CrawlJobs Logo

Senior Business Information Security Specialist

United Kingdom · Job Posted May 27, 2026
Apply Position
Job Link Share

Job Description

The InfoSec team at JET is scaling its security partnership and vendor assurance capability across a complex, cloud-native environment spanning multiple markets. As Security Business Partner, you will own the day-to-day delivery of vendor security reviews and shift-left security practices within engineering and product teams. You will work closely with the Security Business Partner function to embed security thinking early and give JET confidence in its third-party supply chain. Based in the UK, this is a hands-on, high-impact individual role.

Job Responsibility

  • Execute vendor security assessments by collecting, analysing, and documenting supplier control evidence, audit reports, and risk findings against defined frameworks including ISO 27001 and NIST CSF
  • Identify and document third-party security risks, recommending proportionate risk treatment options aligned to JET's risk appetite
  • Support threat modelling, secure design reviews, risk remediation recommendations and early-stage risk assessments alongside engineering teams as part of the secure development lifecycle
  • Translate security findings into clear, business-aligned risk language for product and stakeholders, reducing reliance on technical jargon
  • Maintain accurate risk registers, vendor assessment records, and reporting inputs that feed into executive-level risk dashboards
  • Build working relationships with business and technology teams across multiple markets, acting as a visible and trusted point of contact for security guidance

Requirements

  • Demonstrated ability to execute security risk assessments and vendor reviews end-to-end, including evidence collection, gap analysis, and documented findings
  • Working knowledge of security frameworks such as NIST CSF, ISO 27001, or CIS Controls applied in a product or engineering context
  • Ability to communicate security risk clearly to both technical and non-technical audiences, without defaulting to jargon or compliance-speak
  • Familiarity with GRC concepts including risk management, controls design, and third-party assurance, gained through hands-on practice rather than solely policy work
  • Comfort working across multiple teams and geographies in a fast-moving environment, managing competing priorities without losing accuracy or rigour

Nice to have

Relevant certifications (such as CISA, CRISC, or equivalent) are a plus, but not a barrier to applying if you can demonstrate the capability

Looking for more opportunities?

Search for other job offers that match your skills and interests.

Similar Jobs for

Senior Business Information Security Specialist

8 matching positions

Senior Information Security Specialist

Founded in 2017, Paribu has been playing a key role in the development of Türkiy...
Location
Location
Turkey
Salary
Salary:
Not provided
paribu.com Logo
Paribu
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Strong knowledge of information security frameworks, including ISO 27001, NIST CSF, NIST 800-53, CIS Controls, PCI DSS, and SOC 2
  • Experience conducting information security audits and evaluating technical and operational controls
  • Solid understanding of IT General Controls (ITGC), including access management, change management, and IT operations
  • Knowledge of cloud security auditing across AWS, Azure, and GCP environments
  • Understanding of application security principles, including authentication, authorization, and secure development practices
  • Familiarity with network and infrastructure security concepts such as firewalls, segmentation, logging, and monitoring
  • Experience with risk assessment methodologies, control testing, audit sampling, and evidence evaluation
  • Working knowledge of security technologies including SIEM, IAM, EDR, DLP, and vulnerability management solutions
  • Understanding of regulatory and compliance requirements, including GDPR and other applicable security regulations
  • Excellent analytical thinking and structured problem-solving skills
Job Responsibility
Job Responsibility
  • Providing independent, risk-based assurance over the organization's information security controls, governance processes, and compliance posture
  • Leading technical and process-level security audits across infrastructure, applications, cloud environments, and third-party services
  • Evaluating whether security controls are appropriately designed, implemented, and operating effectively
  • Identifying control gaps and security risks, providing practical, risk-based recommendations to strengthen the control environment
  • Validating remediation efforts and verifying the effectiveness of corrective actions
  • Supporting regulatory, certification, and internal audit requirements by ensuring compliance with applicable security standards and frameworks
  • Delivering clear, evidence-based audit reports that enable leadership to make informed risk decisions
  • Contributing to the continuous improvement of the organization's security governance, audit methodology, and overall control maturity
What we offer
What we offer
  • Meal allowance
  • Private health insurance
  • Commuting support
  • S.O.S. leave (10 days)
  • Birthday leave
  • Language learning support
  • Personal development support
  • Well-being & health platform
  • Relocation allowance
  • Top-tier work equipment
  • Fulltime
Read More
Arrow Right

