1 to 25 of 46 Information Security Management Jobs in the UK excluding London

The Information Security Director develops, shapes, and maintains Sycurio's information security capability, driving the attainment and maintenance of the ISO27001, PCI-DSS, and SOC2 compliance. They are the subject matter expert on all things regarding security and compliance, owning the information risk management processes. They are the thought leader on all matters … within the security and compliance domain such that the company remains secure against the ever-changing security threat and compliance landscape. Information Security Strategy Create and maintain the Company's strategy, ensuring alignment to the Company's strategy and business goals. Work across internal and external stakeholders, communicating the information security strategy to relevant … parties and providing assurance of policies, procedures, and systems. Develop, maintain, and expand the information security management system ('ISMS') to optimise compliance for ISO27001, PCI-DSS, and SOC2. Identify gaps in the information security capability, both technical and operational, and propose remediation and mitigation plans and solutions. Responsible for the Company's information security More ❯

The team you'll be working with: The Security Architect will be responsible for the design, implementation and ongoing development of the security architecture of the client's IT systems. The Security Architect will draw upon Enterprise Security Architecture or Security Solutions Architecture to: - Identify business objectives, user needs, risk appetite and cyber security obligations - Identify vulnerabilities, perform threat modelling, undertake risk assessment, evaluate the effectiveness of security controls - Verify and evidence alignment to 'Secure by Design' principles, corporate security policy/standards as well as industry recognised frameworks and best practice What you'll be doing: Develop, deliver and continually enhance a coherent approach to the design of secure client … end-to-end solutions Develop secure conceptual, logical and high level designs by identifying appropriate security controls to be embedded in solutions that meet business requirements whilst evidencing alignment to the target risk appetite. Own the design and be able to articulate and justify design recommendations at security architecture assurance gates Draft design documentation, options papers, risk assessments More ❯

Information Security Compliance Analyst 12 Month Fixed Term Contract Salary: Negotiable Hybrid - Hertfordshire As an Information Security Compliance Analyst, you will support the development and maintenance of the EMEA wide information security management system in accordance with Global EIT strategy, EMEA business requirements and relevant information security legislation, including NIS … AI Act and GDPR. You will ensure the continued certification of the EIT ISO 27001:2022 management system and adherence by the EMEA EIT department to all relevant legislation and regulations, including but not limited to Health and Safety, Financial and Privacy laws. Main duties/responsibilities: Conduct information security, information system, and compliance-based risk … execute risk mitigation plans in conjunction with relevant internal and external stakeholders/groups and to agreed timescales, following through to completion Support the creation, implementation and maintenance of information security policies and standards, in accordance with ISO 27001 other relevant frameworks and standards (NIST CSF, IEC 62443, CIS, GDPR etc.) Maintain the department’s information security More ❯

Information Security Compliance Analyst 12 Month Fixed Term Contract Salary: Negotiable Hybrid - Hertfordshire As an Information Security Compliance Analyst, you will support the development and maintenance of the EMEA wide information security management system in accordance with Global EIT strategy, EMEA business requirements and relevant information security legislation, including NIS … AI Act and GDPR. You will ensure the continued certification of the EIT ISO 27001:2022 management system and adherence by the EMEA EIT department to all relevant legislation and regulations, including but not limited to Health and Safety, Financial and Privacy laws. Main duties/responsibilities: Conduct information security, information system, and compliance-based risk … execute risk mitigation plans in conjunction with relevant internal and external stakeholders/groups and to agreed timescales, following through to completion Support the creation, implementation and maintenance of information security policies and standards, in accordance with ISO 27001 other relevant frameworks and standards (NIST CSF, IEC 62443, CIS, GDPR etc.) Maintain the department’s information security More ❯

Are you currently working for an IT provider but ready to step into the world of dedicated Cyber Security? We have an exciting opportunity for an Information Security Consultant looking to elevate their career. We're looking for someone with hands-on experience in ISO 27001 implementation and auditing, and expertise in NIST to drive our Compliance … Team's service offerings forward. Work with a innovative, industry-leading Cyber Security team Play a key role in the development of internal and client security programs Contribute to significant projects that support clients' compliance and risk management goals If you're ready to make an impact in Cyber Security, this role is for you! Responsibilities … Ensure protection of information assets and technologies Participate in security audits like ISO27001, ISO27701, ISO20000, NIST-CSF, and IASME Governance Conduct and document internal audits for our clients Deliver security awareness training, including public speaking engagements Manage Third-Party Risk Management (TPRM) including vendor security reviews Assist the Sales Team with scoping engagements and delivering More ❯

