16 to 40 of 200 Information Security Jobs in London

Information Security Consultant (3rd Party Supplier Assurance) Day Rate: Up £750 Inside The Client: A leading Nordic bank requires a Information Security Consultant (3rd Party Supplier Assurance)! Location: London/Manchester - Hybrid working pattern The Role: We are looking for an additional team member who is … passionate about building innovative and pragmatic solutions and who would value our open collaboration with stakeholders. Key Responsibilities: Represent Information Security with Business stakeholders as a trusted advisor, finding pragmatic and cost-effective security solutions that efficiently support customer needs. Act as a specialist owner of … or more of the team’s security processes, systems or frameworks, maintaining specialist knowledge and continually evolving the process, system or framework with reference to the bank’s global and local system & process owners, regulation & good practice. Provide appropriate specialist advice and interpretation of Information Security best more »

Experience working within information security and privacy and broader risk management. Experience of assessing key documents such as frameworks, policies and procedures. Understanding and working knowledge of Privacy, Data Protection and Information Security principles and protocols. Flexible and responsive with a proactive approach to problem solving. … Able to inspire, influence and enthuse others. Thorough and detailed approach to assessing records. Support the Head of Information Security & Privacy in the delivery and maintenance of the Bank's information security and privacy activities. Operate within the terms of the applicable decision-making frameworks and … Controls, Risk and Compliance functions to monitor and review output including UK ROPA, DPIA and LIAs, DSRs, data breach management.? Ensure that privacy and security risks are identified and managed through the specified channels. Support the drafting, assessing and implementation of policies, guidance and process relating to information more »

Cyber Security Engineer – London hybrid - £60,000 - £70,000 + Bonus + Benefits Locke & McCloud are working with a leading firm to grow their Cyber Security function with an experienced Cyber Security Engineer. After our clients continued growth and success, they are looking for experienced Cyber Security Engineers to hit the ground running on various projects across Security Architecture, DevSecOps, Application Security, Cloud Security, Threat Modelling, and more. This role will be ideal for someone who has experience in the security engineering space and is ready to take the next step in … their career with a very exciting organisation! Main responsibilities: Conduct thorough assessments of applications to identify and mitigate security vulnerabilities. Implement best practices and security controls to secure applications throughout the development lifecycle. Collaborate with development teams to integrate security into the software development process. Design and more »

Formula are working with an exciting global entertainment company who are looking to add a dynamic and highly experienced Chief Information Security Officer to their team. As CISO you will be responsible for defining and implementing the information security strategy and framework across the organisation, ensuring … the protection of sensitive data, systems, and infrastructure. Your Responsibilities: Developing and executing the organisation's information security strategy, providing strategic direction and guidance on all aspects of information security Responsible for the entire security estate Continuing to expand their current cyber security practice … Continually improving process and governance standards across information security Designing and maintaining a robust security architecture that effectively safeguards their IT environment Your Experience: You must have experience of working in a similarly senior position, ideally in the C-suite of a enterprise scale retail, hospitality, or more »

A leading Financial Services organisation is looking for an experienced Information Security Professional. The ideal candidate will have experience in a regulated environment. Key Responsibilities: Working with the Information Security team to maintain the ISO 270001 compliance process. Drive, maintain and develop the firm's compliance … analysis of effectiveness of ISMS, escalating, following up and flagging non-compliance, managing ISMS incidents and mitigation plans and reviewing effectiveness of compliance and security training. Supplier management, including undertaking supplier assessments and managing supplier compliance. Internal stakeholder/partner management and influence in relation to Risk and Compliance … priorities. About you: Proven success in a comparable information security role, ideally for a financial services/professional services company, with responsibility for ISO 27001 compliance. CISM, CISSP. Demonstrate a high level of skill with security governance, policies, principles, practices, standards and controls including ISO27001 and SOC more »

enthusiastic and supportive people who have a passion for bringing technology to life for social good. We're looking for an experienced Head of Information Security to lead and manage the Clarion security function, managing, reviewing, and maturing the design, selection of and implementation of security controls to improve resilience and reduce security risk to Clarions information assets. You'll develop and foster security awareness throughout Clarion and provide governance and assurances on the effectiveness of the security program, influencing stakeholders across the organisation to win support for security and … resilience initiatives. Highly experienced in the application of information security standards and frameworks, you'll have extensive hands-on technical experience in at least one IT or cyber security discipline and be skilled in determining, establishing, and maintaining appropriate security strategies, policies, standards, and procedures for more »

