51 to 75 of 174 Information Security Jobs in London

Job title: Information & Cyber Security Analyst Client: Financial Services Salary: £50,000-£70,000 + Bonus Location: London/Hybrid Skills: Information Security, Monitoring, Compliance, Best Practices The role: My client are seeking a knowledgeable Information & Cyber Security Analyst to join their team. This … role is focused on the business side of Security, and is absolutely key in assuring that information is protected and secured at all times. The position is broadly split into 2 main areas: Compliance Security monitoring and compliance Detecting any issues or security breaches across global … infrastructure Monitoring of devices and infrastructure, including reporting Investigating potential threats and issues Risk management and analysis Utilising tooling such as packet inspection and security forensics to resolve and report issues Security & Best Practice Working with various other Security personnel Mitigating Information and Cyber based risks more »

To ensure our services and applications are fit for the modern market, our team collaborates with every department. We develop, explore and implement the information Security practices helping us to protect the data of our clients in our services of accounting, tax and business consulting. But, just as … importantly, we maintain the functionality of our Information Security Management System (ISMS) and ensure governance of the technology and security processes that keeps us advancing. And you could too. In an Information Security role at BDO, you'll become part of a team that act … deliver the Assurance program and analytical work. The Assurance Manager role is the focal point for effective engagement between the business streams and the Information Security team on Assurance related matters. This role will be a trusted adviser to senior stakeholders and provide broad knowledge of BDO's more »

locations. The Trust has invested in its comprehensive approach to governance to match its ambition to improve eye care. The newly created post of Information Governance Manager for Research and Compliance joins a dynamic team supporting the Head of Information Governance to deliver great IG performance across clinical … sharing/licensing and/or service agreements involving personal data, liaising with the Head of IG and Moorfields General Counsel where appropriate. Manage information asset accession and information security reviews relating to research proposals, including Information risk assessments, data protection impact assessments for new and … in current practice, and where required make recommendations. Work with the managers and principle investigators to ensure the maintenance of their entries to the information asset register. Develop and provide tailored IG training and guidance for research colleagues. Investigate and report on IG complaints and incidents in line with more »

The Role: We are looking for a Cloud Security Engineer with experience on AWS, to join our growing team. The successful candidate will have an essential role in ensuring the information security of our business. You will be working in a team that is designing and building … resilient and secure Cloud environments that proactively prevent security threats. The main responsibilities of the position include: Design and build resilient Cloud infrastructures that are protected against security threats Develop and assess Cloud security solutions to secure systems, databases and networks Conduct assessment and make recommendations to … ensure that appropriate controls are in place Gain insight into security incidents and threats by monitoring/analyzing logs and performing vulnerability assessments Participate in efforts that shape the company’s security policies, procedures and standards for use in Cloud environments Create technical and managerial level security more »

a Group ISMS Manager to join us in either Hove or London! You'll play a key role in maintaining the L&G group Information Security Management System (ISMS), in line with the requirements of the ISO 27001:2022 standard and any iterations thereafter. This is a group … maintain ISO 27001 accreditation within the scope of the group certification What you'll be doing: Supportingdevelopment of the assurance approach for maintaining group information security policies and standards, in line with ISO 27001:2022 and any iterations thereafter Authoring and maturingthe Group ISMS Operations Manual and Statement … stakeholders to determine the impact of the changes on the delivery of customer outcomes Qualifications Who we're looking for: Previous experience managing an Information Security Management System (ISMS), in line with ISO 27001 requirements. Excellent understanding and practice of IT architecture, infrastructure and information security more »

INFORMATION SECURITY MANAGER - LONDON CITY 2 DAYS PER WEEK ON SITE - NO SPONSORSHIP AVAILABLE. Must be available within 1 month. We … are looking to speak with experienced ISO27001 IT risk/compliance SME's who can hit the ground running. Taking ownership of the internal Infosec dept & manage external 3rd parties. You will play a big part of creating an ISO framework and embedded internal security within a global insurance … the support of the head of technology. Would you like to create a legacy within their information security infrastructure and implement IT, Infosec, and compliance frameworks. Would you like to assist with the design and roll out of a group wide Cyber Security manual. Would you like more »

Technical Information Security Consultant required for market-leading financial services firm. The role will be centred on ensuring security is delivered into a wide range of projects. There will be a focus on working closely with DevOps teams and embedding security throughout a software development life … cycle. Responsibilities: Act as the main security point of contact & SME for required projects Manage security risk for the whole project life cycle Perform security activities, including but not limited to, security design reviews, risk assessments, threat modelling, and vulnerability management and risk mitigation on internally … externally developed software Embedding security within DevOps (eg CI/CD pipelines), developing security requirements On-demand Security assessment of various components like Web apps, Containers, Platforms etc Reviewing security assessment reports and create a remediation pipeline Experience in web application security assessments like SAST more »