Senior Security Specialist

Are you insatiably curious and do you lean into uncertainty, take risks, and lea...
Location
Location
Malaysia , Multiple Locations
Salary
Salary:
Not provided
https://www.microsoft.com/ Logo
Microsoft Corporation
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 10+ years of Cloud technology-related solution sales or pre-sales experience in Cybersecurity, Compliance, Governance & Risk domains
  • Bachelor's Degree in Information Technology, or related field AND 8+ years Cloud technology-related solution sales or pre-sales experience in Cybersecurity, Compliance, Governance & Risk domains
  • OR Master's Degree in Business Administration (i.e., MBA), Information Technology, or related field AND 7+ years of Cloud technology-related solution sales or pre-sales experience in Cybersecurity, Compliance, Governance & Risk domains
  • 8+ years Cybersecurity, Compliance, Governance & Risk solutions & implementation services sales experience selling to to CISO, CDO, CTO and other key C-level stakeholders in Public Sector, Financial Services and other Critical Infrastructure industries
  • Experience with competitive Security solutions (e.g. Palo Alto, Cisco, CrowdStrike, Splunk, Qradar, Wiz, Google Chronicle etc.) is a plus
Job Responsibility
Job Responsibility
  • Drive consumption and grow business with existing strategic customers by initiating conversations, guiding others on demos or quotes and the collaboration with partners or internal teams
  • Bring impactful industry insights into customer engagements and closes deals with customers
  • Acts as a thought leader across solution areas to advise customers across business functions on digital transformation
  • Leads virtual transformational shifts to drive deployment and create business value for customers
  • May lead partner integration into account/territory planning and customer engagements
  • Provides thought leadership
  • Develop sales and business strategy options
  • Execute complex opportunities
  • Work cohesively in a highly matrixed environment
  • Orchestrates with team members across solution areas on conducting personal campaigns to discover new opportunities and generate new leads
  • Fulltime
Read More
Arrow Right

Senior Specialist, Security Operations and OT Cybersecurity

This position will lead regional security operations and help expand and mature ...
Location
Location
United States , Princeton
Salary
Salary:
120000.00 - 140000.00 USD / Year
rennerbrown.com Logo
Renner Brown
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Minimum 5 years of cybersecurity operations experience, with direct involvement in SOC management, incident response, and threat detection
  • Demonstrated hands-on experience in OT/ICS environments within manufacturing, utilities, or other regulated sectors
  • Proven ability to lead cross-functional investigations and vendor-driven engagements in complex enterprise environments
  • Knowledge of relevant cybersecurity frameworks, such as NIST CSF and ISA/IEC 62443, and their application in industrial and regulated settings
  • Strong analytical and communication skills, with the ability to work effectively across technical and business teams
  • Expertise in Security Operations and Incident Response, including triage, investigation, containment, and recovery across IT, OT, and cloud domains
  • Hands-on experience with SOC technologies, including SIEM, SOAR, EDR/XDR, and forensic analysis platforms
  • Strong background in OT/ICS cybersecurity, securing SCADA, PLCs, and manufacturing systems using frameworks such as ISA/IEC 62443 and NIST CSF
  • Familiarity with threat detection engineering, use case development, and integration of threat intelligence into monitoring workflows
  • Experience collaborating on vulnerability management and remediation across IT and OT environments
Job Responsibility
Job Responsibility
  • Lead incident response activities for the region, coordinating with global teams for investigation, escalation, and remediation across IT, OT, and cloud environments
  • Manage and continuously improve security monitoring and detection to ensure high-quality visibility and responsiveness
  • Build and mature OT cybersecurity capabilities, partnering with manufacturing, infrastructure, and operations teams to secure industrial control systems, SCADA, PLCs, and laboratory environments
  • Manage and hold vendors accountable for activities such as threat hunting, penetration testing, and forensic analysis, ensuring service quality and effective outcomes
  • Drive the execution of global SOC playbooks, escalation procedures, and threat intelligence integration
  • Support remediation and post-incident activities to strengthen resilience across technology domains
  • Develop, maintain, and enhance operational runbooks and processes to support consistent, repeatable cyber defense practices
  • Collaborate with IT, engineering, and compliance teams to uphold corporate and regulatory security standards
What we offer
What we offer
  • annual performance bonus and comprehensive benefits package
  • Fulltime
Read More
Arrow Right

