51 to 75 of 178 Permanent Information Security Jobs in London

To ensure our services and applications are fit for the modern market, our team collaborates with every department. We develop, explore and implement the information Security practices helping us to protect the data of our clients in our services of accounting, tax and business consulting. But, just as … importantly, we maintain the functionality of our Information Security Management System (ISMS) and ensure governance of the technology and security processes that keeps us advancing. And you could too. In an Information Security role at BDO, you'll become part of a team that act … deliver the Assurance program and analytical work. The Assurance Manager role is the focal point for effective engagement between the business streams and the Information Security team on Assurance related matters. This role will be a trusted adviser to senior stakeholders and provide broad knowledge of BDO's more »

locations. The Trust has invested in its comprehensive approach to governance to match its ambition to improve eye care. The newly created post of Information Governance Manager for Research and Compliance joins a dynamic team supporting the Head of Information Governance to deliver great IG performance across clinical … sharing/licensing and/or service agreements involving personal data, liaising with the Head of IG and Moorfields General Counsel where appropriate. Manage information asset accession and information security reviews relating to research proposals, including Information risk assessments, data protection impact assessments for new and … in current practice, and where required make recommendations. Work with the managers and principle investigators to ensure the maintenance of their entries to the information asset register. Develop and provide tailored IG training and guidance for research colleagues. Investigate and report on IG complaints and incidents in line with more »

The Role: We are looking for a Cloud Security Engineer with experience on AWS, to join our growing team. The successful candidate will have an essential role in ensuring the information security of our business. You will be working in a team that is designing and building … resilient and secure Cloud environments that proactively prevent security threats. The main responsibilities of the position include: Design and build resilient Cloud infrastructures that are protected against security threats Develop and assess Cloud security solutions to secure systems, databases and networks Conduct assessment and make recommendations to … ensure that appropriate controls are in place Gain insight into security incidents and threats by monitoring/analyzing logs and performing vulnerability assessments Participate in efforts that shape the company’s security policies, procedures and standards for use in Cloud environments Create technical and managerial level security more »

a Group ISMS Manager to join us in either Hove or London! You'll play a key role in maintaining the L&G group Information Security Management System (ISMS), in line with the requirements of the ISO 27001:2022 standard and any iterations thereafter. This is a group … maintain ISO 27001 accreditation within the scope of the group certification What you'll be doing: Supportingdevelopment of the assurance approach for maintaining group information security policies and standards, in line with ISO 27001:2022 and any iterations thereafter Authoring and maturingthe Group ISMS Operations Manual and Statement … stakeholders to determine the impact of the changes on the delivery of customer outcomes Qualifications Who we're looking for: Previous experience managing an Information Security Management System (ISMS), in line with ISO 27001 requirements. Excellent understanding and practice of IT architecture, infrastructure and information security more »

INFORMATION SECURITY MANAGER - LONDON CITY 2 DAYS PER WEEK ON SITE - NO SPONSORSHIP AVAILABLE. Must be available within 1 month. We … are looking to speak with experienced ISO27001 IT risk/compliance SME's who can hit the ground running. Taking ownership of the internal Infosec dept & manage external 3rd parties. You will play a big part of creating an ISO framework and embedded internal security within a global insurance … the support of the head of technology. Would you like to create a legacy within their information security infrastructure and implement IT, Infosec, and compliance frameworks. Would you like to assist with the design and roll out of a group wide Cyber Security manual. Would you like more »

Technical Information Security Consultant required for market-leading financial services firm. The role will be centred on ensuring security is delivered into a wide range of projects. There will be a focus on working closely with DevOps teams and embedding security throughout a software development life … cycle. Responsibilities: Act as the main security point of contact & SME for required projects Manage security risk for the whole project life cycle Perform security activities, including but not limited to, security design reviews, risk assessments, threat modelling, and vulnerability management and risk mitigation on internally … externally developed software Embedding security within DevOps (eg CI/CD pipelines), developing security requirements On-demand Security assessment of various components like Web apps, Containers, Platforms etc Reviewing security assessment reports and create a remediation pipeline Experience in web application security assessments like SAST more »

Location: London Hybrid: 2-3 days per week in office Salary: up to £105k dependant on experience InfoSec Manager required by a global Law Firm based in central London in a permanent role paying up to £105k per annum + benefits. The role is hybrid working, with people management responsibilities … communication skills Demonstratable knowledge across all areas of information security, risk management, audit, and compliance Experience growing and motivating a team of InfoSec professionals Experience delivering presentations and engaging with senior leadership Experience collaborating with cross functional teams to identify and implement best practice risk processes Experience working … them Ensure the success of key programmes Manage security technical reviews and attend ARBs, TDAs and CABs An excellent opportunity for an experienced InfoSec Manager with strong interpersonal skills to join a supportive and collaborative team in a newly created role to support the Head of Information Security. more »

