1 to 25 of 36 Permanent Security Posture Jobs in London

Months + Possible extensions) Job Location: London, UK(Remote) Job Description: The SIEM Onboarding Engineer plays a critical role in enhancing our organizations security posture by integrating various devices and data sources into our SIEM environment, utilizing OpenSearch. The SIEM Onboarding Engineer will work closely with business units … Responsibilities: Device Integration: Work with various business units to identify devices and data sources that need to be onboarded to our SIEM (OpenSearch with Security Analytics). Data Pipeline Management: Configure and manage data collection agents to ensure data is reliably ingested into the SIEM. Automation: Leverage automation scripts … and tools to streamline the deployment and configuration of data collection agents across multiple devices. Collaboration: Collaborate with security engineers and other stakeholders to ensure seamless integration and optimal performance of the SIEM. Monitoring and Troubleshooting: Monitor the data pipeline for issues, troubleshoot problems, and implement fixes to maintain more »

Security Operations Analyst Egress Software Technologies, a leading Cyber Security company, is dedicated to your wellbeing and career development. We offer unparalleled work-life balance and transparent career paths, celebrating your unique contributions. Passionate about Cyber Security? Join us to work in a stable yet exciting industry. … Financial Services, Legal, Healthcare, and Government sectors, from advanced threats, ensuring they can achieve their missions safely. At the forefront of the IT Cyber Security industry, Egress can provide an unrivalled career path in Security Operations. The Team The three Egress security teams report to the Chief … Information Security Officer (CISO), these are: Security Operations – the day-to-day management of operational processes and incidents Cyber Security – defining security best practice of technologies and internal pentesting Compliance & Risk – managing accreditations, auditing, and risk management This role forms part of the Security Operations more »

Security Manager (Information Security) Location: London, UK (Hybrid/Remote) Salary: £200k+ Base About the Client: Our client is a prestigious hedge fund known for its innovative approach and commitment to excellence. They are seeking a highly skilled Security Manager with a strong focus on Information Security to join their elite team. Job Description: As a Security Manager, you will be responsible for overseeing and enhancing the information security posture of the organisation. This is a critical role that requires a strategic mindset, exceptional technical expertise, and the ability to manage complex security … position offers a hybrid/remote work arrangement, providing flexibility while maintaining strong collaboration with the team. Key Responsibilities: Develop and implement comprehensive information security strategies, policies, and procedures. Conduct risk assessments and vulnerability analyses to identify and mitigate security threats. Lead incident response efforts and manage security more »

NO SPONSORSHIPS AT THIS TIME************* Role: Sr. Security Engineer with Architecture Knowledge Location: London, UK Experience: 7-10 years Salary: 60k – 70k GBP/year –Security Architect Service - Work with Architects to deliver Security designs/assurance for Projects –Manage escalations or guidance on extremely complex issues. … tasks to ensure the programme delivers against its’ commitments to key internal and external stakeholder groups Key Responsibilities Design and Implementation:  Develop and implement security architecture strategies and frameworks to protect organizational assets.  Design security solutions, including firewalls, IDS/IPS, VPNs, endpoint protection, and encryption systems.  Ensure … security architecture aligns with industry best practices and compliance requirements (e.g., GDPR, HIPAA, PCI-DSS) Risk Assessment and Management:  Conduct security risk assessments and vulnerability assessments to identify and mitigate security risks.  Develop and enforce security policies, standards, and guidelines.  Monitor and analyse security threats more »

Senior Cloud Security Engineer - London hybrid - £75,000 - £95,000 + Bonus + Benefits Locke & McCloud are looking for an experienced Senior Cloud Security Engineer to join our clients growing security engineering function. As a Senior Cloud Security Engineer, you will be responsible for designing, implementing … and managing security measures across our clients cloud platforms. You will work to develop security strategies, respond to incidents, and continuously improve our client cloud security posture. Main responsibilities: Design and implement comprehensive security controls and best practices for cloud infrastructure. Develop and enforce security policies, standards, and guidelines to ensure compliance with ISO27001, NIST, PCI-DSS, Cyber Essentials, and GDPR. Conduct security assessments, vulnerability scans, and penetration tests to identify and mitigate risks. Monitor and respond to security incidents, including conducting forensic investigations and root cause analyses. Collaborate with DevOps and more »

