101 to 125 of 168 Information Security Jobs in London

Head of Information Security About the client . Join a prestigious institution in the heart of London, recognised for its commitment to excellence and innovative research. Their Information Technology Services (ITS) department is an integral part of their Professional Services Division, working tirelessly to support the success … of our diverse community of users. At the core of ITS lies a strategic, robust, and transparent Information Security Function dedicated to safeguarding their information and technological assets. The Role: We are seeking a visionary Head of Information Security (HoISto lead and elevate their cybersecurity … posture. This pivotal role involves working closely with senior leadership to develop and implement a comprehensive information security strategy. You will be responsible for managing the continual development of security tools, processes, and controls, ensuring compliance with all relevant legislation, and safeguarding systems from an array of more »

Security Manager (Information Security) Location: London, UK (Hybrid/Remote) Salary: £200k+ Base About the Client: Our client is a prestigious hedge fund known for its innovative approach and commitment to excellence. They are seeking a highly skilled Security Manager with a strong focus on Information Security to join their elite team. Job Description: As a Security Manager, you will be responsible for overseeing and enhancing the information security posture of the organisation. This is a critical role that requires a strategic mindset, exceptional technical expertise, and the ability to manage … complex security initiatives in a high-stakes environment. The position offers a hybrid/remote work arrangement, providing flexibility while maintaining strong collaboration with the team. Key Responsibilities: Develop and implement comprehensive information security strategies, policies, and procedures. Conduct risk assessments and vulnerability analyses to identify and more »

Senior Cloud Security Engineer - London hybrid - £75,000 - £95,000 + Bonus + Benefits Locke & McCloud are looking for an experienced Senior Cloud Security Engineer to join our clients growing security engineering function. As a Senior Cloud Security Engineer, you will be responsible for designing, implementing … and managing security measures across our clients cloud platforms. You will work to develop security strategies, respond to incidents, and continuously improve our client cloud security posture. Main responsibilities: Design and implement comprehensive security controls and best practices for cloud infrastructure. Develop and enforce security policies, standards, and guidelines to ensure compliance with ISO27001, NIST, PCI-DSS, Cyber Essentials, and GDPR. Conduct security assessments, vulnerability scans, and penetration tests to identify and mitigate risks. Monitor and respond to security incidents, including conducting forensic investigations and root cause analyses. Collaborate with DevOps and more »

Job Title: Information Security Operations Specialist Location: London (Hybrid) Industry: Insurance Salary: Up to 90k Start Date: ASAP Role Responsibilities: Lead the analysis, containment, and remediation of detected threats. Develop, build, and manage effective security operations systems to support the Information Security strategy. Maintain, support … and enhance existing security operations tools, documentation, and procedures. Resolve security operations support incidents promptly. Assist the Information Security Architecture team with technical security matters. Support the Information Security team in building the Internal Control Framework (ICF), managing vulnerabilities, and responding to technical … audits. Promote security awareness and best practices. Collaborate with other technical teams to transfer and share knowledge. Liaise with third-party security partners and collaborate with project management teams on key projects. Provide critical/high severity support for cyber detections or availability issues with key security more »

a crucial role in providing dedicated support to the team. Your responsibilities will involve addressing a wide range of matters related to privacy and information security regulations, including GDPR, CCPA, DORA, and EBA (material outsourcing). You’ll be the first line of escalation, assisting with drafting, implementing … a highly trusted and dynamic team that works in close partnership with the business to help drive maximum results. Responsibilities and Impact: Privacy and Information Security: You’ll be at the forefront of privacy and information security matters. This includes drafting and implementing privacy strategies, negotiating … DORA Expertise: As part of the escalation point for DORA-related queries, you’ll draft appropriate DORA terms, negotiate with clients, and collaborate with information security teams affected by DORA. Legal Advisory: Your in-depth knowledge of privacy and information security laws and regulations will guide more »

Job title: Information & Cyber Security Analyst Client: Financial Services Salary: £50,000-£70,000 + Bonus Location: London/Hybrid Skills: Information Security, Monitoring, Compliance, Best Practices The role: My client are seeking a knowledgeable Information & Cyber Security Analyst to join their team. This … role is focused on the business side of Security, and is absolutely key in assuring that information is protected and secured at all times. The position is broadly split into 2 main areas: Compliance Security monitoring and compliance Detecting any issues or security breaches across global … infrastructure Monitoring of devices and infrastructure, including reporting Investigating potential threats and issues Risk management and analysis Utilising tooling such as packet inspection and security forensics to resolve and report issues Security & Best Practice Working with various other Security personnel Mitigating Information and Cyber based risks more »

