26 to 50 of 178 Permanent Information Security Jobs in London

+ Bonus + Benefits Locke & McCloud are looking for an experienced Senior DevSecOps Engineer to join our client who’re currently building out their Security Engineering team within their established Cyber Security function. In this role, you will be part of a growing team that will enable you … to lead the growth and development of various DevSecOps and Security Architecture projects, influence and implement change, with various opportunities to lead and grow a team. Main responsibilities: Collaborate with cross-functional teams to implement security practices throughout the SDLC, emphasising DevSecOps principles. Design, implement, and manage security controls and automation tools to enhance the security posture of cloud-based applications and infrastructure. Conduct thorough security assessments and risk analyses, identifying vulnerabilities and recommending remediation strategies. Develop and maintain security policies, standards, and procedures in alignment with industry best practices and compliance requirements. Provide more »

relationships. As the local Cyber management presence, provide guidance and support for the area. Key Tasks and Responsibilities: Review, analyze, design, and advise on security controls, configurations, and implementations for IT projects Continuously improve the integration and effectiveness of implemented technologies Maintain awareness of cybersecurity threats, events, tactics, techniques … tracking, remediation for identified cybersecurity operational weaknesses Identify, create and mature cybersecurity operations processes Work with IT risk assessment function to ensure the proper security configurations and controls are implemented for IT projects Provide pros/cons of security solutions impact business strategies Create documentation of findings and … CIRT) activities. Assign work to Cyber SOC for remediation Escalate pertinent findings in a timely manner Leverage vendors and internal resources to interface various security tools to automate critical response tasks Support Compliance managers in providing Cybersecurity artifacts Align information cybersecurity operations with NIST, and ISO 27001 requirements more »

Infrastructure Security Engineer - 12 Month Contract - 450/day Outside IR35. London based Insurance company are recruiting for security engineers to join the team foe an initial 12 month contract OUTSIDE IR35. Taking responsibility for leading, guiding, supporting and delivering secure architectural design for the group cyber security maturity programme. Identify areas of cyber security improvement to ensure cyber security and data security by design controls are adopted globally as outlines in the Howden Security and Configuration Standards Document (HSCSD) Support Data Loss Prevention (DLP) solutions that protect corporate data seamlessly across platforms … devices and environments globally. Support the integration of new cyber security technologies that meets the next generation threats and can be adopted by the group globally. You will be required to travel to the local sites, data centre or multiple offices location in order to complete your tasks for more »

Grade/Salary - MGA – £57,600 - £58,725 per annum inclusive with market supplement. Cyber Security Manager Join us and help us create a secure and innovative digital future for our residents and businesses. Who we are We are Merton Council, a London borough that is committed to delivering … high-quality services and improving the lives of our diverse communities. We are looking for a Cyber Security Manager to join our IT Service Delivery team, which is responsible for ensuring the availability, performance, security and resilience of our IT infrastructure, systems, and services. What you'll do … You will create an enabling cyber security strategy and approach that allows our products and services to be continually iterated, baking good security behaviours into our practice. You will articulate the value of cyber security and security architecture across the organisation, working with stakeholders at all more »

We are looking for a Freedom of Information Officer to join our Parliamentary Knowledge and Information Office at the House of Lords. Internally, we call this a Information Compliance Officer. This is an exciting opportunity for someone with good knowledge of data protection legislation and experience of … drafting and sending responses to FOI, EIR and data protection requests. - responding to and providing expert advice in answering FOI, data protection and environmental information enquiries - contributing to policies and procedures on information security issues and the accreditation of ITsolutions, in liaison with the Information Security Team and House of Commons Information Compliance Team - supporting the Head of Information Compliance in completing Data Protection Impact Assessments (DPIAs) for projects and IT solutions that are processing personaldata. - supportingthenetworkof House of Lords Information Security Co-ordinators by keeping them informed of developments, new more »

We are looking for an Information Compliance Officer to join our Parliamentary Knowledge and Information Office at the House of Lords. This is an exciting opportunity for someone with good knowledge of data protection legislation and experience of handling FOI/EIR requests, who is keen to use … drafting and sending responses to FOI, EIR and data protection requests. - responding to and providing expert advice in answering FOI, data protection and environmental information enquiries - contributing to policies and procedures on information security issues and the accreditation of ITsolutions, in liaison with the Information Security Team and House of Commons Information Compliance Team - supporting the Head of Information Compliance in completing Data Protection Impact Assessments (DPIAs) for projects and IT solutions that are processing personaldata. - supportingthenetworkof House of Lords Information Security Co-ordinators by keeping them informed of developments, new more »

and operations 3+ years of experience working with threat intelligence feeds and IOCs Education High School Diploma w/10 years of experience in information security or college diploma with 6 years of information security experience Additional 10 years of IT experience 7+ years in an … information security role 5+ years of experience with threat and vulnerability management program and operations 3+ years of experience working with threat intelligence feeds and IOCs 3+ years of experience in a security engineer role 3+ experience with cloud vulnerabilities 2+ years of experience with endpoint protection … tools 2+ years of experience with security information and event management (SIEM) tools 1+ years of experience with perimeter security Primary Functions Operate within the global Cybersecurity Team within the Information Technology department Ensure global alignment with Company’s best practices for patch, posture, and vulnerability more »

