Your new company - Financial Services Your new role - Permanent - ON SITE 5 Days per week. - UK OnlyWe are looking for a highly skilled Information technology Security Engineer to join the IT team. As the first line of defence in the IT department, the principal purpose of this job mainly focusses on informationsecurity, cybersecurity and data … security, including a wide scope, such as physical security of computer rooms, operating system level security of Windows and Linux, network security of firewall and other security devices, application security both development and testing phrase, terminal security, backup security, third party and supply chain security of IT service provider.Liaison with the … Head Office, Security Operation Centre of Data Centre for implementing security policies, projects and security controls. Work with Internal Audit and other departments to execute penetration tests, cybersecurity risk self-assessment, ensure best practice and international baseline standards are in place and in line with local regulations.The ideal candidate will be responsible for managing informationsecurityMore ❯
Southampton, Hampshire, United Kingdom Hybrid / WFH Options
NICE
InformationSecurity Analyst - Audit, Compliance & Cybersecurity United Kingdom - Southampton At NICE, we don't limit our challenges. We challenge our limits. Always. We're ambitious. We're game changers. And we play to win. We set the highest standards and execute beyond them. And if you're like us, we can offer you the ultimate career opportunity that … And if you're like us, we can offer you the ultimate career opportunity that will light a fire within you. So, what's the role all about? The InformationSecurity Analyst is primarily responsible for ensuring compliance with informationsecurity frameworks such as Cyber Essentials, Cyber Essentials Plus, ISO 27001, ISO 27701, ISO 42001, GDPR … reports and present findings to management during status updates and closing meetings. External Audit Coordination: Collaborate with external audit teams to streamline processes and provide requested documentation and evidence. Security Monitoring: Use tools such as Rapid7 InsightIDR or other SIEM solutions to assist with security monitoring and incident detection. Incident Response Support: Participate in incident response efforts, documenting More ❯
holder. Duties may be changed, after discussion, to suit the operational requirements of Olympus Tech. KNOWLEDGE, SKILLS AND EXPERIENCE Technical Educated to Degree Level, or equivalent, in Computer Science, Information Technology or related discipline. Proven experience in software support and technical/business/data analysis. Able to communicate effectively and clearly in writing and verbally, including drafting correspondence … PHP, etc). The ability to work with large datasets across multiple platforms with confidence. A systematic and analytical approach to problem solving with the ability to communicate technical information to both technical and non-technical audiences. Excellent skills with Microsoft Excel. Essential Self-motivated, with high energy and enthusiasm. Strict attention to detail. Highly intuitive and tech savvy. … data sets Experience with property management software MRI Qube, Yardi or similar. Experience with complex databases Experience in system support, monitoring & troubleshooting. Experience of working in environments with high informationsecurity standards to meet needs of ISO27001, SOC2 and GDPR etc Experience with AI and/or Machine Learning Project planning and management experience. Experience with finance systems More ❯
Winchester, Hampshire, United Kingdom Hybrid / WFH Options
Arqiva
Join our Cyber Security Team as a Governance, Risk and Compliance Analyst. If you have been involved in practical aspects of GRC including ISO270001, want to work with a team of dedicated professionals and are able to understand wider business impacts of GRC on a business, please read more and apply. Location We operate a flexible, hybrid working environment … travel and dental insurance Work. Life. Smarter. Our commitment to a flexible and hybrid working culture As a GRC Analyst you will: Support the development and maintenance of our InformationSecurity Management System (ISMS) including policies, objectives, and risk assessments Assist with internal audits and help prepare for external audits to maintain compliance with ISO27001 and other standards … Help identify and assess informationsecurity risks, working closely with the Cyber Risk Manager Provide guidance to colleagues on basic security best practices and requirements Contribute to reporting on the ISMS performance and improvement plans Support continual improvement initiatives and track progress Keep up to date with key trends and changes in informationsecurity and More ❯
Reading, Berkshire, United Kingdom Hybrid / WFH Options
Deloitte LLP
