24 of 24 Information Security Jobs in Hertfordshire

Information Security Compliance Analyst 12 Month Fixed Term Contract Salary: Negotiable Hybrid - Hertfordshire As an Information Security Compliance Analyst, you will support the development and maintenance of the EMEA wide information security management system in accordance with Global EIT strategy, EMEA business requirements and relevant information security legislation, including NIS 2, AI … adherence by the EMEA EIT department to all relevant legislation and regulations, including but not limited to Health and Safety, Financial and Privacy laws. Main duties/responsibilities: Conduct information security, information system, and compliance-based risk assessments, evaluate responses and recommend risk treatment actions Develop and execute risk mitigation plans in conjunction with relevant internal and … external stakeholders/groups and to agreed timescales, following through to completion Support the creation, implementation and maintenance of information security policies and standards, in accordance with ISO 27001 other relevant frameworks and standards (NIST CSF, IEC 62443, CIS, GDPR etc.) Maintain the department’s information security procedures, including but not limited to information security More ❯

Information Security Compliance Analyst 12 Month Fixed Term Contract Salary: Negotiable Hybrid - Hertfordshire As an Information Security Compliance Analyst, you will support the development and maintenance of the EMEA wide information security management system in accordance with Global EIT strategy, EMEA business requirements and relevant information security legislation, including NIS 2, AI … adherence by the EMEA EIT department to all relevant legislation and regulations, including but not limited to Health and Safety, Financial and Privacy laws. Main duties/responsibilities: Conduct information security, information system, and compliance-based risk assessments, evaluate responses and recommend risk treatment actions Develop and execute risk mitigation plans in conjunction with relevant internal and … external stakeholders/groups and to agreed timescales, following through to completion Support the creation, implementation and maintenance of information security policies and standards, in accordance with ISO 27001 other relevant frameworks and standards (NIST CSF, IEC 62443, CIS, GDPR etc.) Maintain the department’s information security procedures, including but not limited to information security More ❯

practices and the ability to conduct technical risk assessments. Work with the Global Technology Infrastructure team to integrate system cybersecurity assessments into their processes to ensure consistent implementation of security controls. Work with the Cybersecurity Architecture team and apply reference architectures for security solutions design and implementation. Work with the Cyber Defense group and the Security Operations … Center to evaluate the effectiveness of the security controls and architectures in relationship to actual intrusions seen on the Deloitte network, reported threats at peer organizations, and overall cybersecurity threats in the internet ecosystem and you will notify leadership of potential or existing threats and assist in the development of risk mitigating strategies of these items. Monitor security blogs, articles, and reports and remain current on related laws, regulations, and industry standards to keep up to date on the latest security risks, threats, and technology trends and, where relevant, notify leadership to incorporate information into processes, procedures, and audit preparedness activities. Perform technology security risk assessments. Where appropriate, leverage security shared services (VRA More ❯

looking for a highly skilled and technically proficient Senior Cybersecurity Risk Analyst to join our team on an interim basis. This role is critical in identifying, assessing, and managing information security risks across the organization. The ideal candidate will have a strong technical background, the ability to translate threats into business risks, and experience working in fast-paced … environments. Key Responsibilities - Conduct in-depth security risk assessments across systems, applications, and infrastructure. - Identify and evaluate technical and operational risks, vulnerabilities, and control gaps. - Translate complex technical threats into clear, actionable business risks. - Maintain and update the Cybersecurity Risk Register. - Produce detailed risk assessment reports and present findings to stakeholders. - Collaborate with IT, SOC, and business units to … ensure risks are understood and mitigated. - Provide technical escalation support in the absence of a cybersecurity specialist, particularly in coordination with the Security Operations Centre (SOC). - Support compliance with relevant standards (e.g. ISO 27001, NIST, UK GDPR). - Review security aspects of tenders and conduct third-party/vendor risk assessments to ensure alignment with organisational security More ❯

