151 to 175 of 660 Permanent Information Security Jobs in the UK

Information Security Officer Key Responsibilities: - Perform security assessments for vendors and projects, identifying risks and recommending mitigation strategies. - Ensure compliance with security policies and standards in all vendor and project activities. - Develop and maintain frameworks for security assessments. - Stay updated on emerging security threats … and industry trends. - Participate in incident response and investigations. - Collaborate with procurement to evaluate and manage vendor security. - Review vendor documentation to assess security posture. - Apply risk management principles to prioritize and mitigate security risks. - Support the development and enforcement of security policies and procedures. - Conduct security awareness training for staff. Skills and Experience: - Over 5 years of information security experience. - Preferred certifications: CISA, CISM, or CISSP. - Strong knowledge of security principles, standards (e.g., ISO 27001, NIST), and best practices. - Experience in security assessments and risk management. - Familiarity with regulatory requirements (e.g. more »

and inclusive global workplace, which encourages you to achieve any goals you may have, while having fun along the way!Position SummaryThe VP of Information Security leads Cognism's Information Risk and Security program, overseeing strategy, architecture, and processes to protect assets. You will most likely … a certification in CISSP and/or CISM. Responsibilities include managing the Security team, budget, and relationships with other teams. The VP of InfoSec provides insights on threats, risks, and mitigation strategies, ensuring policies are communicated and enforced. This role involves hands-on technical work and collaboration across the … enterprise. Key ResponsibilitiesProvide information risk management and security guidance to security teams, internal groups, and development teams.Advise on industry leading practices and internal best practices for secure deployments, security architecture, and integration with security control frameworks.Oversee the implementation and operation of controls to meet identified more »

have fun while working hard; we are not afraid of making mistakes and learning from them.Methods are experts in delivering secure, resilient cyber and information services – keeping systems and data safe.We help reduce risk and vulnerabilities from cyber-attacks by developing a security road-map tailored to your … management by building an identity management programme, and establishing prevention, detection and response capabilities to cyber-attacks.RequirementsAbility to research, articulate, pitch complex and innovative security advice, at both business and technical levels, for new or existing problems, with the objective to justify and communicate decisions directly to key customer … stakeholders including senior management.Able to understand and comprehend the impact of decisions, balancing requirements and deciding between approachesDevelop vision, principles and strategy for security for multiple projects or technologies; working in a particular field as subject matter expert, to support a team in delivering engagements at scale, which may more »

what they do, alongside Agile+ working policies. Your new role Reporting to the IT Compliance Manager, you will be the Subject Matter Expert for Information Security. The key objectives of the role are to manage, maintain and monitor the Information Security Management System (ISMS) within the firm … s Integrated Management System (IMS). You will embed a culture of information security within the firm, with a focus on security by design alongside acting as an interface for security between the strategic and process-based activities and the work of the technology-focused experts … analysts, and administrators. You will be expected to work with the IT organisation and business management to align security priorities and plans with key business objectives. What you'll need to succeed Ideally, you will be educated to degree level or equivalent, with a minimum of 3-5 years more »

Security Incident Specialist Join our Cyber Security product group as a Security Incident Specialist, a pivotal role within our team dedicated to cyber security incident management and security operations technologies. Our mission is to deliver top-tier enterprise security services across the organization. Key … Responsibilities: Subject Matter Expertise : Lead as the expert on security operations technologies, enhancing identity governance and privileged access management processes. Incident Management : Oversee the full lifecycle of security incidents, especially during high-priority investigations. Ensure outcomes align with business priorities and policies, and disseminate lessons learned effectively. Collaboration … Product Owner, and Product Architect, to drive forward the Operations Centre function within Cyber Security. Community Building : Cultivate a strong community among inter-departmental security operations teams and product groups. Consultation and Implementation : Partner with Cyber Security colleagues and project teams to design and implement new enterprise security more »

Due to an internal promotion, our client, whom is an exciting research & development organisation, is looking for a new IT Systems & Infrastructure Security Analyst or a Cyber Security Analyst, with a genuine interest in the wider IT framework and how security interlinks with a large complex organisation. … fantastic benefits (details available upon application) The role would ideally suit someone, whom has a genuine interest & passion in developing their IT/Cyber Security career into a very autonomous position, where you will be actively encouraged to not only research & configure cyber security tools (predominantly Microsoft based … but also explore IT Security best practice across the entire IT infrastructure, working closely with the other internal teams. You will also work closely with 3rd party suppliers, whom look after the SOC and at some points be the subject matter expert on how the IT systems will link more »