We are looking for a Security Consultant with extensive experience in providing end-to-end security assurance for business projects. The ideal candidate will have a strong background in threat assessments, architectural design reviews, third-party risk assessments, RFP security requirements, network security, IDAM projects, ransomware … remediation, pen test scoping, and HLD/LLD reviews. Responsibilities: Perform threat modelling to identify potential security vulnerabilities and risks. Assess high and low-level architectural designs to identify security risks and provide recommendations for mitigation. Provide security requirements for RFPs and score RFPs based on security criteria. Conduct assessments of third-party security posture to ensure compliance with security standards. Create scopes for penetration testing, organize pen tests, review results, and oversee remediation efforts. Collaborate with project teams to agree on specific security controls and gather evidence of implementation. Identify and articulate more »

Senior IT Security Engineer Remote with 1-2 days in London per quarter as needed. 6-12 months, £500 per day Outside IR35 Experienced IT Security Engineer required to bolster the Info Sec team, specifically to translate risks and threats into clear guidance of what that means to … required action, with a practical and hands on approach to the delivery of the same. This role will make a big impact on improved security posture and maturing the security skills of the team and technical environment. Must be a willing coach, able to share knowledge and expertise … and influence and guide teams, with a desire to get hands dirty to deliver and drive security initiatives. Key responsibility areas: Network Security: Network Access Control (NAC) Implementation: Design, implement, and maintain a NAC solution to prevent unauthorized devices from accessing the corporate network. Firewall Rule Review and more »

work for one of the most advanced trading firms globally? Our client is a leading financial technology company who are currently hiring a Senior Information Security Engineer. The Security team play a crucial role in safeguarding the firm's physical and IT assets, ensuring compliance with global … and staying ahead of emerging cyber threats. Location : London (Hybrid) Compensation Package Up to £250,000 (Depending on Experience) The Role: As a Senior Information Security Engineer, you will be an integral part of the technology team, responsible for architecting, developing, and deploying large-scale security solutions. … You will collaborate closely with software & system engineers to identify and address security vulnerabilities, design defensive controls, and enhance our detection capabilities. Responsibilities: You will engage in requirements gathering, architecting, prototyping, and developing internal tools and infrastructure. You will work across a broad range of security roles and more »

Manager and the direct team in both: 1) the execution/ongoing management of the banks Cyber Resilience activities & also 2) the new Cyber Security and Digital Operational Resilience Act (DORA) related capabilities. This is an opportunity for a motivated self-starter, with a can-do mindset and the … ability to connect information from various sources to help build a connected resilient organisation. The candidate will have the opportunity to strengthen and demonstrate strong knowledge of cyber resilience and the new DORA requirements coming into effect in January 2025. Accountabilities and Duties: This is an overview list of … Support DORA compliance by coordinating the activities required across all six pillars of DORA: ICT Risk Management, ICT related Incident Reporting, Digital Resilience Testing, Information Sharing, ICT Third Party Risk and General Governance Principles. Stay up to date with the changing cyber risk landscape, emerging threats, regulatory requirements and more »

interim role is responsible for leading the development and execution of a comprehensive business technology strategy. You'll oversee Business Systems, Business Intelligence, and Information Security departments, ensuring technology aligns with corporate objectives, data is used effectively, and information security is robust. Key Responsibilities: Strategic Leadership … Drive the development and implementation of a business technology strategy supporting company goals, leading high-performing Business Systems, BI, and Information Security teams during this transformative period. Technology Integration & Innovation: Identify and integrate emerging technologies to enhance business operations, improve customer experience, and drive efficiency (including CRM, Martech … insights supporting their objectives. Cybersecurity & Risk Management: Develop and maintain a cutting-edge cybersecurity strategy safeguarding company assets, data, and infrastructure. Oversee technology and security risk management processes. Process Optimization: Identify automation opportunities and leverage technology solutions for process improvement and cost savings. Strategic Vendor Oversight: Manage relationships with more »

