1 to 25 of 650 Information Security Jobs in the UK

Information Security Compliance Analyst Permanent Salary: Negotiable Hybrid - Hertfordshire As an Information Security Compliance Analyst, you will support the development and maintenance of the EMEA wide information security management system in accordance with Global EIT strategy, EMEA business requirements and relevant information security legislation, including NIS 2, AI Act and GDPR. You … adherence by the EMEA EIT department to all relevant legislation and regulations, including but not limited to Health and Safety, Financial and Privacy laws. Main duties/responsibilities: Conduct information security, information system, and compliance-based risk assessments, evaluate responses and recommend risk treatment actions Develop and execute risk mitigation plans in conjunction with relevant internal and … external stakeholders/groups and to agreed timescales, following through to completion Support the creation, implementation and maintenance of information security policies and standards, in accordance with ISO 27001 other relevant frameworks and standards (NIST CSF, IEC 62443, CIS, GDPR etc.) Maintain the department’s information security procedures, including but not limited to information security More ❯

Information Security Officer - Nibley Court, 3 Turner Drive, Bristol, South GloucestershireCompany Description At SBS, we’re more than just a technology company – we’re a global fintech partner helping banks and financial institutions transform, innovate, and grow. With over 5,000 employees worldwide and clients in more than 80 countries, our solutions power everything from digital banking and … per week. ? Salary: £55,000-£60,000 (DOE) per annum plus pension, & excellent benefits package ? Job type: Permanent, full-time We are on the lookout for an experienced Cloud Information Security Officer to help drive forward our commitment to providing a world-class information security management system for our products and services that protects both SBS … and our customers' interests. This role will report to the Security, Risk and Compliance Lead. What will the role involve? Proactively monitoring, identifying, responding to, and resolving security incidents. Aligning information security strategy with business goals and objectives. Ensuring compliance with relevant local and international laws and internal policies. Fostering a culture of information security More ❯

Information Security Analyst Hyrbrid Working Offered **Note Preference will be given to candidates from a financial services/banking environments** Salary: Up to £65,000 Purpose of the Role Supporting the organisation’s Information Security function by helping to develop, operate, and improve its Information Security Management System (ISMS). The role is responsible … for providing advice, assurance, and oversight to reduce risks that could compromise the confidentiality, integrity, and availability of business systems and data. Experience in designing and monitoring security controls is essential, supporting compliance with industry standards and regulation, and ensuring alignment with group-wide information security practices. Key Responsibilities Carry out assurance activities to measure compliance with … security policies and control objectives, identifying gaps and opportunities for improvement within the first line of defence. Record, track, and report on findings from security reviews, audits, and incidents, including the preparation of management information and risk reporting. Develop, update, and deliver information security awareness training to ensure all employees understand their obligations and responsibilities. More ❯

Information Security Analyst Hyrbrid Working Offered **Note Preference will be given to candidates from a financial services/banking environments** Salary: Up to £65,000 Purpose of the Role Supporting the organisation’s Information Security function by helping to develop, operate, and improve its Information Security Management System (ISMS). The role is responsible … for providing advice, assurance, and oversight to reduce risks that could compromise the confidentiality, integrity, and availability of business systems and data. Experience in designing and monitoring security controls is essential, supporting compliance with industry standards and regulation, and ensuring alignment with group-wide information security practices. Key Responsibilities Carry out assurance activities to measure compliance with … security policies and control objectives, identifying gaps and opportunities for improvement within the first line of defence. Record, track, and report on findings from security reviews, audits, and incidents, including the preparation of management information and risk reporting. Develop, update, and deliver information security awareness training to ensure all employees understand their obligations and responsibilities. More ❯

Job summary We are seeking a highly skilled and motivated Information Security Analyst to join our Digital Data & Technology (DDaT) team. This is a pivotal role supporting the Chief Information Security Officer (CISO) in delivering cyber security services across the Trust and wider health and care system. The role will support the CISO in delivering … digital safety, security and overall improvement, adhering to the Target Operating Model. The Information Security Analyst will manage the delivery of all cyber security related services. This will include cyber risk management, Data Security Protection Toolkit (DSPT) compliance against cyber relatedassertions, policy and procedure lifecycle management, and ensuring theTrust's information compliance adheres to … the Cyber Assurance Framework (CAF) and ISO27001. Main duties of the job Provide expert guidance on the selection, design, justification,implementation and operation of Cyber Security strategies, technologies,processes, procedures and standards. Support the development of controlsand management approaches to maintain the safety, confidentiality,integrity, availability and security of the Trust's digital infrastructure andsystems; including the protection More ❯