Principal Security Consultant – Senior PCI QSA We have several opportunities for Seasoned PCI QSA Principal Security Consultants. Are you a Senior PCI QSA looking to further enhance your certifications, learning and training? Would you like immediate investment to get further PCI certs, P2PE or PA DSS certifications, we … provides career development. Your Role: As the Principal Consultant (Senior PCI QSA), your mandate will be to guide clients from diverse industries in navigating security and cyber risk, governance, and maturity within the context of their business and the threats they face. Your role encompasses conducting gap analysis and … risk assessments across various information security frameworks like PCI DSS, ISO 27001, and NIST. Ensuring information risks are addressed with stakeholders at all levels is crucial. Additionally, you'll implement compliance and audit frameworks while presenting security advice to key customer stakeholders. Your responsibilities will include more »

Security Operations Analyst Egress Software Technologies, a leading Cyber Security company, is dedicated to your wellbeing and career development. We offer unparalleled work-life balance and transparent career paths, celebrating your unique contributions. Passionate about Cyber Security? Join us to work in a stable yet exciting industry. … Financial Services, Legal, Healthcare, and Government sectors, from advanced threats, ensuring they can achieve their missions safely. At the forefront of the IT Cyber Security industry, Egress can provide an unrivalled career path in Security Operations. The Team The three Egress security teams report to the Chief … Information Security Officer (CISO), these are: Security Operations – the day-to-day management of operational processes and incidents Cyber Security – defining security best practice of technologies and internal pentesting Compliance & Risk – managing accreditations, auditing, and risk management This role forms part of the Security more »

a Group ISMS Manager to join us in either Hove or London! You'll play a key role in maintaining the L&G group Information Security Management System (ISMS), in line with the requirements of the ISO 27001:2022 standard and any iterations thereafter. This is a group … maintain ISO 27001 accreditation within the scope of the group certification What you'll be doing: Supportingdevelopment of the assurance approach for maintaining group information security policies and standards, in line with ISO 27001:2022 and any iterations thereafter Authoring and maturingthe Group ISMS Operations Manual and Statement … stakeholders to determine the impact of the changes on the delivery of customer outcomes Qualifications Who we're looking for: Previous experience managing an Information Security Management System (ISMS), in line with ISO 27001 requirements. Excellent understanding and practice of IT architecture, infrastructure and information security more »

leader in our field. Job Description The Role: As a Senior Penetration Tester at Sportradar, you will play a pivotal role in enhancing our security posture. Collaborating closely with our architecture, development, and system administration teams, as well as the broader business, you will be instrumental in protecting our … intellectual property and ensuring the security of our digital assets. This role requires deep technical expertise, strategic thinking, and the ability to lead and mentor a team. The Challenge: Lead and contribute to the protection and security of our intellectual property. Conduct advanced penetration testing across various platforms … and environments. Perform detailed risk analysis to identify and mitigate security issues leading to data loss or theft. Identify security breaches, implement corrective actions, and devise strategies to prevent future incidents. Collaborate with developers across Sportradar for in-depth security reviews and threat modeling. Work in an more »

Cyber Security, Senior Associate, London London Role Description Partners Capital are looking for a Cyber Security Analyst (Senior Associate) to join our London based team. The Cyber Security Analyst will play a key role in maintaining and improving the security of Partners Capital’s information assets. The role requires a good technical and practical understanding of information security topics and techniques. The Cyber Security Analyst will work with a variety of teams and stakeholders across the business and will provide high quality security guidance. Responsibilities Be responsible for technical design … implementation and maintenance of our technical security infrastructure. Create and enforce security policies, standard and guidelines to mitigate risks and ensure compliance with security best practices. Conduct regular risk assessments to identify potential security threats and vulnerabilities. Contribute to awareness and training programmes to educate stakeholders more »

Information Security Analyst - Splunk - £60K Our client is a leading Software Engineering and IT Consultancy. Offering excellent remote and hybrid working flexibility (based in London), they’re looking for a Security Engineer/Cyber Security Analyst with good experience of monitoring and Splunk to join them. … to implement the Splunk monitoring solution and SOAR and you’ll be able to work across vulnerability detection, infrastructure management, Web and Mobile Application Security, DevSecOps and many other areas – A Very varied role! Requirements: Good experience of Information/Cyber Security Splunk and Monitoring experience Confident … skills Knowledge of tools such as IDS, SIEM, Secure Gateways etc is ideal Experience evaluating threats and vulnerabilities Ability to create reports on cyber security vulnerabilities, organisational posture, and other indicators of cyber-security issues more »