Security Engineer - Application Security, £70,000 - £90,000 base, 15% bonus, + Great benefit package We're working with a FTSE 100 e-commerce firm that is looking for an experienced Application Security expert to enhance its secure software capabilities. This opportunity is ideal for a DevSecOps …/Application Security technical consultant or engineer with a proven track record in agile environments. The role involves providing expert guidance and driving improvements to bolster the client's Application Security posture. The role involves identifying and managing security toolsets, providing guidance to engineering teams, and maintaining … solutions to prevent security issues early in development. You will be responsible for assisting in the identification of appropriate toolsets that align with the application security team’s strategy, offering comprehensive guidance to enable engineering teams to effectively self-serve with the toolsets, and aiding in the management more »

leader in our field. Job Description The Role: As a Senior Penetration Tester at Sportradar, you will play a pivotal role in enhancing our security posture. Collaborating closely with our architecture, development, and system administration teams, as well as the broader business, you will be instrumental in protecting our … intellectual property and ensuring the security of our digital assets. This role requires deep technical expertise, strategic thinking, and the ability to lead and mentor a team. The Challenge: Lead and contribute to the protection and security of our intellectual property. Conduct advanced penetration testing across various platforms … and environments. Perform detailed risk analysis to identify and mitigate security issues leading to data loss or theft. Identify security breaches, implement corrective actions, and devise strategies to prevent future incidents. Collaborate with developers across Sportradar for in-depth security reviews and threat modeling. Work in an more »

Freelance Third Party IT Security Manager contractor needed Belgium based or UK based. long term contract Rate per day ASAP start Key responsibilities: Third-Party Assurance Lifecycle & Support the transformation of the activity Execute Third Party Due Diligence, risk profiling, onboarding, re-certification; Make an opinion on Third Party … Security Posture ; Define Remediation where applicable Support Contract Management - ensure that the security expectations included in the contract are proportionate to the risk profiling Contribute to the DORA regulation implementation – translate DORA requirements into actionable processes & materials (contract, assessment templates, …) to be used by the team. Core … Skills Previous experience in Third Party Security Management (i.e. Due Diligence, etc.) Knowledge of control frameworks, e.g., ISO 27000, NIST, CIS-20, COBIT-5 Knowledge of relevant regulations, i.e. DORA, Outsourcing, ESMA, etc. Previous experience in supporting or delivering of large scare regulatory change initiative Experience with contract review more »

. We invite you to join our client’s dynamic team as a Red Team Lead for a leading and fast-growing UK cyber security consulting firm. Our client isn't just about providing cybersecurity solutions and services; they're dedicated to fostering your professional advancement and development. They … growth journey and funding certifications to help you excel. The Principal Red Team Operator will be at the forefront of the client’s offensive security operations, it will be your role to uncover weaknesses in client’s security posture and provide actionable insights to enhance their resilience … engagements, including attack simulation. Identify vulnerabilities in networks, applications, and systems through advanced penetration testing techniques. Collaborate closely with clients to understand their unique security challenges and develop tailored strategies for mitigating risks. Provide detailed reports and recommendations, guiding clients towards effective security solutions and best practices. Requirements more »

assets. As the Head of IAM, the individual will lead a team of IAM professionals, collaborate with key stakeholders, and drive initiatives to enhance security posture and streamline access management processes. Key Responsibilities: Develops and executes IAM strategies aligned with business objectives and regulatory requirements. Leads the design … access controls. Oversees the operation of IAM technologies, ensuring system reliability, scalability, and performance. Establishes and enforces IAM policies, standards, and procedures to mitigate security risks and ensure compliance with industry regulations. Leads the evaluation and selection of IAM solutions, vendors, and technologies. Collaborates with internal teams and external … team members, fostering a culture of continuous learning and professional development. Monitors emerging trends and best practices in IAM, recommending innovative solutions to enhance security posture and operational efficiency. Serves as a subject matter expert on IAM matters, providing guidance and support to clients and internal stakeholders. Qualifications more »