Overview Join Chambers and Partners as our next Cyber Security Analyst/Lead, a pivotal role at the heart of our commitment to safeguarding information and maintaining trust. You’ll lead the development and delivery of our information security programme, protecting our systems, data, and digital assets from evolving threats. This is an exciting opportunity to … drive key security initiatives, oversee cutting-edge technologies, and ensure compliance with leading industry frameworks within a globally respected organisation. Main Duties and Responsibilities 1. Security Strategy & Governance: Develop, implement, and maintain the organization's information security strategy, policies, standards, and procedures in alignment with business objectives and regulatory requirements. Lead the development and implementation of … an Information Security Management System (ISMS), based on ISO 27001 Conduct regular security risk assessments, identify vulnerabilities, and recommend appropriate mitigation strategies. Stay up-to-date with the latest cybersecurity threats, trends, technologies, and best practices. Provide expert advice and guidance on information security matters to various stakeholders across the organization. 2. Security Operations More ❯

Your new role - Permanent - ON SITE 5 Days per week. You will be required to obtain security clearance and undergo vigorous onboarding checks - UK Only. Sponsorship NOT available.The main purpose of this job mainly focusses on information security, cybersecurity, and data security, including a wide scope, such as physical security of computer rooms, operating system … level security of Windows and Linux, network security of firewall and other security devices, application security both development and testing phrases, terminal security, backup security, third party and supply chain security of IT service provider.Liaison with the Head Office, Security Operation Centre or Data Centre for implementing security policies, projects and … security controls. Work with Internal Audit and other departments to execute penetration tests, cybersecurity risk self-assessment, ensure best practice and international baseline standards are in place and in line with local regulations.The ideal candidate will be responsible for managing information security systems, ensuring compliance with regulatory requirements, and conducting thorough security audits.You will be part More ❯

Your new role - Permanent - ON SITE 5 Days per week. You will be required to obtain security clearance and undergo vigorous onboarding checks - UK Only. Sponsorship NOT available. The main purpose of this job mainly focusses on information security, cybersecurity, and data security, including a wide scope, such as physical security of computer rooms, operating … system level security of Windows and Linux, network security of firewall and other security devices, application security both development and testing phrases, terminal security, backup security, third party and supply chain security of IT service provider. Liaison with the Head Office, Security Operation Centre or Data Centre for implementing security policies … projects and security controls. Work with Internal Audit and other departments to execute penetration tests, cybersecurity risk self-assessment, ensure best practice and international baseline standards are in place and in line with local regulations. The ideal candidate will be responsible for managing information security systems, ensuring compliance with regulatory requirements, and conducting thorough security audits. More ❯

I am currently working with a Charity who are seeking a Head of Information Security and Compliance. You will join an ambitious, focused and dynamic team who are passionate about how technology can enable our staff to deliver incredible support to the armed forces community. Role Purpose: The Information Security and Compliance Manager is responsible for … developing, implementing, and maintaining security policies, procedures, and controls to protect the data and systems. They will play a pivotal role in the management and containment of security incidents, ensuring continuous improvement in their security posture while raising awareness for staff, volunteer and member communities. The post holder will lead on activities that assess, report and mitigate … risk associated with third parties with the focus being to protect the confidentiality, integrity, and availability of information assets. Key Responsibilities: Information Protection Take responsibility for their information and data protection policies, practices and settings to include sensitivity labels, data retention policies and data loss protection policies Collaborate with the Head of Risk, DPO and VCISO to More ❯

I am currently working with a Charity who are seeking a Head of Information Security and Compliance. You will join an ambitious, focused and dynamic team who are passionate about how technology can enable our staff to deliver incredible support to the armed forces community. Role Purpose: The Information Security and Compliance Manager is responsible for … developing, implementing, and maintaining security policies, procedures, and controls to protect the data and systems. They will play a pivotal role in the management and containment of security incidents, ensuring continuous improvement in their security posture while raising awareness for staff, volunteer and member communities. The post holder will lead on activities that assess, report and mitigate … risk associated with third parties with the focus being to protect the confidentiality, integrity, and availability of information assets. Key Responsibilities: Information Protection Take responsibility for their information and data protection policies, practices and settings to include sensitivity labels, data retention policies and data loss protection policies Collaborate with the Head of Risk, DPO and VCISO to More ❯