Senior Cybersecurity Officer - Assurance - Information Security - Banking Excellent opportunity opens for an Cybersecurity Officer/Information Security Officer/Information Security Assurance Officer with Financial Services experience to join a London based bank's team, helping to ensure all information and cyber risks are identified, analysed, mitigated, and monitored, ensuring the smooth operation … of the Bank. Key Responsibilities: Collaborate with Information Security Engineering and Operations Teams to integrate security measures into business processes. Advise business units on security-related issues and initiatives. Oversee Second Line project activities to evaluate information security risks for new projects, products, systems, and other significant changes within the bank. Supervise the resolution … of risks and issues identified during audits or external assessments. Develop, review, and maintain information security governance documents, including policies, standards, frameworks, and procedures. Create and deliver Information/Cyber Security Awareness training, educating staff on best practices. Maintain comprehensive records and documentation of ISO activities. Provide regular updates and reports to the Information Security More ❯

Cyber/Info Security Strategist/Consultant - Architect - Leeds 674 60,000 plus 10% bonus and benefits + free parking Here we have a brand-new LEAD Information/Cyber Security vacancy, based in Leeds. Position: Lead Information/Cyber Security Officer Size of team: 15 FTE's Salary: 60k & added bonus 10% + other … benefits Key Stakeholders: Heads of Departments, Directors, CIO Main purpose of job As a key member of the Information/Cyber Security team, the Lead Information/Cyber Security Officer will be engaged with the business and provide consultative and specialist services to assist and improve its information security posture ensuring secure business processes … the key assets, processes and the current/emerging threat landscape, ensuring risks are identified and managed with appropriate best practice controls and measures. Key responsibilities Implementation of the Information/Cyber Security strategy and measurement of progress through performance metrics. Contribute to the development of policies, standards and guidelines and ensure these are embedded within the business. More ❯

The Head of Security Assurance is responsible for leading the Security Assurance Department primarily made up of Security Assurance coordinators. The Head of Security Assurance is responsible for the co-ordination of all security assurance activities to ensure that SecureCloud+ services and supporting internal Information Technology meets the highest security standards and requirements … of our customers. The role will support the delivery of a variety of innovative, accreditable, cost efficient and profitable solutions to comply with HMG's security classification system, and will also lead on the transformation of delivery of services to the MOD's secure by design methodology. The Head of Security Assurance will encompass two key areas of … Information Assurance and Information Security. Implementing measures focused on protection and safeguarding of the Company's critical information and relevant information systems, assuring the integrity, availability, authentication, confidentiality and non-repudiation. As well as the protection of information and information systems from illegitimate access, usage, revelation, alteration, disruption and destruction to achieve the objectives More ❯

model our company values: Weare Adventurous .We believe it'sthewaytodeliverextraordinaryresultsforourpatients. Weare DedicatedtoourMission .Youcan'tchangetheworldifyoudon'thavedetermination. Weare OneTeam .Weonlysucceedwhenweworktogether. Job Description We have an exciting new opportunity for an experienced Information and Cyber Security Manager to join our growing team. In this role you will operate and continuously improve the organisation's cyber and information security capabilities. … remote based in the UK, with routine travel to our Cambridge site. Additionally, we would also consider those than can commit to working at least 0.8 FTE. As the Information & Cyber Security Manager, you will be responsible for: Security Operations Center Lead (SOC Lead) for Bicycle ensuring that incidents are detected, analysed, responded to and reported effectively … to protect Bicycle Therapeutics daily activities. Threat intelligence and proactive defence to predict and proactively defend against cyberattacks Proactive maintenance and continuous improvement of the Cyber Security Management System to ensure effective protection and resilience is maintained Management and continuous improvement of the Information Security Management System that is in place. Proactive assessment of More ❯

Job Specification: Senior Information Assurance Consultant Job Title: Senior Information Assurance Consultant Location: Fully Remote (UK-based candidates preferred) Contract Type: Contract - 3 to 6 months Day Rate: £790 per day (inside IR35) via Umbrella company Clearance: Candidates must be eligible for SC (Security Clearance) or hold active SC clearance. Subject to client approval, candidates may be … permitted to start the role prior to clearance being fully completed. Role Overview: We are seeking a highly experienced Senior Information Assurance Consultant to lead the development and implementation of security management processes for a new, high-profile service. This role will be instrumental in establishing and integrating a comprehensive Information Security Management System … with multiple industry standards and frameworks. This is a fully remote position, offering flexibility while working on a critical and impactful programme. As the role involves working with sensitive information, eligibility for SC clearance or holding active SC clearance is essential. Key Responsibilities: Lead the design and implementation of security management processes for a new service offering. More ❯

