76 to 100 of 289 Information Security Jobs in London

Help strengthen our team as our Level 2 SOC/Security Analyst - Compliance, Assurance & Continual Improvement. Home based role. A great opportunity to join our operational security team to support our initial and ongoing assessment of Operational Security controls against Cyber Security best practice, Organizational Policies … and recognized Security Frameworks, working with relevant stakeholders to identify areas for improvement, and support development, enhancement and implementation of robust security controls. In addition, this role will identify areas of improvement within the Operational Security function, proactively identifying opportunities to enhance and optimize internal processes, ensuring … that they are both efficient and effective. This role is crucial in ensuring that even the most sophisticated cyber security controls are robustly implemented and enhanced. What You’ll Be Doing: Verification and Compliance: Verify that systems and processes meet specified security requirements. Assess the correctness of cyber more »

Help strengthen our team as our Level 2 SOC/Security Analyst - Compliance, Assurance & Continual Improvement. Home based role. A great opportunity to join our operational security team to support our initial and ongoing assessment of Operational Security controls against Cyber Security best practice, Organizational Policies … and recognized Security Frameworks, working with relevant stakeholders to identify areas for improvement, and support development, enhancement and implementation of robust security controls. In addition, this role will identify areas of improvement within the Operational Security function, proactively identifying opportunities to enhance and optimize internal processes, ensuring … that they are both efficient and effective. This role is crucial in ensuring that even the most sophisticated cyber security controls are robustly implemented and enhanced. What You’ll Be Doing: Verification and Compliance: Verify that systems and processes meet specified security requirements. Assess the correctness of cyber more »

INFORMATION SECURITY MANAGER - LONDON CITY 2 DAYS PER WEEK ON SITE - NO SPONSORSHIP AVAILABLE. Must be available within 1 month. We … are looking to speak with experienced ISO27001 IT risk/compliance SME's who can hit the ground running. Taking ownership of the internal Infosec dept & manage external 3rd parties. You will play a big part of creating an ISO framework and embedded internal security within a global insurance … the support of the head of technology. Would you like to create a legacy within their information security infrastructure and implement IT, Infosec, and compliance frameworks. Would you like to assist with the design and roll out of a group wide Cyber Security manual. Would you like more »

INFORMATION SECURITY MANAGER - LONDON CITY 2 DAYS PER WEEK ON SITE - NO SPONSORSHIP AVAILABLE. Must be available within 1 month. We … are looking to speak with experienced ISO27001 IT risk/compliance SME's who can hit the ground running. Taking ownership of the internal Infosec dept & manage external 3rd parties. You will play a big part of creating an ISO framework and embedded internal security within a global insurance … the support of the head of technology. Would you like to create a legacy within their information security infrastructure and implement IT, Infosec, and compliance frameworks. Would you like to assist with the design and roll out of a group wide Cyber Security manual. Would you like more »

Technical Information Security Consultant required for market-leading financial services firm. The role will be centred on ensuring security is delivered into a wide range of projects. There will be a focus on working closely with DevOps teams and embedding security throughout a software development life … cycle. Responsibilities: Act as the main security point of contact & SME for required projects Manage security risk for the whole project life cycle Perform security activities, including but not limited to, security design reviews, risk assessments, threat modelling, and vulnerability management and risk mitigation on internally … externally developed software Embedding security within DevOps (eg CI/CD pipelines), developing security requirements On-demand Security assessment of various components like Web apps, Containers, Platforms etc Reviewing security assessment reports and create a remediation pipeline Experience in web application security assessments like SAST more »

Location: London Hybrid: 2-3 days per week in office Salary: up to £105k dependant on experience InfoSec Manager required by a global Law Firm based in central London in a permanent role paying up to £105k per annum + benefits. The role is hybrid working, with people management responsibilities … communication skills Demonstratable knowledge across all areas of information security, risk management, audit, and compliance Experience growing and motivating a team of InfoSec professionals Experience delivering presentations and engaging with senior leadership Experience collaborating with cross functional teams to identify and implement best practice risk processes Experience working … them Ensure the success of key programmes Manage security technical reviews and attend ARBs, TDAs and CABs An excellent opportunity for an experienced InfoSec Manager with strong interpersonal skills to join a supportive and collaborative team in a newly created role to support the Head of Information Security. more »

our Senior SOC Analyst. Home based role. A great opportunity to join our team as our Senior SOC Analyst to be responsible for handing security incidents received/escalated from the SOC Analyst (Tier 1 or Tier 2) and perform a business impact analysis on the security incident. … You will leverage a deep understanding of information security technologies, you will aid in triaging threat intelligence from multiple sources and add contextual information to the security incident, perform additional analysis and based on the business impact will recommend the response actions and escalation path. You … will be guided by Threat Intelligence which is actionable information (e.g. IOCs/TTPs), conduct threat hunting activities; leveraging and analyzing sources of information as available through the SIEM, in addition identify and investigate potential suspicious activity as well as helping organizations identify, isolate, and contain security more »

