing risk in line with industry good practice (NIST, ISO 27001) Significant experience with using security baselines, mitigations and controls Engineering background and or strong familiarity with a life cycle phased approach … as SPF, JSP 440 and JSP604 and production of Risk Management Accreditation Document Set (RMADS) Knowledge of the challenges affecting security of Operational Technologies / Industrial Control Systems and approaches to secure them Project Management exposure Benefits: You’ll receive benefits including a competitive pension scheme, enhanced annual leave more »

the architecture of the SIEM solution, ensuring that it meets both IT and OT security requirements and acquire approval from the STW design authorities / approval bodies NIS-R Compliance: Ensure the solution complies with NIS-R regulations and customer-specific security requirements. Technology Integration: Oversee the integration of … Monitor Agents, Log Analytics, and Event Hub. Knowledge of regulatory standards and frameworks relevant to IT and OT environments (e.g., NIS-R, GDPR, ISO 27001). more »

the architecture of the SIEM solution, ensuring that it meets both IT and OT security requirements and acquire approval from the STW design authorities / approval bodies NIS-R Compliance: Ensure the solution complies with NIS-R regulations and customer-specific security requirements. Technology Integration: Oversee the integration of … Monitor Agents, Log Analytics, and Event Hub. Knowledge of regulatory standards and frameworks relevant to IT and OT environments (e.g., NIS-R, GDPR, ISO 27001). more »

Steering Group development activities. Essential Requirements: To have a minimum of five years’ experience in a similar role To be fully conversant with ISO 9001, 14001,OHSAS 45001 To have excellent interpersonal skills as success in this role requires continual liaison with employees, the management team, clients and … an awareness and understanding of the automation systems development To be conversant with security requirements To have an awareness and understanding of the ISO 27001 Information Security Management standard To have a broad awareness of Functional Safety related system development Safety Qualification – NEBOSH Diploma or equivalent more »

SMEs providing 24x7 IT infrastructure support. Collaborate with client stakeholders to manage IT resources and control Cloud consumption costs. Oversee cybersecurity practices and maintain ISO27001 and CES+ compliance. Ensure team adherence to SLAs and KPIs, focusing on service excellence. Identify and integrate emerging technologies to improve operations. Act as a more »

applications. As a specialist in secure technology solutions, all successful candidates will be subject to preemployment checks, so we can ensure compliance with our ISO27001 (Information Security) and Cyber Essentials Plus certifications.?We are committed to using any personal information you may give us in a secure and proper manner more »

applications. As a specialist in secure technology solutions, all successful candidates will be subject to preemployment checks, so we can ensure compliance with our ISO27001 (Information Security) and Cyber Essentials Plus certifications.?We are committed to using any personal information you may give us in a secure and proper manner more »

applications. As a specialist in secure technology solutions, all successful candidates will be subject to preemployment checks, so we can ensure compliance with our ISO27001 (Information Security) and Cyber Essentials Plus certifications. We are committed to using any personal information you may give us in a secure and proper manner more »

using PHP (Laravel and CodeIgniter). Contribute to front-end development and support modern JavaScript frameworks, including Node.js. Help implement DevOps practices, including CI / CD pipelines and automation. Leverage OpenAI APIs to build and enhance AI features, with flexibility to recommend tools and frameworks. Ensure compliance with ISO 27001 and GDPR standards where applicable. Project and Team Management Use JIRA to manage tasks and align with the team's Agile workflow. Plan resources effectively to meet project timelines and product roadmap goals. Ensure timely delivery of key milestones, including: Completion of an “If This … Any information provided to us will be processed as detailed in our Privacy Notice, a copy of which can be found on our website / more »

using PHP (Laravel and CodeIgniter). Contribute to front-end development and support modern JavaScript frameworks, including Node.js. Help implement DevOps practices, including CI / CD pipelines and automation. Leverage OpenAI APIs to build and enhance AI features, with flexibility to recommend tools and frameworks. Ensure compliance with ISO 27001 and GDPR standards where applicable. Project and Team Management Use JIRA to manage tasks and align with the team's Agile workflow. Plan resources effectively to meet project timelines and product roadmap goals. Ensure timely delivery of key milestones, including: Completion of an “If This … Any information provided to us will be processed as detailed in our Privacy Notice, a copy of which can be found on our website / TPBN1_UKTJ more »

IT compliance risk and control effectiveness to key stakeholders, including IT-business unit management, senior management, board of directors, legal management, regulators, and internal / external auditors. Develop and roll out an IT compliance training program for users across the business. Lead the business's response to internal and more »

applications. As a specialist in secure technology solutions, all successful candidates will be subject to preemployment checks, so we can ensure compliance with our ISO27001 (Information Security) and Cyber Essentials Plus certifications.?We are committed to using any personal information you may give us in a secure and proper manner more »