Select how often (in days) to receive an alert: Create Alert Job ID: 42024 Location: Birmingham : 1 Trinity Park : Bi Position Category: Information Technology Position Type: Employee Regular Who are LRQA? LRQA stands for dedication to clients, market firsts, and deep expertise in risk management. We've grown to become a leading global assurance provider, bringing together outstanding expertise … countries, has more than 2,500 colleagues, generates £315m in revenue, and supports more than 60,000 clients across a diverse range of sectors and markets. Role Purpose: An Information Security Officer (ISO) is required to support LRQA's global operations, to develop, improve and maintain the organisation's Information Security capability. Working closely with the … Global CISO, the role will support the creation, development and implementation of the Information Security strategy and operations. The Information Security Officer will play a crucial role in servicing client requirements relating to information security (including Military, Defence and Critical National Infrastructure) whilst working with stakeholders across the globe to identify, manage and assess More ❯

Job Title: Cyber Security Manager Location: Flexible Hybrid Working - Around 2 days in the office at NNC Rate of Pay: £400 per day Umbrella OR £ PAYE £311.12 per day PAYE Working Hours: Full time - 37 hours per week Type: Temporary role - Inside IR35 - Up to 9 months Opus People Solutions are working with North Northamptonshire Council to recruit for … a Cyber Security Manager. Purpose of the job North Northamptonshire Council is going through a period of large-scale strategy and transformation to bring together our estates as well as create world leading services for our citizens. We have an ambition to create brilliant and modernised services; to use modern platforms and infrastructure; and to make the best out … of our investments in our technology and teams. This is a vital role in that journey, responsible for ensuring that we design and implement security right from the beginning of our journey, mitigating and managing technical risks to data and the organisation. This role is responsible to the Chief Information Officer of North Northants Council for: Providing expert More ❯

Job Title: Cyber Security Manager Location: Flexible Hybrid Working - Around 2 days in the office at NNC Rate of Pay: £400 per day Umbrella OR £ PAYE £311.12 per day PAYE Working Hours: Full time - 37 hours per week Type: Temporary role - Inside IR35 - Up to 9 months Opus People Solutions are working with North Northamptonshire Council to recruit for … a Cyber Security Manager. Purpose of the job North Northamptonshire Council is going through a period of large-scale strategy and transformation to bring together our estates as well as create world leading services for our citizens. We have an ambition to create brilliant and modernised services; to use modern platforms and infrastructure; and to make the best out … of our investments in our technology and teams. This is a vital role in that journey, responsible for ensuring that we design and implement security right from the beginning of our journey, mitigating and managing technical risks to data and the organisation. This role is responsible to the Chief Information Officer of North Northants Council for: Providing expert More ❯

Information Security Analyst – FMCG, North Lanarkshire 📍 Location: North Lanarkshire (Hybrid working) 💼 Salary: £55k+ Comprehensive Benefits Package 🕒 Type: Full-Time | Permanent Are you ready to take on a hands-on role protecting business-critical systems and data from evolving cyber threats? We’re seeking a skilled Information Security Analyst to join our client and lead the implementation … and operation of essential security controls that underpin their enterprise infrastructure. This is a fantastic opportunity to apply your deep technical knowledge in a complex and varied environment, supporting business-wide initiatives while developing and maturing our security posture. 🔧 Key Responsibilities We are seeking an experienced Information Security Analyst to safeguard client’s digital assets and … ensure alignment with their Information Security Management System (ISMS). You’ll lead the design, implementation, and monitoring of security controls, supporting the group of companies in compliance with global frameworks. You’ll manage Vendor Security Assurance, review solution designs, and conduct risk-based assessments to integrate security into commercial initiatives. Collaboration with wider More ❯

Information Security Analyst – FMCG, North Lanarkshire Location: North Lanarkshire (Hybrid working) Salary: £55k+ Comprehensive Benefits Package Type: Full-Time | Permanent Are you ready to take on a hands-on role protecting business-critical systems and data from evolving cyber threats? We’re seeking a skilled Information Security Analyst to join our client and lead the implementation … and operation of essential security controls that underpin their enterprise infrastructure. This is a fantastic opportunity to apply your deep technical knowledge in a complex and varied environment, supporting business-wide initiatives while developing and maturing our security posture. Key Responsibilities We are seeking an experienced Information Security Analyst to safeguard client’s digital assets and … ensure alignment with their Information Security Management System (ISMS). You’ll lead the design, implementation, and monitoring of security controls, supporting the group of companies in compliance with global frameworks. You’ll manage Vendor Security Assurance, review solution designs, and conduct risk-based assessments to integrate security into commercial initiatives. Collaboration with wider More ❯