Location: London Hybrid: 2-3 days per week in office Salary: up to £105k dependant on experience InfoSec Manager required by a global Law Firm based in central London in a permanent role paying up to £105k per annum + benefits. The role is hybrid working, with people management responsibilities … communication skills Demonstratable knowledge across all areas of information security, risk management, audit, and compliance Experience growing and motivating a team of InfoSec professionals Experience delivering presentations and engaging with senior leadership Experience collaborating with cross functional teams to identify and implement best practice risk processes Experience working … them Ensure the success of key programmes Manage security technical reviews and attend ARBs, TDAs and CABs An excellent opportunity for an experienced InfoSec Manager with strong interpersonal skills to join a supportive and collaborative team in a newly created role to support the Head of Information Security. more »

The Fortune Group are recruiting for a Cyber Security Manager to join are client based in London. Suitable Cyber Security Manger will be responsible for ensuring the confidentiality, integrity and availability of computer systems and sensitive information. The primary responsibility of the Cyber Security manager is to … lead the Cyber Security function in ensuring that existing and new systems introduced into the business adhere to the Security controls mandated by the business. Responsible for Creation and maintaining policies and procedures as well as the Training and awareness activities required. You will support the IT and … business teams in exploiting growth opportunities and managing threats in an assured and optimal way, by creating and maintaining a positive security environment and culture. You will optimise security to add value and protect the brand, enabling the company to retain its trusted position with its investors, customers more »

Security Operations Engineer London - Hybrid Up to £92,000 per annum JNC are working with a leading multinational insurance organisation in central London who are looking for a Security Specialist to join their Information Security and Operations team. You will be working from their central London … office 2 3 days per week. This role will revolve around keeping on top of their security risk with efforts to manage their prevention, detection, analysis, and remediation work. You will be maintaining and providing advice on the organisation's security operations tooling and procedures. Responsibilities: Evaluate, respond … and resolve security incidents Threat Analysis, threat detection, threat response and threat remediation Support the information security strategy through developing the operational systems Maintain, support and develop their security procedures and tooling Assist and support the wider security teams including Architecture, Audits, Vulnerability Management, Project more »

delivering across set responsibilities and role requirements.The Head of GRC is responsible for building and leading the GRC team, in line with the Cyber Security Strategy. This role requires a deep understanding of: Information Security Risk Management Risk Management Security Policies Assurance Tools Strong background in … communicate effectively, execute with precision and be process driven, with an eye for capturing the process. The successful candidate will have a passion for security and be able to lead a team of experts in this field. Responsibilities include: Build the Department's GRC team and implement an efficient … operating Model Governing the way the Department identifies, mitigates and manages its Information Security Risks, Departmental Cyber Risks and its Compliance Develop and operate the Cyber Culture and Awareness function - enabling GRC to inform about better cyber behaviour Oversee the day-to-day operations of the information more »

Senior IT Security Engineer Remote with 1-2 days in London per quarter as needed. 6-12 months, to £75,000 per annum Experienced IT Security Engineer required to bolster the Info Sec team, specifically to translate risks and threats into clear guidance of what that means to … required action, with a practical and hands on approach to the delivery of the same. This role will make a big impact on improved security posture and maturing the security skills of the team and technical environment. Must be a willing coach, able to share knowledge and expertise … and influence and guide teams, with a desire to get hands dirty to deliver and drive security initiatives. Key responsibility areas: Network Security: Network Access Control (NAC) Implementation: Design, implement, and maintain a NAC solution to prevent unauthorized devices from accessing the corporate network. Firewall Rule Review and more »

work for one of the most advanced trading firms globally? Our client is a leading financial technology company who are currently hiring a Senior Information Security Engineer. The Security team play a crucial role in safeguarding the firm's physical and IT assets, ensuring compliance with global … and staying ahead of emerging cyber threats. Location : London (Hybrid) Compensation Package Up to £250,000 (Depending on Experience) The Role: As a Senior Information Security Engineer, you will be an integral part of the technology team, responsible for architecting, developing, and deploying large-scale security solutions. … You will collaborate closely with software & system engineers to identify and address security vulnerabilities, design defensive controls, and enhance our detection capabilities. Responsibilities: You will engage in requirements gathering, architecting, prototyping, and developing internal tools and infrastructure. You will work across a broad range of security roles and more »

