126 to 150 of 658 Permanent Information Security Jobs in the UK

Information Security Goverence, Risk and Controls Officer Lovely Ethical Financial Services Insurance group (Member owner) 100% remote role £70,000 Salary + benefits + Bonus + Excellent Pension/Healthcare/Holidays etc Our client is expanding their Information Security group with a wider range of … new projects and infrastructure challenges. You ideally will be able to provide expertise in maintaining and supporting IT security strategies, managing overall IT security governance, and compliance processes. They are looking for a Information Security Officer with At Least 5 years experience in Information Security … IS027001 and Cyber Essentials audits and ensuring adherence to these levels + a wide range of the experience below & ensure effective implementation of IT security controls and processes. They are an ethical and quality organization that can provide an wide range of challenges, and in an organization that is more »

Cyber Security Manager Kent - £60,000 + Excellent benefits and career progression Overview: An exciting opportunity has arisen with a global Technology Distributor for a Cyber Security Manager. You will play a crucial role of monitoring the infrastructure and safeguarding the organisations assets and information. Role & Responsibilities: To … act as a trusted advisor on information security matters. Oversee, manage , and maintain the companys information security management system and associated security certifications ( currently ISO 27001 and Cyber Essentials Plus in the UK) Support internal business teams with client and 3rd party security assurance … and external audits, vulnerability management processes, penetration testing and business continuity/disaster recovery planning. Contribute towards the annual budget and forecasting process for Infosec related items. Working across the business to ensure that compliance with implemented standards and controls is maintained to acceptable levels. Conduct internal audits to ensure more »

Title: Lead Product Security Engineer Location: Hybrid Remote (Central London Office); Sector: Finance/Retail, Apparel and Fashion Salary: Banding of £85,000 - 115,000 per year plus package (to be discussed during vetting call). Please note that to apply for this opportunity, you must be a British … security engineering or a similar role, with demonstrated leadership experience in managing a team of peers. As dedicated recruitment professionals, we prioritize confidentiality. InfoSec People values diversity, equity, and inclusion (DE&I). Please share any information or accessibility needs to aid your process; we’ll do our … to specific requirements. For further details, please send the most current version of your CV and a good time to speak to Becca at InfoSec People, or please click apply or get in touch with Becca for an open, honest, and confidential conversation; 📞 01242 507109 📧 becca@infosecpeople.co.uk more »

Senior Information Security Engineer London - Hybrid £80,000 - £92,000 per annum + Bonus + Benefits JNC are working with a leading multinational insurance organisation in central London who are looking for an Information Security SME to join their team. You will be working from their … central London office 2 – 3 days per week. This role will revolve around keeping on top of their security risk with efforts to manage their prevention, detection, analysis, and remediation work. You will be maintaining and providing advice on the organisation’s security operations tooling and procedures. Responsibilities … Evaluate, respond and resolve security incidents Threat Analysis, threat detection, threat response and threat remediation Support the information security strategy through developing the operational systems Maintain, support and develop their security procedures and tooling Assist and support the wider security teams including Architecture, Audits, Vulnerability more »

Overview: As a Senior Security Engineer for MUFG Pension & Market Services you will be part of the Global Security Architecture and Engineering team, helping to drive the Cybersecurity team and the business in current information security challenges across security technology control assessment, design, configuration, integration … sure you know it’s the right role for you too. This means you’ll need the following skills: • A strong understanding of Application Security concepts and best practices, including agile methodologies and coding languages • Demonstrable experience in DevSecOps transformation, with experience in Security Operations, and as a … Security Engineer or similar technical role • Excellent knowledge of integration concepts, patterns and technologies • Experience with both successful and unsuccessful project implementations • Extensive experience across infrastructure domains (network, compute and storage) • Demonstrable experience across Cloud and infrastructure components (service, storage, network, data and applications), to deliver end to end more »

management. Drive initiatives to transform IAM provisioning and lifecycle management, leveraging self-service and automation capabilities to enable a frictionless user experience. Knowledgeable of Information Security best practices and regulatory and compliance requirements that impact security for the enterprise: HIPAA, HITECH, PCI, NIST Cybersecurity Framework, NIST … ISO 27001, HITRUST, and other relevant privacy and security frameworks. Drive a unified IAM approach and maintain an integrated program role-based access control, single sign-on, multifactor authentication, account federation, identity lifecycle, birthright access, access certifications and group management. The leader will build and seek cross functional, cross … as PKI and certificate management, encryption, Privileged Access Management, IDAM, and CASB for the enterprise. Major/Key Accountabilities Deliver excellence in IAM cyber security across the Brambles enterprise. Lead transformational change across the enterprise IAM space, consolidating and integrating disparate systems and processes into a fully capable service more »

