The primary objective of the Customer Experience Associate (CEA) is to project a professional image and provide excellent customer experience in all communications and interactions. This is a key role within the organization as you are the face and voice of our customers and our Human Brand. You are the front line of support for our customers answering the their questions and enquires to ensure satisfaction with our products, and services, and (when applicable) actively promoting new services. | | As a CEA, you must be passionate about customer experience and providing world-class service to our customers to achieve both individual and company objectives. This is a remote position, and candidates must reside in the UK.
Responsibilities
- Provide a high-quality experience to our customer at all times, through multiple communication channels achieving designated KPI’s associated with the role. | - Actively promote products and services to our customers, explaining products and making recommendations based on customer driven information. | - Actively seek opportunities to reduce customer effort and friction to improve customer satisfaction and drive loyalty. | - Manage day to day contacts: | - Deliver accurate, professional and timely support to customers during the examination and education registration process and strive to achieve first time resolution on every contact. | - Resolve customer concerns through the case management system; create cases for each contact handled. | - Assist customers and candidates with items such as: password resets; contact or profile change requests; “how-to” issues concerning website use; certification process and renewal related issues/inquires; extensions; etc. | - Process payments for annual maintenance fees and diagnoses payment errors. | - Register customers for seminars. | | - Multitask through multiple web applications: Case Management System, Live Person Agent Desktop and IntelliVUE, etc. | - Recognize, document, and inform the regional manager regarding trends in customer correspondence. | - Escalate complex inquires / requests to subject matter experts. | - Carry out effective outreach to customers as required. | - Assist CPE Auditor with non-complex audits and mass continuing professional education (CPE) credits entries. | - Experience working with AI tools or a demonstrated willingness to learn. | - Perform miscellaneous duties as assigned.
Job Locations
UK-Remote
Job Post Information* : Posted Date
2 weeks ago(6/30/2026 1:22 PM)
The Security Engineer, Penetration Testing is a dual-function role responsible for both executing offensive security assessments and building the defensive engineering controls that harden ISC2’s environment. The role leads authorized penetration testing across ISC2’s applications, networks, and cloud infrastructure while also owning security engineering work — including security architecture review, tooling, automation, and control implementation — that translates findings into lasting improvements. This position works closely with the Security and Technical Operations team and collaborates across IT, engineering, and product to continuously strengthen ISC2’s security posture. The role plays a critical part in supporting ISC2’s ISO/IEC 27001:2022 ISMS program, providing both evidence of technical control effectiveness and direct input into risk treatment.
Responsibilities
Penetration Testing | - Plan, execute, and document internal and external penetration tests against ISC2 applications, networks, cloud environments, and infrastructure. | - Perform vulnerability assessments and validate findings to distinguish genuine risks from false positives. | - Conduct web application, API, mobile, and network vulnerability assessments using industry-standard methodologies (OWASP, PTES, OSSTMM). | - Perform social engineering assessments, including phishing simulations and physical security testing as authorized. | - Produce clear, actionable written reports detailing findings, risk ratings, evidence, and remediation recommendations tailored to both technical and executive audiences. | - Support red team exercises and adversary simulation activities to test detection and response capabilities. | - Develop andmaintain the penetration testing program, including scope definitions, rules of engagement, and testing schedules. Move towards a continuous test mindset and method. | - Coordinate with third-party security vendors for external assessments and bug bounty program management where applicable. | Security Engineering | - Own remediation follow-through: translate pen test findings into security engineering work items,validate fixes, and track resolution to closure in Jira Service Management. | - Design and implement security controls across ISC2’scloud and on-premises environments, including hardening configurations for Azure, Okta, SentinelOne, CheckPoint, and F5 XD. | - Participate in security architecture and design reviews for new systems, integrations, and third-party products; provide security requirements and risk acceptance recommendations. | - Develop and maintain security automation scripts and tooling to improve detection coverage, reduce manual effort in assessment workflows, and support continuous monitoring. | - Support the Secure Software Development Lifecycle (SSDLC), including security requirements definition, code review support, and pre-deployment security validation. | - Maintain awareness of emerging vulnerabilities, exploits, and threat actor TTPs; operationalize threat intelligence into actionable hardening and detection improvements. | - Support ISC2’s ISO/IEC 27001:2022 ISMS by providing technical evidence and input for Annex A controls spanning vulnerability management (A.8.8), secure development (A.8.25–A.8.29), and technical review (A.8.29). | - Miscellaneous duties as assigned.
Job Locations
UK-Remote
Job Post Information* : Posted Date
3 weeks ago(6/29/2026 7:46 PM)
The AI Security Engineer is responsible for identifying, assessing, and mitigating security risks introduced by artificial intelligence and machine learning systems across ISC2’s technology estate. This role sits at the intersection of offensive security, application security, and data science — evaluating AI/ML pipelines, large language model (LLM) integrations, and AI-powered products for adversarial threats, model vulnerabilities, and supply chain risks. The AI Security Engineer partners closely with the Security and Technical Operations team, engineering, and product stakeholders to embed security controls throughout the AI development lifecycle and contributes directly to ISC2’s ISO/IEC 27001:2022 ISMS program and broader cybersecurity governance objectives.
Responsibilities
- Perform security assessments of AI/ML systems, including threat modeling, adversarial testing, and of LLM-based applications and AI-powered products and services integrated into ISC2’s products and operations. | - Evaluate AI/ML implementations for vulnerabilities including prompt injection, jailbreaking, model inversion, data poisoning, membership inference, and adversarial example attacks. | - Define and implement secure AI development lifecycle (AI-SDLC) standards, including secure model training, data governance, agent, and other access controls, and model deployment guardrails. | - Conduct third-party AI vendor and model supply chain risk assessments; evaluate API-based AI services (e.g., OpenAI, Anthropic,Claude Code, Azure OpenAI) for data handling, privacy, and security posture. | - Partner with engineering and product teams to review AI feature designs, conduct pre-deployment security reviews, and provide risk acceptance recommendations for AI-related SSDLC exceptions. | - Monitor the evolving AI threat landscape;maintain awareness of emerging attack techniques, regulatory developments (EU AI Act, NIST AI RMF), and industry best practices (OWASP Top 10 for LLMs, MITRE ATLAS). | - Support ISC2’s ISO/IEC 27001:2022 ISMS by mapping AI risk controls to applicable Annex A requirements (including A.8.25 through A.8.29) and contributing AI-specific risk treatment plans to the organizational risk register. | - Develop and deliver internal training and awareness content on responsible AI use, AI-specific threats, and secure integration patterns for developers and business stakeholders. | - Contribute to ISC2’s thought leadership in AI security by supporting content, certification, and research initiatives aligned with the organization’s mission. | - Perform miscellaneous duties as assigned.