Information Security Risk Analyst Location: Hybrid - London Package: Negotiable + Benefits The Information Security Risk Analyst III at Brown & Brown is responsible for analysing information security controls both within our organisation and with third-party entities. This analysis aims to identify and assess associated information security risks, and effectively communicate these findings to the business stakeholders. This role requires a thorough understanding of information security principles and practices, as well as the ability to evaluate complex systems and processes. The Information Security Risk Analyst III plays a crucial role in safeguarding our organisation … s information assets and maintaining a strong security posture. The day to day: research and analysis to handle inbound cybersecurity inquiries from company’s third parties. research and analysis related to vetting new or potentially new third parties. recommendations for communicating identified security risks of new or potentially more »

Senior Cloud Security Engineer What you’ll be working on: Configuring cloud security applications and security policies. Tuning alerts with the L3 Ops teams to ensure the right alerts are being alerted. Roll out a security solution across cloud accounts within all regions including Kubernetes & containers. … Objectives: To work closely with the Cloud Engineering teams to ensure the cloud platforms are complying to security standards and there is a remediation process. To work with the SOC team & automation team to ensure alerting is correct for any detections or incidents that Op's will need to … investigate. To improve the security posture of cloud devices in AWS, GCP & Azure. What you’ll bring: Sound knowledge from a Cloud security perspective & how to create, update and improve polices for prevention, compliance, and sensor standpoint. Experience engineering and securing AWS, GCP and Azure Cloud platforms more »

Senior AWS Platform Engineer - Appvia - Security Clearance eligibility required. Location: London, UK About Us At Appvia, we're committed to helping our customers navigate their journey to Cloud and DevOps maturity. As a leading provider in the industry, we offer cutting-edge technologies and services to support our clients … to architect their applications to be cloud native, or helping them transform existing applications to cloud native where possible. Implementing monitoring and alerting Improving security posture of applications being migrated Creating secure deployment patterns and templates/modules for application development teams to reuse. Gathering requirements for building … desirable, e.g.: AWS Certified: Solutions Architect Associate AWS Certified: Solutions Architect Professional Certification in Kubernetes administration is desirable: Certified Kubernetes Administrator (CKA) Certified Kubernetes Security Specialist (CKSS) Benefits Why join Appvia? We are a self-funded, London based startup; providing businesses with a fast and secure way to deploy more »

skills. This role is crucial for advancing cybersecurity infrastructure through innovative threat intelligence, data analytics, and the development and maintenance of integrations to streamline security operations. The position embodies a philosophy of perpetual learning and is tasked with ensuring Fortrea remains at the forefront of cybersecurity innovation, with a … enhancing threat intelligence, detection, and incident response capabilities. Lead the strategic integration of Google Chronicle within Fortrea's cybersecurity infrastructure, optimizing its utility for security analytics and operations. Direct the data onboarding process for Google Chronicle, ensuring data quality is high, accurate, and non-duplicative to maintain integrity in … Chronicles capabilities. Spearhead initiatives to expand Chronicle's application within Fortrea, exploring and integrating new features, technologies, and methodologies to maintain a leading-edge security posture. Act as a thought leader in Google Chronicle utilization and development, staying abreast of industry trends, updates, and best practices. Develop and deliver more »

