1 to 25 of 64 Information Security Jobs in the Thames Valley

inspiring Risk Management Leader to come and join our team. As a member of the Information Security - Governance Risk and Compliance team (InfoSec GRC), you'll maintain the confidentiality, availability and integrity of MIB's information and information systems. This will primarily be achieved through identification … Security Strategy Development, review and alignment of Information Security Policy Create, deliver and maintain information security awareness programmes Ensure InfoSec policies, procedures and standards are accessible, communicated and understood by employees, contractors and vendors, delivering training when required. Attendance of relevant governance groups within MIB … Risk Management and maintenance of the ISS Risk Register, ensuring risks are actively identified and managed or exemptions are approved and recorded. Completion of InfoSec risk assessments and workshops. Ensuring that InfoSec risk governance and control frameworks are maintained and that risks/issues are reported and escalated appropriately. Review More ❯

Chief Information Security Officer £58,123 plus £1,750 location allowance and excellent benefits, including Civil Service pension Full time Based at Hanslope Park near Milton Keynes, with the flexibility of hybrid working depending on business need Free shuttle bus available between central Milton Keynes and Hanslope Park … An expert in information security and information risk management, this may be the most unique and important opportunity in your career to date. Not only will you assure data that matters hugely to the interests of the UK and our partners around the world. Youll also have … and growth mean as much as the global mission we're on. In our world, it all matters. For our organisation, the safety and security of our teams and our information is more than a want, its a must. Thats what makes our Corporate Governance team so vital. More ❯

Head of Information Security required for online retail business. The role will initially be focused on ISO27001 & ISO9001 recertifications. Responsibilities Lead on information security strategy and implementation of security roadmap Develop security KPIs and track their progress Advise senior management on risk levels and … any changes impacting security posture, including emerging threats Create, maintain, and implement information security policies Continuously validate the firm against policies and procedures to ensure compliance against ISO 27001, ISO 9001, Cyber Essentials+, and GDPR Manage and continuously improve of the firms Information Security Management … System Oversee the information security training and awareness program Lead on internal and external audits and track audit findings through to mitigation Identify and communicate emerging security threats with relevant stakeholders Provide security due diligence in procurement processes and oversee continuous supplier assurance Manage security More ❯

View less categories Sector Retail and Wholesale Role Manager Contract Type Permanent Hours Full Time About the role Join the John Lewis Partnership's Information Security Engineering team and play a crucial role in protecting our customers, Partners, and business from evolving cyber threats. The John Lewis Partnership … s Information Security strategy is bold and ambitious. We provide a collection of security services, delivered through people, processes, and technology. Working collaboratively, these services ensure that customers can shop with us efficiently, safely, and securely, every single day. A key component of this is the Threat … will spend about one day per week at Bracknell and the rest working from home. Occasional visits to other locations may be required. Our Infosec team currently works from the office every Tuesday for connection and ad-hoc meetings, depending on business needs. There is a need for on-call More ❯

Senior Security Engineer 6 month contract Reading/Havant 1 day per week in the offices Our client is looking for a Security Engineer, to provide SME input to in-flight IT and Business projects to embed security requirements, manage risks and enable security by design. … RESPONSIBILITIES • Liaise with project stakeholders as an Information Security SME throughout the project lifecycle, including representing the Information Security Advisory team at stage gate meetings. • Perform security risk assessments against projects to determine control requirements and track and report on security requirements levied on … projects/initiatives through to successful implementation • Develop security-related project artefacts/patterns to support consistent security input to projects. • Perform controls validation to ensure that any initial requirements were implemented as expected. • Identify and document any residual risks and engage with the Information Security More ❯

Senior Security Engineer - 6 month contract Job Type: Contract/Temporary Location: Not specified Job Ref: BBBH50 Date Added: April 23rd, 2025 Consultant: Not specified Working Arrangement: 1 day per week in the offices Our client is looking for a Security Engineer to provide SME input to in … flight IT and Business projects to embed security requirements, manage risks and enable security by design. RESPONSIBILITIES: Liaise with project stakeholders as an Information Security SME throughout the project lifecycle, including representing the Information Security Advisory team at stage gate meetings. Perform security risk assessments against projects to determine control requirements and track and report on security requirements levied on projects/initiatives through to successful implementation. Develop security-related project artefacts/patterns to support consistent security input to projects. Perform controls validation to ensure that any initial More ❯

forefront of the green revolution, where every line of code contributes to a cleaner, brighter future. Key Responsibilities: Liaise with project stakeholders as an Information Security SME throughout the project lifecycle, including representing the Information Security Advisory team at stage gate meetings. Perform security risk … assessments against projects to determine control requirements and track and report on security requirements levied on projects/initiatives through to successful implementation Develop security-related project artefacts/patterns to support consistent security input to projects. Perform controls validation to ensure that any initial requirements were … implemented as expected. Identify and document any residual risks and engage with the Information Security Risk team to ensure these are tracked and managed. Work collaboratively with the wider Information Security function, Enterprise Architecture & Service Transition team to ensure a consistent approach to embedding security More ❯

