1 to 25 of 35 Information Security Management Jobs in London

Head of Information Security, Europe page is loaded Head of Information Security, Europe Apply locations London - 2 Gresham Street time type Full time posted on Posted 5 Days Ago job requisition id R-5246 The Head of Information Security, Europe reports directly to the Chief Information Security Officer, TMX Group and has … a dotted line reporting relationship to the Chief Technology Officer, Trayport. The Head of Information Security will be responsible for defining, implementing, and managing the organization's information security strategy and framework for Europe. This critical role involves overseeing all aspects of information security, including a strong focus on application security, ensuring compliance … with ISO27001 standards, financial services regulations, and other relevant legal and contractual requirements. As a senior leader of the Enterprise Information Security team, the role will also be accountable to provide information security oversight, through leadership and guidance across the TMX Group. The successful candidate will be a strategic leader with a strong technical background, including More ❯

My client, an International bank, based in London, is looking for an Information Security Analyst to join it's team. Three MUST for this role:1) Three days per week in the office2) They dont offer sponsorship3) You must come from banking or financial services background4) Must have at least 2/3 years experience in your current … firm About the Information Security Analyst role: To assist the Branch Information Security Officer in developing and maintaining the Branch ISMS, and in providing a professional responsive service to assist management in identifying and mitigating information security risks which could seriously impact the Bank. This includes the provision of expert advice, oversight, and … assurance on, the selection, design, justification and operation of information security controls and management strategies to maintain the confidentiality, integrity, availability, accountability, and relevant compliance of information systems with legislation, regulation, and relevant standards, in concert with Bank Head Office alignment. Notes from HM: I'm ideally looking for someone who has a broad infosec background More ❯

Reading: Senior Information Security Consultant European Bank for Reconstruction and Development Job Description Description -> As the Head of Information Security, you will report to the Director, Operational Risk Management (ORM) and be responsible for leading the Bank's Information Security risk identification and remediation activities. Responsibilities Measure and report on the implementation and … compliance of the Bank's Information Security framework (policies, procedures, guidance) throughout the organisation and verify the implementation of Information Security controls and evaluate their effectiveness. Manage internal teams and external consultants as they provide support in the delivery of risk mitigation activities. Influence and support change by aligning policy updates with new regulations and business … needs and critically, emerging security threats. Manage the programmes which provide security oversight over internal IT and Business projects and external suppliers. Act as the Information Security SME to support the Bank's delivery of the new GRC solution, ensuring that existing solutions and services which deliver risk assessments, and third party supplier assurance assessments, are More ❯

worldwide. The main office is based near Liverpool Street station, London. We have offices in Bermuda, Brazil, Cyprus, Greece, Hong Kong, Japan, and Singapore. Overall Job Purpose : The Junior Information Security Officer (JISO) will assist the Information Security team in implementing and maintaining the information security management system with the objective of managing … risks to information assets to an acceptable level. The JISO will develop a good understanding of the information security policies, standards and procedures and will assist InfoSec in implementing, managing and monitoring the relevant controls. It is imperative that the JISO develops a strong understanding of the organisation's technology landscape to help identify potential threats and … vulnerabilities. Key Responsibilities: Assist in maintaining the information security standards, procedures and guidelines. Participate in the information security risk management process to identify, assess, treat and monitor risks. Manage information security incidents and events to protect information assets. Help develop and implement incident response plans and procedures to ensure that information More ❯

Interim Head of Information Security needed for an initial 2 - 3-month engagement with our Cyber Security Consultancy client in London. The right candidate must have demonstrable experience in senior security roles, such as Chief Information Security Officer (CISO), Head of Cyber Security or Head of Information Security within complex environments … Transport or Logistics organisations. The role is Outside IR35 and requires 3 days per week onsite in London. The successful candidate will be engaged as and interim Head of Information Security, working closely with the CIO in order to manage the information Security Function whilst also delivering two specific projects involving planning for ISO certification in … the new year and an audit of the current Cyber Security setup, identifying any gaps and making recommendations. Key Skills & Experience required: Senior-level Cyber/Information Security Management experience , including working closely with c-suite stakeholders in order to deliver both strategic and tactical results. Proven expertise in Cyber Security audits and gap analysis. More ❯