practices and the ability to conduct technical risk assessments. Work with the Global Technology Infrastructure team to integrate system cybersecurity assessments into their processes to ensure consistent implementation of security controls. Work with the Cybersecurity Architecture team and apply reference architectures for security solutions design and implementation. Work with the Cyber Defense group and the Security Operations … Center to evaluate the effectiveness of the security controls and architectures in relationship to actual intrusions seen on the Deloitte network, reported threats at peer organizations, and overall cybersecurity threats in the internet ecosystem and you will notify leadership of potential or existing threats and assist in the development of risk mitigating strategies of these items. Monitor security blogs, articles, and reports and remain current on related laws, regulations, and industry standards to keep up to date on the latest security risks, threats, and technology trends and, where relevant, notify leadership to incorporate information into processes, procedures, and audit preparedness activities. Perform technology security risk assessments. Where appropriate, leverage security shared services (VRA More ❯
Guildford, Surrey, United Kingdom Hybrid / WFH Options
Deloitte LLP
practices and the ability to conduct technical risk assessments. Work with the Global Technology Infrastructure team to integrate system cybersecurity assessments into their processes to ensure consistent implementation of security controls. Work with the Cybersecurity Architecture team and apply reference architectures for security solutions design and implementation. Work with the Cyber Defense group and the Security Operations … Center to evaluate the effectiveness of the security controls and architectures in relationship to actual intrusions seen on the Deloitte network, reported threats at peer organizations, and overall cybersecurity threats in the internet ecosystem and you will notify leadership of potential or existing threats and assist in the development of risk mitigating strategies of these items. Monitor security blogs, articles, and reports and remain current on related laws, regulations, and industry standards to keep up to date on the latest security risks, threats, and technology trends and, where relevant, notify leadership to incorporate information into processes, procedures, and audit preparedness activities. Perform technology security risk assessments. Where appropriate, leverage security shared services (VRA More ❯
Experience Years: 3-5 Years of Experience Employee Type: Regular Remote Type: Onsite About the Opportunity The role of InformationSecurity Engineer will be responsible for identifying, investigating, and managing cybersecurity related events and incidents. As an InformationSecurity Engineer, you will be responsible for security operations, using and managing security systems, identifying and … managing risks and threats, and developing and following operating procedures. The ideal candidate will have a deep understanding of cyber security risks and threats, incident handling, and will possess excellent analytical, communication, and leadership skills. About the Opportunity The role of InformationSecurity Engineer will be responsible for identifying, investigating, and managing cybersecurity related events and incidents. … As an InformationSecurity Engineer, you will be responsible for security operations, using and managing security systems, identifying and managing risks and threats, and developing and following operating procedures. The ideal candidate will have a deep understanding of cyber security risks and threats, incident handling, and will possess excellent analytical, communication, and leadership skills. Responsibilities More ❯
Basingstoke, Hampshire, United Kingdom Hybrid / WFH Options
InstaVolt
self-service capabilities for common support tasks to improve efficiency and user experience. Collaborate with the CTO and technology leaders to align IT strategies with business goals, supporting scalability, security, and regulatory compliance. Manage and optimise hybrid cloud environments (e.g., Azure, AWS, Google Cloud) in support of internal services and business operations. Deliver demonstrable progress in the company's … support team, including recruiting, coaching, performance management, and professional development. Manage relationships with external vendors, MSPs, and technology partners to ensure cost-effective and reliable service delivery. Collaborate with InfoSec and Legal teams to ensure compliance with relevant regulations (e.g., ISO 27001, GDPR). Lead incident response and disaster recovery planning/testing for internal platforms and operational IT. Requirements … Needed: Bachelor's degree in information technology, Computer Science, or related experience. 10+ years of experience in IT operations and support services, with at least 5 years in a leadership role. Proven experience managing enterprise IT systems, cloud platforms, and service desk operations in a 24 7 environment. Strong knowledge of ITSM frameworks and modern collaboration tools (e.g., M365 More ❯