forefront of the green revolution, where every line of code contributes to a cleaner, brighter future. Key Responsibilities: * Liaise with project stakeholders as an Information Security SME throughout the project lifecycle, including representing the Information Security Advisory team at stage gate meetings. * Perform security risk … assessments against projects to determine control requirements and track and report on security requirements levied on projects/initiatives through to successful implementation * Develop security-related project artefacts/patterns to support consistent security input to projects. * Perform controls validation to ensure that any initial requirements were … implemented as expected. * Identify and document any residual risks and engage with the Information Security Risk team to ensure these are tracked and managed. * Work collaboratively with the wider Information Security function, Enterprise Architecture & Service Transition team to ensure a consistent approach to embedding security More ❯

Overview The IT Security Manager (ITSM) acts as an interface between the Executive Director of IT and IT Security strategic and process-based activities and the work of the technology-focused analysts, engineers, and administrators in the Information Technology (IT) organization. The ITSM is a leadership role … the IT organization and business management to align priorities and plans with key business objectives. This role and its function are part of the Information Technology shared services model. A Team Member in a shared service structure works within a dedicated business unit (including people, processes, and technologies) that … and specifications, as well as develop metrics for ongoing performance measurement and reporting. Coordinates the IT organization's technical activities to implement and manage security infrastructure, and to provide regular status and service-level reports to management. Strategic Support: Works with the Executive Director of IT and IT Security More ❯

We are searching for a Senior Software Security Architect/Senior Application Security Architect for a marketing leading and award-winning technology and data driven business. The position is offered on a remote basis. The role is hands-on and very software engineering focused - you will be responsible … an integral part of all development and deployment processes. Providing expert software security advice (design, coding, testing) to the Software Engineering Community, to InfoSec, DevOps and other teams. Defining and delivering secure software development of information to the software engineering teams. Escalating issues appropriately, to various teams and … Friendly Policies. Remote Working. KEYWORDS Senior Software Security Architect, Senior Application Security Architect, SDLC, Secure by Design, Architecture, Software Development, Engineering, DevOps, InfoSec, Security, Security Strategy, Best Practice, Programming, Code, C++, C#, C, .NET Core, Java, JavaScript, Node.js, Angular, React, OWASP, Agile, Application Threat Modelling, Security More ❯

Location - Berkshire/full time onsite Duration - 12 months Rate - up to 90ph/inside IR35 Job Purpose: To provide specialist information security oversight, advice and guidance to projects and functions on all aspects of information security in order to provide assurance that functions on all … aspects of information security ie and/or classified information assets, materials and/or equipment are subject to an acceptable risk management regime. Key Accountabilities: Provide analysis of risks to information systems in order to inform risk owners and project managers to allow effective decision … making. Provide expert subject matter advice to CISO and other elements of the IS management chain. Ensure IT projects are provided with timely technical security advice. Develop and apply the overall security architecture of the organisation and the place within in it of key security controls. Maintains More ❯

Role Title: Information Security Specialist Location: Oxfordshire Clearance Required: DV British Citizens only Contract Type: Inside IR35 Duration: 12 months Rate/Salary: £700pd Overview We are seeking a highly skilled DV-cleared Information Security Specialist to support a range of high-profile programmes with national … significance. You ll provide expert guidance on information assurance and cyber risk, helping ensure systems, solutions, and data are protected by effective, risk-based security controls. This role is ideally suited to someone with a strong background in secure government or defence environments, capable of working across multiple … stakeholders and influencing key decisions from a security perspective. Key Responsibilities Analyse and communicate cyber and information risks to project teams and risk owners. Provide expert subject matter advice to senior stakeholders, including CISOs and project leads. Guide IT and transformation projects on security best practices, architecture More ❯