Senior Specialist, Security Operations and OT Cybersecurity

This position will lead regional security operations and help expand and mature ...
Location
Location
United States , Princeton
Salary
Salary:
120000.00 - 140000.00 USD / Year
rennerbrown.com Logo
Renner Brown
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Minimum 5 years of cybersecurity operations experience, with direct involvement in SOC management, incident response, and threat detection
  • Demonstrated hands-on experience in OT/ICS environments within manufacturing, utilities, or other regulated sectors
  • Proven ability to lead cross-functional investigations and vendor-driven engagements in complex enterprise environments
  • Knowledge of relevant cybersecurity frameworks, such as NIST CSF and ISA/IEC 62443, and their application in industrial and regulated settings
  • Strong analytical and communication skills, with the ability to work effectively across technical and business teams
  • Expertise in Security Operations and Incident Response, including triage, investigation, containment, and recovery across IT, OT, and cloud domains
  • Hands-on experience with SOC technologies, including SIEM, SOAR, EDR/XDR, and forensic analysis platforms
  • Strong background in OT/ICS cybersecurity, securing SCADA, PLCs, and manufacturing systems using frameworks such as ISA/IEC 62443 and NIST CSF
  • Familiarity with threat detection engineering, use case development, and integration of threat intelligence into monitoring workflows
  • Experience collaborating on vulnerability management and remediation across IT and OT environments
Job Responsibility
Job Responsibility
  • Lead incident response activities for the region, coordinating with global teams for investigation, escalation, and remediation across IT, OT, and cloud environments
  • Manage and continuously improve security monitoring and detection to ensure high-quality visibility and responsiveness
  • Build and mature OT cybersecurity capabilities, partnering with manufacturing, infrastructure, and operations teams to secure industrial control systems, SCADA, PLCs, and laboratory environments
  • Manage and hold vendors accountable for activities such as threat hunting, penetration testing, and forensic analysis, ensuring service quality and effective outcomes
  • Drive the execution of global SOC playbooks, escalation procedures, and threat intelligence integration
  • Support remediation and post-incident activities to strengthen resilience across technology domains
  • Develop, maintain, and enhance operational runbooks and processes to support consistent, repeatable cyber defense practices
  • Collaborate with IT, engineering, and compliance teams to uphold corporate and regulatory security standards
What we offer
What we offer
  • annual performance bonus
  • comprehensive benefits package
  • Fulltime
Read More
Arrow Right

Senior Information Security Incident Response Lead

The Senior Information Security Incident Response Lead is responsible for managi...
Location
Location
Mexico , Mexico
Salary
Salary:
Not provided
nttdata.com Logo
NTT DATA
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s degree or equivalent in Information Technology, Computer Science or related preferred
  • SANS GIAC Security Essentials (GSEC) or equivalent preferred
  • SANS GIAC Certified Intrusion Analyst (GCIA) or equivalent preferred
  • SANS GIAC Certified Incident Handler (GCIH) or equivalent preferred
  • Advanced experience in a Technology Information Security Industry
  • Advanced experience or knowledge of SIEM and IPS technologies
  • Advanced experience with Wireshark or tcpdump to identify normal and abnormal/malicious traffic patterns and behaviors
  • Advanced understanding of End Point Protection Software
  • Advanced understanding of Enterprise Detection and Response software
  • Advanced knowledge of technological advances within the information security arena
Job Responsibility
Job Responsibility
  • Manages the prevention and resolution of security breaches and ensure incident and problem management processes are initiated
  • Performs access management activities according to the policy
  • Implements and discusses security service audit schedules, review access authorization and perform the required access controls and testing to identify security weaknesses
  • Interacts with a global team of Cyber Security Analysts and specialists
  • Manages 2nd level triaging of security alerts, events, and notifications
  • Manages notifications of internal and/or external teams according to agreed alert priority levels, and escalation trees
  • Communicates status of response, resolution and final root cause analysis to the appropriate stakeholders
  • Follows and updates established and/or ad-hoc processes and work instructions and create procedures where deficiencies are identified
  • Logs, manages and coordinates service requests through to resolution including the identification, isolation, resolution and escalation of IT infrastructure faults
  • Maintains an understanding of current and emerging threats, vulnerabilities, and trends
Read More
Arrow Right

Senior Security AI Specialist

The Senior Security AI specialist is responsible for the Security that protects ...
Location
Location
Netherlands , Veldhoven
Salary
Salary:
Not provided
asml.com Logo
ASML
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's or master's degree in a relevant discipline, e.g., Business Administration, Information technology, Cybersecurity, Internal Auditing, IT management and or Data Science & AI
  • 4 - 9 years professional experience with a focus on security, IT auditing, Information Security Management Systems (ISMS)
  • Relevant certifications such as CISSP, CISM or CRISC
  • Experience with defining and running an security baselines, assessments
  • Proven track record in Security at tactical level
  • You have or held hands-on previous experience in technical roles (e.g., security architecture, engineering, or implementation), enabling you to critically assess control design and implementation
  • Deep Knowledge of current security technologies and architecture, current and future developments for AI security, in-depth working knowledge of IT, Data and Information Risk/security frameworks and best practices, such as NIST Cyber security framework, ISF Standard of Good Practice for Information Security, IEC 62443, NIST SP 800 30 framework, NIS2 , ISO 27001/2 framework
Job Responsibility
Job Responsibility
  • Help ASML to effectively and efficiently deal with AI security risks
  • Manage and coordinate the lifecycle of AI security assessment, effectiveness of security controls and security baselines by means of verification & validation
  • Validate by ensuring that adequate monitoring capabilities are realized
  • Design and implement effective management reporting and dashboarding capabilities
  • Flag deviations, escalate to senior management where needed and own and drive the resolution process to completion
  • Support the manager in preparing an operational plan and executing that plan
  • Ensure the understanding of ASML's AI Security Strategy
  • Contribute to the setting and alignment of team targets and activities
  • Contribute to the execution of the annual plan activities
  • Achieve desired outcomes of Security Road Map and the implementation of policies and standards related to AI & Information Security
  • Fulltime
Read More
Arrow Right