A leading corporate banking and capital markets organisation is seeking an Information Security (Senior Analyst) to join the team in London. Main Purpose of the role Subject matter expert enabling the Information Security function to deliver high quality consultancy, risk reduction and assurance services addressing the … Information Security needs of the business and its’ clients. Key Activities and Competencies Ensuring compliance with our Group policies and controls, regulatory requirements, and customer expectations for Information Security Develop and enhance the Management Information and risk reporting. Foster a culture of security awareness. … Provide information security training and awareness programmes to empower employees in safeguarding company assets. Risk analysis of IT applications, EUCs and business processes; determine appropriate remediation. Ensuring security requirements are appropriately maintained in our outsourcings and third-party arrangements. Provide your security expertise to business units more »

Are you an experienced GRC professional looking for a new challenge? A leading Financial Services company are seeking an individual to join the Information Security function to help deliver a large transformational project. Key Responsibilities: Support, develop and implement information security policies. Enforce security controls … across the organisation and affiliates. Provide mentorship and guidance to junior members of the information security team. Support the monitoring and reporting of a global ISMS across multiple continents different to ensure compliance with the requirements of ISO27001. Provide advice on improvements to enhance security posture. About … you: CISSP, CISM certifications (desirable). 5+ years experience in information security. Consultancy background (desirable). Good understanding of Cloud security (AWS, Azure). Excellent interpersonal skills with stakeholders at all levels. Proven track record working with security framework (ISO 27001 & NIST). E: j.bhard@locke-mccloud.com more »

Information Security Manager Location – London (Hybrid) An exciting opportunity has arisen to join this banking start-up that are currently on a journey building a bank to bring better engagement between Africa and the UK, bringing customers and businesses the cross-border experience they deserve. Backed by one … of the top reinsurers in the world, this new bank applicant requires an Information Security Manager to join the growing team and implement the security strategy including identifying any risks to the business, whilst designing, implementing, and maintaining the security strategy for the bank. Accountabilities Develop … and implement a comprehensive information security strategy aligned with business objectives. Create and maintain an information security roadmap to address current and future security needs. You will implement and manage technical solutions to counter cyber security risks. Establish, review, and enforce information security more »

Information Security Auditor | UK Hybrid | £40,000-£55,000 Locke & McCloud are working with one of the top 10 Consultancy firms within the UK, they are looking for an Information Security Auditor to come in and support their clients with ISO27001 and SOC 2 audits This … discuss further on +44 (0)203 854 2230 or send your CV to m.smith@locke-mccloud.com. Locke & McCloud are the UK’s leading cyber security & information security staffing company – through having a sole focus on the cyber & information security space we have been able to … foster solid relationships with some of the UK’s most exciting cyber security consultancies & end-users. Our focus on the information security space allows us to be able to help you find the most exciting opportunities in the cyber security market. If you are on the more »

Cyber Security GRC Specialist Salary - £130-150k + 40-60% Bonus Location – London (2/3 days per week in office) I’m currently working with one of the fastest growing and most established Crypto Trading and Market-Making firms worldwide, who are looking to hire a Cyber … Security GRC Specialist to set out and establish their Information Security policies and procedures from the ground up. Reporting into and working closely with the Global CISO, you will be pivotal in setting out and delivering their Information Security strategy, ensuring they are compliant against … various information security and financial market regulatory standards, supporting the wider organisation’s risk management strategy. This is genuinely an incredible opportunity to shape how security is built within one of the most resolute crypto trading firms worldwide, which has the backing of some of the most more »

team. Partnering with the Information Security Manager, you'll ensure the business aligns to ISO27001, conduct audits related to ISO27001 & NIST, generate InfoSec dashboards & metrics, as well as handle the onboarding of new suppliers. Due to the small size of the team, you'll often be required to … work independently and assist with a variety of InfoSec related tasks. What will you do as an Information Security Analyst? Onboard suppliers and perform risk assessments, third party questionnaires, due diligence, gap analysis and make suggestions accordingly Ensure Security best practice is followed and ISO27001 compliance is … The ability to work independently Good knowledge of Cloud Security (open on platform) Experience in the Legal or Professional Service sectors (advantageous) Relevant InfoSec/Cyber certifications (very advantageous) What's in it for you? In return, you'll have the opportunity to work with a diverse group of more »

London hybrid - £80,000 - £95,000 + Bonus + Benefits Locke & McCloud are looking for an experienced DevSecOps Specialist with a strong background in security architecture, cloud security, application security, and DevSecOps to join our client as they look to expand their cyber security engineering function. … This opportunity will allow you to step into an established, but growing security engineering function, lead and own various engineering initiatives, and work with some of the UK’s very best cyber security professionals! Main responsibilities: Design and implement security architecture for systems and applications. Develop and … maintain security policies, procedures, and standards. Implement and manage security controls and monitoring tools to detect and respond to security incidents. Work closely with development and operations teams to integrate security into the CI/CD pipeline and automate security testing and compliance checks. Provide more »