Interim Head of Information Security needed for an initial 2 - 3-month engagement with our Cyber Security Consultancy client in London. The right candidate must have demonstrable experience in senior security roles, such as Chief Information Security Officer (CISO), Head of Cyber Security or Head of Information Security within complex environments … Transport or Logistics organisations. The role is Outside IR35 and requires 3 days per week onsite in London. The successful candidate will be engaged as and interim Head of Information Security, working closely with the CIO in order to manage the information Security Function whilst also delivering two specific projects involving planning for ISO certification in … the new year and an audit of the current Cyber Security setup, identifying any gaps and making recommendations. Key Skills & Experience required: Senior-level Cyber/Information Security Management experience , including working closely with c-suite stakeholders in order to deliver both strategic and tactical results. Proven expertise in Cyber Security audits and gap analysis. More ❯

Information Security Manager £70,000- £75,000 PA Central London Well-established construction engineering business is seeking an experienced Information Security Manager to join them on a permanent basis. You'll be joining at a critical time where they are expanding their technical team with an ambitious growth plan with multiple acquisitions planned over the coming … years. The Information Security Manager will be a crucial component in ensuring the effective management of both the technical cyber security environment and wider information security management piece for the business. This role is responsible for ensuring robust cyber security controls with a strong emphasis on ISO 27001 readiness. You'll liaise … prior experience to ensure certification plans stay on track. Working with external teams to align processes, you'll also oversee InfoSec/Cyber services, conduct risk assessments and recommend security improvements. Responsibilities: Ownership and maintenance of all security related policies and procedures, implementing Security by Design and driving a culture of cyber security awareness in the More ❯

Information Security Manager £70,000- £75,000 PA Central London Well-established construction engineering business is seeking an experienced Information Security Manager to join them on a permanent basis. You'll be joining at a critical time where they are expanding their technical team with an ambitious growth plan with multiple acquisitions planned over the coming … years. The Information Security Manager will be a crucial component in ensuring the effective management of both the technical cyber security environment and wider information security management piece for the business. This role is responsible for ensuring robust cyber security controls with a strong emphasis on ISO 27001 readiness. You'll liaise … prior experience to ensure certification plans stay on track. Working with external teams to align processes, you'll also oversee InfoSec/Cyber services, conduct risk assessments and recommend security improvements. Responsibilities: Ownership and maintenance of all security related policies and procedures, implementing Security by Design and driving a culture of cyber security awareness in the More ❯

of the brightest and nicest people around - check out our Glassdoor reviews. If this sounds like your cup of tea, we would love to hear from you! For more information check out our blog to see if you would like to help us prevent crime and protect the world's biggest online businesses. The Role Our data is a … to our success and of great importance to our clients, our partners and to our team. This is why we are currently looking for someone to help evolve the security function. As the Information Security Manager in the team, you will be working with our Security engineers as well as other teams and stakeholders to drive … improvements to our security program and ensure a pragmatic approach to security and risk. Responsibilities Develop, implement, and maintain the organization's information security policies, standards, and procedures in alignment with business objectives, while considering operational needs. Direct the management and continuous improvement of the Information Security Management System (ISMS). Oversee More ❯

Head of Information Security Location: London Rate: Up to £1,000/day outside IR35 Hybrid: 50% of time onsite Sector: Strong regulated industries Contract Type: 6-9 months contract Job Summary: Our client, a leading legal firm, is seeking an experienced Head of Information Security to lead their security function and drive enterprise-wide … strategy. This senior leadership role requires someone with a strong legal sector background who can quickly assess their current security posture, identify improvement opportunities, and establish strategic roadmaps. The ideal candidate will bring substantial exposure to data processing, enterprise applications, and outsourced systems, with proven experience in systems design, project management, and crisis management. You will be a … oversight roles. The ideal candidate will demonstrate collaborative skills, cultural fit, and flexibility to integrate quickly into their established team environment. Key responsibilities: Develop, implement, and manage enterprise-wide security strategy in partnership with senior stakeholders Assess current information security maturity and develop a strategic roadmap to achieve the target state Take ownership of ongoing audit projects More ❯

in London, offering ahybrid work model. However, for candidates located outside of London, there ispotential for a fully remote arrangement. How you will create impact: Plan audits by analyzing Information Security Standards, such as ISO 27001:2022, and define audit scopes within your area of expertise. Create and maintain structured audit catalogues tailored to the identified scope. Draft … audit plan, covering both internal processes and assets as well as audits of external service providers. Assess a broad range of audit topics, including IT systems, infrastructure and processes, information security management, and on-premise or virtual audits of physical security. Document findings clearly and thoroughly to enable process and asset owners to identify and develop mitigation … classification and documentation of audit findings and collaborate with IT compliance and risk stakeholders. Report audit results to the CTO. Involved in certification audits. Support client assessments by providing information or take part in client meetings. Your profile: You hold a university degree or equivalent in informatics, business informatics, IT security, or a similar field. Fluent English and More ❯