Senior Cyber Risk Analyst to join a purpose-driven organisation on a part-time basis . In this role, you'll take the lead in strengthening the organisation's security posture by driving forward incident response, vulnerability management, and compliance initiatives. You'll be a key player in embedding security best practices across the business and ensuring alignment … with industry standards. Responsibilities Work 7-hour days, 3 days a week Act as a trusted advisor on information security matters, supporting projects, solution development, and change initiatives with expert guidance. Perform regular risk evaluations to uncover and address potential security gaps. Lead the end-to-end management of security incidents, ensuring swift and effective resolution. … Design and deliver engaging training sessions to raise awareness and promote a security-first mindset across the organisation. Monitor the evolving threat landscape and develop proactive strategies to mitigate risks. Coordinate internal and external audits, ensuring readiness and compliance with relevant standards. Oversee the performance and strategic direction of the Security Operations Centre (SOC). Contribute to the More ❯

Job Title: Information Security Compliance Analyst Location: Hertfordshire, UK (Hybrid) Contract: 12-Month Fixed Term (Salaried) Are you passionate about cybersecurity, compliance, and driving risk management strategies? We’re seeking an experienced Information Security Compliance Analyst to join a dynamic team supporting the development and maintenance of an EMEA-wide Information Security Management System. … This role plays a critical part in maintaining ISO 27001:2022 certification, ensuring compliance with legislation including NIS 2, GDPR, and the AI Act, and promoting a strong security culture across the business. Requirements: ISO 27001 Lead Implementer or Auditor certification (essential). Demonstrated experience in an Information Security or IT Governance role. Strong knowledge of frameworks … like ISO 27001/27002, NIST, GDPR, and related standards. Proven ability to manage audits, compliance reporting, and security training programs. Excellent stakeholder management, communication, and analytical skills. This is an exciting opportunity for someone who thrives in a fast-paced, regulated environment and wants to make a real impact in protecting systems, data, and operations across multiple regions. More ❯

changes are carefully evaluated, approved, and properly communicated to affected stakeholders. • Ensure that all incidents, changes, and requests are tracked and properly documented for reporting purposes. User Management and Security: Initially required to establish a working Security group for the business and subsequently to own the implementation and processes within ITSM. Oversee user account management processes for systems … like Microsoft O365, ensuring proper account provisioning, modification, and deactivation. Ensure that security protocols such as Zero Trust are enforced and that sensitive information is handled in accordance with company policies and compliance requirements. Facilitate regular reviews of access controls, permissions, and security posture. System Maintenance and Performance Optimisation: • Manage the scheduling and execution of preventive maintenance … management certification. A minimum of 5+ years of experience in IT support or service operations management. Good understanding of IT infrastructure, systems, and applications, as well as experience with security frameworks (e.g., Zero Trust). Strong understanding of cybersecurity principles (e.g., Cyber Essentials, CompTIA Security+). Ability to manage complex technical issues while maintaining a focus on customer service More ❯

that matter, achieve, and sustain operational excellence. You will be at the heart of fulfilling our mission by working closely with our Global Operations teams, Business operations teams, and Security operations teams to develop plan and execute IT Continuity Services across multiple Data Centers and geographic regions. The role requires advanced skills that enable the individual to deliver a … activities Participate in a 24x7x365 on-call rotation Respond to and manage service issues and problems Responsible for awareness and compliance to policy and guidelines Report any breaches in information security or policies Identify repeatable operational tasks and issues; create automated resolutions to these situations to reduce operational overhead within the virtualization function as well as other enabling More ❯

Security Consultant (Security Operations) Location: Hybrid; with occasional travel expected to client site or Logiq’s offices in Bristol, Chippenham or Exeter. Salary: Negotiable, plus car allowance, plus up to 10% performance bonus*, plus excellent benefits package. Logiq is a fast-growing Technology Company, providing cutting-edge solutions to high-risk clients across Private and Public Sector. Due … to rapid growth in our Security Capability, we are looking for experienced Security Consultants to join our team. What is Cyber Risk Management? Cyber risk management ensures that organisations can anticipate, withstand, and recover from cyber incidents, aligning security efforts with business objectives, regulatory requirements, and industry best practices. It involves applying risk-based decision-making to … ensure security measures are proportionate to the threats faced, balancing protection, operational effectiveness, and compliance with the organisations need and context. As leading players in MOD’s cyber security transformation to Secure by Design (SbD), we are looking for team members and leaders who share our vision that cyber risk management is driven by business requirements and a More ❯