Are you an Information Security Lead with strong Governance and Risk knowledge? We are supporting our SME Financial Services Client as they look to find their next Information Security Manager. This role is ideal for the true all rounder in Cyber security who will be … business, able to effectively communicate with technical and non technical stakeholders across the business. The Ideal candidate will Experience of leading, implementing and maintaining security management practices across the business Knowledge of networking, operating systems, software, hardware and security Access controls experience along with systems methodology Working to … a high level of accuracy meeting strict deadlines Strong problem solving and analytical skills, identifying and assessing risk, threats, patterns and trends Experience delivering security frameworks such, business is currently using NIST framework, experience across ISO27001, Cyber Essentials and PCI DSS would also be beneficial. Vulnerability and Threat management more »

Group Head of Cyber & Information Security Operations Harvey Nash has partnered exclusively with a Leeds-based financial services provider to recruit a Group Head of Cyber & Information Security Operations to design and execute a group-wide strategy. The organisation you'll be joining is at the … a pivotal role in the transformation and ensuring there is a security-first approach to everything they do. The Group Head of Cyber & InfoSec Ops will take accountability for defining and delivering a group cyber and information security strategy. Working alongside a varied range of stakeholders at … all levels of the organisation and being an advocate for InfoSec & cyber with an appetite for collaboration. The successful candidate will be a thought leader and future-thinker with proven experience in leading a function that has delivered InfoSec and cyber projects. They will need to demonstrate technical and process more »

Role: Cloud Security Architect Benefits: 95,000 – 110,000 + BenefitsLocation: London (Hybrid)Are you an experienced security professional with a passion for managing information security and designing architecture within a global organisation? Our client is currently on the lookout for a permanent cloud security architect who will be able to come in and make an impact from day one.ResponsibilitiesEvaluate and oversee the security status of the cloud infrastructure, involving AWS, Azure, or other appropriate platforms.Conduct routine security evaluations and audits to pinpoint vulnerabilities, misconfigurations, and any potential threats.Work collaboratively with cross … functional teams to establish and execute cloud security best practices and standards, serving as a secondary assurance function.Keep up with latest industry trends and developing threats in the area of cloud security.Conduct risk assessments and offer recommendations to bolster the cloud security viewpoint.Provide supplementary support in responding to more »

Job Title: Graduate Information Security Consultant Role Overview: Are you a recent graduate in Cyber Security with a passion for Governance, Risk, and Compliance (GRC)? Join our esteemed IT Managed Services Provider in Birmingham as a Graduate Information Security Consultant! We're on the lookout … to become a part of our hybrid working team. With a stellar reputation for delivering top-tier Hybrid Multi-Cloud, Data Protection, and Cyber Security solutions, we partner with some of the most innovative businesses, especially within the regulated insurance and banking sectors. What You'll Do: Assess and … and maintain compliance with industry standards. Reporting: Prepare and present detailed reports and recommendations. Policy Development: Work with our team to develop and implement security policies and procedures. Client Engagement: Understand client security needs and provide tailored solutions. What We're Looking For: Education: A degree in Cyber more »

the cloud security posture, with further involvement in refining c yber-resilience, cloud security and compliance as part of supporting the wider InfoSec and Compliance function. Our client is a sector-leading SaaS software company, headquartered in the UK. Having experienced substantial growth and progressed from start-up … to an established state, yet still pre-IPO and profitable, they are now directing their efforts into advancing their internal infosec function. Required experience for the Senior Cloud Security Engineer role: A background as a Cloud Security Engineer, preferably in a SaaS/start-up/high growth … of knowledge and strong experience around AWS products for cloud security Exceptional communication skills & confident approach to work effectively and collaboratively within the infosec team as well as the wider infrastructure team with a solution-focussed style. In this Senior Cloud Security Engineer role, you will be actively more »

Job Description:Job Title: Information Security Exposure Management Specialist Corporate Title: Assistant Vice President/Vice President Location: Camberley , Chester , Bromley Role Description:The Cyber Security Assurance (CSA) department is responsible for providing an uncompromised technology and application environment for employees, customers, clients, and shareholders through continuous … comprehensive cyber security testing. CSA consists of multiple assessment teams that focuses on different technology, platform, and stakeholders.As a Manual Ethical Hacking Specialist, you will join a dynamic team of world class security experts to conduct application security/penetration tests of our internal/external web … mobile and web service applications, leveraging both manual techniques as well as automated tools in order to uncover and report security vulnerabilities that exist.You will be knowledgeable with business risks associated with common security vulnerabilities and be able to effectively communicate security vulnerabilities to application developers and more »