our Senior SOC Analyst. Home based role. A great opportunity to join our team as our Senior SOC Analyst to be responsible for handing security incidents received/escalated from the SOC Analyst (Tier 1 or Tier 2) and perform a business impact analysis on the security incident. … You will leverage a deep understanding of information security technologies, you will aid in triaging threat intelligence from multiple sources and add contextual information to the security incident, perform additional analysis and based on the business impact will recommend the response actions and escalation path. You … will be guided by Threat Intelligence which is actionable information (e.g. IOCs/TTPs), conduct threat hunting activities; leveraging and analyzing sources of information as available through the SIEM, in addition identify and investigate potential suspicious activity as well as helping organizations identify, isolate, and contain security more »

We are looking for a Security Consultant with extensive experience in providing end-to-end security assurance for business projects. The ideal candidate will have a strong background in threat assessments, architectural design reviews, third-party risk assessments, RFP security requirements, network security, IDAM projects, ransomware … remediation, pen test scoping, and HLD/LLD reviews. Responsibilities: Perform threat modelling to identify potential security vulnerabilities and risks. Assess high and low-level architectural designs to identify security risks and provide recommendations for mitigation. Provide security requirements for RFPs and score RFPs based on security criteria. Conduct assessments of third-party security posture to ensure compliance with security standards. Create scopes for penetration testing, organize pen tests, review results, and oversee remediation efforts. Collaborate with project teams to agree on specific security controls and gather evidence of implementation. Identify and articulate more »

VP - Information Security London - Hybrid Salary: £110,000-120,000 Gresham Hunt are currently partnered with a leading international bank who are seeking a well-rounded Cyber professional, to work alongside the CISO as a senior member of the team and trusted advisor on a range of cyber … challenges and issues. The successful candidate will have: Strong Security governance, risk and compliance (GRC) with knowledge of information security standards such as Cyber Essentials, ISO 27001, NIST. Experience developing and implementing operational policies and standards. Demonstrable experience in a variety of areas such as cloud security, IAM, 3rd party risk, threat assessments and vulnerability management. Strong knowledge of cyber security architecture. Relevant certifications would be beneficial (e.g. TOGAF, SABSA). Ability to interact with and challenge technical teams and the methodologies they are implementing. Experience working with the Financial Services industry. Strong interpersonal skills more »

VP - Information Security London - Hybrid Salary: £110,000-120,000 Gresham Hunt are currently partnered with a leading international bank who are seeking a well-rounded Cyber professional, to work alongside the CISO as a senior member of the team and trusted advisor on a range of cyber … challenges and issues. The successful candidate will have: Strong Security governance, risk and compliance (GRC) with knowledge of information security standards such as Cyber Essentials, ISO 27001, NIST. Experience developing and implementing operational policies and standards. Demonstrable experience in a variety of areas such as cloud security, IAM, 3rd party risk, threat assessments and vulnerability management. Strong knowledge of cyber security architecture. Relevant certifications would be beneficial (e.g. TOGAF, SABSA). Ability to interact with and challenge technical teams and the methodologies they are implementing. Experience working with the Financial Services industry. Strong interpersonal skills more »

Senior IT Security Engineer Remote with 1-2 days in London per quarter as needed. 6-12 months, to £75,000 per annum Experienced IT Security Engineer required to bolster the Info Sec team, specifically to translate risks and threats into clear guidance of what that means to … required action, with a practical and hands on approach to the delivery of the same. This role will make a big impact on improved security posture and maturing the security skills of the team and technical environment. Must be a willing coach, able to share knowledge and expertise … and influence and guide teams, with a desire to get hands dirty to deliver and drive security initiatives. Key responsibility areas: Network Security: Network Access Control (NAC) Implementation: Design, implement, and maintain a NAC solution to prevent unauthorized devices from accessing the corporate network. Firewall Rule Review and more »

work for one of the most advanced trading firms globally? Our client is a leading financial technology company who are currently hiring a Senior Information Security Engineer. The Security team play a crucial role in safeguarding the firm's physical and IT assets, ensuring compliance with global … and staying ahead of emerging cyber threats. Location : London (Hybrid) Compensation Package Up to £250,000 (Depending on Experience) The Role: As a Senior Information Security Engineer, you will be an integral part of the technology team, responsible for architecting, developing, and deploying large-scale security solutions. … You will collaborate closely with software & system engineers to identify and address security vulnerabilities, design defensive controls, and enhance our detection capabilities. Responsibilities: You will engage in requirements gathering, architecting, prototyping, and developing internal tools and infrastructure. You will work across a broad range of security roles and more »