We are hiring for Lead Security Analyst for London, UK location with remote working flexibility. Job Title: Lead Security Analyst Job Type: Permanent Location: London, UK(Remote) Job details: Purpose of the Job Leading the Response: Acting swiftly and decisively during security incidents to mitigate risks. Incident … post-incident to understand the root cause and to develop strategies to prevent recurrence. Continuous Monitoring: Keeping a vigilant eye on the organization's security systems to detect any suspicious activities early. Threat Analysis: Evaluating potential threats and vulnerabilities to ensure that the organization is prepared to defend against … them. Strategic Defense Implementation: Putting in place robust security measures to protect the organization's information assets. Cross-Team Coordination: Collaborating with various teams and entities to ensure a unified security strategy. This role demands a proactive mindset, deep technical expertise, and strong leadership skills to navigate the more »

Join an evolving information security team in a pivotal Senior Cloud Security Engineer role - offering a flexible hybrid working set up with a great balance between office and home life - as the team grows and develops its offering, primarily focusing on improving the cloud security posture, with further involvement in refining c yber-resilience, cloud security and compliance as part of supporting the wider InfoSec and Compliance function. Our client is a sector-leading SaaS software company, headquartered in the UK. Having experienced substantial growth and progressed from start-up to an established state … yet still pre-IPO and profitable, they are now directing their efforts into advancing their internal infosec function. Required experience for the Senior Cloud Security Engineer role: A background as a Cloud Security Engineer, preferably in a SaaS/start-up/high growth environment A deep level more »

SECURITY OPERATIONS ENGINEER – PERM – HYBRID We are working with a leading data company in expanding their team. They are seeking talented Security Operations Engineers with vast experience in Cloud. You will play a vital role in ensuring the effectiveness of the security controls set by the company. … You will also be essential in protecting data from potential and emerging threats. You will be part of a team of passionate security professionals and have the opportunity to work for a global leader in data science. Responsibilities: Conduct research, design, develop, deploy, and enhance security solutions, such … as cloud security posture management (CSPM), endpoint detection and response (EDR), cloud access security broker (CASB), and integrated cloud email security (ICES). Support initiatives and technologies related to security operations and infrastructure, such as those that are a part of the ongoing Cyber Transformation more »

Senior IT Security Engineer Remote with 1-2 days in London per quarter as needed. 6-12 months, to £75,000 per annum Experienced IT Security Engineer required to bolster the Info Sec team, specifically to translate risks and threats into clear guidance of what that means to … required action, with a practical and hands on approach to the delivery of the same. This role will make a big impact on improved security posture and maturing the security skills of the team and technical environment. Must be a willing coach, able to share knowledge and … expertise and influence and guide teams, with a desire to get hands dirty to deliver and drive security initiatives. Key responsibility areas: Network Security: Network Access Control (NAC) Implementation: Design, implement, and maintain a NAC solution to prevent unauthorized devices from accessing the corporate network. Firewall Rule Review more »

Network Security Analyst Up to £70,000 As the Network Security Analyst, you'll be at the forefront of resolving technical issues with telecom suppliers, placing a strong emphasis on security and compliance. Your expertise will be pivotal in providing recommendations on security, risk, and compliance … matters, collaborating seamlessly with cross-functional teams to confirm audit results and propose crucial security improvements. You'll serve as a translator of complex technical issues, ensuring clear communication with non-technical staff. Working closely with security teams, you'll contextualise supplier security within the overarching framework. … Constantly on the lookout for opportunities to enhance processes and technology, you'll contribute to the continuous improvement of our security posture. Requirements for this confidential position include a recognised security qualification (e.g., CISSP), lead auditor/assessor qualification (e.g., ISO27001), and a relevant degree or equivalent. Bring more »

problems into technical design and mediate between stakeholders at all levels. Bridging the gap between the technical and non-technical. • Designing defence-in-depth security controls throughout solutions, and working with RSO’s Security Group and NCSC to make sure that the Buyer’s IT service accreditation is … includes but is not limited to solution technology costs, ongoing licencing, technical resource requirements, and total cost of ownership. • Taking account of the enhanced security posture and significant threats to the Buyer’s IT service and ensuring that designs justify this. Understanding the implications of design choices in … stations and USB hubs • working knowledge and practical delivery experience of using Mobile Device Management (MDM)/Unified Endpoint Management (UEM) platforms • Experience undertaking security assessments of physical hardware, with an understanding of sophisticated threats at the hardware, firmware and OS levels. more »