Cyber Security Manager London (Hybrid) £100,000 The role: • Provide guidance on advanced engineering methods to safeguard the network from security threats associated with various architectures, including web, mobile, and client/server. • Evaluate the security measures of third-party systems and applications to ensure compliance with … error handling. • Collaborate with teams across different regions to address technology and cybersecurity regulations not covered by the global framework. • Lead the implementation of security measures across different platforms by collaborating with technology infrastructure teams, demonstrating expertise and leadership in information and cybersecurity. • Investigate potential security incidents … to enhance the cyber program, including refining detection tools and improving access to data sources. • Serve as a point of contact for stakeholders during security incidents and investigations, including those outside the technology team. • Respond to regulatory inquiries regarding security incidents and preventive measures. • Provide regular updates on more »

Job Title: Cloud Security Architect Location: London (Hybrid) Department: Information Technology Reports To: Head of Professional Services Type: Full-Time, 12-Month Fixed Contract Job Summary: The successful candidate will be responsible for designing and implementing secure cloud solutions, ensuring compliance with industry standards, and protecting our cloud … infrastructure from potential threats. Key Responsibilities: - Design and Implement Security Architectures: Develop and deploy secure cloud architectures tailored to our business needs. - Conduct Security Assessments: Perform regular security assessments, vulnerability testing, and risk management. - Incident Management: Develop incident response strategies and lead response efforts for cloud-related … security incidents. - Compliance Assurance: Ensure cloud solutions comply with relevant security standards and regulations. Qualifications: - Minimum of 5 years of experience in information security, with at least 3 years in cloud security. - Relevant certifications (e.g., CISSP, CISM, CCSP, AWS Certified Security Specialty, Azure Security more »

strong commitment to sustainability and good corporate citizenship, we have over 250,000 dedicated employees serving clients across 66 countries. About the role: Experienced Security Engineer - Cloud WAF who has expertise in web application security, content distribution and other IT infrastructure services. We expect the candidate to have … with cloud services and their WAF controls, ideally including one or more of the following: AWS, Azure, and GCP Strong understanding of Web Application security attack methods and mitigations Proficiency in WAF tuning and configuration, coupled with a strong foundation in web security principles and practices. Develop custom … WAF rules and features, addressing gaps and enhancing overall security measures Capability to design and implement bespoke WAF processes and documentation, underpinned by a thorough understanding of web application security. Analytical skills to review and align platforms with MVP and Baseline Configurations, leveraging a deep knowledge of WAF functionalities more »

Splunk Engineer - £100K - InfoSec London - Hybrid Working My client is a leading tech consultancy and software development company based in central London. They're putting a huge amount of time, money and commitment into new, modern technologies with a focus on CI/CD, DevOps, Cloud and automation – this is … a major push to grow technology in London! They're looking to hire a Splunk Engineer with great experience of Information Security and SOAR. From day one you’ll be able to take full ownership of the Splunk infrastructure with a global reach, covering development projects, engineering and … work across AWS, Linux, Python, Kubernetes, Docker and may more tools. Requirements: Strong experience of Splunk, covering design, engineering and support Proven knowledge of Information Security Strong scripting skills with Python, Perl and/or Bash Cloud experience Good experience of CI/CD and DevOps tools such more »

process reviews to evaluate the design and operating effectiveness of IT internal controls. Identify potential IT risks and related issues by applying knowledge of Information Technology industry trends and present IT environment. Produce and review IT audit reports and work papers, ensuring effective documentation of results of reviews on … days in the London office. YOUR PROFILE: Experience in IT or Operations internal auditing, Sox ITGC, risk management, IT compliance, IT project management, information security, software development or technology (either in implementation, operation or assessment role). Professional certification (IIA, CISA, CISM or equivalent). Strong ability to … that is ever-changing. Fluent in English (written and spoken). Familiarity with COSO, COBIT, ISO and ITIL frameworks. PREFERRED QUALIFICATIONS: Good understanding of information security principles and frameworks, data protection and regulatory compliance (example: ISO27001, GDPR, PCI DSS etc.). Third party assurance experience (SOC 1, SOC more »

to improve our customers’ lives, and contributing to the success of the business every day. Job Description We're looking for a Head of Security Operations to join us in London! This is a highly varied role where you'll lead and manage the day to day operations of … the Security Operations Centre (SOC); this includes security event monitoring, threat monitoring and response activities. You'll also provide guidance in the event of escalations to help ensure Legal and General’s cyber threats are monitored and managed effectively. If you're looking for an exciting new step … to limit impact Defining and collecting metrics/KPIs and periodically reporting to leadership on SOC events/incidents and overall effectiveness of the security operations programme to help ensure SOC metrics are in line with Legal & General’s risk appetite Acting as the primary interface between Legal and more »