Information Security Engineer – Nationwide Software Company – Worthing, West Sussex (Office based) – 50K to 55K plus excellent benefits Stratospherec is recruiting for an Information Security Engineer to be based in the West Sussex office of our client who is a leading software company. In this role you will use your Information Security Engineer/Analyst … expertise both supporting and enhancing this nationwide company’s cybersecurity posture through the securing of enterprise applications, data and infrastructure and by identifying, assessing, and mitigating security risks. This is a hands-on, predominantly office-based role requiring experience in application and data security, vulnerability assessments, security administration, threat monitoring and response. You will work alongside a … multidisciplinary team of infrastructure, support staff and developers, cross-functionally supporting colleagues from across the business and the wider IT team to ensure security requirements are met and outstanding service delivered. KEY ACTIVITIES • Key activities in relation to application security will include performing security reviews of application architecture, source code, and third-party integrations. • Collaborating with development More ❯

Information Security Compliance Analyst 12 Month FTC Hatfield - Hybrid As an Information Security Compliance Analyst, you will Support the development and maintenance of the EMEA information security management system, ensuring compliance with Global EIT strategy, EMEA business needs, and relevant legislation (e.g NIS 2, AI Act, GDPR). Maintain ISO 27001:2022 certification and … equivalent - essential. CISM and/or CISSP or other relevant certification is highly desirable ISO 27001:2022 Lead Implementer/Auditor certification is highly desirable Demonstratable experience in an Information Security, IT Governance, Risk and Compliance based role, including maintaining and continually improving an ISO 27001 compliant management system. Experience of information security management and/… or security awareness. Good knowledge of industry standard frameworks and best practices – ISO 27001: 2022, NIS2, AI Act etc. and their practical application in a corporate environment to ensure all elements of integrity, availability and confidentiality are adhered to. Extensive experience conducting information security risk assessments, reporting risks Experience of developing, implementing, managing, and maintaining Information More ❯

Job Description What will you be doing? S&W Group is looking for an experienced Information Security Risk Professional with expertise in security compliance and assurance, ISO 27001 implementation, PMO (project management office), risk assessments, supply chain and working on other governance, risk and compliance projects within a team. You’ll be highly motivated, pro-active and … will become a productive member of a busy Information Security team, gaining exposure to a number of areas across the business. As an Information Security Supply Chain Analyst, you’ll verify that third parties meet the minimum-security requirements to protect our organisation from a supply chain related attack or incident. You’ll apply relevant … end to end treatment is applied. You’ll also be part of our PMO and governance and compliance processes and will deliver updates to senior management in meetings and information security forums, whilst ensuring the business remains compliant to regulatory frameworks and good practice standards. This role works within the Information Security Team and collaborates with More ❯

CISM - Certified Information Security Manager Around the world, demand for skilled information security management professionals is on the rise, and the CISM certification is the globally accepted standard of achievement in this area. The uniquely management-focused CISM certification ensures holders understand business, and know how to manage and adapt technology to their enterprise and industry. … Roadmap with strong Governance and Charter is perhaps more important. Learn how to use COBIT methodology and security architectures like TOGAF and SABSA to build a value focused InfoSec programme with RiskIT and ValIT. Uniquely focused on the management and implementation of successful information security programmes, this event is more like an MBA than MSCE or CCNA … Objective: This workshop fully covers the current ISACA CISM exam syllabus by explaining how to use COBIT, ValIT and RiskIT to implement an InfoSec Risk Management programme while supporting the core business strategy. Exam question techniques and study plans are also covered. Outline: Domain 1-Information Security Governance (17%) Domain 3-Information Security Program Development and More ❯

Information Security Manager NCC Location: Bristol based with Hybrid working 2 days on site, 3 days home Salary: £54,102 to £67,056 per annum (experience dependent) Government Security Clearance: You will be required to undertake government security clearance if successful securing this role. Please only apply if willing to undertake clearance process. Closing Date … advert early if required. Summary; NCC is the UKs innovation partner! Were supporting a range of interesting new projects in the defence sector and are hiring for an additional Information Security Manager to join our expanding secure operations team. Your role as Information Security Manager is to ensure the effective protection of secure information and … Youll report into the Head of Secure Operations and work with a wide range of internal stakeholders including secure operations teams, the board members & senior leadership, HR business partners, security & networking managers. External relationship management will also be large part of your role including our defence sector clients and government bodies. What youll be doing; Reviewing new Security More ❯

