1 to 25 of 46 Information Security Jobs in the Thames Valley

Job summary We are seeking a highly skilled and motivated Information Security Analyst to join our Digital Data & Technology (DDaT) team. This is a pivotal role supporting the Chief Information Security Officer (CISO) in delivering cyber security services across the Trust and wider health and care system. The role will support the CISO in delivering … digital safety, security and overall improvement, adhering to the Target Operating Model. The Information Security Analyst will manage the delivery of all cyber security related services. This will include cyber risk management, Data Security Protection Toolkit (DSPT) compliance against cyber relatedassertions, policy and procedure lifecycle management, and ensuring theTrust's information compliance adheres to … the Cyber Assurance Framework (CAF) and ISO27001. Main duties of the job Provide expert guidance on the selection, design, justification,implementation and operation of Cyber Security strategies, technologies,processes, procedures and standards. Support the development of controlsand management approaches to maintain the safety, confidentiality,integrity, availability and security of the Trust's digital infrastructure andsystems; including the protection More ❯

Information Security Officer A fantastic opportunity for an experienced Information Security Officer to join a leading SaaS organisation providing enterprise-scale solutions. This is a hands-on, strategic role where you’ll take ownership of security strategy, operations, and compliance across multi-cloud environments; ensuring systems remain robust, scalable, and compliant with key standards such … PCI/DSS, and GDPR. Location: Milton Keynes - hybrid - at least 2 - 3 times a week in office Salary: £50,000 – £60,000 per annum + benefits Requirements for Information Security Officer Strong experience in information security within a SaaS or cloud-based software environment Proven success managing ISO27001 certification, audit cycles, and compliance programmes Excellent … knowledge of GDPR and experience embedding data protection into software systems Hands-on experience managing cloud security within Azure and/or AWS environments Knowledge of PCI/DSS standards for payment systems Understanding of application security, secure development lifecycles, and DevSecOps practices Strong communicator, able to translate complex security concepts for technical and non-technical stakeholders More ❯

Information Security Operations Manager - Milton KeynesAbout MIBAt MIB our people are passionate about making roads safer by getting uninsured and hit-and-run drivers off our roads. Working in partnership with the Police, Insurers and Government our collective aim is to make it a thing of the past but, until that’s accomplished, we’re here to compensate … and hit-and-run drivers and paid over £400 million in compensation to support victims rebuild their lives.About the roleAre you ready to take the helm of a dynamic security team and shape the future of our cyber resilience? We’re looking for a strategic and hands-on Security Operations Manager to fortify our defences, drive compliance, and … lead proactive risk mitigation across the organisation. You’ll oversee Security Operations and Engineering, manage incident response, and collaborate with IT, legal, and compliance teams to embed a culture of security awareness. If you're passionate about protecting assets and reputation while leading with purpose—this is your opportunity to make a lasting impact.Key responsibilities Security Operations More ❯

Information Security Officer - Lead Enterprise Security & Risk Management Location: Hybrid (UK-based) | Salary: Competitive + Bonus + Flexible Benefits My client, a forward-thinking technology organisation, is seeking an experienced Information Security Officer (ISO) to lead their enterprise-wide information security and IT risk management programme. This is a fantastic opportunity for a … security professional who wants to take ownership of strategy, governance, and delivery across a growing and innovative business. In this hands-on role, you'll design and implement a comprehensive information security framework , ensuring compliance with industry standards and supporting business objectives. You'll collaborate with senior stakeholders, oversee incident response, and drive continuous improvement in policies … controls, and awareness initiatives. Key Responsibilities Develop and execute an information security strategy and roadmap aligned with business goals. Lead on governance, compliance, and audit processes across the organisation. Manage incident response, penetration testing, and risk assessments. Support secure software development and supplier risk management. Promote security awareness and report regularly to senior leadership on risk posture. More ❯

Information Security Manager - Rail Sector, URGENT HIRE Lawrence Harvey is delighted to be exclusively supporting a leading rail client once again to support with the growth of their exceptional technology team for their Information Security Manager. The Role: Leading management of information security which includes ISO27001, PCI-DSS, and vulnerability management. Working alongside the … DPO and Head of Technology to support on areas of data protection. Lead collaboration with key partners for train onboard systems cyber security assessments and risk management Establish and maintain appropriate policies, procedures, and practices in relations to cyber, data and … governance practices Manage the information security incident response program Manage implementation and deployment of Information Security Management System (ISMS). Line management of the internal InfoSec specialists. Requirements Extensive experience working with PCI-DSS and ISO27001 Strong understanding on security tools such as IDS/IPS. Demonstrable experience of leading Information Security, Governance More ❯