SecOps Consultant South London (Hybrid) 6 Month Contract £450- 500/day (Outside IR35) A highly skilled SecOps Security Consultant needed, ideally with active SC and NPPV3 clearance for a 6 Month Outside IR35 contract. Hybrid working with the expectation of 2-3 days/week on site in … experience + tasks will include: Experience of using Agile project delivery toolsets: Jira, Confluence, ServiceNow, CI/CD. In-depth understanding and experience in security transformation projects. Expertise in supporting secure government cloud migration/transformation projects + developing, maintaining, and monitoring policies and procedures. Experience in investigating security breaches, in delivering security training and awareness initiatives. Must hold certifications in information security i.e. Certified Information Systems Security Professional (CISSP) Understanding of other relevant legislative compliance aspects (GDPR) Undertaking the design of required security controls for new projects or application services. An more »

per day - Inside IR35 Our world-renowned global consumer electronics and media client are looking for a Full stack developer to join their information security team and assist with developing and maintaining their bespoke internal WebApp Scraping/Crawling applications. Duties Include (but not limited to): Building on … top of microservice based automation pipelines to test and improve the security of web technologies and applications Developing and maintaining front end for Information Security scraping/crawling tools that service company wide web applications Contractor Requirements Excellent, In-depth Front end Development experience with Modern JavaScript … experience with some knowledge of Golang Highly beneficial. Experience with Developing Apps at Scale. Experience with Web Applications and Web app automation. Knowledge of information security and best practices - Security conscious in your development. Excellent verbal and written communication skills. Ability to work independently and with teams more »

only) per day - Inside IR35 Our world-renowned global consumer electronics and media client are looking for a Full stack developer to join their information security team and assist with developing and maintaining their bespoke internal WebApp Scraping/Crawling applications. Duties Include (but not limited to): Building … on top of microservice based automation pipelines to test and improve the security of web technologies and applications Developing and maintaining front end for Information Security scraping/crawling tools that service company wide web applications Contractor Requirements Excellent, In-depth Front end Development experience with Modern … experience with some knowledge of Golang Highly beneficial. Experience with Developing Apps at Scale. Experience with Web Applications and Web app automation. Knowledge of information security and best practices - Security conscious in your development. Excellent verbal and written communication skills. Ability to work independently and with teams more »

Security Operations Specialist London (Hybrid) Eames are working with a reputable insurer on the hire of a Security Operation Specialist to be based in London. Responsibilities: Develop and manage security operations systems supporting the companies Security strategy. Maintain and improve security operations tools, documentation, and … procedures. Resolve security operations support incidents promptly. Assist Information Security Architecture team with technical security matters. Support Internal Control Framework (ICF) development, vulnerability management, and technical audits. Promote security awareness and best practices within the company Collaborate with technical teams and third-party security partners on key projects. Technical Requirements: Expertise in security technologies (endpoint protection, vulnerability scanners, network security, cloud security, etc.). Knowledge of Privileged Access Management (PAM) best practices and technologies. Proficiency with Microsoft technologies (Windows Server, Active Directory, SQL Server). Experience with Linux distributions (Ubuntu more »

Manager and the direct team in both: 1) the execution/ongoing management of the banks Cyber Resilience activities & also 2) the new Cyber Security and Digital Operational Resilience Act (DORA) related capabilities. This is an opportunity for a motivated self-starter, with a can-do mindset and the … ability to connect information from various sources to help build a connected resilient organisation. The candidate will have the opportunity to strengthen and demonstrate strong knowledge of cyber resilience and the new DORA requirements coming into effect in January 2025. Accountabilities and Duties: This is an overview list of … Support DORA compliance by coordinating the activities required across all six pillars of DORA: ICT Risk Management, ICT related Incident Reporting, Digital Resilience Testing, Information Sharing, ICT Third Party Risk and General Governance Principles. Stay up to date with the changing cyber risk landscape, emerging threats, regulatory requirements and more »

A specialist (re)insurance broker are looking for an experienced Cyber Security Engineer to take responsibility for the development and operation of the vulnerability and security event management programs, within the Information Security function. This is a permanent role with hybrid working arrangements - requiring … per week in their Central London office. Core responsibilities will include: Daily management and maintenance of vulnerability monitoring systems Daily management and maintenance of security event monitoring Support the Information Security Team in performing security assessments for projects and other initiatives Assess cloud applications and provide … assurance that products or services follow the firm's policies Support the maintenance of security in cloud environment (Microsoft 365 and Azure hosted solutions). Whilst experience working with Microsoft products would be ideal, we're predominantly looking for someone who is "security led" in their approach as more »