Job Description Information Security Architect/Manager Our Client is an International company with offices in Central London. They are looking to bring on-board an Information Security Architect/Manager with at least 5 to 8 years proven expertise within Information Security. The function … of the position will be as follows: Assess the current environment against industry standards and trends. Implement robust security and control measures, in line with the global IT team Streamline current processes and execute changes for a secured and optimised technology and data landscape. Subject matter expert … in application and network security, with operational experience of managing security operations, SIEM solutions, incident, and response management. Collaborate to develop the Infosec strategy and associated operating model. Conduct an in-depth security risk assessment across the technology stack and provide end-to-end mitigation steps for more »

seeking a GRC specialist to join a reputable and established governance function. This is an exciting role as you will be contributing to multiple information security initiatives at a critical time. This is an excellent role for a candidate that wants to contribute to a busy team and … informed guidance. Support and contribute to the recertification process (ISO 27001: 2022). Work closely with senior management to define the strategic vision for Information Security governance. About you: Experience in GRC frameworks. Proven stakeholder management skills. Strong understanding of security frameworks, standards, and best practices (ISO … NIST, GDPR, etc.). In-depth understanding of security governance frameworks and principles. Works well in a fast- paced, ever changing landscape. Particularly keen to hear from candidates who have a proven track record of advising clients on governance, risk management and compliance strategies. E: j.bhard@locke-mccloud.com Locke more »

An exciting new opportunity has arisen for an information security manager to join a leading law firm in London. Reporting to the head of information security, the main purpose of this role will be to ensure the appropriate controls, policies and procedures are in place to … protect the information of the firm, in-line with internal information security principles. Main day to day responsibilities will include: Managing and facilitating governance meetings. Delivering presentations and engaging with senior leadership. Developing and implementing information security policies. Managing the technology risk strategies that maintain … the status of industry compliance. Researching and evaluating emerging security threats. Managing initiatives to deliver on risk goals and policies. Leveraging a solid understanding of industry audit and compliance standards. Acting as a deputy for the head of information security. Managing external threats. Managing the cyber incident management more »

IT Security Engineer/Cyber Security Consultant - Security Engineering (Hands-on), Perimeter Defence, Server Hardening, Cloud Security, Security Alert Management, Security Architecture; CISM, CISSP, CySA+, CASP+ NIST; Security Standards. London. Permanent. £70k - £85k +Bonus +Bens Global Law Firm seeks an IT Security Engineer/Cyber Security … Consultant to assist in the implementation of security features and tools across Network, Server and Cloud environments. You will work closely with the InfoSec team to understand the security controls which have been created and then with the Security Architects/Infrastructure Architects to understand the physical more »

Information Security Governance Analyst - Permanent - £60,000 - £70,000 - London - Hybrid As an InfoSec Governance Analyst, who wants to take it to the next step of your career, you are required for a global financial service organisation, based in the city of London. The company offers advanced trading … are pioneers in electronic trading. You will play a significant part in a thriving business, who are eager to continue their success, ensuring core Security awareness across the business. Do you have the robust security experience to support a fast pace and dynamic trading organisation? Responsibilities: Manage the … Information Security Governance Documentation/Risk Management process. Design and complete the Information Security controls test based on ISO 27001 and CIS CSC v8 Identify any cyber threats, risks and issues, using risk management techniques Manage and conduct third party due diligence assessments on vendors and more »

Senior Cyber Security Engineer – London hybrid - £80,000 - £95,000 + Bonus + Benefits Locke & McCloud are looking for an experienced Cyber Security Engineer to join our clients growing Cyber Security Engineering function. You will be responsible for designing, implementing, and maintaining security solutions across our … clients infrastructure, in addition to being a huge contributor to the growth and strategy of the Security Engineering function. Our client is looking for people with extensive experience in DevSecOps practices, a deep understanding of security architecture principles, and technical proficiency with cloud platforms such as AWS or … Azure. Main Responsibilities: Collaborate with cross-functional teams to implement security practices throughout the SDLC, emphasising DevSecOps principles. Design, implement, and manage security controls and automation tools to enhance the security posture of cloud-based applications and infrastructure. Conduct thorough security assessments and risk analyses, identifying more »