value everybody for who they are and what they bring to the table, supporting one another as we continue to deliver for our customers. LI-KS1 Create & Maintain an information security management system (ISMS) capable of demonstrating compliance against internal security requirements and external commitments including certification and regulatory requirements. Provide subject matter expertise in the … to any new or existing programme of work. Prepare and support internal and/or external compliance audit activities. Manage remediation of any audit (internal & External) non-conformities. Ensure security policies (on a risk-based approach) are produced, signed off by relevant stakeholders, published, and communicated. Also, ensure that policies are managed throughout their lifecycle and updated through yearly … or ad-hoc reviews. Produce relevant security standards documentation in consultation with Technical teams. Lead on providing information to Three UK Customers (B2B) regarding Three UK's security practices. Support proactive and effective oversight of technology and security risk management frameworks, methodologies, processes, assurance, remediation, and reporting activities across the company. Assist in designing, building More ❯

Job Title: Information Security Compliance Analyst Location: Hertfordshire, UK (Hybrid) Contract: 12-Month Fixed Term (Salaried) Are you passionate about cybersecurity, compliance, and driving risk management strategies? We’re seeking an experienced Information Security Compliance Analyst to join a dynamic team supporting the development and maintenance of an EMEA-wide Information Security Management … System. This role plays a critical part in maintaining ISO 27001:2022 certification, ensuring compliance with legislation including NIS 2, GDPR, and the AI Act, and promoting a strong security culture across the business. Requirements: ISO 27001 Lead Implementer or Auditor certification (essential). Demonstrated experience in an Information Security or IT Governance role. Strong knowledge of … frameworks like ISO 27001/27002, NIST, GDPR, and related standards. Proven ability to manage audits, compliance reporting, and security training programs. Excellent stakeholder management, communication, and analytical skills. This is an exciting opportunity for someone who thrives in a fast-paced, regulated environment and wants to make a real impact in protecting systems, data, and operations across More ❯

Information Security & Business Continuity Coordinator Purpose: TVS are recruiting an Information Security & Business Continuity (ISBC) Coordinator to develop and maintain an already established information security management system certified to ISO27001 and a business continuity management system certified to ISO22301 across several UK sites. The successful candidate will have a working knowledge of … ISO standards, understand risk management and be able to communicate effectively at all levels. Main Duties & Responsibilities: Support the maintenance, development and continual improvement of ISBC Management System Coordinate and assist in internal audits to maintain ISO 27001 and ISO 22301 compliance Track and follow up on corrective and preventive actions resulting from audits or incidents Maintain documentation … records, and registers in accordance with ISO standards Assist in managing the risk assessment and treatment processes Monitor compliance with policies, procedures, and controls Support incident management and business continuity testing activities Organise and deliver awareness training and communication efforts related to compliance topics Contribute to and partake in external, regulatory and customer surveillance visits Help ensure that day More ❯

wellbeing at work for employees while protecting the planet. The IT Compliance and Risk Manager is responsible for developing, implementing and overseeing the organisation's IT compliance and risk management programmes, with a strong focus on maintaining the ISO 27001 and ISO 90001 certifications. The role ensures that IT security and operations align with global Pluxee policies & procedures … as well as regulatory, legal, GDPR and industry standards while mitigating risks and enhancing overall posture. Respond to client Information Security tenders and questionnaires, establish and maintain a central repository of documentation available for Sales and Planning Team access. 🚀 Your next challenge: Lead and manage the organisation's ISO certification and surveillance audit processes. Develop and maintain policies … GDPR, NIST etc Serve as a subject-matter expert for IT compliance questions Develop and enforce IT policies and procedures that support compliance and risk objectives. Respond to client Information Security tenders and questionnaires. Conduct training and awareness programmes. Accountabilities: Maintain ISO certification and promote the standards within the business. Quarterly reporting to SLT on compliance status, IT More ❯