We are working with a global Law Firm looking to bring an experienced Information Security Manager into their organisation to take charge of their Information Security division and help drive change throughout the business. The Information Security Manager will be required to have knowledge … of managing the ISMS and be able to develop policies, put controls in place and manage Risk across the organisation Key Experience for the Information Security Manager Significant experience in working within risk management and compliance. Ability to be client facing as well as influence internal decisions Experience … supporting Internal and External Audits Proven track record of implementing effective Security Controls and Policies (knowledge of the likes of CIS) Experience of Security Assurance Experience with managing Third Party relationships Knowledge of major compliance frameworks such as CIS and ISO27001 Experience with Data Privacy would be a more »

Head of Information Security & ITLondon Up to 850 per day, Inside IR35Company leading financial services client is currently looking for a dynamic Head of Information Security and IT to join the business through a period of transformation.You will be focusing across maintaining and developing both the … Information Security and IT Engineering teams, supporting the business to become ISO27001 accredited and working on a Data Loss Prevention programme.Key Skills Needed: * Previous experience working as a Head of Information Security & Technology * Experience working within the financial services industry * Experiencing reporting to the Board/… C-Suite level * Technical background to enable you to support the technical teams (ideally focusing within Microsoft Security Services and Microsoft 365) * Previously worked on ISO27001 and GDPR/Data Loss Prevention projectsIf this sounds like something that is of interest or you would like some more information more »

out daily. We excel at Bottomline because we are positive and passionate about building a #LifeAtBottomline Role Bottomline Technologies is looking to hire an Information Security Compliance Manager . This is a role for an early in career person (3-5 years’ experience). This role focuses on … protecting our customers’ confidential information as part of our operational security and compliance framework. Working closely with CISO, Technology, HR, Sales and Product Development teams, the Information Security Compliance Manager plays a pivotal role in ensuring that our product teams maintain our high expectations of Information Security compliance across the company. This position can be based out of an open location in either the United Kingdom (UK) or the United States (US) How you’ll contribute: Manage annual and ad hoc Information Security compliance projects as part of the global CISO team. more »

I am currently assisting a leading London market insurer to recruit an Information Security Specialist. This leading company has a reputation for specialist underwriting excellence, great people and innovative products. As part of one of the world’s largest insurance groups within the London market. This role is … based onsite with some opportunity for hybrid working to join their growing Information Security team. The Information Security Operations Specialist is responsible for maintaining and improving the security operations tools and procedures. With a focus on prevention, detection, analysis, and remediation of technical security risk. You will ideally have: • Excellent knowledge of security technologies and domains, such as endpoint protection tools, vulnerability scanners, attack simulation, network security, cloud security, etc. • Familiarity with DevOps principals and technologies such as Infrastructure as Code (IaC). • Experience working within Insurance/London Market more »

a crucial role in providing dedicated support to the team. Your responsibilities will involve addressing a wide range of matters related to privacy and information security regulations, including GDPR, CCPA, DORA, and EBA (material outsourcing). You’ll be the first line of escalation, assisting with drafting, implementing … a highly trusted and dynamic team that works in close partnership with the business to help drive maximum results. Responsibilities and Impact: Privacy and Information Security: You’ll be at the forefront of privacy and information security matters. This includes drafting and implementing privacy strategies, negotiating … DORA Expertise: As part of the escalation point for DORA-related queries, you’ll draft appropriate DORA terms, negotiate with clients, and collaborate with information security teams affected by DORA. Legal Advisory: Your in-depth knowledge of privacy and information security laws and regulations will guide more »

Information Assurance Consultant - Permanent - Romsey/Gloucester This opportunity will see you joining the Defence Security & Information Assurance Team providing technical security architecture and Security Assurance Services to a wide range of defence clients. You will contribute to the development of security capabilities ranging … from Security & Assurance services to leading edge Vulnerability Management and Protective Monitoring capabilities. Based in Romsey/Gloucester (Remote working available) £55,000 - £60,000 per annum + 6% bonus Must be eligible for Security Clearance Key Responsiblities: Production and maintenance of security documentation including, Secure by … Design Documentation, Security Management Plans, RMADS, Security Operating Procedures, Security Cases and Test Security Instructions (TSI). Coordinate Security Risk Analysis and Management activity to support design and accreditation of solutions. This includes creation and maintenance of the security risk register and management of more »