Role Title: Information Security Specialist Location: Oxfordshire Clearance Required: DV - British Citizens only Contract Type: Inside IR35 Duration: 12 months Rate/Salary: £700pd Overview We are seeking a highly skilled DV-cleared Information Security Specialist to support a range of high-profile programmes with national … significance. You'll provide expert guidance on information assurance and cyber risk, helping ensure systems, solutions, and data are protected by effective, risk-based security controls. This role is ideally suited to someone with a strong background in secure government or defence environments, capable of working across multiple … stakeholders and influencing key decisions from a security perspective. Key Responsibilities Analyse and communicate cyber and information risks to project teams and risk owners. Provide expert subject matter advice to senior stakeholders, including CISOs and project leads. Guide IT and transformation projects on security best practices, architecture More ❯

seeks to solve the world's most challenging problems across four high-risk, high-reward, high-impact humane endeavours: health and medical science; food security and sustainable agriculture; climate change and clean energy; and government innovation in an era of artificial intelligence. EIT Oxford is investing significant resources in … efforts to drive long-term, sustainable innovation to meet humanity's most enduring challenges. We are seeking an experienced and visionary Head of IT Security to lead our cybersecurity function. Reporting to the IT Director, you will be responsible for safeguarding our critical scientific and technological assets. This role … demands a proactive leader with deep expertise in Security Operations, Risk & Compliance Management, Identity & Access Management and the ability to work cross-functionally with IT, research teams and executive leadership. The successful candidate will be instrumental in building and enhancing security systems, frameworks, and processes to support the More ❯

the offices Our client is looking for an MS Defender Engineer, to provide SME input to in-flight IT and Business projects to embed security requirements, manage risks and enable security by design. RESPONSIBILITIES * Liaise with project stakeholders as an Information Security SME throughout the project … life cycle, including representing the Information Security Advisory team at stage gate meetings. * Perform security risk assessments against projects to determine control requirements and track and report on security requirements levied on projects/initiatives through to successful implementation * Develop security-related project artefacts/… patterns to support consistent security input to projects. * Perform controls validation to ensure that any initial requirements were implemented as expected. * Identify and document any residual risks and engage with the Information Security Risk team to ensure these are tracked and managed. * Work collaboratively with the wider More ❯

Security Regulatory Compliance Manager Permanent Reading – Hybrid-working MBNL’s mission is to create maximum value for our shareholders by delivering and managing their best network experiences at the lowest cost. The Information Security department aims to minimize the impact of security events on MBNL business … outcomes and protect the value of the business. Context: Reporting to the Head of Information Security, the Security Regulatory Compliance Manager is integral to safeguarding the organization's assets, ensuring smooth operations, and maintaining a positive reputation with key stakeholders, regulators, and the wider industry. This role … ensures MBNL's compliance with security regulations such as TSA, DPA, and CSR, supporting program delivery, security teams, and managed service providers. This role is also fundamental in ensuring MBNL meets its regulatory obligations under TSA by maintaining its ISO27001 certification. This is a hybrid role with a More ❯

Security Regulatory Compliance Manager Permanent Reading - Hybrid-working MBNL's mission is to create maximum value for our shareholders by delivering and managing their best network experiences at the lowest cost. The Information Security department aims to minimize the impact of security events on MBNL business … outcomes and protect the value of the business. Context: Reporting to the Head of Information Security, the Security Regulatory Compliance Manager is integral to safeguarding the organization's assets, ensuring smooth operations, and maintaining a positive reputation with key stakeholders, regulators, and the wider industry. This role … ensures MBNL's compliance with security regulations such as TSA, DPA, and CSR, supporting program delivery, security teams, and managed service providers. This role is also fundamental in ensuring MBNL meets its regulatory obligations under TSA by maintaining its ISO27001 certification. What you can expect to be doing More ❯

Security Regulatory Compliance Manager Permanent Reading – Hybrid-working MBNL’s mission is to create maximum value for our shareholders by delivering and managing their best network experiences at the lowest cost. The Information Security department aims to minimize the impact of security events on MBNL business … outcomes and protect the value of the business. Context: Reporting to the Head of Information Security, the Security Regulatory Compliance Manager is integral to safeguarding the organization's assets, ensuring smooth operations, and maintaining a positive reputation with key stakeholders, regulators, and the wider industry. This role … ensures MBNL's compliance with security regulations such as TSA, DPA, and CSR, supporting program delivery, security teams, and managed service providers. This role is also fundamental in ensuring MBNL meets its regulatory obligations under TSA by maintaining its ISO27001 certification. This is a hybrid role with a More ❯

people's lives, so we strive to do it well, with integrity and their future in mind. Role Overview We're looking for an Information Security Analyst to join our team. The main function of the role is to assist the PPF in maintaining compliance based on recommended … security practices. This role focuses on testing and reviewing controls both in place and what is currently being delivered. Additionally, there will be a significant part of audit and review work, contributing to third-party supplier meetings to ensure Information Security is maintained. Candidate Requirements We require … an individual with experience in information security controls and frameworks, ideally supported by relevant certifications or higher educational qualifications. You should be comfortable with diverse technical concepts and understand how they relate to vulnerabilities and risks. Opportunities Finally, you'll have the opportunity to learn how a Government More ❯