Role: Information Security Officer Location: Milton Keynes Salary: £50k - £60k Work Pattern: Hybrid Summary: A new position has opened at an exciting software company for an Information Security Officer to lead the organisation's security strategy, operations, and compliance efforts. This hands-on role blends strategic security architecture with day-to-day operational management … and regulatory compliance oversight. The ideal candidate will establish and maintain security standards across the product portfolio, oversee secure system environments, and act as the primary contact for ISO 27001, PCI DSS, and GDPR compliance. Additionally, this role will support our commercial teams by contributing to tender responses and ensuring client security assurance. The Company: They are a … experience and a broad global client base, they develop solutions that simplify complexity and drive smarter, more efficient ways of working. Core Responsibilities: Strategic (30%) Define and maintain robust security architecture and standards across multi-cloud SaaS platforms. Integrate security best practices into product design, development, and roadmap planning. Conduct threat modelling and risk assessments for new features More ❯

Job summary We are seeking an experienced and visionary Head of Security to lead the Trust's cyber, information security, resilience, and governance strategy. This senior leadership role sits within the Digital Data & Technology (DDaT) team and plays a critical part in safeguarding patient and organisational data, enabling secure digital transformation, and aligning local strategies with ICS … and national initiatives. The postholder will act as the Deputy Senior Information Risk Owner (SIRO) and provide strategic and operational leadership across architecture, infrastructure, live services, cyber security, and information governance. Main duties of the job Develop and implement a comprehensive cyber and information security strategy across the Trust and ICS. Lead risk management, resilience … cyber threats are integrated into resilience planning. Manage budgets, business cases, and funding proposals for cyber initiatives. Promote a culture of continuous improvement, training, and professional development across the security function. Deputise for the Associate Director of Digital Operations when required. About us Diversity makes us interesting... Inclusion is what will make us outstanding. Inequality exists and the journey More ❯

Permanent Based in Milton Keynes £50,000 pa - £60,000 pa Information Security Officer Hybrid Our client are a leading provider of software solutions for student accommodation, event management, catering, and residential services, they help institutions streamline operations, elevate customer experiences, and unlock their full potential.With over 25 years of experience and trusted by more than 350 institutions … and your impact is real. If you're ready to help shape the future of operational technology in education and events, we'd love to meet you. An experienced Information Security Officer to lead security strategy, operations, and compliance. This is a hands-on role combining strategic security architecture with operational security management and regulatory … compliance oversight. The successful candidate will define security standards across our product portfolio, manage security environments, and serve as our central point for ISO27001, PCI/DSS, and GDPR compliance while supporting commercial teams with tender responses and client security assurance. Core Responsibilities: Strategic (30%) Define technical security architecture and standards across multi-cloud SaaS platforms More ❯

Permanent Based in Milton Keynes £50,000 pa - £60,000 pa Information Security Officer Hybrid Our client are a leading provider of software solutions for student accommodation, event management, catering, and residential services, they help institutions streamline operations, elevate customer experiences, and unlock their full potential. With over 25 years of experience and trusted by more than … and your impact is real. If you're ready to help shape the future of operational technology in education and events, we'd love to meet you. An experienced Information Security Officer to lead security strategy, operations, and compliance. This is a hands-on role combining strategic security architecture with operational security management and regulatory … compliance oversight. The successful candidate will define security standards across our product portfolio, manage security environments, and serve as our central point for ISO27001, PCI/DSS, and GDPR compliance while supporting commercial teams with tender responses and client security assurance. Core Responsibilities: Strategic (30%) Define technical security architecture and standards across multi-cloud SaaS platforms More ❯

About the role Here at DS Smith, a multi-national sustainable packaging provider, we are looking for a Security Assurance Analyst to join our growing Security Team. The mission of the I&T Digital Security organisation is to deliver an efficient and effective service that has scalability and flexibility to support the demands of a FTSE … business.Supporting Head of Information Security Architecture and Assurance as well as working closely with key stakeholders including Head of Governance, Risk and Compliance, Digital Security, IT and business teams you will focus on core areas such as risk management and security due-diligence reviews ensuring compliance with legal, regulatory and relevant security policies and best … practices.In this position you will provide assurance and guidance that the security features, practices, procedures, and architecture of an information system accurately mediates and enforces the security policies.Visibility and the ability to build close working relationships with Information & Technology (I&T) team members, business stakeholders as well as external partners is essential. This will require some More ❯

