1 to 25 of 173 Information Security Jobs in London

related matters. Manage the relationship with the Pension Fund’s 39 “other” employers, ensuring that they are aware of their responsibilities, including to provide information regarding scheme members and to remit contributions on time. Assist the Head of HR Operations in the management of the £30m (annually) pensioners’ payroll … role in promoting a positive health and safety culture. To promote and participate in the Council’s individual performance and development appraisal initiatives and information management best practice. To ensure compliance with the council’s data and information security policies and maintain confidentiality. Harness professional knowledge and more »

Our shared mission guides our every action and charts a sustainable path to a better future. An opportunity has become available for an Application Security Manager who will be responsible for evaluating products and applications to ensure they are being designed and deployed in compliance with information security standards and industry best practices. The successful individual will be the key enabler between security, product, and engineering teams. You will need to understand security requirements from a variety of outputs (vulnerability scanners, pen testing, code scans, regulatory requirements), triage and prioritize the findings, and then work … with Product Managers to implement changes to improve the security of our products. You will also provide security consultation to Product Managers, to ensure that security is embedded in product development and strategy, to ensure that security analysis is conducted on any changes or new requirements. more »

Role: Information Security Officer Location: London Salary: £70,000+ Locke & McCloud have partnered with a global legal services firm who are looking to grow a well- established Information Security function. Keen to hear from individuals that have worked in highly regulated environments and have a clear … track record of delivering on team project work. This role reports into the Information Security Manager. Key Responsibilities: Perform vendor risk assessments and evaluate security risks. Assess security risks linked with both third-party vendors and internal projects. Apply risk management principles to identify, assess, and … prioritise security risks. Collaborate with project managers and technical teams to assess security risks and propose appropriate risk mitigation strategies. Perform regular reviews and audits to verify adherence to security policies, standards, and regulatory mandates. Assist in creating and enforcing security policies, standards, and procedures concerning more »

Head of Information Security About the client . Join a prestigious institution in the heart of London, recognised for its commitment to excellence and innovative research. Their Information Technology Services (ITS) department is an integral part of their Professional Services Division, working tirelessly to support the success … of our diverse community of users. At the core of ITS lies a strategic, robust, and transparent Information Security Function dedicated to safeguarding their information and technological assets. The Role: We are seeking a visionary Head of Information Security (HoISto lead and elevate their cybersecurity … posture. This pivotal role involves working closely with senior leadership to develop and implement a comprehensive information security strategy. You will be responsible for managing the continual development of security tools, processes, and controls, ensuring compliance with all relevant legislation, and safeguarding systems from an array of more »

Overview The Quality and Information Security Audit Lead operates within the Bell SI business and is responsible for ensuring Bell’s compliance to ISO 9001 and 27001 by organising and performing internal audits and representing Bell at external audits. Must be able to travel to London, Portsmouth or … findings and following up on corrective actions with the relevant owners. Day-to-day management of two Internal Auditors (primarily focused on quality and information security). Identify and capture quality, information security and operational risks for potential inclusion on the risk register along with monitoring … the IMS team as required. Collate and present data for the quarterly ISO Management Review with the Bell Executive Team. Represent the quality and information security audit function during external audits with certification bodies, customers or suppliers. Support the Policy Compliance and Security Manager in reviewing and more »

Information Security Analyst - Splunk - £60K Our client is a leading Software Engineering and IT Consultancy. Offering excellent remote and hybrid working flexibility (based in London), they’re looking for a Security Engineer/Cyber Security Analyst with good experience of monitoring and Splunk to join them. … to implement the Splunk monitoring solution and SOAR and you’ll be able to work across vulnerability detection, infrastructure management, Web and Mobile Application Security, DevSecOps and many other areas – A Very varied role! Requirements: Good experience of Information/Cyber Security Splunk and Monitoring experience Confident … skills Knowledge of tools such as IDS, SIEM, Secure Gateways etc is ideal Experience evaluating threats and vulnerabilities Ability to create reports on cyber security vulnerabilities, organisational posture, and other indicators of cyber-security issues more »