We're collaborating with a reputable financial institution in London, and we're looking for an experienced Information Security Analyst with expertise in Governance, Risk, and Compliance. This role provides an exciting opportunity to contribute to the cybersecurity posture of a leading organisation. Responsibilities: Maintain information security policies and standards, including documentation and version control. Support ISO27001-related projects and audits. Manage third-party security, including client, partner, and supplier due diligence. Conduct training and awareness initiatives in information security. Generate security metrics, dashboards, and reports for management review. Experience Required: Familiarity with … ISO related controls, data protection regulations, and information security management principles. Previous experience in Information Security with a focus on governance, risk, and compliance in Financial Services. Knowledge of IT systems, networking principles, and associated security controls. This is an excellent opportunity to join a more »

of interest, please apply or reach out to Madison – 0203 854 2230/m.brookes@locke-mccloud.com Locke & McCloud are the UK’s leading cyber security & information security staffing company – through having a sole focus on the cyber & information security space we have been able to … foster solid relationships with some of the UK’s most exciting cyber security consultancies & end users. Our focus on the information security space allows us to be able to help you find the most exciting opportunities in the cyber security market. If you are on the … lookout for your next cyber security or information security role, please get in touch more »

Title: Lead Product Security Engineer Location: Hybrid Remote (Central London Office); Sector: Finance/Retail, Apparel and Fashion Salary: Banding of £85,000 - 115,000 per year plus package (to be discussed during vetting call). Please note that to apply for this opportunity, you must be a British … security engineering or a similar role, with demonstrated leadership experience in managing a team of peers. As dedicated recruitment professionals, we prioritize confidentiality. InfoSec People values diversity, equity, and inclusion (DE&I). Please share any information or accessibility needs to aid your process; we’ll do our … to specific requirements. For further details, please send the most current version of your CV and a good time to speak to Becca at InfoSec People, or please click apply or get in touch with Becca for an open, honest, and confidential conversation; 📞 01242 507109 📧 becca@infosecpeople.co.uk more »

Overview The Quality and Information Security Audit Lead operates within the Bell SI business and is responsible for ensuring Bell’s compliance to ISO 9001 and 27001 by organising and performing internal audits and representing Bell at external audits. Must be able to travel to London, Portsmouth or … findings and following up on corrective actions with the relevant owners. Day-to-day management of two Internal Auditors (primarily focused on quality and information security). Identify and capture quality, information security and operational risks for potential inclusion on the risk register along with monitoring … the IMS team as required. Collate and present data for the quarterly ISO Management Review with the Bell Executive Team. Represent the quality and information security audit function during external audits with certification bodies, customers or suppliers. Support the Policy Compliance and Security Manager in reviewing and more »

We are working with a global Law Firm looking to bring an experienced Information Security Manager into their organisation to take charge of their Information Security division and help drive change throughout the business. The Information Security Manager will be required to have knowledge … of managing the ISMS and be able to develop policies, put controls in place and manage Risk across the organisation Key Experience for the Information Security Manager Significant experience in working within risk management and compliance. Ability to be client facing as well as influence internal decisions Experience … supporting Internal and External Audits Proven track record of implementing effective Security Controls and Policies (knowledge of the likes of CIS) Experience of Security Assurance Experience with managing Third Party relationships Knowledge of major compliance frameworks such as CIS and ISO27001 Experience with Data Privacy would be a more »

SecOps Consultant South London (Hybrid) Permanent £70,000-£8 5 ,000 (DOE) SecOps - Security Consultant join excellent program, ideally with active SC and NPPV3 clearance. The position is based in South London with the option to work remotely from home (WFH) on a 'hybrid' basis of 2-3 days … work with a leading digital transformation business on large-scale IT modernisation programmes for government clients. Key skills, experience + tasks will include: SecOps Security Consultant working with SecOps Lead , responsible for ensuring that security procedures are maintained in compliance with the Government Security Classifications framework, are … change, client policies and procedures. Expertise in supporting secure government cloud Migration/Transformation projects. Developing, maintaining, and monitoring policies and procedures. Maintenance of security operating procedures (SyOps) and information security management policies. Experience in investigating security breaches, in delivering security training and awareness initiatives. more »