just to name a few! Job Description Your Career As a Senior Consultant in Unit 42 you will have the opportunity to work across a number of proactive cyber security domains including Cloud Security, Security Operations, Cyber Risk Management and Artificial Intelligence in cyber security. We are seeking an individual who is passionate about cyber security … consulting outcomes for clients, as they work to address the challenges associated with today’s cyber threat landscape. Your Impact SOC Advisory: 4+ years of consulting experience in SOC, security engineering, SIEM administration, and incident management and demonstrated success with serving large, multinational organisations in designing and implementing an organisation’s security operations program, organisational structures, and capabilities … Possess a deep technical knowledge in Security Incident and Event Management (SIEM) platforms, Security Orchestration and Response (SOAR) technologies, Endpoint Protection and Response/Next Gen Protection and Response (EDR/XDR) tools, Next GenFirewalls, Threat Intelligence and Hunting platforms Defensive Security Skills (desired) : Experience in security operations design, engineering and/or analysis and investigations More ❯

Job Description We are seeking a Senior Security GRC Manager to join our Group Technology team in Milton Keynes . You will play a pivotal role in shaping and advancing our security governance, risk, and compliance practices across the Group Technology function. You will have a hands-on role to monitor, report on and lead initiatives to strengthen … our security posture, ensuring regulatory alignment. This is an exciting opportunity to make a tangible impact, working with a diverse range of stakeholders and supporting the strategic direction of the business. Key Responsibilities: Governance & Compliance : Lead the development, implementation, and continuous improvement of security and technology control frameworks; maintain and update security policies and standards; support governance … forums, including Information Security, Business Continuity, and Audit & Risk Committees. Risk Management : Conduct operational risk assessments and provide expert consultancy on security risks, incidents, and investigations; identify and address gaps in controls, providing clear reporting and recommendations. Stakeholder Engagement: Collaborate with internal teams and external partners to manage security and technology risks; support external and internal More ❯

IT Security Manager | Zero Trust, Azure Security, ISO27001 | Global Payments Company £70–80k base + 10% bonus Hybrid in London Join a growing InfoSec team at a pivotal time for a global financial institution. This is an IT Security Manager role with governance oversight, guiding InfoSec operations, mentoring analysts, and translating security frameworks into practical, actionable … steps. You’ll influence policy, architecture, and data governance, all while supporting the secure rollout of new banking operations. What you’ll bring: 5+ years’ experience in InfoSec, IT Security, or operational security in a regulated environment Certifications: CISSP or SSCP (or equivalent) required Hands-on knowledge of ISO27001 and supporting an ISMS (audit experience useful but not … just theory Experience mentoring staff or junior analysts (no direct line management required) Adaptability to a medium-sized, SME environment What you’ll be doing: Security oversight: Guide InfoSec operations with practical, hands-on input on incidents and risk mitigation Data governance: Drive data protection, labelling, and retention projects using Microsoft Purview Third-party risk: Support supplier security More ❯

Logiq is a fast‐growing technology company delivering secure, modern platforms for high‐risk, mission‐critical environments across the private sector and UK Central Government. We are expanding our Security Architecture capability and seeking experienced Principal Security Architects who can shape, assure, and enable delivery of secure, cloud‐native services at scale. You will be comfortable working across … to live, serving as a trusted “customer friend”. You’ll partner with engineering, product, and senior leadership to embed Secure by Design, de‐risk complex change, and simplify security for decision‐makers. A strong grasp of how contemporary cloud‐native services (containers, Kubernetes, microservices/serverless, identity, secrets, and zero trust patterns) are designed and implemented is essential … to success in this role. Our consultants lead parallel workstreams spanning security engineering and assurance, maintain day‐to‐day client engagement, and contribute to presales and bid activity when needed. What you’ll do Secure product & platform delivery (cloud‐native focus) • Provide hands‐on cyber consultancy across digital product lifecycles, championing Secure by Design and privacy‐by‐default. • Conduct More ❯

join their Data Risk Team within Risk & Compliance, based in London, Edinburgh, Chelmsford or Manchester. This is a fantastic opportunity to support the global management of data, privacy, and information risk - particularly across areas like information security, emerging technologies (including AI), and regulatory compliance. You’ll collaborate with stakeholders across the firm, including General Counsel, Information Security, and Emerging Tech Risk teams, helping to shape best practices and ensure compliance with regulations such as UK/EU GDPR, DORA, HIPAA, and EU AI Act. The role offers a dynamic mix of hands-on risk management, internal auditing, and strategic input into global processes. It’s ideal for someone with a solid foundation in data More ❯