holding 35% of the market. Our Mission is to be famous for excellence in delivery, embracing transformation with our people and our customers at its heart. As Cornerstone’s Information Security Manager, you will lead the development, implementation, and continuous improvement of our Information Security Management System (ISMS), ensuring alignment with ISO 27001:2022. You will … be responsible for safeguarding our digital infrastructure, managing cyber risk, and embedding a security-first culture across the organisation. This is a strategic and hands-on role, requiring collaboration across IT, legal, procurement, and operational teams. You will act as the primary point of contact for all matters related to information assurance, supplier security assurance, incident response … and regulatory compliance. Scope IT Security Operations Collaborate closely with IT SecOps team members to ensure security controls remain effective. Where gaps are identified, implement appropriate mitigation measures and lead the response to security incidents in a timely and coordinated manner. Compliance & Security Coordinate ISO 27001 certification audits and maintain ongoing compliance on behalf of the More ❯

holding 35% of the market. Our Mission is to be famous for excellence in delivery, embracing transformation with our people and our customers at its heart. As Cornerstone’s Information Security Manager, you will lead the development, implementation, and continuous improvement of our Information Security Management System (ISMS), ensuring alignment with ISO 27001:2022. You will … be responsible for safeguarding our digital infrastructure, managing cyber risk, and embedding a security-first culture across the organisation. This is a strategic and hands-on role, requiring collaboration across IT, legal, procurement, and operational teams. You will act as the primary point of contact for all matters related to information assurance, supplier security assurance, incident response … and regulatory compliance. Scope IT Security Operations Collaborate closely with IT SecOps team members to ensure security controls remain effective. Where gaps are identified, implement appropriate mitigation measures and lead the response to security incidents in a timely and coordinated manner. Compliance & Security Coordinate ISO 27001 certification audits and maintain ongoing compliance on behalf of the More ❯

re not just revolutionising aviation-we're securing the future of clean flight. As we pioneer hydrogen-electric propulsion systems that will transform commercial aviation, we need a visionary Information Security Manager to protect our groundbreaking technology, intellectual property, and operational infrastructure. This is your opportunity to shape cybersecurity strategy at the forefront of sustainable aviation while safeguarding … systems that will decarbonise the skies. Join us in building robust security frameworks that will enable ZeroAvia to achieve certification, scale operations, and maintain the trust of aviation authorities, partners, and passengers as we deliver zero-emission flight solutions. We are seeking an experienced Information Security Manager to lead our comprehensive information security programme across … our UK operations. In this critical role, you will develop and implement security strategies that protect ZeroAvia's hydrogen-electric propulsion technologies, certification data, and operational systems while ensuring compliance with aviation cybersecurity regulations including EASA EAR Part-IS, CAA requirements, and emerging aviation security standards. This position requires deep expertise in cybersecurity frameworks, aviation security requirements More ❯

Information Security Technical Assurance Lead - £700 per day - Inside IR35 - Hybrid working from a site in Paddington - 6 months initial contract. Our client, a global supplier to the nuclear energy industry, is seeking a highly skilled Information Security Cyber Assurance Specialist to join their team. This critical role is responsible for ensuring the security and … resilience of their information systems, aligning with industry standards and regulatory requirements. You will provide assurance that their IT and OT environments are secure and compliant, supporting the delivery of business objectives while managing risk. Key Responsibilities - Develop, implement, and maintain information security assurance programs. Ensure compliance with regulatory requirements and standards (e.g., ISO 27000, NIST SP800 … series, CSF). Conduct risk assessments and vulnerability management activities. Maintain robust security controls across enterprise assets, software, networks, and applications. Support incident response and recovery processes, including penetration testing and audit log management. Deliver training and awareness programs to enhance the organizations security posture. Collaborate with internal and external stakeholders to maintain compliance and manage third-party More ❯

Information Security Technical Assurance Lead - £700 per day - Inside IR35 - Hybrid working from a site in Paddington - 6 months initial contract. Our client, a global supplier to the nuclear energy industry, is seeking a highly skilled Information Security Cyber Assurance Specialist to join their team. This critical role is responsible for ensuring the security and … resilience of their information systems, aligning with industry standards and regulatory requirements. You will provide assurance that their IT and OT environments are secure and compliant, supporting the delivery of business objectives while managing risk. Key Responsibilities - Develop, implement, and maintain information security assurance programs. Ensure compliance with regulatory requirements and standards (e.g., ISO 27000, NIST SP800 … series, CSF). Conduct risk assessments and vulnerability management activities. Maintain robust security controls across enterprise assets, software, networks, and applications. Support incident response and recovery processes, including penetration testing and audit log management. Deliver training and awareness programs to enhance the organizations security posture. Collaborate with internal and external stakeholders to maintain compliance and manage third-party More ❯