London, South East, England, United Kingdom Hybrid / WFH Options
Sanderson
InformationSecurity/Information Privacy SME (Contract) Location: Central London (Hybrid - 2 days onsite per week) Contract: Inside IR35 or Umbrella Engagement Duration: 6-12 months (with potential extension) Industry: Private Banking/Wealth Management Role Overview: We are seeking a highly experienced InformationSecurity/Information Privacy Subject Matter Expert (SME) to support … a leading private bank in London. This role is focused on providing strategic and operational guidance on cybersecurity, data protection, and regulatory compliance to ensure the bank's information assets and customer data remain secure and compliant with applicable standards (e.g., ISO 27001, GDPR, FCA requirements). Key Responsibilities: Serve as the SME for all matters related to informationsecurity and privacy. Advise on the development and maintenance of security policies, procedures, and frameworks. Review and strengthen current informationsecurity architecture and controls. Conduct risk assessments, gap analyses, and privacy impact assessments (DPIAs). Provide expert input on GDPR, UK Data Protection Act, and other relevant regulations. Partner with internal stakeholders across legal, compliance More ❯
IT Security Engineer - prem AD, EntraID, M365, IDAM solutions, SentinelOne, CrowdStrike, Defender, Routing/Switching, WAN, Wi-Fi, Cisco Our leading global law firm client are recruiting for an IT Security Engineer (prem AD, EntraID, M365, IDAM solutions, SentinelOne, CrowdStrike, Defender, Routing/Switching, WAN, Wi-Fi, Cisco) on a 12 month fixed term contract basis to support … the InformationSecurity team to ensure continuous security improvement. The Security Engineer will report to InformationSecurity Operations Manager and work with the InformationSecurity Operations team for implementing and maintaining our security controls and tools. Work collaboratively with other departments to improve our security posture. They will be specifically … responsible for completing the implementation of a number of strategic based security solutions for new security tooling or existing. The engineer will also participate in security related service management processes (incident, change and problem management) and will participate in the planning, design, enforcement and review of security controls which protect the integrity of the firm. Essential More ❯
office. Purpose of the Role Primark Technology is on a transformation journey supporting the business strategy which includes modernising our operating model as well as technology architecture and Cyber Security and Risk posture. This role is key in building and improving Primark's Cyber Security posture. Duties & Responsibilities Actively progress and improve Primark's cyber security posture … and Agile delivery methodology and development methods Certified with appropriate qualifications is desirable, 1. Structured Project Management : Prince/PMP 2. Agile certification, such as Scrum, SaFe, AgilePM 3. InformationSecurity/Data Protection certification An appropriate degree, equivalent qualification or experience Desirable Be a passionate and visionary technologist able to inspire others to challenge and disrupt the … ways to translate that into business opportunities. Be able to take people along with you, empowering new ways of working and successfully executing on those opportunities. Have extensive cyber security delivery and programme/project management experience, Retail experience would be beneficial. Be technically strong across a range of IT disciplines and systems, including cloud and network security. Have More ❯
Reading, Berkshire, United Kingdom Hybrid / WFH Options
Deloitte LLP
that matter, achieve, and sustain operational excellence. You will be at the heart of fulfilling our mission by working closely with our Global Operations teams, Business operations teams, and Security operations teams to develop plan and execute IT Continuity Services across multiple Data Centers and geographic regions. The role requires advanced skills that enable the individual to deliver a … activities Participate in a 24x7x365 on-call rotation Respond to and manage service issues and problems Responsible for awareness and compliance to policy and guidelines Report any breaches in informationsecurity or policies Identify repeatable operational tasks and issues; create automated resolutions to these situations to reduce operational overhead within the virtualization function as well as other enabling More ❯
Guildford, Surrey, United Kingdom Hybrid / WFH Options
Deloitte LLP