SUMMARY The Head of Information Governance and Data Protection Officer (DPO) role is the professional lead for Information Governance at Veezu Group. The role will provide expert Information Governance advice and guidance to the Veezu management team and key partners; to ensure that all parties are processing … information in accordance with legislation, guidance, while meeting their legal and regulatory obligations. The Data Protection Officer is an essential role in facilitating ‘accountability’ and the organisations’ ability to demonstrate ongoing compliance with GDPR, where the DPO performs another role or roles there must be no conflict of interest. … as the appointed statutory Data Protection Officer as defined by the General Data Protection Regulation 2016 for Veezu Group. Be the lead source of information and expertise on information governance and data protection, including but not limited to: The Data Protection Act 1998, The UK and EU General more »

Project Security Specialist Location: UK, preferably South based due to site locations Are you a leader looking to launch your career to the next level? The Role: Leidos is seeking an enthusiastic Project Security Specialis t to lead the implementation and assurance of security within our diverse … portfolio of contracts. The incumbent will possess specialist skills in all areas of protective security and have demonstrable experience of applying security frameworks such as the security policy framework and ISO 27001. Responsibilities: Reporting to the Leidos UK Head of Security, you will work both independently … and within small teams across various projects, frameworks and in support of business development activities to: Lead the interpretation and implementation of contractual security obligations providing expertise as Security Advisor on security policy requirements, security aspects letters, industry security best practice and project security more »

We currently have an interesting opportunity for an Information Security Manager to join Ciphr. We are all about people at Ciphr. Our values are trust, service excellence, authenticity, and accountability. We want you to bring your authentic self to work giving you the space to be yourself whether … you when you join. Location: This role is remote with occasional travel to our Reading office. On a day-to-day basis of an Information Security Manager, this is what you can expect: Manage the company’s ISMS and ISO27001 certification Create policy, which will be reviewed and … control implementation for risk mitigation Carry out GAP analysis and implementation of ISO27001 for new company acquisitions up to certification Develop and manage an InfoSec training and awareness programme for all staff Develop and manage supplier due diligence to identify risk and impact of supplier/service/product use more »

Information Security Analyst Location: Woking (2 days in the Woking office, 3 days remote) Type: Full-time, Permanent Salary: Up to £40,000 DOE Pyramid Recruitment are looking for a talented Information Security Analyst to join one of our fintech clients in Woking specialising in the … payments industry As an Information Security Analyst, you'll monitor networks, investigate breaches, install security measures, and document incidents. You'll collaborate with the team to test for vulnerabilities, implement solutions, and ensure compliance with standards. Responsibilities: Monitor networks for security issues. Investigate breaches and incidents. … Install security measures and document incidents. Conduct vulnerability assessments and testing. Implement patches and updates. Collaborate with vendors and maintain documentation. Stay informed about security standards. Skills and Experience: Bachelor's degree in computer science or related field. Experience in information security. Proficiency in MS Azure and more »

SecOps Consultant South London (Hybrid) Permanent £70,000-£8 5 ,000 (DOE) SecOps - Security Consultant join excellent program, ideally with active SC and NPPV3 clearance. The position is based in South London with the option to work remotely from home (WFH) on a 'hybrid' basis of 2-3 days … work with a leading digital transformation business on large-scale IT modernisation programmes for government clients. Key skills, experience + tasks will include: SecOps Security Consultant working with SecOps Lead , responsible for ensuring that security procedures are maintained in compliance with the Government Security Classifications framework, are … change, client policies and procedures. Expertise in supporting secure government cloud Migration/Transformation projects. Developing, maintaining, and monitoring policies and procedures. Maintenance of security operating procedures (SyOps) and information security management policies. Experience in investigating security breaches, in delivering security training and awareness initiatives. more »

Head of Information Security | UK Remote!Consortia is looking for a seasoned Head of Information Security to fortify the security and integrity of our client's financial platforms and safeguard customer funds.In this pivotal role, you'll lead efforts to mitigate cyber threats, manage risk … and dynamic team of industry experts, technologists, and innovators passionate about driving positive change in the financial industry.Key Responsibilities:Develop and implement a comprehensive information security strategy aligned with objectives and regulatory requirements.Conduct thorough risk assessments to identify vulnerabilities and potential threats in the organisation's systems and … processes.Directly oversee security systems and infrastructure monitoring, promptly identifying and responding to security incidents.Assess and oversee the security aspects of third-party vendors and service providers.Requirements:Bachelor's degree in a technical discipline.7+ years in tech, with at least five years in security roles.Experience in financial more »

DescriptionJob Title Senior Cyber Security ArchitectReporting to Cyber & Technical AdvisorySalary 60,000-80,000 Job Type Permanent, full timeLocation Home based (This role will require regular UK travel and at times need you to stay away from home)Since our establishment in 1990, Methods has partnered with a range … have fun while working hard; we are not afraid of making mistakes and learning from them.Methods are experts in delivering secure, resilient cyber and information services – keeping systems and data safe.We help reduce risk and vulnerabilities from cyber-attacks by developing a security road-map tailored to your … organisations improve processes such as threat management by building an identity management programme, and establishing prevention, detection and response capabilities to cyber-attacks.The Cyber Security Consultant will have the following responsibilities: Ability to research, articulate, pitch complex and innovative security advice, at both business and technical levels, for more »