Role: IT Information Security Manager Salary: £65,000 - £75,000 Per Annum, Plus Benefits Package Location: Hereford with a hybrid working arrangement Must have: The right to work in the UK Full UK driving licence Be able to gain BPSS (Baseline Personnel Security Standard) clearance Be able to gain SC (Security Check) clearance as standard along … with any specific security clearances that may be required Our leading services client requires an accomplished Information Security Manager to be responsible for protecting the Group's data and information systems from cyber threats and unauthorised access. This includes developing and implementing security policies, assessing risks, providing reports and managing security incidents. You will … also oversee security awareness training, security compliance, security accreditation and collaborate with various stakeholders to foster a security-conscious culture. Key Deliverables: Align the business' security stance to comply with ISO 27001and Cyber Essentials Plus, or in accordance with the Cyber Assessment Framework Improve the Cyber Awareness within the company via communications, Cyber Awareness training More ❯

providers Offer guidance, direction and approval on security solutions and approaches Advocate for secure engineering best practices throughout the company Manage the standards, policies and guidelines of the InfoSec frameworks Maintain an on going information security awareness program Monitor our SIEM, and maintain useful reports and alerts in the system Main Skills/Competencies Significant industry experience … in a technical security role (Security Engineering or Application Security Engineering) Experience speaking to customers and establishing a good working relationship with infosec counterparts at major financial institutions Strong technical intuition, with an ability to partner with engineering to evaluate and develop good security standards Take a risk based approach when suggesting improvements, or proposing fixes … Ability to perform design reviews and/or technical assessments of software and infrastructure Excellent knowledge of InfoSec, risk management and governance, data protection Programming/scripting experience, especially to automate repetitive tasks Used to multi tasking and working in a fast paced environment Proven ability to identify and articulate information security requirements, risks and issues, and to More ❯

Job Title: Information Security Architect - Solutions & Enterprise Security Architecture Location: Manchester Hybrid Working: 50% Remote/50% Office Leading Financial Services/FinTech are seeking a highly technical and broad Information Security Architect to join their security architecture team. This is a key position responsible for ensuring that the design, delivery, and operation of … systems and services meet the highest security architecture and compliance standards. Information Security Architect will provide architectural leadership across multiple security domains — combining deep hands-on technical security expertise with strategic enterprise security architecture thinking. You will play a critical role in embedding security throughout the technology landscape, from solution-level security reviews to security solutions and enterprise-wide security architecture standards. This role requires a balance of security solution architecture, technical review and assurance, and enterprise security architecture skills. You will define and validate security controls, assess new technologies, perform security design reviews, and ensure security-by-design principles are consistently applied across More ❯

Job Title: Information Security Architect Location: London Hybrid Working: 50% Remote/50% Office Leading Financial Services/FinTech are seeking a highly technical and broad Information Security Architect to join their security architecture team. This is a key position responsible for ensuring that the design, delivery, and operation of systems and services meet the … highest security architecture and compliance standards. Information Security Architect will provide architectural leadership across multiple security domains — combining deep hands-on technical security expertise with strategic enterprise security architecture thinking. You will play a critical role in embedding security throughout the technology landscape, from solution-level security reviews to security solutions … and enterprise-wide security architecture standards. This role requires a balance of security solution architecture, technical review and assurance, and enterprise security architecture skills. You will define and validate security controls, assess new technologies, perform security design reviews, and ensure security-by-design principles are consistently applied across hybrid, on-premise, and cloud environments. More ❯

Job Title: Information Security Architect Location: London Hybrid Working: 50% Remote/50% Office Leading Financial Services/FinTech are seeking a highly technical and broad Information Security Architect to join their security architecture team. This is a key position responsible for ensuring that the design, delivery, and operation of systems and services meet the … highest security architecture and compliance standards. Information Security Architect will provide architectural leadership across multiple security domains — combining deep hands-on technical security expertise with strategic enterprise security architecture thinking. You will play a critical role in embedding security throughout the technology landscape, from solution-level security reviews to security solutions … and enterprise-wide security architecture standards. This role requires a balance of security solution architecture, technical review and assurance, and enterprise security architecture skills. You will define and validate security controls, assess new technologies, perform security design reviews, and ensure security-by-design principles are consistently applied across hybrid, on-premise, and cloud environments. More ❯