Job Description:Job Title: Information Security Exposure Management Specialist Corporate Title: Assistant Vice President/Vice President Location: Camberley , Chester , Bromley Role Description:The Cyber Security Assurance (CSA) department is responsible for providing an uncompromised technology and application environment for employees, customers, clients, and shareholders through continuous … comprehensive cyber security testing. CSA consists of multiple assessment teams that focuses on different technology, platform, and stakeholders.As a Manual Ethical Hacking Specialist, you will join a dynamic team of world class security experts to conduct application security/penetration tests of our internal/external web … mobile and web service applications, leveraging both manual techniques as well as automated tools in order to uncover and report security vulnerabilities that exist.You will be knowledgeable with business risks associated with common security vulnerabilities and be able to effectively communicate security vulnerabilities to application developers and more »

Job Title: Information Security Manager 3 Days onsite per week (London) Client Overview: Our partner is a leading global commodities firm distinguished for its excellence in Energy and Metals sectors. We are in search of an Information Security Manager who comprehends the integration of Infrastructure IT … with Information Security. Skills & Experience: Profound understanding of infrastructure architecture, including hardware and software systems. Extensive knowledge of cyber risk landscapes and various attack vectors. Ability to uphold confidentiality while efficiently managing multiple projects concurrently. Background in information technology, preferably in an infrastructure role, with a specialised focus … relevant cybersecurity disciplines (e.g., CISSP, GIAC, CISA, CISM) is advantageous. Key Responsibilities & Accountabilities: Collaborate with IT leadership and business units to devise and implement information security strategies that align with organisational objectives. Conduct ongoing risk assessments to pinpoint and mitigate security vulnerabilities, with a prioritisation on high more »

Infosec, Information Security, Cloud Security, AZ-500, CISSP, CCSP, CompTIA Security+, Office365, Change Management, Firewalls, Anti-Virus, Cisco, PCI Compliance. Excellent new permanent opportunity. Hybrid. Offices in Kent. Our longstanding client is looking to recruit 2 additional InfoSec Analysts to join its IT Security team based … tools and MS Cloud security Technical skills to include firewalls, Anti-Virus software and Network Security (Cisco ideally) Certifications in IT/InfoSec (CISSP, CCSP, CompTIA Security + etc.) Understanding of IT Security Best Practice, Policies. The role will involve working across the business on security projects including risk, security controls, change management, security reviews and Infosec enforcement in the business. If you are looking for a new challenge then please get in touch. Our client offers a great salary and benefits package, flexible working and a great workplace too! Candidates MUST be more »

to join their team. This pivotal role will contribute to safeguarding the organization's digital assets and infrastructure from cybersecurity threats, ensuring a robust security posture and effective incident response. Starting ASAP, paying up to £90,000 per annum. Role Overview: As the SOC Manager, you will be responsible … for providing strategic leadership, technical expertise, and operational oversight to the Security Operations Center (SOC) team. Your role will involve managing both external and internal SOC personnel, overseeing security monitoring and analysis, incident response, threat intelligence, and vulnerability management activities. Key Responsibilities: Act as the subject matter expert … on SOC matters for the organization. Manage the external SOC team and a small internal team, ensuring alignment with organizational security objectives. Review output from the external SOC team and ensure compliance with requirements. Set clear goals and objectives for the SOC team, providing guidance, support, and training as more »

Our client is seeking a dedicated Information Security Manager to manage IT risk & compliance, accreditation, data protection, business continuity projects and activities. Client Details Our client is a Manchester based small but fast growing technology business. Description Continue review and improve the security policies Implement and maintain … ISMS Ensure compliance with relevant security standards and regulations (ISO 27001, Cyber Essentials, etc.) Review and implement business continuity plan and policy Manage technical and business stakeholders Perform proactive risk assessments Work with external auditor for the regular auditing activities Profile Strong knowledge of information security protocols … and procedures Knowledge and experience in different security standards and frameworks with track record in leading ISO 27001 accreditation/re-accreditation projects Proficiency in information risk assessment and compliance Experience in Business Continuity is desirable but not essential Job Offer Hybrid working arrangement Opportunity to lead the more »

Protec Fire and Security Group, a Bosch Company, have an opportunity for a Data Security Professional (DSP) who will help and guide employees in each department and their teams to ensure they follow information security and data protection rules in line with the company central directives. … The DSP will be supported by the Data Security Officer (DSO) and other relevant staff members. Whilst full training will be provided, candidates should be analytical, detail-oriented, proactive and able to work methodically through regulatory documents. Typical Responsibilties Raise the awareness amond employees of internal and external regulations … relating to information security and cyber attacks and delivering face to face training. Ensure compliance with Data Protection Laws Ensure compliance with the ISO Standards ISO27000 (Information Security) by implementing respective C/ISP Corporate Directors CD2900 and CD2981. Ensure compliance of Digital Offers with respect more »