Senior Cyber Security Engineer – London hybrid - £65,000 - £75,000 + Bonus + Benefits Locke & McCloud are looking for an experienced Cyber Security Engineer to join our client as they begin to expand their growing Cyber & Information Security team! This is a super exciting opportunity for … someone who wants to join an established team and act as an expert on various matters varying from incident response, network security architecture, policies, and procedures, and more! Main responsibilities: Serve as the primary subject matter expert on Azure security, including Azure Security Center, Azure Sentinel, Azure … Firewall, and other relevant Azure security tools and services. Design and implement security controls across our clients Azure platform. Develop and maintain incident response procedures and play a key role in incident detection, analysis, containment, and recovery. Investigate security incidents, perform root cause analysis, and implement remediation more »

the backend any programming experience here would be great, though not essential. This role will be working very closely with the Platform Lead and InfoSec lead so you’ll be happy working to SOC2 compliance standards (you don’t have to have done so before though). As well as more »

requirements into a scope of work containing technical milestones/deliverables. Familiarity with data tools such as CRM, CDPs, Permissions Notice solutions and the infosec/security best practices that govern them. more »

Risk MI Project and BACB IT to deliver a tactical Credit Risk MI reporting solution and support delivery of the strategic bank-wide management information PowerBI capability. Experienced PowerBI Analyst & Developer to own & deliver the following milestones within the Credit Risk MI project and across the broader bank-wide … PowerBI Management Information capability delivery: Define detail technical design to address approved detail requirements in BRD & Traceability Matrix: Daily positions to be auto-saved in a logical structure, for record purposes (audit trail) and to feed into Risk MI platform for trend analysis Capability to have data validation steps … T24 or Insight) sourced from other departments EUAs/reports. Appropriate templates to be developed with data feed to be delivered via Report Manager Information Security design (e.g. report extracts, fileshare storage, PowerBI, Access Management, Data Classification, etc.) Hold end-to-end design walk-through session between Credit more »

Freelance Third Party IT Security Manager contractor needed Belgium based or UK based. long term contract Rate per day ASAP start Key responsibilities: Third-Party Assurance Lifecycle & Support the transformation of the activity Execute Third Party Due Diligence, risk profiling, onboarding, re-certification; Make an opinion on Third Party … Security Posture ; Define Remediation where applicable Support Contract Management - ensure that the security expectations included in the contract are proportionate to the risk profiling Contribute to the DORA regulation implementation – translate DORA requirements into actionable processes & materials (contract, assessment templates, …) to be used by the team. Core Skills … Previous experience in Third Party Security Management (i.e. Due Diligence, etc.) Knowledge of control frameworks, e.g., ISO 27000, NIST, CIS-20, COBIT-5 Knowledge of relevant regulations, i.e. DORA, Outsourcing, ESMA, etc. Previous experience in supporting or delivering of large scare regulatory change initiative Experience with contract review of more »

offering a competitive base salary strong benefits package. What you'll be doing: Supporting the design, implementation and effectiveness of the group’s technology & information security risk and control framework Undertaking deep dive reviews into management tools, processes, and data analytics Providing detailed and meaningful insights and reviews … on current process ensuring compliance with L&Gs risk frameworks Acting as a subject matter expert on technology and information security risk and promoting risk awareness across the business Performing investigations of risk events and proposing remediations to any areas of weakness Qualifications Who we're looking for … Ideally you will have strong knowledge of technology and information security risk and control practices Experience of auditing technology risk management would also be advantageous Good understanding of operational IT resilience Experienced in using data to provide meaningful assessments and reports Strong stakeholder management skills and the ability more »

Principal Security Consultant – Senior PCI QSA We have several opportunities for Seasoned PCI QSA Principal Security Consultants. Are you a Senior PCI QSA looking to further enhance your certifications, learning and training? Would you like immediate investment to get further PCI certs, P2PE or PA DSS certifications, we … provides career development. Your Role: As the Principal Consultant (Senior PCI QSA), your mandate will be to guide clients from diverse industries in navigating security and cyber risk, governance, and maturity within the context of their business and the threats they face. Your role encompasses conducting gap analysis and … risk assessments across various information security frameworks like PCI DSS, ISO 27001, and NIST. Ensuring information risks are addressed with stakeholders at all levels is crucial. Additionally, you'll implement compliance and audit frameworks while presenting security advice to key customer stakeholders. Your responsibilities will include more »

a Group ISMS Manager to join us in either Hove or London! You'll play a key role in maintaining the L&G group Information Security Management System (ISMS), in line with the requirements of the ISO 27001:2022 standard and any iterations thereafter. This is a group … maintain ISO 27001 accreditation within the scope of the group certification What you'll be doing: Supportingdevelopment of the assurance approach for maintaining group information security policies and standards, in line with ISO 27001:2022 and any iterations thereafter Authoring and maturingthe Group ISMS Operations Manual and Statement … stakeholders to determine the impact of the changes on the delivery of customer outcomes Qualifications Who we're looking for: Previous experience managing an Information Security Management System (ISMS), in line with ISO 27001 requirements. Excellent understanding and practice of IT architecture, infrastructure and information security more »