that matter, achieve, and sustain operational excellence. You will be at the heart of fulfilling our mission by working closely with our Global Operations teams, Business operations teams, and Security operations teams to develop plan and execute IT Continuity Services across multiple Data Centers and geographic regions. The role requires advanced skills that enable the individual to deliver a … activities Participate in a 24x7x365 on-call rotation Respond to and manage service issues and problems Responsible for awareness and compliance to policy and guidelines Report any breaches in informationsecurity or policies Identify repeatable operational tasks and issues; create automated resolutions to these situations to reduce operational overhead within the virtualization function as well as other enabling More ❯
Farnborough, Hampshire, South East, United Kingdom
Gama Group Limited
Position: InformationSecurity & Compliance Manager Location: Farnborough HQ Working Hours: Full-Time, 40 Hours per week We are looking for a hands-on InformationSecurity & Compliance Manager to take ownership of cyber security and data privacy across myairops. This role balances strategic oversight with practical, day-to-day security operations. Youll be central to … changes and enhancements. We are looking for a self-motivated individual with excellent communication and teamwork abilities, as you will collaborate extensively with cross-functional teams to achieve our security objectives. Your strong attention to detail, process-oriented mindset, and ability to meet deadlines with minimal supervision will be key to your success in this role. About us: Were … Collaborate with the Group CIO and DPO, contributing to wider organisational security and data privacy initiatives. Skills, Qualifications and Experience required: Essential A solid background in cyber or informationsecurity, with experience operating at a similar level in cloud environments (ideally Azure) OR possess a degree within cyber or informationsecurity with the ability to demonstrate the attitude More ❯
Job Title : InformationSecurity Assurance Specialist Contract Type: Permanent, Full Time Salary Range: £33,200-£41,500 depending on experience Location: Eastleigh InformationSecurity Assurance Specialist: At Ageas, we are committed to protecting our customers, employees, and systems through robust informationsecurity practices. We are seeking a InformationSecurity Assurance and Architecture … Specialist to join our growing team. This role is critical in ensuring our security architecture aligns with business goals and regulatory requirements, while also providing assurance over the effectiveness of our security controls. Reporting into the Assurance and Architecture Manager, you will be responsible for supporting and operating the day-to-day activities relating to security, initiatives … controls and governance processes. This role is a combination of internal consultancy, change management and assurance activities to provide confidence to the business that we are meeting our security goals. You will act as the bridge between our technical teams and operational functions and are therefore required to have excellent communication skills, including the ability to explain complex IT More ❯
London, South East, England, United Kingdom Hybrid / WFH Options
Xpertise Recruitment Ltd
Cloud Security Lead London | Hybrid - 3 days in-office per week Up to £90,000 + ~20% Bonus + 10% Pension Are you passionate about cloud security and cyber risk management? A leading international business has completed a major IT transformation and is now expanding its technology team. They're looking for a highly skilled Cloud Security … shape and strengthen secure cloud architectures and practices across a complex enterprise environment. In this pivotal role, you'll be part of the CIO office, reporting into the Business InformationSecurity Officer (BISO). You'll collaborate closely with internal IT teams and group-level security functions to manage cloud-based cyber risks, coordinate remediation strategies, and … enhance executive-level reporting. Key Responsibilities: Define and enforce security best practices across cloud environments (Azure, AWS) Lead cloud security risk assessments, audits, and incident response efforts Integrate security into CI/CD pipelines and DevOps operations Manage and interpret insights from cloud-native security tools (e.g., GuardDuty, Azure Defender) Ensure compliance with frameworks such as More ❯
Senior Counsel - Data Governance, Privacy and Cyber Security Apply locations Woking, United Kingdom time type Full time posted on Posted Yesterday job requisition id R257806 Our team members are at the heart of everything we do. At Cencora, we are united in our responsibility to create healthier futures, and every person here is essential to us being able to … stakeholders. Conduct reviews of new customer- and/or vendor- related technology proposals entailing privacy, cyber, and/or AI risks and offer pragmatic, creative solutions reflecting privacy and security by design concepts. Demonstrate strong and calm decision-making capability and communication skills in the midst of time-sensitive incidents or high-risk business proposals requiring escalation to senior … on highest priority compliance requirements, and helping to define operational targets through ongoing partnership, feedback, and clear communication skills. Possession of one or more privacy, AI, and/or informationsecurity certifications (CIPP, CIPM, AIGP, CIPT, CISSP) (preferred). Excellent negotiating, prioritization, multi-tasking, juggling, and client management and expectation-setting skills - including forging and managing strong relationships More ❯