be cyber resilient, supporting Transformation Directorate's purpose of delivering the best care and outcomes for the NHS. The Cyber Operations sub-directorate consists of 4 operational areas: Cyber Security Operations Unit (CSOU) - SIO Cyber Delivery Unit (CDU). Cyber Improvement Programme. Chief Information Security Office Function (CISO) The CISO Function consists of four teams, these are … CISO Portfolio Office, Secure (by Design), Security Assurance, and Security Governance, Risk & Compliance (GRC). The post of Cyber Security Lead - Security Assurance has been awarded a Recruitment and Retention Premia (RRP) in response to current labour market conditions. In recognition of this, the role attracts an additional monthly RRP payment equal to 30% per annum. … Please be aware that RRP is non-contractual and subject to review. Main duties of the job This role is part of the Security Assurance team, which acts as a second line of defence and provides evidence-based confidence in the effectiveness of NHS England's cyber security controls, processes, and systems. It supports informed assurance by: Evaluating More ❯

Frankfurt am Main, Hesse, Germany; London, England, United Kingdom This is a hybrid role and can be based in London or Frankfurt. The Role As a Senior IT Security Analyst at euNetworks, you will play a key role in protecting the organisation against information security threats by implementing and maintaining both technical and organisational safeguards. Working closely … with the Information Security Steering Team and as part of the broader IT function, you will be instrumental indriving forward our security posture. What will you be doing? Administer and maintain the Security Information and Event Management (SIEM) system and other IT security platforms. Review and evaluate security aspects of IT projects … identifying risks and ensuring appropriate controls are implemented. Investigate and respond to security incidents and queries, coordinating with relevant teams. Continuously monitor IT infrastructure for vulnerabilities, anomalies, and other potential security issues. Plan and coordinate external penetration tests to identify and address security weaknesses. Compile and deliver regular reports (monthly and quarterly) on the organisation's security More ❯

Information Security GRC Manager | ISO27001, SOC2, Azure Security | Global Trading Platform £70–80k base + 10% bonus Hybrid in London Training budget for certifications + conference attendance Strong emphasis on professional autonomy and ethical leadership A newly created opportunity to lead and shape the GRC function of a global financial group at a pivotal time, supporting the … role with real scope: oversight of policy, third-party risk, architectural reviews, and cloud compliance. You'll work closely with the Head of InfoSec to maintain audit readiness, improve security posture, and influence business-wide awareness and accountability. What you’ll bring: 5+ years in InfoSec, IT Security or Ops within a regulated environment Certification required: CISSP, CISM … CRISC, or equivalent Strong knowledge of ISO27001:2022, SOC2 Type II, NIST CSF, PCI DSS, GDPR, DORA Confident with security risk assessments, audit responses, and policy governance Hands-on cloud security experience: ideally with Azure and the Shared Responsibility Model Comfort with complexity: able to analyze architecture, track metrics, and translate acronyms into actionable plans Mentorship ability: ready More ❯

Information Security GRC Manager | ISO27001, SOC2, Azure Security | Global Trading Platform £70–80k base + 10% bonus Hybrid in London Training budget for certifications + conference attendance Strong emphasis on professional autonomy and ethical leadership A newly created opportunity to lead and shape the GRC function of a global financial group at a pivotal time, supporting the … role with real scope: oversight of policy, third-party risk, architectural reviews, and cloud compliance. You'll work closely with the Head of InfoSec to maintain audit readiness, improve security posture, and influence business-wide awareness and accountability. What you’ll bring: 5+ years in InfoSec, IT Security or Ops within a regulated environment Certification required: CISSP, CISM … CRISC, or equivalent Strong knowledge of ISO27001:2022, SOC2 Type II, NIST CSF, PCI DSS, GDPR, DORA Confident with security risk assessments, audit responses, and policy governance Hands-on cloud security experience: ideally with Azure and the Shared Responsibility Model Comfort with complexity: able to analyze architecture, track metrics, and translate acronyms into actionable plans Mentorship ability: ready More ❯