Opportunity at Cutting-Edge Algorithmic Trading Firm We are currently recruiting for a pivotal role within the organisation's Information Security team. Our client, recognized as a leader in algorithmic trading, operates globally with a focus on Equity, FX, Fixed Income, Commodity & Options markets. They are committed to … maintaining the highest standards of security across our physical and IT infrastructure. As a member of our Information Security team, you will play a crucial role in safeguarding our clients operations. The hands-on position will require proactive engagement with software engineers to fortify their systems against … potential vulnerabilities. Responsibilities: Collaborate with cross-functional teams to architect and develop security solutions. Conduct assessments of third-party security and ensure compliance with regulatory requirements. Engage in the analysis of security risks and implement defensive measures. Participate in the development of internal tools and infrastructure. Essential more »

process reviews to evaluate the design and operating effectiveness of IT internal controls. Identify potential IT risks and related issues by applying knowledge of Information Technology industry trends and present IT environment. Produce and review IT audit reports and work papers, ensuring effective documentation of results of reviews on … days in the London office. YOUR PROFILE: Experience in IT or Operations internal auditing, Sox ITGC, risk management, IT compliance, IT project management, information security, software development or technology (either in implementation, operation or assessment role). Professional certification (IIA, CISA, CISM or equivalent). Strong ability to … that is ever-changing. Fluent in English (written and spoken). Familiarity with COSO, COBIT, ISO and ITIL frameworks. PREFERRED QUALIFICATIONS: Good understanding of information security principles and frameworks, data protection and regulatory compliance (example: ISO27001, GDPR, PCI DSS etc.). Third party assurance experience (SOC 1, SOC more »

to improve our customers’ lives, and contributing to the success of the business every day. Job Description We're looking for a Head of Security Operations to join us in London! This is a highly varied role where you'll lead and manage the day to day operations of … the Security Operations Centre (SOC); this includes security event monitoring, threat monitoring and response activities. You'll also provide guidance in the event of escalations to help ensure Legal and General’s cyber threats are monitored and managed effectively. If you're looking for an exciting new step … to limit impact Defining and collecting metrics/KPIs and periodically reporting to leadership on SOC events/incidents and overall effectiveness of the security operations programme to help ensure SOC metrics are in line with Legal & General’s risk appetite Acting as the primary interface between Legal and more »

all. By providing software products, solutions and platforms, we work with care providers in primary, secondary and system level healthcare settings to connect health information, care providers and their populations. Our clinical and administrative systems, health data analytics, population health solutions, and information exchange platforms help providers to … in new ways and enable ideal health. Telstra Health UK is ISO27001 and CE+ certified and has a strong commitment to maintaining high quality information and cyber security governance standards. Telstra Health UK is a wholly owned subsidiary of Telstra Health. Purpose of the role This is an … products and services, ensuring the highest levels of transparency and collaboration. You will be the primary point of contact for relationship management, providing essential information, conducting product demonstrations, and understanding and escalating risks and impacts to ensure a positive customer experience. The role will initially be focused on Helix more »

Design, build and implement modern M365 workplace services. Working closely with Information Security and Support Teams to create services that are secure, consistent, reliable and supportable. Heavy focus on Microsoft technologies, with extensive exposure to Azure IaaS, Azure Virtual Desktop, Azure Active Directory, Intune, Microsoft 365 etc. Responsibilities more »