Senior Information Systems Security Specialist - Berkshire (Hybrid) - Circa £75K **Security Clearance Required** We're seeking a Senior Information Systems Security Specialist to provide expert oversight, advice, and guidance on all aspects of information security. This is a fantastic opportunity to play a vital role … in ensuring sensitive & classified information assets are managed with the highest level of assurance. Key Responsibilities: Deliver expert analysis of risks to information systems to support informed decision-making. Advise senior leadership and IT management on security strategies and best practices. Guide IT projects with timely and … accurate technical security advice. Contribute to and develop the organisation's overall security architecture and controls. Promote a strong culture of safety, quality, and high professional standards. Your Day-to-Day Will Involve: Working with internal teams and suppliers to assess and mitigate information risks. Leading on More ❯

Security Regulatory Compliance Manager - Mobile Telecoms Permanent Reading – Hybrid-working - 2 days/week in office Context: Reporting to the Head of Information Security, the Security Regulatory Compliance Manager is integral to safeguarding the organization's assets, ensuring smooth operations, and maintaining a positive reputation with … key stakeholders, regulators, and the wider industry. This role ensures compliance with security regulations such as TSA, DPA, and CSR, supporting program delivery, security teams, and managed service providers. This role is also fundamental in ensuring The Company meets its regulatory obligations under TSA by maintaining its ISO27001 … certification. What you can expect to be doing: Deliver security regulatory compliance and manage associated governance and risk activities. Manage the overall compliance programme for TSA, CSR, and DPA regulations as well as assembling evidence for continuous compliance activities such as S135 returns. Balance regulatory compliance with business impact More ❯

Reporting to the Head of Information Security, the Security Regulatory Compliance Manager is integral to safeguarding the organization's assets, ensuring smooth operations, and maintaining a positive reputation with key stakeholders, regulators, and the wider industry. This role ensures MBNL's compliance with security regulations such … as TSA, DPA, and CSR, supporting program delivery, security teams, and managed service providers. This role is also fundamental in ensuring MBNL meets its regulatory obligations under TSA by maintaining its ISO27001 certification. What you can expect to be doing: • Deliver security regulatory compliance and manage associated governance … returns. • Balance regulatory compliance with business impact, ensuring controls are effective without hindering business operations. • Oversee Managed Service Providers (MSPs) who manage IT and security for MBNL. Ensure they meet security regulatory compliance and MBNL security requirements. • Chair and manage various governance forums. Gain agreements, understand and More ❯

a third of our economy - yet have been largely neglected both by traditional high street banks and modern fintech providers. Department Description Allica's security team plays a crucial role in maintaining the integrity and security of the company's information systems. They ensure that the ISMS … Information Security Management System) controls are not only up to date but also effectively embedded across all departments. This requires a proactive approach and close collaboration with various teams, such as Engineering, Platform, Risk, and Compliance, to address any security concerns and implement necessary measures. Role Description … We are looking for an experienced and dynamic Lead Security Engineer to join our security team. The role will be pivotal in building, leading and enhancing our security posture. You will lead a team of security engineers, drive security initiatives and play a key role More ❯

partners across 65 countries, we deliver on the promise of helping our customers, colleagues, and communities thrive in an ever-changing world. For additional information, visit us at . Job Description Role Purpose The purpose of this role is to analyse, identify, rectify & recommend specific improvement measures that help … in the security posture of the organization by protecting the sensitive information. Do Ensuring customer centricity by providing apt cybersecurity Monitoring and safeguarding the log sources and security access Planning for disaster recovery in the event of any security breaches Monitor for attacks, intrusions and unusual, unauthorized … or illegal activity Performs moderately complex log reviews and forensic analysis to identify unauthorized or unacceptable access to data or systems Conduct security assessments, risk analysis and root cause analysis of security incidents Handling incidents escalated by the L1 team in 24x7 rotational shifts Use advanced analytics tools More ❯

/Bucks Salary: £28,000 £35,000 (depending on experience) Training : Professional certifications such as Cyber Essentials Assessor, Cyber Essentials Plus Assessor Fortis Cyber Security Limited, a growing information security consultancy, is seeking a qualified, highly motivated and skilled Cyber Essentials/CE Plus Assessor to join … that stays at the forefront of the constantly evolving field of Cybersecurity. This role also has the potential to lead/evolve into IT Security, Penetration Testing, and Information Governance specialisations. Key Responsibilities Conduct Cyber Essentials and Cyber Essentials Plus Assessment: Perform comprehensive assessments of organisations' cybersecurity practices … systems, and controls to ensure compliance to the Cyber Essentials Scheme. Conduct in-depth vulnerability assessments to identify potential security weaknesses. Verify the effectiveness of CE security controls through rigorous testing and analysis. Document CE and CE+ assessment findings, including detailed reports and recommendations. Provide Guidance and Recommendations More ❯