June The opportunity: This is an opportunity to join the UK IT and Operations team, reporting to the Head of IT Service Delivery, where you will collaborate with the management team, bursting with ideas on how to move our UK business forward. You will be asked to drive change and improve on a set of already well-established IT … Controls and an IT Risk Management Framework to allow senior IT management, business functions and 3rd party service providers to demonstrate they are managing and safeguarding company assets, data, and operations. Your ideas will be heard. You will collaborate and influence IT management, the IT Governance and Controls Manager and other governance colleagues to gather data and … collate, aggregate and interpret information to provide the Boards of Directors, Business Executives and other interested parties with an assessment of the UK IT Risk and Controls landscape. You will also manage multiple demands for IT risk-based information within Zurich, ensuring all reporting commitments are met. You will work alongside local and regional Group IT functions, Service More ❯

and The Netherlands. Ensure compliance with data protection laws (eg GDPR, PECR) and internal privacy standards Provide expert advice and guidance on data protection impact assessments (DPIAs) and risk management Conduct regular audits to monitor compliance and address potential privacy issues Deliver training and awareness programs to employees on data protection best practices Collaborate with Legal, IT and HR … in emerging technologies (eg AI, IoT) In-depth knowledge of direct marketing laws as they relate to data privacy, such as the Privacy and Electronic Communications Regulations Strong project management skills Knowledge of data protection laws in Ireland and the Netherlands is helpful but not essential Knowledge of cybersecurity best practices and technologies Knowledge of data protection social norms … subject access requests and other requests from data subjects regarding their personal data Experience in delivering training and awareness programs to employees on data protection best practices Familiarity with information security management systems and data governance frameworks Experience in a legal, audit or risk management role Personal qualities (the way you think and act) An ability More ❯

The Security Data Loss Prevention Manager will oversee and manage the organization's data loss prevention strategies and technologies. This role is vital for safeguarding sensitive information from unauthorized access, loss, or misuse. It aims to protect and continuously enhance the confidentiality, integrity, and availability of information systems in alignment with the firm's business objectives, regulatory … are committed to promoting inclusion, diversity, and equity for all and are confident we can provide a career as individual and as exceptional as you. Responsibilities: Manage the Global Security Engineering team with oversight of the DLP Continuous Improvement Program. Work with business owners to align to technical standards. Update the Firm's Information Security Management … a Computer Science bachelor's degree or substantial equivalent experience. Certifications such as CISSP or Microsoft SC-400 are preferred. Proven experience in leading and managing a team of security engineers, including DLP analysts and SOC members. Experience in mentoring and developing team members to achieve firm security goals. Strong skills in strategic planning, project management, and More ❯

providing the right trading infrastructure, smart logistical solutions and the benefits of freeport status to our customers. An excellent opportunity has opened within CNS IT Operations for a IT Security Manager . Reporting to the Head of IT our ideal candidate will have hands on leadership background where you’ll shape the future of our security posture, influence … and ensure our systems, people and processes are secure, compliant and resilient. Location: Southampton Training Hours: 37.5 Hours How you will contribute: Lead and manage a small team of Information Security Analysts, providing direction, support and development. Own and maintain our ISO 27001 Information Security Management System (ISMS), ensuring compliance and continuous improvement. Drive the … implementation of Cyber Essentials Plus and other key security standards. Develop and update security policies, procedures and controls to protect our systems and data. Conduct regular risk assessments and manage mitigation plans to reduce vulnerabilities. Respond to security incidents, lead investigations and coordinate recovery efforts. Produce monthly reports on security performance, risks and incidents for senior More ❯

moves and changes Acting as the lead engineer for networks on new projects and moves and working in agreement with standards set out by the Technical Lead - network and security Main duties of the job Working as part of the wider networks team, the post-holder will provide comprehensive technical expertise and support to maintain and expand the Trust … a lead engineer on the build, configuration, documentation and integration of new IT network service components as part of the Trusts on going technology expansion alongside the capital programme Management of Installation of new structured cabling including WAN and Distribution connections alongside client side, BMS, IOT and WAP connections Providing quotations of networking components to project team Installation and … performance and address potential risks Operational response of escalated Network issues Monitoring of reporting and proactive response to network errors and performance issues Provide and maintain evidence to support information security reviews and best practice including the information governance toolkit and the ISO27001 Information Security Management System Communication Required to explain complex IT issues More ❯

moves and changes Acting as the lead engineer for networks on new projects and moves and working in agreement with standards set out by the Technical Lead - network and security Main duties of the job Working as part of the wider networks team, the post-holder will provide comprehensive technical expertise and support to maintain and expand the Trust … a lead engineer on the build, configuration, documentation and integration of new IT network service components as part of the Trusts on going technology expansion alongside the capital programme Management of Installation of new structured cabling including WAN and Distribution connections alongside client side, BMS, IOT and WAP connections Providing quotations of networking components to project team Installation and … performance and address potential risks Operational response of escalated Network issues Monitoring of reporting and proactive response to network errors and performance issues Provide and maintain evidence to support information security reviews and best practice including the information governance toolkit and the ISO27001 Information Security Management System Communication Required to explain complex IT issues More ❯