London, South East, England, United Kingdom Hybrid / WFH Options
Sanderson
Cyber Security Project Manager, SC Clearable We are seeking an experienced Cyber Security Project Manager to lead the delivery of high-impact security initiatives within a fast-paced enterprise environment. This is an exciting opportunity to play a key role in strengthening our client's security posture during a critical transformation phase. Rate - £650.00 per day … months with the liklihood of extension Key Responsibilities: Lead end-to-end delivery of cyber security projects, ensuring alignment with business goals and compliance requirements Work across InfoSec, IT, risk, and compliance teams to deliver initiatives such as vulnerability management, identity and access management (IAM), SIEM upgrades, and cloud security improvements Manage third-party vendors and internal stakeholders … execution Develop and maintain project documentation, risk logs, and reports for senior stakeholders Ensure projects adhere to regulatory and governance frameworks Skills and Experience Proven track record delivering cyber security or informationsecurity projects in large, complex organisations Strong understanding of cyber risk, threat management, and technical security controls Excellent stakeholder management and communication skills Experience More ❯
Reading, Berkshire, United Kingdom Hybrid / WFH Options
Thames Water Utilities Limited
up to £72,600 per annum Job grade B Closing date 15/07/2025 As the Critical Asset and Classification Lead , you will be part of the InformationSecurity team, focused on identifying, managing, and protecting Thames Water's most critical data assets, often referred to as "crown jewels." This role will also lead the development … you'll be doing as the Critical Asset and Classification Lead: Critical Asset Framework Development: Lead the development and ongoing refresh of the framework for identifying and protecting critical information systems and data assets. Data Classification Methodology: Design and implement methodologies to classify data assets based on sensitivity, criticality, and business importance. Security Controls Monitoring: Assign and monitor … appropriate security controls aligned with system criticality and data classification standards. Asset Register Management: Maintain and periodically review registers for both critical information systems and information assets. Cross-functional Collaboration: Collaborate with business and digital teams to identify, score, and categorise critical assets and ensure alignment with strategic security objectives. Compliance & Best Practice: Ensure data classification More ❯
Farnborough, Hampshire, South East, United Kingdom
Mondas Consulting Limited
SOC Analyst Mondas Consulting Mondas are looking for a skilled Security Operations Center (SOC) Analyst to strengthen our security team. The ideal candidate will be responsible for monitoring, detecting, and responding to security incidents, as well as conducting thorough investigations to ensure the security of our clients' IT environments. This role requires a proactive and detail … oriented individual with a deep understanding of Cyber Security threats and defences. About Us Our head office located in central Hampshire is the home of our SOC which is the heart and soul of our business identity as a whole. We strive for excellence and our team is full of ambitious, skilled and hard working professionals who all share … the Mondas vision. We are a Cyber Consultancy that specialises in Security prevention and detection. Mondas delivers bespoke Cyber Security Solutions, helping our clients streamline their incident response and recovery process with our automated approach to SOAR, SIEM & MDR. Responsibilities: ? Respond to and manage security incidents, ensuring timely and eff ective resolution ? Conduct in-depth investigations to More ❯
Staines-upon-Thames, Middlesex, England, United Kingdom
Bupa UK
Procurement, Commercial, Legal, Data Privacy, and the wider business. How you’ll help us make health happen: Execute the delivery of external assurance activities end to end including supplier informationsecurity due diligence reviews and evidence reviews as part of supplier onboarding and ongoing processes aligned to defined OLAs and operational expectations. Support Procurement teams as their informationsecurity subject matter expert for supplier assurance activities including presentations and calls with suppliers for clarification or review of materials. Report to Assurance Manager of BGIUK Technology External Assurance function including delivery, prioritisation of individual workload and quality review of the deliverables. Work with Procurement for supplier assurance requests to ensure documents required for due diligence are provided … training & awareness. Key Skills/Qualifications needed for this role: Experienced in IT external assurance, IT risk and control assessment, or related fields. Proven experience in carrying out IT security control assessments with skills in cyber and informationsecurity risks with ability to evaluate effectiveness of IT controls. Excellent communication and influencing skills to drive discussions with More ❯