Director in Unit 42 is a senior-level consulting position. The individual will be responsible for the day to day delivery of our threat-led and technology driven cyber security consulting services through leading and directly overseeing a team of Consultants. This person will have experience in developing teams and working with sales and domain leaders. The Consulting Director … and Customer Success Manager (CSM) to deliver pitches and prepare proposals to win new business and manage client relationships. We are seeking an individual who is passionate about cyber security and making a difference. You will be a continuous learner and have a sound knowledge of emerging cybersecurity trends and technologies. The individual serves as a trusted advisor to … cross-sector clients. Your Impact Oversee the delivery of our proactive consulting services, ensuring their consistency, quality and highest level of customer service Provide hands-on, expert-level proactive Security Operations Center (SOC) assessment and transformation services to clients and deliver findings to CxO and/or Board of Directors Work with the BDM and CSM to perform pipeline More ❯

that all documents, trackers, and related materials are kept up to date and stored appropriately in the correct drives Assist with any additional tasks or responsibilities as needed Maintain information security by complying with the company's Information Security Management System (ISMS) and all relevant policies About you: Experience: Project scheduling and coordination experience is an … be advantageous Personal Attributes: Possesses good written and verbal communication skills and the ability to communicate complex technical issues to non-technical clients. Keen to research new products and information around technical solutions that could provide answers and solve problems that benefit the whole team. Feel that every day is a day of learning and knowledge. Harnesses pressure to More ❯

Expertise in creation of solutions for risk and compliance advisory services (preferable candidates from Big4 organizations) • Capabilities of executing atleast 3-4 advisory/consulting engagements. • Technical Knowledge around information security, business continuity and technology risk assessments. ISO 27K, NIST, AI Governance, CIS etc. • Good compliance understanding of industry domains such as BFSI – (SOX, FFIEC, PCI-DSS, BASEL … MAS etc.), Healthcare & Life-sciences – (HIPAA, Hi-Trust, FDA CFR, GxP Compliance), Telecom, Retail, Data Privacy (GDPR, CCPA) Energy & Utilities (NERC, FERC) Information Security (ISO 27000, NIST, CIS) TPRM • Business Resiliency & Cyber Recovery, ZTA • GRC Project & Program Management • Excellent written and verbal communications skills • Should be able to travel 70%-80% on short as well as long term More ❯

challenge across the organisation’s principal risks — including credit, financial, and operational risks. The Technology and Change Risk Team is responsible for risk oversight of IT Risk, Data Risk, Information Security, Change Management, Operational Resilience, and Intra-Group Risk. The team also ensures there is a consistent and objective view of all technology-related risks, as well as … Proven experience working directly with senior Technology leadership (e.g., Heads of Functions or equivalent). Advanced understanding of Technology and Change Risk disciplines such as IT Risk, Data Risk, Information Security, IT-led and Business-led Change, IT Resilience and Recovery, and Intra-group Risks across both operational and transformation activities. Prior experience within a regulated environment with More ❯

secure, scalable, resilient, and aligned with business growth. You will lead a team of skilled network engineers, define the enterprise networking roadmap, and collaborate with cross-functional teams — including Security, Infrastructure, and IT Operations — to deliver a high-performance, high-availability network platform that underpins mission-critical business and customer operations. Key Responsibilities Strategic Leadership Define and execute the … Lead network capacity planning, performance optimisation, and technology refresh cycles . Own the full lifecycle of network-related projects , from requirements gathering through to procurement, budgeting, vendor management , and security assessments . Security, Compliance & Governance Partner with Information Security teams to enhance network security posture , addressing vulnerabilities and implementing intrusion detection/prevention systems. Ensure … and Juniper network technologies, including Cisco IOS/NX-OS and JunOS platforms. Strong background in network monitoring, capacity management, and incident response . Hands-on experience with network security frameworks , firewall configuration (Cisco ASA, Palo Alto, Fortinet, etc.) , and telephony (SIP/VoIP) systems. Familiarity with cloud and hybrid networking (Azure, AWS, GCP) environments preferred. Strong understanding of More ❯