Security Consultant (Security Operations) Location: Hybrid; with occasional travel expected to client site or Logiq’s offices in Bristol, Chippenham or Exeter. Salary: Negotiable, plus car allowance, plus up to 10% performance bonus*, plus excellent benefits package. Logiq is a fast-growing Technology Company, providing cutting-edge solutions to high-risk clients across Private and Public Sector. Due … to rapid growth in our Security Capability, we are looking for experienced Security Consultants to join our team. What is Cyber Risk Management? Cyber risk management ensures that organisations can anticipate, withstand, and recover from cyber incidents, aligning security efforts with business objectives, regulatory requirements, and industry best practices. It involves applying risk-based decision-making to … ensure security measures are proportionate to the threats faced, balancing protection, operational effectiveness, and compliance with the organisations need and context. As leading players in MOD’s cyber security transformation to Secure by Design (SbD), we are looking for team members and leaders who share our vision that cyber risk management is driven by business requirements and a More ❯

Senior Control Assurance Assessor | Remote You'll play a key role in evaluating the design and effectiveness of security controls across cloud and on-prem environments, helping to protect critical assets and ensure compliance. What You'll Do: Conduct security control assessments and develop … test plans Identify control gaps and recommend improvements Leverage data-driven testing and automation tools Collaborate with stakeholders and deliver clear, actionable insights What You Bring: 8+ years in InfoSec/IT, with 3+ years in control testing or IT audit Strong knowledge of frameworks (NIST, ISO 27001, CIS, COBIT) Certifications: CISA, CISSP, CISM, or ISO 27001 Lead Auditor Excellent … analytical, communication, and stakeholder engagement skills Nice to Have: Experience with Sailpoint, Rapid7, Wiz.io, RSA Archer, ServiceNow Familiarity with cloud security, automation, and agile methodologies Big 4 background and data analytics proficiency Be part of a team that values innovation, collaboration, and continuous improvement. Please click here to find out more about our Key Information Documents. Please note More ❯

professional development of team members Maintain delivery accountability for key projects with clear milestones and risk mitigation Encourage a culture of ownership, learning and continuous improvement across the team Security, Governance & Quality Embed secure development practices into all stages of the SDLC Maintain oversight of development environments, deployment pipelines and access controls Collaborate with the Information Security Manager to ensure compliance with ISO27001 objectives Support GDPR, data privacy and other relevant security policies in solution design Lead code reviews, architectural assessments, and system performance analysis Innovation, Collaboration & External Partnerships Drive innovation across the engineering function, identifying new tools, frameworks and technologies to improve delivery and experience Maintain strong relationships with key business stakeholders to understand … day relationship with our outsourced development partner (Techwave), ensuring aligned priorities, code quality and delivery timelines Coordinate third-party development requirements, ensuring consistency with eurochange’s architecture, standards and security expectations Desired Experience and Skills Degree or equivalent in Computer Science, Engineering, or related discipline Extensive experience leading software development teams and delivering digital platforms Strong hands-on experience More ❯

professional development of team members Maintain delivery accountability for key projects with clear milestones and risk mitigation Encourage a culture of ownership, learning and continuous improvement across the team Security, Governance & Quality Embed secure development practices into all stages of the SDLC Maintain oversight of development environments, deployment pipelines and access controls Collaborate with the Information Security Manager to ensure compliance with ISO27001 objectives Support GDPR, data privacy and other relevant security policies in solution design Lead code reviews, architectural assessments, and system performance analysis Innovation, Collaboration & External Partnerships Drive innovation across the engineering function, identifying new tools, frameworks and technologies to improve delivery and experience Maintain strong relationships with key business stakeholders to understand … day relationship with our outsourced development partner (Techwave), ensuring aligned priorities, code quality and delivery timelines Coordinate third-party development requirements, ensuring consistency with eurochange's architecture, standards and security expectations Desired Experience and Skills Degree or equivalent in Computer Science, Engineering, or related discipline Extensive experience leading software development teams and delivering digital platforms Strong hands-on experience More ❯