Risk MI Project and BACB IT to deliver a tactical Credit Risk MI reporting solution and support delivery of the strategic bank-wide management information PowerBI capability. Experienced PowerBI Analyst & Developer to own & deliver the following milestones within the Credit Risk MI project and across the broader bank-wide … PowerBI Management Information capability delivery: Define detail technical design to address approved detail requirements in BRD & Traceability Matrix: Daily positions to be auto-saved in a logical structure, for record purposes (audit trail) and to feed into Risk MI platform for trend analysis Capability to have data validation steps … T24 or Insight) sourced from other departments EUAs/reports. Appropriate templates to be developed with data feed to be delivered via Report Manager Information Security design (e.g. report extracts, fileshare storage, PowerBI, Access Management, Data Classification, etc.) Hold end-to-end design walk-through session between Credit more »

Freelance Third Party IT Security Manager contractor needed Belgium based or UK based. long term contract Rate per day ASAP start Key responsibilities: Third-Party Assurance Lifecycle & Support the transformation of the activity Execute Third Party Due Diligence, risk profiling, onboarding, re-certification; Make an opinion on Third Party … Security Posture ; Define Remediation where applicable Support Contract Management - ensure that the security expectations included in the contract are proportionate to the risk profiling Contribute to the DORA regulation implementation – translate DORA requirements into actionable processes & materials (contract, assessment templates, …) to be used by the team. Core Skills … Previous experience in Third Party Security Management (i.e. Due Diligence, etc.) Knowledge of control frameworks, e.g., ISO 27000, NIST, CIS-20, COBIT-5 Knowledge of relevant regulations, i.e. DORA, Outsourcing, ESMA, etc. Previous experience in supporting or delivering of large scare regulatory change initiative Experience with contract review of more »

all. By providing software products, solutions and platforms, we work with care providers in primary, secondary and system level healthcare settings to connect health information, care providers and their populations. Our clinical and administrative systems, health data analytics, population health solutions, and information exchange platforms help providers to … in new ways and enable ideal health. Telstra Health UK is ISO27001 and CE+ certified and has a strong commitment to maintaining high quality information and cyber security governance standards. Telstra Health UK is a wholly owned subsidiary of Telstra Health. Purpose of the role This is an … products and services, ensuring the highest levels of transparency and collaboration. You will be the primary point of contact for relationship management, providing essential information, conducting product demonstrations, and understanding and escalating risks and impacts to ensure a positive customer experience. The role will initially be focused on Helix more »

and implement network, software and hardware changes. Develop processes to ensure appropriate WAN, LAN, device privileges and access are granted, ensuring data integrity and security are achieved. Ensure all necessary network security updates, patches, and preventive measures are implemented. Support the day-to-day operations of the banks … IT systems, network, and applications. Maintain Windows server and Unix based servers, O365 and administer MS Azure. Implement and maintain information security controls in line with ISO27001, NIST and DORA standards. Support the Bank’s VMware and Citrix virtual infrastructure. Maintain the bank’s Business Continuity and Disaster … systems and networking, software, hardware, and networking protocol Strong knowledge of implementing and effectively developing helpdesk and IT operations best practices, including experience of security, storage, data protection, and disaster recovery protocols ISO27001 experience is an advantage Very good virtualisation, Active Directory, GPO, Access control and LAN/WAN more »

Problem Solving Drive for results Expert communications and stakeholder management Key responsibilities: Drive delivery of SOC2 program workstream Pro-actively collaborate with technology and information and cyber security functional stakeholders and controls owners Pro-actively communicate the progress to all levels of stakeholders Manage prioritisation of activities against …/issues/dependencies – and any further management or mitigating actions that may be beneficial Analysis of data to develop crisp and informative management information/presentations for senior stakeholders. Desirable: Understanding of technology and information security controls Understanding of SOC2 compliance requirements So, if you feel more »

Type: PermanentData Engineer Consultant - Data & AI (DV Cleared/Eligible)Location: LondonSalary: 65k - 75kAbout the Role:Our client, a leading consultancy in the Defence & Security sector, is seeking a skilled Data Engineer to join their AI & Data Engineering team. This pivotal role offers the opportunity to be at the … tackle complex problems, ensuring optimal performance and scalability of data systems.Contribute to the development of data governance strategies and maintain high standards for data security and quality across projects.Qualifications and Skills:Proven experience in data engineering, particularly with ETL processes, data pipeline construction, and workflow orchestration.Familiarity with distributed computing … techniques, such as parallel processing and batch data management.Strong foundation in data system optimization, information security, and data governance.Ability to effectively communicate technical concepts to non-technical stakeholders.Candidates must be eligible and willing to obtain UK security clearance at the Developed Vetting level if not already cleared.About more »

systems. Ensures that assigned systems are documented and monitored and works with the Infrastructure team to manage capacity. Ensure current policies and procedures on information security and confidentiality. Maintains intimate knowledge of the business, operations, data flows and systems Experience: Experience with Azure Service Recovery (ASR) is required. more »