9 of 9 Information Security Jobs in Somerset

About The Role We are looking to appoint a highly experienced cyber and information security specialist to join our growing business. Mayden has a flat management structure and a coaching culture, with team members working together and supporting one another to make things happen. This means that job titles can look a little different, but also means our … and evolving expectations. We use the Scrum framework to drive product delivery, quality and success, so an appreciation of agile working is beneficial. Key responsibilities: Develop and implement our security strategy: Design, implement and maintain a comprehensive security strategy, roadmap, and policies to support business objectives, future growth ambitions and product lines. Compliance: Ensure the company's security posture meets the requirements of the NHS Data Security and Protection Toolkit (DSPT), Cyber Essentials Plus, ISO27001:2022 and other relevant frameworks. Risk management: Lead the information security risk management program, including identification, assessment, mitigation, and monitoring of information security risks across all systems, applications, and operations. Policy and procedure development: Support and oversee More ❯

Job Description: The opportunity: Leonardo UK is seeking a proven and experienced Principal Consultant to join the Cyber & Security Solutions Division team. This role is focused on the delivery of one of the company's core products to an existing customer. This role will lead a team that will oversee, co-ordinate and deliver all facets of cyber and … information security related to the delivery across an engineering lifecycle - from requirements all the way through to in-service support and maintenance. This is an exciting opportunity at the very beginning of a significant programme, during which you will ensure that the product and associated deliverables are as secure as reasonably practicable, and in accordance with customer's … and working on site at one of our Leonardo offices and closely with our customers. Talk to us to find out more. What you'll do as a Principal Security Consultant: Leading a team to meet all aspects of the cyber and information security delivery across an engineering lifecycle. Interpreting customer requirements into actionable security management More ❯

On behalf of The Department for Transport, (Vehicle Cerification Agency), we are looking for a Cyber Security Lead Auditor (Inside IR35) for a 24 Month contract based REMOTELY with visits to Bristol and/or Nuneaton. Are you ready to lead the charge in securing the next generation of connected vehicles? We're seeking a technically exceptional and strategically … minded Cyber Security Lead Auditor to join our dynamic team within the UK's Type Approval Authority. This is your opportunity to play a pivotal role in ensuring vehicles meet the rigorous cyber security and software updating standards required for global compliance. About the Role As our Cyber Security Lead Auditor, you'll be at the forefront … of assessing and auditing vehicle manufacturers' cyber security and software update management systems in line with UNECE R155 and R156 regulations. You'll lead audit teams, evaluate complex technical claims, and ensure manufacturers are equipped to defend against evolving cyber threats. This role blends deep technical expertise with leadership and strategic oversight. You'll work closely with manufacturers and More ❯

orientation. You will be managing Kingfisher's IT infrastructure, ensuring performance through expertise in systems, virtualization, scripting, networking, storage, and security. The Compliance Lead will support the Senior IT & Security Compliance Manager in ensuring Kingfishers technology estate is compliant with all applicable laws and regulations and this compliance can be clearly demonstrated to regulators and auditors. Working in the … Information Security & Risk team you will maintain, develop and implement a compliance program and the associated processes and evidential documentation. Ensuring Group/Local Banner technology teams and suppliers understand and maintain operational compliance to regulations. Overview We're Kingfisher, A team made up of over 76,000 passionate people who bring Kingfisher - and all our other brands … orientation. You will be managing Kingfisher's IT infrastructure, ensuring performance through expertise in systems, virtualization, scripting, networking, storage, and security. The Compliance Lead will support the Senior IT & Security Compliance Manager in ensuring Kingfishers technology estate is compliant with all applicable laws and regulations and this compliance can be clearly demonstrated to regulators and auditors. Working in the More ❯

you'll: Build and implement a robust TPRM framework across the business. Develop and optimise tools, processes, and reporting for monitoring vendor and supplier risk. Review vendor contracts and security schedules, ensuring compliance with regulatory and internal standards. Conduct risk assessments on third-party suppliers, including cloud, software licensing, and professional service vendors. Collaborate with procurement, legal, compliance, and … in third-party risk, supplier/vendor management, procurement, or category management. Proven experience working in multinational or global environments with diverse stakeholders. Confidence in reviewing vendor contracts, including security schedules. Strong knowledge of ISO27001:2022 and information security standards. Experience with TPRM tools/platforms; exposure to software licensing, cloud services, or professional services vendors is More ❯

execute our cybersecurity strategy, working across IT, digital, and regional teams to embed a strong cyber culture and robust defenses. Key responsibilities include: Strategic Leadership: Own and evolve the security roadmap, including tooling optimisation and risk management. Secure Design & Architecture: Provide expert guidance across IT projects and infrastructure. Operational Oversight: Define and deploy control baselines, templates, and standards. Tooling … Effectiveness: Manage and monitor security operations tools such as Defender, Sentinel, Tenable, and CASB. Incident Response: Lead triage, coordinate crisis responses, and oversee post-incident reviews. Documentation & Governance: Maintain hardening guides, architecture diagrams, and lead working groups. Cross-Regional Alignment: Foster collaboration and consistency across global cybersecurity efforts. What You Bring Degree or equivalent experience in Information Security. … Certifications such as Security+, CEH, CySA+, or Cloud Security Engineer. Extensive experience in cybersecurity, especially incident response and technical operations. Strong understanding of AWS and Azure cloud platforms. Familiarity with frameworks like NIST, ISO, COBIT, and OWASP. Proven success in leading and delivering security projects. Experience with PowerShell and automation. Consulting experience across IT and digital teams. Flexibility More ❯

is required A Software Engineer capable of design, development and proving of efficient Software. Bonus Experience/Knowledge: Experience using Qt GUI framework Integration and use of GIS tools Information security experience included methods of locking down operating systems and deployment in a Windows and Linux environment. Knowledge of DDS Middleware Integration of external video streams Automated Testing More ❯

a new discipline. We are interested in any of the following skills, but they are not essential for you to apply: Experience or knowledge of clinical systems governance, healthcare information governance, or digital clinical safety standards. Skills in managing projects, including planning, execution, and monitoring. Interest and/or experience in research and development, particularly around AI or cybersecurity. … technical industries. We have evolved from a company established and focussed on Systems Thinking principles into an Engineering company providing solutions and services across three key capabilities: Systems, Cyber & InfoSec and Technology. What makes us stand out is how we engage in the crossover areas between these disciplines, combining our strengths to provide a truly bespoke, market leading approach. Our … service offerings. Please note that due to the nature of our projects we can only accept Sole UK National candidates who will need to be eligible to obtain UK Security Clearance. By applying to this position, you are confirming that you consent to the retention of your personal data. Your data is held securely on our own premises and More ❯

technical industries. We have evolved from a company established and focussed on Systems Thinking principles into an Engineering company providing solutions and services across three key capabilities: Systems, Cyber & InfoSec and Technology. What makes us stand out is how we engage in the crossover areas between these disciplines, combining our strengths to provide a truly bespoke, market leading approach. Our … service offerings. Please note that due to the nature of our projects we can only accept Sole UK National candidates who will need to be eligible to obtain UK Security Clearance. By applying to this position, you are confirming that you consent to the retention of your personal data. Your data is held securely on our own premises and More ❯