Senior IT Security Specialist

Location
Location
Poland
Salary
Salary:
Not provided
neuca.pl Logo
GRUPA NEUCA
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • master's degree in Information Technology, Computer Science, Business Administration (IT specialization), or a related field
  • minimum 6 years of professional experience in Information Technology
  • minimum 3 years of experience in Information Security, Cybersecurity, or a comparable role
  • fluent English, both written and spoken
  • strong analytical, problem-solving, and communication skills
  • ability to work independently and manage multiple priorities
  • experience with cloud platforms such as AWS, Microsoft Azure, or Google Cloud Platform
  • knowledge of information security frameworks and standards, including ISO/IEC 27001
  • experience with risk assessment and risk management methodologies
  • knowledge of ITIL Foundation principles and practices
Job Responsibility
Job Responsibility
  • assess security risks and perform business impact analyses for information systems and technology solutions
  • design, implement, and maintain technical, procedural, and organizational security controls
  • monitor, investigate, and support the resolution of security incidents and breaches
  • contribute to the development and continuous improvement of incident management processes
  • conduct vulnerability assessments and support remediation activities
  • design and execute vulnerability research and testing activities using advanced security tools and methodologies
  • support information security governance, compliance, and audit activities
  • monitor the effectiveness of implemented security controls and recommend improvements
  • collaborate with technical and business stakeholders to identify and mitigate security risks
  • provide guidance and support on security best practices and security-related processes
What we offer
What we offer
  • opportunity to work in a global, innovative, and growing organization dedicated to advancing healthcare and life sciences
  • exposure to modern cloud technologies and enterprise cybersecurity programs
  • collaborative and international work environment
  • professional development, training, and certification opportunities
  • flexible working arrangements
  • benefits package
  • stable employment in the company awarded Top Employer 2026
  • Private medical care
  • Free legal advice
  • Social benefits
  • Fulltime
Read More
Arrow Right

Senior Information Assurance Specialist

This role is at Spirit AeroSystems, Inc., a wholly owned subsidiary of The Boein...
Location
Location
United States , Wichita
Salary
Salary:
102600.00 - 157300.00 USD / Year
boeing.com Logo
Boeing
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • High School Diploma or GED
  • 10+ years of related professional experience
  • Must be able to obtain a CISSP and/or CISM Certification within first 6 months of employment
  • Ability to obtain a U.S. Secret Security Clearance and Special Program Access (for which the U.S. Government requires U.S. Citizenship)
  • U.S. Citizenship required
Job Responsibility
Job Responsibility
  • Monitor laws, regulations, industry standards and best practices related to confidentiality, integrity and availability of information and ensure the implementation of these standards in the organization as required
  • Develop, maintain and interpret policies and procedures related to the protection of systems, networks, people, information and property
  • Perform compliance and assessment activities related to information security, data privacy, incident management and risk management
  • Collaboratively develop risk mitigation plans with subject matter experts and ensure accountability for these actions
  • Assess compliance, security, and control risks related to information systems and technical infrastructure
  • Develop training and education materials and promote information security awareness
  • Translate complex, technical concepts into business-relevant terms to facilitate effective decision making by non-technical personnel
  • Support audit activities - both internal and external, related to information security
  • May oversee and manage the DoD accreditation of secure operating systems and networks
  • Collaborate with federal oversight/regulatory agencies to ensure company/program compliance to DoD requirements
What we offer
What we offer
  • competitive base pay and variable compensation opportunities
  • health insurance
  • flexible spending accounts
  • health savings accounts
  • retirement savings plans
  • life and disability insurance programs
  • paid and unpaid time away from work
  • Kansas Aviation tax credit up to $5,000 per year for up to five years
  • generous company match to 401(k)
  • industry-leading tuition assistance program
  • Fulltime
Read More
Arrow Right