Job title: Information & Cyber Security Analyst Client: Financial Services Salary: £50,000-£70,000 + Bonus Location: London/Hybrid Skills: Information Security, Monitoring, Compliance, Best Practices The role: My client are seeking a knowledgeable Information & Cyber Security Analyst to join their team. This … role is focused on the business side of Security, and is absolutely key in assuring that information is protected and secured at all times. The position is broadly split into 2 main areas: Compliance Security monitoring and compliance Detecting any issues or security breaches across global … infrastructure Monitoring of devices and infrastructure, including reporting Investigating potential threats and issues Risk management and analysis Utilising tooling such as packet inspection and security forensics to resolve and report issues Security & Best Practice Working with various other Security personnel Mitigating Information and Cyber based risks more »

Principal Security Consultant – Senior PCI QSA We have several opportunities for Seasoned PCI QSA Principal Security Consultants. Are you a Senior PCI QSA looking to further enhance your certifications, learning and training? Would you like immediate investment to get further PCI certs, P2PE or PA DSS certifications, we … provides career development. Your Role: As the Principal Consultant (Senior PCI QSA), your mandate will be to guide clients from diverse industries in navigating security and cyber risk, governance, and maturity within the context of their business and the threats they face. Your role encompasses conducting gap analysis and … risk assessments across various information security frameworks like PCI DSS, ISO 27001, and NIST. Ensuring information risks are addressed with stakeholders at all levels is crucial. Additionally, you'll implement compliance and audit frameworks while presenting security advice to key customer stakeholders. Your responsibilities will include more »

Cyber Security Consultant/Architect Type: Permanent Location: Reading (Hybrid) Job Context This role is responsible for providing subject matter expertise and guidance to Business teams and and Partners that own the day to day management and safeguarding of customer information and protection of physical/logical assets … within teams. Can demonstrate flexibility and agility to move between role types within teams. Will have clear subject matter experience within one or many security domains and an ability to connect and work across multiple domains. Can demonstrate knowledge of their area articulated through key operating elements of people … and insight to make informed decisions, solve problems and input to operational and strategic plans. Can demonstrate the ability to gather, analyse and present information in business terms for management and leadership consumption. Ability to work in a fast paced changing environment that shows flexibility, resiliency, self-awareness and more »

a skilled Security Engineer, with experience in Azure and infrastructure, to bridge the gap between their IT Operations and Information Security (InfoSec) teams. You will have a strong infrastructure background with recent hands-on experience in security, particularly within Azure environments. You will play a key … role in supporting InfoSec initiatives, identifying and managing security issues and ensuring the robustness of IT security operations. The technical stack represents a blend of Azure, M365, IAM, Sentinel, Defender for Cloud and Log Monitoring. Responsibilities Security Incident Response: Assist in identifying, managing and resolving security … implementing remediation activities and ensuring compliance with policies. Policy Compliance: Ensure compliance with defined security policies, providing vulnerability and compliance reports to the InfoSec teams. User Access and Software Review: Assist with the review of user access requests and the use of new software or hardware, reporting findings to more »

acquiring)-Good communication, relationship and collaboration skills-Ability to connect and interact well with internal product & commercial teams-Ability to structure agreements/dealsCorporate Security ResponsibilityEvery person working for, or on behalf of, Mastercard is responsible for information security. All activities involving access to Mastercard assets, information … with an inherent risk to the organization and therefore, it is expected that the successful candidate for this position must:• Abide by Mastercard’s security policies and practices;• Ensure the confidentiality and integrity of the information being accessed;• Report any suspected information security violation or breach … and • Complete all periodic mandatory security trainings in accordance with Mastercard’s guidelines.NOTE: Candidates go through a thorough screening and interview process. There is no need to include all preferred skills in the job description.Corporate Security ResponsibilityAll activities involving access to Mastercard assets, information, and networks comes more »

To ensure our services and applications are fit for the modern market, our team collaborates with every department. We develop, explore and implement the information Security practices helping us to protect the data of our clients in our services of accounting, tax and business consulting. But, just as … importantly, we maintain the functionality of our Information Security Management System (ISMS) and ensure governance of the technology and security processes that keeps us advancing. And you could too. In an Information Security role at BDO, you'll become part of a team that act … deliver the Assurance program and analytical work. The Assurance Manager role is the focal point for effective engagement between the business streams and the Information Security team on Assurance related matters. This role will be a trusted adviser to senior stakeholders and provide broad knowledge of BDO's more »

this role is of interest, please apply or reach out to Jacob – 07893921057/j.collen@lockemccloud.com Locke & McCloud are the UK’s leading cyber security & information security staffing company – through having a sole focus on the cyber & information security space we have been able to … foster solid relationships with some of the UK’s most exciting cyber security consultancies & end users. Our focus on the information security space allows us to be able to help you find the most exciting. more »