work for one of the most advanced trading firms globally? Our client is a leading financial technology company who are currently hiring a Senior Information Security Engineer. The Security team play a crucial role in safeguarding the firm's physical and IT assets, ensuring compliance with global … and staying ahead of emerging cyber threats. Location : London (Hybrid) Compensation Package Up to £250,000 (Depending on Experience) The Role: As a Senior Information Security Engineer, you will be an integral part of the technology team, responsible for architecting, developing, and deploying large-scale security solutions. … You will collaborate closely with software & system engineers to identify and address security vulnerabilities, design defensive controls, and enhance our detection capabilities. Responsibilities: You will engage in requirements gathering, architecting, prototyping, and developing internal tools and infrastructure. You will work across a broad range of security roles and more »

Cyber Security Manager London (Hybrid) £100,000 The role: • Provide guidance on advanced engineering methods to safeguard the network from security threats associated with various architectures, including web, mobile, and client/server. • Evaluate the security measures of third-party systems and applications to ensure compliance with … error handling. • Collaborate with teams across different regions to address technology and cybersecurity regulations not covered by the global framework. • Lead the implementation of security measures across different platforms by collaborating with technology infrastructure teams, demonstrating expertise and leadership in information and cybersecurity. • Investigate potential security incidents … to enhance the cyber program, including refining detection tools and improving access to data sources. • Serve as a point of contact for stakeholders during security incidents and investigations, including those outside the technology team. • Respond to regulatory inquiries regarding security incidents and preventive measures. • Provide regular updates on more »

Uptime Institute has paved new ground in the exploration and implementation of programs that help organizations to advance the detection and mitigation of ICT (Information and Communication Technology) operational risk. In addition, our programs have a long history of identifying best practices for optimizing energy efficiency and other- resource … responsible for the continued development of Uptime Institute’s s cybersecurity-focused services portfolio. Position Description: Developing short and long-term strategy for cyber security services including, driving requirements and improvement initiatives, developing roadmaps with actionable plans, leading cross-functional teams both internally and externally, and championing the execution … MSP, Cloud Services, SaaS and Colocation suppliers. Continuously evolving Uptime Institute cybersecurity services roadmap & scope parameters, to improve services offering against the expanding cyber security norms and standards relevant to data centres. Identifying and managing cybersecurity program development partners and advisory board in line with the company’s objective more »

offering a wide range of general insurance products across motor, travel, commercial, home, pet and rescue. They have an exciting opportunity for a Senior Security Operations Analyst to join their re-energised Cyber Defence team! Reporting into the Cyber Defence Security Operations Lead, you will act as the … as a secondary contact and escalation point for the team. You'll manage a team of Security Analysts to oversee the day-to-day operational delivery of services provided by our third party 24x7 Security Operations Centre, and will take ownership of our security presence and identify … any gaps by working with various stakeholders across the business. What else you'll be doing : Maintaining security oversight of the technical infrastructure delivered by third party suppliers and raising concerns/issues that pose a security risk to the organisation accordingly. You will also manage any operational more »

offering a wide range of general insurance products across motor, travel, commercial, home, pet and rescue. They have an exciting opportunity for a Senior Security Operations Analyst to join their re-energised Cyber Defence team! Reporting into the Cyber Defence Security Operations Lead, you will act as the … as a secondary contact and escalation point for the team. You'll manage a team of Security Analysts to oversee the day-to-day operational delivery of services provided by our third party 24x7 Security Operations Centre, and will take ownership of our security presence and identify … any gaps by working with various stakeholders across the business. What else you'll be doing : Maintaining security oversight of the technical infrastructure delivered by third party suppliers and raising concerns/issues that pose a security risk to the organisation accordingly. You will also manage any operational more »

Key Responsibilities: Security Architecture Plans : Own and contribute to the organisation’s security architecture plans. Enterprise Architecture : Contribute to enterprise architecture plans. Network Architecture : Contribute to forward network architecture plans. Platform/Product Ownership : Own and strategize multiple security and compliance tools. Continuous Improvement : Identify areas for … improvement in Security Operations, IT Development, and Information Security teams, guiding engineering teams accordingly. Leadership : Provide architectural leadership for medium to large-sized initiatives. Collaboration and Advocacy : Work closely with IT teams to promote effective processes and policies. Mentoring : Provide training and mentoring to data, security, and network engineers. Technical Scope: Security Domains : Architecture and strategy across IT security areas such as Identity & Access Management, SIEM/SOAR, Threat Prevention, Network Security, Application Security, Data Privacy. Compliance : Ensure data security and compliance with relevant regulatory and security standards (e.g. more »