SecOps Consultant South London (Hybrid) Permanent £70,000-£8 5 ,000 (DOE) SecOps - Security Consultant join excellent program, ideally with active SC and NPPV3 clearance. The position is based in South London with the option to work remotely from home (WFH) on a 'hybrid' basis of 2-3 days … work with a leading digital transformation business on large-scale IT modernisation programmes for government clients. Key skills, experience + tasks will include: SecOps Security Consultant working with SecOps Lead , responsible for ensuring that security procedures are maintained in compliance with the Government Security Classifications framework, are … change, client policies and procedures. Expertise in supporting secure government cloud Migration/Transformation projects. Developing, maintaining, and monitoring policies and procedures. Maintenance of security operating procedures (SyOps) and information security management policies. Experience in investigating security breaches, in delivering security training and awareness initiatives. more »

Cloud Security Engineer/Information Security Engineer/Information Security Analyst Experienced Cloud Security Engineer is required to join an Innovative Start-Up Challenger Bank! Are you passionate about building something new? We're looking for an experienced Cloud Security Engineer to join … a new team of a start-up challenger bank. This hands-on role offers the opportunity to grow into the Head of Information Security, eventually building and leading a new security team. Key Responsibilities: Implement and manage security controls and countermeasures. Perform vulnerability management and remediation. … software engineering and product teams. Manage Active Directory, Azure, Office 365, and Defender services. Respond to new vulnerabilities and manage remediation. Develop and manage security measures for generative AI usage. Key Skills & Experience: Degree/diploma in a tech-related field or relevant experience. Preferred certifications: PenTest+, Security+, OSCP more »

Job summary Cyber Security Manager £56,388 - £62,785 Inc HCAS Per Annum Pro Rata Full Time Hours 37.5/week We are seeking a dynamic Cyber Security Manager to join our team, reporting directly to the CTO, to act as Bromley Healthcare's (BHC) expert on cyber … security protection, detection, response, and recovery as well as leading our Information Governance function. The Cyber Security Manager will be responsible for the strategic and practical approach to cyber threat management and will lead the planning of current and future IT security solutions, researching and reviewing … industry best practice and upcoming changes to technology. You will take the lead in the assessment and remediation of security vulnerabilities. These activities will include leading on auditing patch and general system services compliance status, privileged account use, penetration testing and remediating cybersecurity vulnerabilities. You will develop and execute more »

Our shared mission guides our every action and charts a sustainable path to a better future. An opportunity has become available for an Application Security Manager who will be responsible for evaluating products and applications to ensure they are being designed and deployed in compliance with information security standards and industry best practices. The successful individual will be the key enabler between security, product, and engineering teams. You will need to understand security requirements from a variety of outputs (vulnerability scanners, pen testing, code scans, regulatory requirements), triage and prioritize the findings, and then work … with Product Managers to implement changes to improve the security of our products. You will also provide security consultation to Product Managers, to ensure that security is embedded in product development and strategy, to ensure that security analysis is conducted on any changes or new requirements. more »

Information Security Officer Key Responsibilities: - Perform security assessments for vendors and projects, identifying risks and recommending mitigation strategies. - Ensure compliance with security policies and standards in all vendor and project activities. - Develop and maintain frameworks for security assessments. - Stay updated on emerging security threats … and industry trends. - Participate in incident response and investigations. - Collaborate with procurement to evaluate and manage vendor security. - Review vendor documentation to assess security posture. - Apply risk management principles to prioritize and mitigate security risks. - Support the development and enforcement of security policies and procedures. - Conduct security awareness training for staff. Skills and Experience: - Over 5 years of information security experience. - Preferred certifications: CISA, CISM, or CISSP. - Strong knowledge of security principles, standards (e.g., ISO 27001, NIST), and best practices. - Experience in security assessments and risk management. - Familiarity with regulatory requirements (e.g. more »

seasoned Cybersecurity Engineer to join our client's dynamic team. This role presents an opportunity for an experienced individual to contribute their expertise in security technologies and methodologies within the financial industry. Responsibilities: Provide expert-level security consultancy and engineering support for Windows/Azure security solutions. … Ensure architecture assurance on Windows security initiatives and compliance with existing security standards. Contribute to the design and implementation of Authentication platforms both on premises and in the cloud. Offer security consultancy and engineering support for SAML, OIDC, and Kerberos authentication across various Identity providers. Actively monitor … emerging security technologies, trends, and solutions, assessing their applicability to business initiatives and strategies. Participate in Information Security Incident Response activities. Monitor compliance with information security policies and procedures among employees, contractors, and third parties. Collaborate with key stakeholders to create and enforce policies, including more »