Chief Information Security Officer (CISO) Location: Stevenage Salary: Up to £100,000 (depending on experience), 35% Bonus, £510 p/m car allowance, pension We have a fantastic opportunity for aChief Information Security Officer (CISO), where you will play apivotal role in planning, leading, and delivering cyber security strategies aligned with the company's mission … and vision. You willbe the primary Cyber and Information Security/Assurance advisor to the Group Head of Security/Company Directors. About the CISO Opportunity As the CISO, you will be responsible for the protection and compliance of all information systems and data, ensuring adherence to national and international security regulations. You will engage … closely with key stakeholders, including the MOD and UK Intelligence Communities, to uphold our corporate capability in the face of evolving security threats. What We're Looking For Extensive experience in Secure by Design, system accreditation, and government encryption. Strong knowledge of ISO 27001, Cyber Essentials Plus, and NIST/CMMC frameworks. Experience of defining and implementing strategies Executive More ❯

Junior SOC Analyst – Infrastructure - Hull - £35,000 One of the UK’s leading infrastructure clients now requires a Junior SOC Analyst to help drive robust cyber and infrastructure security across their organisation. The Information Security Systems Engineer will work across multiple business functions, managing and enhancing security systems, responding to threats, and supporting major IT Projects. … Deploying and maintaining core security tools and controls Monitoring systems and responding to incidents and vulnerabilities Supporting audits, risk assessments, and compliance efforts Managing firewalls, antivirus, encryption, and cloud security platforms Collaborating with teams across IT, operations, and third-party partners The Information Security Systems Engineer will have the following skills/responsibilities: 5+ years in … IT/security roles A recognised security qualification (CISMP, GSEC, or Level 4+ apprenticeship) Strong IT background and hands-on experience with security tools Excellent communication and self-management skills Flexibility to travel to sites across the UK as required Familiarity with ISMS, NIS, GDPR, and ITIL frameworks Experience in engineering, operations, or finance-related environments This More ❯

Data Loss Prevention/DLP/Insider Threat Analyst required by Harrington Starr’s global client to play a key role in their Cyber Security Engineering team. The role will play a key role in protecting the organisation from exposure to data loss/theft. Key accountabilities will include: Developing and administering DLP policies Perform analysis and triage of … DLP violations Play an integral role in any cyber incidents with a DLP focus Working with the Security Operations and Engineering teams on DLP strategy Provide reporting on DLP incidents Developing Firmwide strategy for Data Loss Prevention Regular usage of DLP tools such as Microsoft Purview In order to be suitable, you will need: Experience in a dedicated DLP … role or a cyber security role with a heavy DLP focus. Hands-on experience of DLP policy, incident management, data protection and reporting Experience of Microsoft Purview, M365, and Proofpoint technologies Practical experience End-User Behaviour Analytics (EUBA) and Insider Risk Management A good overall understanding of cyber and information security Certifications such as Microsoft SC More ❯

Job summary As a Security Infrastructure Engineer at Elysium Healthcare, you will play a critical role in embedding infrastructure-level security controls across the organization. You will work closely with the IT Infrastructure and Cloud teams to ensure secure configuration, patching, and hardening of platforms including Windows, Linux, Active Directory, virtualization, and cloud environments. Main duties of the … job The Security Infrastructure Engineer will be responsible for developing and maintaining secure configuration baselines, enforcing patch compliance, and embedding preventative controls into day-to-day operations. You will lead the organization's vulnerability assessment process, including the use of scanning tools, interpretation of technical findings, and coordination of remediation activities. Additionally, you will provide expert input on design … proposals, technical change requests, and infrastructure uplift programmes to ensure they meet internal security policies and align with frameworks such as NIST CSF and the NHS DSPT. About us Elysium Healthcare is an established, stable, and agile company with over 8,000 employees. They have a unique approach to the delivery of care, with a network of over More ❯