A specialist (re)insurance broker are looking for an experienced Cyber Security Engineer to take responsibility for the development and operation of the vulnerability and security event management programs, within the Information Security function. This is a permanent role with hybrid working arrangements - requiring … per week in their Central London office. Core responsibilities will include: Daily management and maintenance of vulnerability monitoring systems Daily management and maintenance of security event monitoring Support the Information Security Team in performing security assessments for projects and other initiatives Assess cloud applications and provide … assurance that products or services follow the firm's policies Support the maintenance of security in cloud environment (Microsoft 365 and Azure hosted solutions). Whilst experience working with Microsoft products would be ideal, we're predominantly looking for someone who is "security led" in their approach as more »

A specialist (re)insurance broker are looking for an experienced Cyber Security Engineer to take responsibility for the development and operation of the vulnerability and security event management programs, within the Information Security function. This is a permanent role with hybrid working arrangements - requiring … per week in their Central London office. Core responsibilities will include: Daily management and maintenance of vulnerability monitoring systems Daily management and maintenance of security event monitoring Support the Information Security Team in performing security assessments for projects and other initiatives Assess cloud applications and provide … assurance that products or services follow the firm's policies Support the maintenance of security in cloud environment (Microsoft 365 and Azure hosted solutions). Whilst experience working with Microsoft products would be ideal, we're predominantly looking for someone who is "security led" in their approach as more »

A specialist (re)insurance broker are looking for an experienced Cyber Security Engineer to take responsibility for the development and operation of the vulnerability and security event management programs, within the Information Security function. This is a permanent role with hybrid working arrangements - requiring … per week in their Central London office. Core responsibilities will include: Daily management and maintenance of vulnerability monitoring systems Daily management and maintenance of security event monitoring Support the Information Security Team in performing security assessments for projects and other initiatives Assess cloud applications and provide … assurance that products or services follow the firm's policies Support the maintenance of security in cloud environment (Microsoft 365 and Azure hosted solutions). Whilst experience working with Microsoft products would be ideal, we're predominantly looking for someone who is "security led" in their approach as more »

Cyber Security Manager London (Hybrid) £100,000 The role: • Provide guidance on advanced engineering methods to safeguard the network from security threats associated with various architectures, including web, mobile, and client/server. • Evaluate the security measures of third-party systems and applications to ensure compliance with … error handling. • Collaborate with teams across different regions to address technology and cybersecurity regulations not covered by the global framework. • Lead the implementation of security measures across different platforms by collaborating with technology infrastructure teams, demonstrating expertise and leadership in information and cybersecurity. • Investigate potential security incidents … to enhance the cyber program, including refining detection tools and improving access to data sources. • Serve as a point of contact for stakeholders during security incidents and investigations, including those outside the technology team. • Respond to regulatory inquiries regarding security incidents and preventive measures. • Provide regular updates on more »

Uptime Institute has paved new ground in the exploration and implementation of programs that help organizations to advance the detection and mitigation of ICT (Information and Communication Technology) operational risk. In addition, our programs have a long history of identifying best practices for optimizing energy efficiency and other- resource … responsible for the continued development of Uptime Institute’s s cybersecurity-focused services portfolio. Position Description: Developing short and long-term strategy for cyber security services including, driving requirements and improvement initiatives, developing roadmaps with actionable plans, leading cross-functional teams both internally and externally, and championing the execution … MSP, Cloud Services, SaaS and Colocation suppliers. Continuously evolving Uptime Institute cybersecurity services roadmap & scope parameters, to improve services offering against the expanding cyber security norms and standards relevant to data centres. Identifying and managing cybersecurity program development partners and advisory board in line with the company’s objective more »

offering a wide range of general insurance products across motor, travel, commercial, home, pet and rescue. They have an exciting opportunity for a Senior Security Operations Analyst to join their re-energised Cyber Defence team! Reporting into the Cyber Defence Security Operations Lead, you will act as the … as a secondary contact and escalation point for the team. You'll manage a team of Security Analysts to oversee the day-to-day operational delivery of services provided by our third party 24x7 Security Operations Centre, and will take ownership of our security presence and identify … any gaps by working with various stakeholders across the business. What else you'll be doing : Maintaining security oversight of the technical infrastructure delivered by third party suppliers and raising concerns/issues that pose a security risk to the organisation accordingly. You will also manage any operational more »

possible user experience for customers. And a great career for you. Join us. Own the evolution. We have an exciting opportunity for a Senior Security Operations Analyst to join our re-energised Cyber Defence team! Reporting into the Cyber Defence Security Operations Lead, you will act as the … as a secondary contact and escalation point for the team. You'll manage a team of Security Analysts to oversee the day-to-day operational delivery of services provided by our third party 24x7 Security Operations Centre, and will take ownership of our security presence and identify … any gaps by working with various stakeholders across the business. What else you'll be doing: Maintaining security oversight of the technical infrastructure delivered by third party suppliers and raising concerns/issues that pose a security risk to the organisation accordingly. You will also manage any operational more »