Cyber Security Awareness Manager – London hybrid - £55,000 - £65,000 + Bonus + Benefits Locke & McCloud are looking for an experienced Cyber/Information Security Awareness/Training specialist to join our client as their new Cyber Security Awareness Manager. Due to our clients recent growth … this role has been created to ensure there is a culture of cyber security awareness across all of our clients departments. This is an excellent opportunity for someone who enjoys developing and implementing innovative training programs and initiatives. You will work closely with stakeholders across various departments to raise … awareness, promote best practices, and improve our clients overall security maturity. Main responsibilities: Design, develop, and implement cyber security training programs tailored to the needs of different departments and employees. Create engaging training materials, including presentations, videos, e-learning modules, and other resources, to effectively communicate cybersecurity concepts more »

Security Risk Manager – London hybrid - £60,000 - £80,000 + Benefits Locke & McCloud are looking for an experienced Security Risk professional to join our clients growing Cyber Security function. Our client is looking for candidates who have a proven track record in managing security risks associated … skills, and the ability to collaborate effectively across various departments and external partners. Main responsibilities: Manage and oversee all aspects of third-party vendor security risk management, including assessment, monitoring, and mitigation strategies. Develop and implement third-party risk management programs to ensure compliance with regulatory requirements and industry … best practices. Conduct regular risk assessments of third-party vendors to identify potential vulnerabilities and security gaps. Collaborate with internal stakeholders to establish vendor security requirements and ensure alignment with security policies. Coordinate with third-party vendors to remediate identified security vulnerabilities and track progress to more »

Reporting to the Head of Operational Risk and working closely with the Head of Information Security, the role will support in managing the Bank’s Second line of Defence (2LOD) for cyber security, assuring compliance with the Bank's Information Security Policies and Standards and … overseeing the effective implementation of security controls through engagement with the Bank’s cyber security operations team (1LOD). Responsible to Head of Operational Risk for Information Security RCSA framework, in particular regulatory compliance, and tolerated risk exposure. Act as Cyber Security expert within the … providing advice and guidance to 1LOD Working with the Bank’s Enterprise Architect to ensure solutions are delivered in accordance with BACB’s IT Security policies and Standards Ensure the Bank can effectively respond and recover from Cyber Security Incidents. Working with the Head of Information Security more »

Exciting opportunity for an experienced Information Security Officer to join a global professional services organisation based in London. You will have a key role in ensuring the security of their systems and data by evaluating the risks associated with third-party vendors and internal projects and recommending … appropriate risk mitigation strategies. You will work closely with cross-functional teams across the organisation to ensure compliance with security standards and best practices. Key responsibilities: Assessing Security Risks (SCTY - Level 4, BURM - Level 4) Conduct vendor risk assessments and project security risk assessments based on established … methodologies and frameworks. Evaluate security risks associated with third-party vendors and internal projects, considering factors such as security, privacy, and compliance. Identify vulnerabilities and potential risks and provide recommendations for risk mitigation strategies. Apply knowledge of industry best practices and regulatory requirements to assess and mitigate security more »

London hybrid - £65,000 - £80,000 + Benefits Locke & McCloud are looking for an experienced Cyber Risk professional to join our clients growing Cyber & Information Security function as a Cyber Risk Specialist. In this role, you will be responsible for assessing, managing, and mitigating cyber risks, manage various … management skills, and expertise in vulnerability management and incident response processes. Main responsibilities: Conduct cyber risk assessments to identify vulnerabilities and threats. Analyse existing security measures and recommend enhancements to mitigate identified risks. Collaborate closely with internal stakeholders across various departments to understand their unique cybersecurity needs and requirements. … Evaluate third-party vendors and assess their cybersecurity practices to ensure they meet our clients security standards. Implement and oversee vulnerability management processes to proactively identify and remediate security vulnerabilities. Coordinate with relevant teams to prioritise and address vulnerabilities. Develop and maintain incident response plans and procedures to more »

Information Security Analyst - GRC Base Salary, Benefits, Bonus + Car Allowance. Hybrid working – Kingston Upon Thames We are working with an established international services company as they search for an enthusiastic Information Security Analyst with a focus on Governance, Risk and Compliance. This position is available … citizens and to have lived in the UK continuously for the last 5 years. The role will focus on helping to maintain compliance on InfoSec governance audits, including: ISO27001, ISO27017, ISO27701 & ISO22301 UK and EU General Data Protection Regulation (GDPR) Data Protection Act 2018 Cyber Essential Plus IASME Governance Sarbanes … Oxley On top of this, the role is responsible for: Managing the information security management system (ISMS) Managing information security risk identification and remediation Conduct and document internal audits to support the information security program Ensure adherence to legal and regulatory compliance Monitor security more »