thinking organization committed to innovation, resilience, and trust. As we continue to grow and evolve in a digital-first world, we are seeking a strategic and business-savvy Business Information Security Officer (BISO) to bridge the gap between cybersecurity and business operations. The BISO is expected to be adaptable and have the ability to implement the integration of … cybersecurity into our IT and operational technology (OT) ecosystems. As the BISO, you will serve as the primary liaison between the BA Customers & Solutions Security & Resilience team and business units, ensuring that information and cybersecurity strategies align with business goals. You will be responsible for embedding security into business processes, managing risk, and driving a culture of … security awareness across the organization. The BISO will report directly to the Head of Business Excellence, with additional reporting to the Director of Asset Management on the OT topics. Main tasks Act as the trusted information and cybersecurity advisor to management and stakeholders Establishing, developing and implementing the Security Management System in the BU More ❯

Join our Cyber Security Team as a Governance, Risk and Compliance Analyst. If you have been involved in practical aspects of GRC including ISO270001, want to work with a team of dedicated professionals and are able to understand wider business impacts of GRC on a business, please read more and apply. Location We operate a flexible, hybrid working environment … travel and dental insurance Work. Life. Smarter. Our commitment to a flexible and hybrid working culture As a GRC Analyst you will: Support the development and maintenance of our Information Security Management System (ISMS) including policies, objectives, and risk assessments Assist with internal audits and help prepare for external audits to maintain compliance with ISO27001 and other … standards Help identify and assess information security risks, working closely with the Cyber Risk Manager Provide guidance to colleagues on basic security best practices and requirements Contribute to reporting on the ISMS performance and improvement plans Support continual improvement initiatives and track progress Keep up to date with key trends and changes in information security More ❯

Information Security Lead Auditor Department: Audit Employment Type: Permanent Location: London, UK Reporting To: Regional Operations Manager Description Please note, that a full driving licence is required as this is a field-based role. Join our growing Lead Auditor teams across the UK! At ISOQAR, we draw on our experience, knowledge, and ambition to empower organisations to achieve … solutions, the Alcumus Group helps organisations increase resilience and manage risk, protecting its customers, workforce, stakeholders, and the environment. Due to our continued growth, we are seeking professionals within information security to join our expanding Lead Auditor teams supporting a broad range of clients across the UK . With onsite practical experience and deep knowledge of industry processes … and Divisional inductions, you will undertake a 12-week training programme, including classroom and onsite learning with a Senior Lead Auditor, to achieve your Lead Auditor qualifications in Quality Management Systems (9001) and Information Security Management Systems (27001). What that means day to day The life of a Lead Auditor is varied and engaging, with More ❯

follows (but not limited to, as business requirements evolve/change):o Server architectureo Virtualisation technologieso Datacentre operationso Cloud operationso Domain directory serviceso Data storage and managemento Device managemento Information security management and cyber securityo Database administration serviceso Network operations (wired/wireless/mobile)o Business continuity management and disaster recovery planningYou will put people … other members of your team assist in the provision of first class services and consistent levels of capability, as required by the organisationSkills needed for this roleAsset and configuration management Maintain secure configuration and accurate information, controlling IT assets in one or more significant areas Verify the location and state of assets, and support the full IT asset … management lifecycle (from request through to retirement)Availability and capacity management Manage service components to ensure they meet business needs and performance targetsChange management Analyse and assess impact, and develop and document change requests Implement complex changes based on requests for change and apply change control proceduresCoding and scripting Practical use of scripting tools and software that More ❯

Cyber Security Manager Croydon, South London Hybrid working - 2 days per week in the office Cyber Security Manager needed for a leading organisation based in Croydon, who are looking to employ an experienced Cyber Security Manager with an in-depth knowledge of Cybersecurity frameworks, tools, and technologies, ISO27001 adoption, Incident management and Change management. This role … involves the development and implementation of security strategies, policies, and procedures to protect against cybersecurity threats, as well as actively monitoring and responding to security incidents. Salary expectation: * Salary: £70,000 per annum * 25 day's annual holiday * Pension Plan * Flexible working * Hybrid working - Office 2 days per week Some of the main duties of the Cyber Security Manager will include: * Security Strategy & Implementation: Design, implement, and maintain comprehensive cybersecurity policies, procedures, and controls * Threat Detection & Response: Continuously monitor the digital environment for potential vulnerabilities and security breaches * Incident Management : Lead incident response activities, coordinating with IT teams to mitigate risks and minimise damage. Responsible for writing incident reports, gathering input across the technical More ❯