ll be encouraged to identify and draw attention to opportunities for enhancing our delivery and providing additional services to organisations we work with. The Security Operations Manager role is integral to BDO, ensuring that we protect our colleagues, clients and partners information as we rapidly expand our digital … footprint. Reporting into the Head of IT Security, you'll ensure the delivery of cybersecurity improvement initiatives, operational excellence, technical security assurance and develop a talent pipeline. You'll work closely alongside the Head of IT Security to instill the right structure and processes to support the … where you will conduct performance reviews, and provide leadership and coaching, including technical and personal development programs for team members. You'll also: Deliver security operations technology roadmaps in conjunction with the wider Cybersecurity strategy. Propose changes to existing policies, procedures and configurations to ensure operating efficiency and regulatory more »

Security Architect London - Hybrid £100-130k per annum We are currently working with a growing company that is actively recruiting for a Security Architect to join them on a permanent basis. This is a vital role for the business, taking business requirements and creating low-level specifications … high-level designs, working closely with stakeholders from across the business as well as engineering teams in the process. The successful candidate for the Security Architect will have the following responsibilities: Owning enterprise security architecture, integrating security controls within systems across the business Communicating effectively with stakeholders … both business and technology) to develop security requirements for projects Taking into consideration operational efficiency and useability when designing solutions Taking security requirements (both technical and non-technical) and creating high level designs, then in collaboration with engineering functions, producing low level designs Overall responsibility and ownership of more »

Senior Security Engineer - Global Data Organisation - London Our global data client require an experienced Security Engineer to join their team. The Senior Security Engineer will hold a pivotal role in fortifying information assets against potential threats and vulnerabilities. Responsibilities will span various facets of information security, encompassing the vigilant monitoring of operations and infrastructure, upkeep of security tools and technologies, and ensuring compliance with internal policies and external regulations. Collaboration with different departments will be integral to mitigate risks effectively. This position is ideal for someone with ambition, offering the chance to … shape the role according to their vision, expand its scope, and even build a dedicated team. Experience: 3+ years of experience in Security Engineering or a related field Proficiency in maintaining and utilizing security tools and technologies Ability to create automated queries using tooling APIs (Python/Powershell more »

Data Security Manager - Permanent - London/Hybrid Join a dynamic team as a Data Security Manager, where you'll play a pivotal role in safeguarding the strategic data and analytics assets. You'll work within a matrix organization to implement top-notch Data Security Controls, ensuring the … business meets all Information Security and Data Policy standards. In this exciting position, you'll develop and uphold the clients Controls Framework, aligning with the '3 Lines of Defense' Governance Model. You'll need to be a proactive IT project and change manager, capable of transforming security … a key player in their innovative and forward-thinking team! Responsibilities: Partner with key stakeholders from Global Technology, Risk Management, Data Protection Officer, and Information Security to ensure products and processes are compliant, resilient, and audit-ready Ensure products comply with GDPR, CFIUS, and other relevant regulations Develop more »

Home based Help strengthen our team as our Head of Security Culture. Home based role. A great opportunity to join our team as our Head of Security Culture to support our behavioural change and embedding security values across Capita by developing and implementing a comprehensive behavioural and … cultural change programme. This includes providing guidance and expertise on key initiatives and projects from the Security team, to ensure simplicity of our ask and optimal behavioural change. This role involves strategizing, developing, and implementing initiatives that effectively communicate and promote security best practices across all levels of … our business with the goal to foster a security-conscious environment, ensuring that security is a fundamental consideration in all business processes and decisions. What You'll Be Doing: '€¢ Security culture development: Design and deliver a security culture observability programme, ensuring we know what the macro more »

Consultant role working for an industry-leading cybersecurity company based in London, providing the opportunity to work remotely. Already well-established within the cyber-security sector, they have experienced rapid sales in 2023, which has opened up several career opportunities for cybersecurity professionals. This role is working within the … the Operations Team you will cover 3 main areas within the business and your time will be split between: Manage client relationships Working on Security Roadmaps for Clients Post-sales technical support & troubleshooting of issues IT administration and sysadmin SOC focussed projects What this offers: A highly varied and … exciting role where you will learn many areas in the security and support domains A clear-cut career path in a fast growing company where opportunities are in abundance A close-knit, supportive team Fully remote work Applications: If you would like to apply for this unique opportunity, we more »