Select how often (in days) to receive an alert: SAP FICO & S/4 HANA Consultant Location: UK - Hatfield Job-ID: 214160 Contract type: Fixed Term Contract Business Unit: Information Technology Life on the team An excellent fixed-term contract opportunity has arisen for a SAP FICO & S/4 Hana Consultant to become part of Computacenter, a large … practice and service offerings to ensure consistency of service Makes decisions which impact on the success of assigned projects i.e. results, deadlines and budget Act in accordance with Computacenter Information Security Policies and report any potential or actual Security events or other Security risks to the organisation What you'll need Strong understanding of finance business More ❯

practice and service offerings to ensure consistency of service Makes decisions which impact on the success of assigned projects i.e. results, deadlines and budget Act in accordance with Computacenter Information Security Policies and report any potential or actual Security events or other Security risks to the organisation What youll need Strong understanding of finance business processes More ❯

environments Provides specialist guidance and advice to less experienced colleagues Acts as a role model for colleagues with regards to technical and behavioural competencies. Act in accordance with Computacenter Information Security Policies and report any potential or actual Security events or other Security risks to the organisation What you'll bring Strong understanding of ServiceNow best … a ServiceNow developer or consultant on medium to large scale ServiceNow Platforms with excellent communication skills Extensive experience in IT Service Management (ITSM) Experience with Field Service Management (FSM), Security incident Module (SIM) and HR Service Management (HRSD) is desirable Experience of working in a SaaS environment Ability to effectively communicate with all levels of the organization Be highly … organized, meticulous, structured and methodical in delivery Ability to work using Agile methodologies Take full ownership of technical and business issues Additional information Location: Hatfield, 2/3 days per week hybrid working Hours: Full-time Role Type: Permanent About us With over 20,000 employees across the globe, we work at the heart of digitisation, advising organisations on More ❯

ensure a consistent approach and adherence to design coding and standards. Act as a role model for colleagues with regards to technical and behavioural competencies. Act in accordance with Information Security Policies and report any potential or actual security events or other security risks to the organisation. The Requirements Strong understanding of ServiceNow best practices. Experience … Europe Ltd are Equal Opportunities Employers. By applying for this role your details will be submitted to Modis International Ltd and/or Modis Europe Ltd. Our Candidate Privacy Information Statement which explains how we will use your information is available on the Modis website. More ❯

a consistent approach and adherence to design coding and standards. Act as a role model for colleagues with regards to technical and behavioural competencies. Act in accordance with Computacenter Information Security Policies and report any potential or actual security events or other security risks to the organisation. What you'll need Strong understanding of ServiceNow best … environment. Ability to effectively communicate with all levels of the organisation. Be highly organised, meticulous, structured, and methodical in delivery. Take full ownership of technical and business issues. Additional information Country: UK Hours: 37.5 Role Type: Permanent About us With over 20,000 employees across the globe, we work at the heart of digitisation, advising organisations on IT strategy More ❯

to the requester's specification. Adhere to the Health & Safety processes and aspects of the relevant equipment. Ensure all documents are processed in line with our client's document security procedures. Liaise with our client's registry departments to obtain authorisation and sign-off for the documents produced. Liaise with our client's registry regarding relevant document security. Participate … in any training or career development schemes or company meetings as required by management. Act as interface to various third-party suppliers. Actively promote information security best practice within areas of responsibility. Ensure consumables are readily available and match specification in order to meet the production schedules. Perform daily checks and ensure adequate maintenance of all equipment and More ❯

dynamic team environments. Proactively identify and address your own development needs. Mentor less experienced colleagues, promoting consistent standards. Champion technical and behavioural excellence within the team. Uphold Computacenter's Information Security Policies. What You Bring: Deep understanding of ServiceNow best practices. Minimum 3 years' experience as a ServiceNow developer or admin on significant platforms, with excellent communication skills. More ❯