Senior Cloud Security Engineer - London hybrid - £75,000 - £95,000 + Bonus + Benefits Locke & McCloud are looking for an experienced Senior Cloud Security Engineer to join our clients growing security engineering function. As a Senior Cloud Security Engineer, you will be responsible for designing, implementing … and managing security measures across our clients cloud platforms. You will work to develop security strategies, respond to incidents, and continuously improve our client cloud security posture. Main responsibilities: Design and implement comprehensive security controls and best practices for cloud infrastructure. Develop and enforce security policies, standards, and guidelines to ensure compliance with ISO27001, NIST, PCI-DSS, Cyber Essentials, and GDPR. Conduct security assessments, vulnerability scans, and penetration tests to identify and mitigate risks. Monitor and respond to security incidents, including conducting forensic investigations and root cause analyses. Collaborate with DevOps and more »

leader in our field. Job Description The Role: As a Senior Penetration Tester at Sportradar, you will play a pivotal role in enhancing our security posture. Collaborating closely with our architecture, development, and system administration teams, as well as the broader business, you will be instrumental in protecting our … intellectual property and ensuring the security of our digital assets. This role requires deep technical expertise, strategic thinking, and the ability to lead and mentor a team. The Challenge: Lead and contribute to the protection and security of our intellectual property. Conduct advanced penetration testing across various platforms … and environments. Perform detailed risk analysis to identify and mitigate security issues leading to data loss or theft. Identify security breaches, implement corrective actions, and devise strategies to prevent future incidents. Collaborate with developers across Sportradar for in-depth security reviews and threat modeling. Work in an more »

Security Manager (Information Security) Location: London, UK (Hybrid/Remote) Salary: £200k+ Base About the Client: Our client is a prestigious hedge fund known for its innovative approach and commitment to excellence. They are seeking a highly skilled Security Manager with a strong focus on Information Security to join their elite team. Job Description: As a Security Manager, you will be responsible for overseeing and enhancing the information security posture of the organisation. This is a critical role that requires a strategic mindset, exceptional technical expertise, and the ability to manage … complex security initiatives in a high-stakes environment. The position offers a hybrid/remote work arrangement, providing flexibility while maintaining strong collaboration with the team. Key Responsibilities: Develop and implement comprehensive information security strategies, policies, and procedures. Conduct risk assessments and vulnerability analyses to identify and more »

Senior InfoSec Analyst - Splunk - £90K Our client is a leading Software Engineering and IT Consultancy. Offering excellent flexibility (they’re based in London), they’re looking for an experienced and senior Security Engineer/Cyber Security Analyst with great experience of monitoring and Splunk to join them. You … implement of a Splunk monitoring solution and SOAR and you’ll be able to work across vulnerability detection, infrastructure management, Web and Mobile Application Security, DevSecOps and many other areas - A key and varied role! Requirements: Great experience across Information/Cyber Security Proven Splunk and Monitoring … Confident advising on secure operating system and network device configuration standards Organised and proactive Excellent communication skills Broad knowledge of tools and tech across InfoSec and monitoring Experience evaluating threats and vulnerabilities more »

Job Title: Information Security Analyst Work Arrangement: Hybrid ( 2 to 3 days) Location: RBC Europe Limited, 100 Bishopsgate, London, EC2N 4AA Rate Payable to Contractors: £350 - £400 per day Duration of Assignment: 6 months Role Description: The Information Security Analyst role at RBC BlueBay Asset Management … involves providing expert advice and support on Information Security. The role includes system access reviews, security monitoring, compliance checks, and contributing to the security improvement program. The goal is to enhance security and ensure a safe and sound environment through pragmatic risk-based analysis. Key Responsibilities … Information Security Systems Review and Monitoring: Coordinate and manage user access and access rights review cycles for BlueBay systems. Maintain and improve security monitoring, including: Compliance with security standards. Monitoring vulnerabilities. Compliance with the patching process. Monitoring security systems (IDS, Firewall, Anti-Virus) and event more »

and implement network, software and hardware changes. Develop processes to ensure appropriate WAN, LAN, device privileges and access are granted, ensuring data integrity and security are achieved. Ensure all necessary network security updates, patches, and preventive measures are implemented. Support the day-to-day operations of the banks … IT systems, network, and applications. Maintain Windows server and Unix based servers, O365 and administer MS Azure. Implement and maintain information security controls in line with ISO27001, NIST and DORA standards. Support the Bank’s VMware and Citrix virtual infrastructure. Maintain the bank’s Business Continuity and Disaster … systems and networking, software, hardware, and networking protocol Strong knowledge of implementing and effectively developing helpdesk and IT operations best practices, including experience of security, storage, data protection, and disaster recovery protocols ISO27001 experience is an advantage Very good virtualisation, Active Directory, GPO, Access control and LAN/WAN more »