Cloud Security Engineer/Information Security Engineer/Information Security Analyst Experienced Cloud Security Engineer is required to join an Innovative Start-Up Challenger Bank! Are you passionate about building something new? We're looking for an experienced Cloud Security Engineer to join … a new team of a start-up challenger bank. This hands-on role offers the opportunity to grow into the Head of Information Security, eventually building and leading a new security team. Key Responsibilities: Implement and manage security controls and countermeasures. Perform vulnerability management and remediation. … software engineering and product teams. Manage Active Directory, Azure, Office 365, and Defender services. Respond to new vulnerabilities and manage remediation. Develop and manage security measures for generative AI usage. Key Skills & Experience: Degree/diploma in a tech-related field or relevant experience. Preferred certifications: PenTest+, Security+, OSCP more »

is key to helping embed these good behaviours and monitoring these. About You We are looking for someone who has a strong baseline of Information Security knowledge across the breadth of the space, along with direct experience of delivering security culture change and delivering a dramatic shift … away from compliance driven behaviours towards a more rounded embedded approach to people cyber risk management. You need to be able to deliver security cultural change within an organisation and work independently and act as a subject matter expert on security and security culture issues. Requirements To … be successful in this role you need to have: Experience of what good looks like in terms of security culture for a financial institution. Strong baseline knowledge across the breadth of the security space (around Security+ level) and are passionate about keeping your security knowledge current – security more »

Our shared mission guides our every action and charts a sustainable path to a better future. An opportunity has become available for an Application Security Manager who will be responsible for evaluating products and applications to ensure they are being designed and deployed in compliance with information security standards and industry best practices. The successful individual will be the key enabler between security, product, and engineering teams. You will need to understand security requirements from a variety of outputs (vulnerability scanners, pen testing, code scans, regulatory requirements), triage and prioritize the findings, and then work … with Product Managers to implement changes to improve the security of our products. You will also provide security consultation to Product Managers, to ensure that security is embedded in product development and strategy, to ensure that security analysis is conducted on any changes or new requirements. more »

Information Assurance Consultant - Permanent - Romsey/Gloucester This opportunity will see you joining the Defence Security & Information Assurance Team providing technical security architecture and Security Assurance Services to a wide range of defence clients. You will contribute to the development of security capabilities ranging … from Security & Assurance services to leading edge Vulnerability Management and Protective Monitoring capabilities. Based in Romsey/Gloucester (Remote working available) £55,000 - £60,000 per annum + 6% bonus Must be eligible for Security Clearance Key Responsiblities: Production and maintenance of security documentation including, Secure by … Design Documentation, Security Management Plans, RMADS, Security Operating Procedures, Security Cases and Test Security Instructions (TSI). Coordinate Security Risk Analysis and Management activity to support design and accreditation of solutions. This includes creation and maintenance of the security risk register and management of more »

Information Security Officer Key Responsibilities: - Perform security assessments for vendors and projects, identifying risks and recommending mitigation strategies. - Ensure compliance with security policies and standards in all vendor and project activities. - Develop and maintain frameworks for security assessments. - Stay updated on emerging security threats … and industry trends. - Participate in incident response and investigations. - Collaborate with procurement to evaluate and manage vendor security. - Review vendor documentation to assess security posture. - Apply risk management principles to prioritize and mitigate security risks. - Support the development and enforcement of security policies and procedures. - Conduct security awareness training for staff. Skills and Experience: - Over 5 years of information security experience. - Preferred certifications: CISA, CISM, or CISSP. - Strong knowledge of security principles, standards (e.g., ISO 27001, NIST), and best practices. - Experience in security assessments and risk management. - Familiarity with regulatory requirements (e.g. more »

and inclusive global workplace, which encourages you to achieve any goals you may have, while having fun along the way!Position SummaryThe VP of Information Security leads Cognism's Information Risk and Security program, overseeing strategy, architecture, and processes to protect assets. You will most likely … a certification in CISSP and/or CISM. Responsibilities include managing the Security team, budget, and relationships with other teams. The VP of InfoSec provides insights on threats, risks, and mitigation strategies, ensuring policies are communicated and enforced. This role involves hands-on technical work and collaboration across the … enterprise. Key ResponsibilitiesProvide information risk management and security guidance to security teams, internal groups, and development teams.Advise on industry leading practices and internal best practices for secure deployments, security architecture, and integration with security control frameworks.Oversee the implementation and operation of controls to meet identified more »