OT Cyber Security Specialist £450 - £470/day Outside IR35 6 month contract Oxford - 1 day per week on-site We have an exciting opportunity to join a leading UK organisation operating in the critical infrastructure sector. As part of a greenfield initiative, they are building out their OT security capability and require an experienced Information Security Consultant to lead and shape this journey. This role is pivotal in defining and implementing the OT Security Strategy , developing governance frameworks, and introducing robust security controls across OT environments. You'll be working closely with engineering teams and third-party providers to ensure alignment with industry standards and enterprise cyber objectives. You'll be involved in … in a highly regulated environment, so experience with frameworks such as IEC 62443, NIST CSF, CAF, and ISO 27001 is essential. Experience required: Proven expertise in Operational Technology (OT) security within ICS or critical infrastructure environments Ability to define and implement OT security strategies, policies, and standards Strong knowledge of OT security frameworks - IEC 62443, NIST CSF More ❯

EC-Council is the world’s largest cyber security technical certification body. We operate in 145 countries globally and we are the owner and developer of various world-famous cyber security programs. We are proud to have trained and certified over 400,000 information security professionals globally that have influenced the cyber security mindset of … assigned territory/accounts. Identify and develop new business opportunities with enterprise customers across industries. Engage with CXOs, CISOs, CIOs, and IT decision-makers to understand business needs and security challenges. Position company’s cybersecurity offerings (SOC, IAM, DLP, EDR/XDR, Cloud Security, Managed Services, etc.) as enterprise solutions. Lead end-to-end enterprise sales cycle – prospecting … Bachelor’s degree in business, IT, or related field (MBA preferred). 6–10 years of enterprise sales experience, with at least 3–5 years in cybersecurity/IT security solutions. Proven track record of achieving or exceeding sales quotas. Strong knowledge of enterprise cybersecurity landscape, threats, and technologies. Ability to build relationships with senior stakeholders and close complex More ❯

Crypsis investigation tools to determine source of compromises and malicious activity that occurred in client environments Manage incident response engagements to scope work, guide clients through forensic investigations, contain security incidents, and provide guidance on longer term remediation recommendations Ability to perform travel requirements as needed to meet business demands (on average 20%) Mentorship of team members in incident … response and forensics best practices Qualifications Your Experience 8+ years of incident response or digital forensics consulting experience with a passion for cyber security Strong leadership skills including experience managing a team or individuals Experience with leading complicated engagements including scoping, interfacing with the client, and have executed on a technical front Proficient with host-based forensics and data … and an excellent understanding of PANW products be collaborative and able to build relationships internally, externally, and across all PANW functions, including the sales team Bachelor’s Degree in Information Security, Computer Science, Digital Forensics, Cyber Security or related field or equivalent military experience required Qualification Please note that this role requires eligibility for UK Security More ❯

compliance with data protection laws, internal policies, and certification frameworks. Conduct audits, maintain records of processing activities, and ensure corrective actions are implemented. Maintain and update data protection and security policies, including consent forms and data management plans. Deliver training and awareness programmes to ensure staff understand their responsibilities—especially in high-risk areas like HR, IT, and clinical … and related data protection principles. Experience leading ISO27001 and ISO9001 certification activities. Familiarity with applying data protection in scientific research, healthcare, or not-for-profit settings. Understanding of information security standards (e.g., ISO/IEC 27001) and their intersection with privacy obligations. Comfortable engaging with regulators and managing high-risk data processing consultations. Experience working cross-functionally with … response, training, and vendor assessments. Strong grasp of technology systems and data management practices, including cloud services, databases, and analytics. 🎓 Education & Certifications Bachelor’s degree or higher in Law, Information Governance, Data Security, or a related field. Certifications such as CIPP/E, CIPM, CISSP, or CISM are highly desirable. 🌟 Skills & Attributes High integrity and independence; able to More ❯

sports leagues, entertainment industry legends and other industry-redefining companies. The Applications Operations Analyst focuses on the operational support and continuous improvement of enterprise application environments, ensuring high availability, security, and performance. The ideal candidate will be responsible for day-to-day maintenance, patching, monitoring, and user support across critical systems, while also contributing to process improvement, documentation, and … with SLAs. Provide break/fix troubleshooting and root cause analysis across supported systems. Execute system configuration changes and support business application integrations. Remediate application vulnerabilities in collaboration with Information Security. Participate in security audits and access reviews. Ensure compliance with firmwide data protection and change management policies. Conduct retrospectives and post-incident reviews to identify process and … changes following structured change control processes. Support application deployments and participate in test validations. Provide integration support across dependent systems and external vendors. Facilitate alignment between delivery teams and Information Security, Infrastructure. Track and report on application usage, adoption trends, and user engagement using analytics tools. Measure and report system uptime, availability, SLAs, and service performance trends. Partner More ❯