Security Incident Specialist Join our Cyber Security product group as a Security Incident Specialist, a pivotal role within our team dedicated to cyber security incident management and security operations technologies. Our mission is to deliver top-tier enterprise security services across the organization. Key … Responsibilities: Subject Matter Expertise : Lead as the expert on security operations technologies, enhancing identity governance and privileged access management processes. Incident Management : Oversee the full lifecycle of security incidents, especially during high-priority investigations. Ensure outcomes align with business priorities and policies, and disseminate lessons learned effectively. Collaboration … Product Owner, and Product Architect, to drive forward the Operations Centre function within Cyber Security. Community Building : Cultivate a strong community among inter-departmental security operations teams and product groups. Consultation and Implementation : Partner with Cyber Security colleagues and project teams to design and implement new enterprise security more »

Job Title: Information Security Manager 3 Days onsite per week (London) Client Overview: Our partner is a leading global commodities firm distinguished for its excellence in Energy and Metals sectors. We are in search of an Information Security Manager who comprehends the integration of Infrastructure IT … with Information Security. Skills & Experience: Profound understanding of infrastructure architecture, including hardware and software systems. Extensive knowledge of cyber risk landscapes and various attack vectors. Ability to uphold confidentiality while efficiently managing multiple projects concurrently. Background in information technology, preferably in an infrastructure role, with a specialised focus … relevant cybersecurity disciplines (e.g., CISSP, GIAC, CISA, CISM) is advantageous. Key Responsibilities & Accountabilities: Collaborate with IT leadership and business units to devise and implement information security strategies that align with organisational objectives. Conduct ongoing risk assessments to pinpoint and mitigate security vulnerabilities, with a prioritisation on high more »

to join their team. This pivotal role will contribute to safeguarding the organization's digital assets and infrastructure from cybersecurity threats, ensuring a robust security posture and effective incident response. Starting ASAP, paying up to £90,000 per annum. Role Overview: As the SOC Manager, you will be responsible … for providing strategic leadership, technical expertise, and operational oversight to the Security Operations Center (SOC) team. Your role will involve managing both external and internal SOC personnel, overseeing security monitoring and analysis, incident response, threat intelligence, and vulnerability management activities. Key Responsibilities: Act as the subject matter expert … on SOC matters for the organization. Manage the external SOC team and a small internal team, ensuring alignment with organizational security objectives. Review output from the external SOC team and ensure compliance with requirements. Set clear goals and objectives for the SOC team, providing guidance, support, and training as more »

A Charity in Central London are seeking a Cyber Security Analyst. Reporting into the Head of Infrastructure, you will work to ensure that any potential threats and issues are dealt with effectively. The role is hybrid and will require some onsite work across two sites. As our Cyber Security Analyst you will: Provide security and risk assessment consultancy on projects and other formal workgroups and committees, making appropriate recommendations for risk mitigation to ensure that IT Security is considered in the design of new services or changes to existing services Provide security expertise in the … areas of cloud security on Azure and Microsoft 365, including both security and compliance controls and general input to the security architecture across the cloud estate Perform security risk assessments, followed by initiating and managing appropriate remedial action, to ensure that IT infrastructure and application systems more »

We present an exciting opportunity to join a prominent organization in the financial services sector. They actively seek an experienced Cyber Security Engineer to ensure the company's adherence to security standards. Responsibilities: Collaborate with technology and business teams to implement security processes, technologies, and controls, serving … as the authority for security-related inquiries. Define, design, implement, and maintain security solutions tailored to the business's requirements. Support the definition, execution, and continuous improvement of key cybersecurity processes, including vulnerability and patch management, security incident response, monitoring, endpoint security, identity and access management … network security, and cryptography. Assist in developing and maintaining security policies, processes, incident response management plans, and playbooks. Create and document standard operating procedures and protocols. Provide expertise on security requirements for core technology processes, such as asset management, change management, third-party management, technology development and more »

Job title: Information & Cyber Security Analyst Client: Financial Services Salary: £50,000-£70,000 + Bonus Location: London/Hybrid Skills: Information Security, Monitoring, Compliance, Best Practices The role: My client are seeking a knowledgeable Information & Cyber Security Analyst to join their team. This … role is focused on the business side of Security, and is absolutely key in assuring that information is protected and secured at all times. The position is broadly split into 2 main areas: Compliance Security monitoring and compliance Detecting any issues or security breaches across global … infrastructure Monitoring of devices and infrastructure, including reporting Investigating potential threats and issues Risk management and analysis Utilising tooling such as packet inspection and security forensics to resolve and report issues Security & Best Practice Working with various other Security personnel Mitigating Information and Cyber based risks more »