A specialist (re)insurance broker are looking for an experienced Cyber Security Engineer to take responsibility for the development and operation of the vulnerability and security event management programs, within the Information Security function. This is a permanent role with hybrid working arrangements - requiring … per week in their Central London office. Core responsibilities will include: Daily management and maintenance of vulnerability monitoring systems Daily management and maintenance of security event monitoring Support the Information Security Team in performing security assessments for projects and other initiatives Assess cloud applications and provide … assurance that products or services follow the firm's policies Support the maintenance of security in cloud environment (Microsoft 365 and Azure hosted solutions). Whilst experience working with Microsoft products would be ideal, we're predominantly looking for someone who is "security led" in their approach as more »

A specialist (re)insurance broker are looking for an experienced Cyber Security Engineer to take responsibility for the development and operation of the vulnerability and security event management programs, within the Information Security function. This is a permanent role with hybrid working arrangements - requiring … per week in their Central London office. Core responsibilities will include: Daily management and maintenance of vulnerability monitoring systems Daily management and maintenance of security event monitoring Support the Information Security Team in performing security assessments for projects and other initiatives Assess cloud applications and provide … assurance that products or services follow the firm's policies Support the maintenance of security in cloud environment (Microsoft 365 and Azure hosted solutions). Whilst experience working with Microsoft products would be ideal, we're predominantly looking for someone who is "security led" in their approach as more »

Cyber Security Manager London (Hybrid) £100,000 The role: • Provide guidance on advanced engineering methods to safeguard the network from security threats associated with various architectures, including web, mobile, and client/server. • Evaluate the security measures of third-party systems and applications to ensure compliance with … error handling. • Collaborate with teams across different regions to address technology and cybersecurity regulations not covered by the global framework. • Lead the implementation of security measures across different platforms by collaborating with technology infrastructure teams, demonstrating expertise and leadership in information and cybersecurity. • Investigate potential security incidents … to enhance the cyber program, including refining detection tools and improving access to data sources. • Serve as a point of contact for stakeholders during security incidents and investigations, including those outside the technology team. • Respond to regulatory inquiries regarding security incidents and preventive measures. • Provide regular updates on more »

Uptime Institute has paved new ground in the exploration and implementation of programs that help organizations to advance the detection and mitigation of ICT (Information and Communication Technology) operational risk. In addition, our programs have a long history of identifying best practices for optimizing energy efficiency and other- resource … responsible for the continued development of Uptime Institute’s s cybersecurity-focused services portfolio. Position Description: Developing short and long-term strategy for cyber security services including, driving requirements and improvement initiatives, developing roadmaps with actionable plans, leading cross-functional teams both internally and externally, and championing the execution … MSP, Cloud Services, SaaS and Colocation suppliers. Continuously evolving Uptime Institute cybersecurity services roadmap & scope parameters, to improve services offering against the expanding cyber security norms and standards relevant to data centres. Identifying and managing cybersecurity program development partners and advisory board in line with the company’s objective more »

offering a wide range of general insurance products across motor, travel, commercial, home, pet and rescue. They have an exciting opportunity for a Senior Security Operations Analyst to join their re-energised Cyber Defence team! Reporting into the Cyber Defence Security Operations Lead, you will act as the … as a secondary contact and escalation point for the team. You'll manage a team of Security Analysts to oversee the day-to-day operational delivery of services provided by our third party 24x7 Security Operations Centre, and will take ownership of our security presence and identify … any gaps by working with various stakeholders across the business. What else you'll be doing : Maintaining security oversight of the technical infrastructure delivered by third party suppliers and raising concerns/issues that pose a security risk to the organisation accordingly. You will also manage any operational more »

offering a competitive base salary strong benefits package. What you'll be doing: Supporting the design, implementation and effectiveness of the group’s technology & information security risk and control framework Undertaking deep dive reviews into management tools, processes, and data analytics Providing detailed and meaningful insights and reviews … on current process ensuring compliance with L&Gs risk frameworks Acting as a subject matter expert on technology and information security risk and promoting risk awareness across the business Performing investigations of risk events and proposing remediations to any areas of weakness Qualifications Who we're looking for … Ideally you will have strong knowledge of technology and information security risk and control practices Experience of auditing technology risk management would also be advantageous Good understanding of operational IT resilience Experienced in using data to provide meaningful assessments and reports Strong stakeholder management skills and the ability more »