Key Responsibilities: Security Architecture Plans : Own and contribute to the organisation’s security architecture plans. Enterprise Architecture : Contribute to enterprise architecture plans. Network Architecture : Contribute to forward network architecture plans. Platform/Product Ownership : Own and strategize multiple security and compliance tools. Continuous Improvement : Identify areas for … improvement in Security Operations, IT Development, and Information Security teams, guiding engineering teams accordingly. Leadership : Provide architectural leadership for medium to large-sized initiatives. Collaboration and Advocacy : Work closely with IT teams to promote effective processes and policies. Mentoring : Provide training and mentoring to data, security, and network engineers. Technical Scope: Security Domains : Architecture and strategy across IT security areas such as Identity & Access Management, SIEM/SOAR, Threat Prevention, Network Security, Application Security, Data Privacy. Compliance : Ensure data security and compliance with relevant regulatory and security standards (e.g. more »

delivery of BAU Identity and Access management operations. Participate in the design, installation, maintenance, upgrades, and troubleshooting of applications and tools directly impacting the InfoSec Identity service deliverables. Active Directory (AD), Azure Active Directory/Entra ID : Analyze, design, implement, and support the hybrid on-premises and cloud Active Directory … environment. Collaborate with business and technical partners to integrate systems and applications with centralized authentication using AD. Implement security baselines and recommended best practices for AD. Provide subject matter expertise on Azure AD and Entra ID. Support and maintain Entra ID Enterprise Applications and other integrated solutions Collaborate closely … and Quest Active Roles Server. Design and implement controls for managing privileged access on endpoints (Windows, macOS, Linux). Collaborate with system administrators and security teams to enforce least privilege principles. Implement and manage role-based access control (RBAC) for various systems and applications. Define and enforce group-based more »

delivery of BAU Identity and Access management operations. Participate in the design, installation, maintenance, upgrades, and troubleshooting of applications and tools directly impacting the InfoSec Identity service deliverables. Active Directory (AD), Azure Active Directory/Entra ID : Analyze, design, implement, and support the hybrid on-premises and cloud Active Directory … environment. Collaborate with business and technical partners to integrate systems and applications with centralized authentication using AD. Implement security baselines and recommended best practices for AD. Provide subject matter expertise on Azure AD and Entra ID. Support and maintain Entra ID Enterprise Applications and other integrated solutions Collaborate closely … and Quest Active Roles Server. Design and implement controls for managing privileged access on endpoints (Windows, macOS, Linux). Collaborate with system administrators and security teams to enforce least privilege principles. Implement and manage role-based access control (RBAC) for various systems and applications. Define and enforce group-based more »

Senior Security Engineer - Global Data Organisation - London Our global data client require an experienced Security Engineer to join their team. The Senior Security Engineer will hold a pivotal role in fortifying information assets against potential threats and vulnerabilities. Responsibilities will span various facets of information security, encompassing the vigilant monitoring of operations and infrastructure, upkeep of security tools and technologies, and ensuring compliance with internal policies and external regulations. Collaboration with different departments will be integral to mitigate risks effectively. This position is ideal for someone with ambition, offering the chance to … shape the role according to their vision, expand its scope, and even build a dedicated team. Experience: 3+ years of experience in Security Engineering or a related field Proficiency in maintaining and utilizing security tools and technologies Ability to create automated queries using tooling APIs (Python/Powershell more »

Senior Security Engineer - Global Data Organisation - London Our global data client require an experienced Security Engineer to join their team. The Senior Security Engineer will hold a pivotal role in fortifying information assets against potential threats and vulnerabilities. Responsibilities will span various facets of information security, encompassing the vigilant monitoring of operations and infrastructure, upkeep of security tools and technologies, and ensuring compliance with internal policies and external regulations. Collaboration with different departments will be integral to mitigate risks effectively. This position is ideal for someone with ambition, offering the chance to … shape the role according to their vision, expand its scope, and even build a dedicated team. Experience: 3+ years of experience in Security Engineering or a related field Proficiency in maintaining and utilizing security tools and technologies Ability to create automated queries using tooling APIs (Python/Powershell more »

Data Security Manager - Data Controls UK, US, France AXA XL recognizes digital, data and information as critical business assets, both in terms of managing risk and enabling new business opportunities. This data should be high quality, and actionable – enabling AXA XL’s executive leadership team to maximize benefits … on driving innovation through optimizing how we leverage data to drive strategy and create a new business model – disrupting the insurance market. The Data Security Manager reports into the Division Lead - Data Controls and will operate in a matrix organization to ensure implementation of appropriate Data Security Controls … to meet requirements of the Information Security and Data Policies for strategic data & analytics assets. The Data Security Manager will support the development of, and adherence, to the Controls Framework for IDA assets. Developing process KPIs in alignment with the ‘3 Lines of Defense’ Governance Model. This more »