Cyber Security Manager Croydon, South London Hybrid working - 2 days per week in the office Cyber Security Manager needed for a leading organisation based in Croydon, who are looking to employ an experienced Cyber Security Manager with an in-depth knowledge of Cybersecurity frameworks, tools, and technologies, ISO27001 adoption, Incident management and Change management. This role … involves the development and implementation of security strategies, policies, and procedures to protect against cybersecurity threats, as well as actively monitoring and responding to security incidents. Salary expectation: * Salary: £70,000 per annum* 25 day's annual holiday* Pension Plan* Flexible working* Hybrid working - Office 2 days per week Some of the main duties of the Cyber Security Manager will include: * Security Strategy & Implementation: Design, implement, and maintain comprehensive cybersecurity policies, procedures, and controls* Threat Detection & Response: Continuously monitor the digital environment for potential vulnerabilities and security breaches* Incident Management : Lead incident response activities, coordinating with IT teams to mitigate risks and minimise damage. Responsible for writing incident reports, gathering input across the technical More ❯

Model Transformation Standardise and simplify technology governance, policies, and processes to reflect a modern, strategic IT function. Embed frameworks such as: ISO/IEC 27001: The international standard for information security management systems (ISMS), ensuring data confidentiality, integrity, and availability. ITIL (Information Technology Infrastructure Library): A framework for standardising IT service management practices and aligning … to reduce cost and complexity. Oversee the consolidation of the IT environment, supporting migration towards a unified operating ecosystem (currently a mix of Microsoft and Google platforms). Relationship Management Lead and be responsible for overall implementation of the architecture and technology deliverables, fostering a culture of collaboration across IT and business teams to identify and address IT business … requirements, addressing them effectively. Finance Oversee delivery of financial business cases to reduce IT costs. Profile Experience : Experience in tender negotiation and IT purchasing Experience in supplier and contract management and reviewing performance against SLAs Experienced in developing strong working relationships with key external partners Experience in implementing IT strategies Experienced in running and managing IT infrastructure, application, and More ❯

Are you looking for an exciting new opportunity? Join a London based, product-agnostic consultancy specialising in information security governance, risk, and compliance management for clients across Europe. With a deep-rooted passion for cyber risk, the team excels at developing measurable controls that align with an organisation's risk appetite, capacity, and tolerance for breaches. Known … for crafting innovative and cost-effective Information Security Management Systems (ISMS), the consultancy enables quantifiable compliance with key information security legislation, regulations, and industry standards, including PCI DSS, the UK Data Protection Act 2018 (DPA 2018), GDPR, and ISO/IEC 27001. If you would like to learn more about this opportunity, feel free to … of OWASP methodologies and offensive testing across black/grey/white-box approaches. Proficiency in tools like Burp Suite, Kali, Nmap, Nessus, Qualys, Metasploit. Familiarity with cloud platform security testing (AWS, Azure, GCP). Understanding of mobile security (Android & iOS), networking protocols, and the OSI model. Excellent verbal and written communication skills, especially for client-facing engagements. More ❯

the business objectives across new and growth areas. Key Responsibilities: Leading and scaling the UX function - setting up design systems, accessibility standards etc from scratch. Working with the Senior Management Team - making cases for more design resources and continuously measure, track and share the value on an ongoing basis. People Management and Leadership - managing and developing UX Designer … currently working as a Head of or Lead in a fast growing business Experience leading teams of both designers and user researchers Experience setting up accessibility standards from scratch Information architecture, content design and personas Experience with service design Good taste in product design Worked on localisation projects Experience across both web and app and B2B and B2C Healthcare … upload your portfolio with your application Skin Analytics manufactures medical devices and complies with ISO standards 13485 and 27001. As part of your employment, you will be assigned Quality Management System (QMS) and Information Security Management System (ISMS). We require that our employees agree to complete their assigned training and diligently follow all company quality More ❯

willing to listen to others ideas. Skin Analytics manufactures medical devices and complies with ISO standards 13485 and 27001. As part of your employment, you will be assigned Quality Management System (QMS) and Information Security Management System (ISMS). We require that our employees agree to complete their assigned training and diligently follow all company quality … management and information security processes. The National Institute for Health and Care Excellence has recommended DERM for use within the NHS until May 2028, while further evidence is gathered. Competitive salary Share options package - all our employees have ownership in the company Private healthcare 25 days annual leave (5 day company shutdown in August + bank holidays More ❯