Basingstoke, Hampshire, United Kingdom Hybrid / WFH Options
Castle Trust Group
systems, providing leadership and mentorship as a technical escalation point and incident lead when required. Collaboration across internal teams and with external partners is essential to meet service and security objectives. You will play a key role in identifying and implementing cost-saving opportunities, supporting effective budget management, and proactively monitoring systems to resolve issues while maintaining clear and … detailed documentation. Championing informationsecurity, compliance, and risk initiatives is vital, as is participating in a 24/7 on-call rota and deputising for the team manager when necessary. The role is based at our Basingstoke office with hybrid working available (a minimum of 3 days per week in the office). What we are looking for More ❯
London, South East, England, United Kingdom Hybrid / WFH Options
Precise Placements
InformationSecurity Analyst - 6-Month FTC Governance, Risk and Compliance Location: London/Hybrid Contract Type: Fixed Term (6 months) Salary: Competitive A global professional services firm is seeking a proactive InformationSecurity Analyst to support the delivery of robust security and privacy policies across its global operation. This role is ideal for someone with … hands-on experience in information risk management, policy compliance, ISO 27001 , and client security due diligence . Key Responsibilities: Maintain and evolve the firm’s InformationSecurity Management System (ISMS) and associated documentation Support audits and ensure security practices align with industry standards (e.g., ISO 27001, Cyber Essentials) Assist with Business Continuity Management (BCM) - including … BIAs, BCPs, exercises, and training Manage and respond to security incidents, conducting root cause analysis and recommending improvements Deliver risk assessments , Data Privacy Impact Assessments (DPIAs) , and third-party compliance checks Handle client cyber due diligence questionnaires and close remedial actions Work closely with Risk & Compliance, IT, and other business teams to embed security practices into operations Support More ❯
than just a job its an opportunity to help shape the supply chain of the future. About the role: We are seeking a hands-on and growth-minded Chief InformationSecurity Officer (CISO) to join our leadership team and report directly to the CTO. This is a unique opportunity for a senior security leader looking to take … the next step and help us further establish a company-wide security and compliance program. As our first dedicated CISO, you will play a pivotal role in building and maturing our security posture, encompassing product, infrastructure, compliance, data privacy, and corporate IT security. You will define strategy, implement controls, and serve as the face of security both … internally and with customers. Location: United Kindgdom or Slovenia Key Responsibilities: Define and drive the informationsecurity and compliance strategy across the company, aligned with our business priorities. Partner closely with engineering, IT, DevOps, product management, and legal to ensure security is embedded in the product nd development lifecycle. Define KPIs and reporting structures for visibility into More ❯
Bracknell, Berkshire, United Kingdom Hybrid / WFH Options
John Lewis Partnership
Apply on JLP Jobs - the official careers website for John Lewis Partnership, John Lewis & Partners, and Waitrose & Partners. About the role Join the InformationSecurity Engineering team at John Lewis Partnership to help build a secure future for an iconic brand. We work to protect our customers, Partners, and business against an ever-evolving cyber threat landscape.The John … Lewis Partnership's InformationSecurity strategy is bold and ambitious. We provide a collection of security services, delivered via people, processes and technology. Working collaboratively, these services ensure that customers can shop with us efficiently, safely and securely, every single day.Our Threat Defence team is at the forefront of our cyber resilience, proactively monitoring threats, identifying vulnerabilities … and engineering robust security defences.As we expand our Security Engineering service, you'll be instrumental in developing cutting-edge capabilities and empowering our Security Operations Centre to stay ahead of the latest threats.This is a great opportunity to directly shape our security posture, getting hands-on with next-generation cyber security tools. You'll thrive More ❯