complex data, so that governments, nation states, armed forces and commercial businesses can unlock digital advantage in the most demanding environments. Incident Responder - Cyber Security - Middle East BAE Systems Digital Intelligence has been contracted to deliver a National Cyber Security Programme in the Middle East as a client … is an exciting opportunity to join a best of breed capability delivery team that will deliver a National Programme to enhance a Nations Cyber Security posture. The role is based in the Middle East on assignment for 12 months so there are no options for hybrid working as the … majority of time will be spend on client site. As an Incident Responder you will be responsible for the Triage of cyber security incidents, determining and categorising which incidents cross the threshold becoming National cyber security incidents. You will have a strong background working in an operational IT more »

relationships. As the local Cyber management presence, provide guidance and support for the area. Key Tasks and Responsibilities: Review, analyze, design, and advise on security controls, configurations, and implementations for IT projects Continuously improve the integration and effectiveness of implemented technologies Maintain awareness of cybersecurity threats, events, tactics, techniques … tracking, remediation for identified cybersecurity operational weaknesses Identify, create and mature cybersecurity operations processes Work with IT risk assessment function to ensure the proper security configurations and controls are implemented for IT projects Provide pros/cons of security solutions impact business strategies Create documentation of findings and … CIRT) activities. Assign work to Cyber SOC for remediation Escalate pertinent findings in a timely manner Leverage vendors and internal resources to interface various security tools to automate critical response tasks Support Compliance managers in providing Cybersecurity artifacts Align information cybersecurity operations with NIST, and ISO 27001 requirements Establish more »

I am currently working with an exciting Software business looking for an Application Security Engineer in the UK to support a wider global security team. Working closely with the Application Security Manager and Engineering teams, we are looking for someone to provide expertise on a range of … services including secure coding techniques & reviews, Application Security awareness, integration of security into development lifecycles and more. Other responsibilities include: Provide guidance on Application Security & DevSecOps best practices Develop security testing plans and integrate security into the software development lifecycle Help to deliver overall Application … Security strategy Work closely with the develop team to identify, communicate and remediate vulnerabilities in code Perform and oversee security testing and manage remediation of identified vulnerabilities. Collaborate with the architecture and development teams to review the design and code for security vulnerabilities. Manage aspects of an more »

operations 3+ years of experience working with threat intelligence feeds and IOCs Education High School Diploma w/10 years of experience in information security or college diploma with 6 years of information security experience Additional 10 years of IT experience 7+ years in an information security … threat and vulnerability management program and operations 3+ years of experience working with threat intelligence feeds and IOCs 3+ years of experience in a security engineer role 3+ experience with cloud vulnerabilities 2+ years of experience with endpoint protection tools 2+ years of experience with security information and … event management (SIEM) tools 1+ years of experience with perimeter security Primary Functions Operate within the global Cybersecurity Team within the Information Technology department Ensure global alignment with Company’s best practices for patch, posture, and vulnerability management Maintain and improve the TVM program’s operational performance, processes more »

responsible for the continued development of Uptime Institute’s s cybersecurity-focused services portfolio. Position Description: Developing short and long-term strategy for cyber security services including, driving requirements and improvement initiatives, developing roadmaps with actionable plans, leading cross-functional teams both internally and externally, and championing the execution … MSP, Cloud Services, SaaS and Colocation suppliers. Continuously evolving Uptime Institute cybersecurity services roadmap & scope parameters, to improve services offering against the expanding cyber security norms and standards relevant to data centres. Identifying and managing cybersecurity program development partners and advisory board in line with the company’s objective … programs in partnership with relevant functional areas. EXPERIENCE This is a Senior role (hands-on) aimed at improving our clients’ IT Estate's cyber security posture across. An understanding of infrastructure engineering/application engineering expertise is essential. The candidate should also have a working knowledge of cyber more »