15 of 15 Security Posture Jobs in the City of London

AWS Cloud Security Engineer – Contract (Inside IR35) Hybrid 2/3 days from the London office We are seeking an experienced Cloud Security Engineer with a strong emphasis on AWS. This is a hands on role, the successful candidate will be responsible for designing, implementing, and maintaining secure cloud infrastructure, ensuring a robust security posture and … applications. Key Responsibilities: Design and implement secure AWS cloud infrastructure, focusing on system architecture, Identity and Access Management (IAM), encryption, data protection, and network security. Collaborate with the Information Security and application teams to drive cloud security initiatives and align with the broader security strategy. Enhance and secure CI/CD pipelines across multiple applications by embedding … secure coding and DevSecOps best practices. Develop automation tools and scripts to streamline security processes, monitor key security metrics, and support operational demands. Stay up to date with emerging threats, industry trends, and mitigation techniques to continually improve cloud security controls. Required Skills and Experience: Minimum 3 years in a DevSecOps capacity and 5+ years in cloud More ❯

AWS Cloud Security Engineer – Contract (Inside IR35) Hybrid 2/3 days from the London office We are seeking an experienced Cloud Security Engineer with a strong emphasis on AWS. This is a hands on role, the successful candidate will be responsible for designing, implementing, and maintaining secure cloud infrastructure, ensuring a robust security posture and … applications. Key Responsibilities: Design and implement secure AWS cloud infrastructure, focusing on system architecture, Identity and Access Management (IAM), encryption, data protection, and network security. Collaborate with the Information Security and application teams to drive cloud security initiatives and align with the broader security strategy. Enhance and secure CI/CD pipelines across multiple applications by embedding … secure coding and DevSecOps best practices. Develop automation tools and scripts to streamline security processes, monitor key security metrics, and support operational demands. Stay up to date with emerging threats, industry trends, and mitigation techniques to continually improve cloud security controls. Required Skills and Experience: Minimum 3 years in a DevSecOps capacity and 5+ years in cloud More ❯

Senior Information Security Engineer - Certified Security Auditor UK Security Clearance Required (or eligibility) What's in it for you? Join a fast-growing, global technology leader with a proven track record of innovation in AI, cloud, and digital solutions. This is a career-defining opportunity where you'll benefit from: Competitive Salary £85,000 + 8% annual … bonus + 10% pension. Hybrid working - 2 days onsite, 3 days remote. London or Southampton. Excellent long-term career prospects with global opportunities. Exposure to high-profile, enterprise-level security projects. The Role We're looking for a Senior Information Security Engineer with a certified security auditor background and eligibility for UK Security Clearance. You'll … be responsible for designing, implementing, and maintaining security measures to protect enterprise systems, networks, and SaaS products. This is a hands-on, high-impact role in a collaborative, cross-functional environment. Key Responsibilities: Security Tooling: Deploy, maintain, integrate, and configure security tools. Vulnerability Management: Conduct security assessments, penetration testing, and vulnerability scans. Incident Response: Lead investigations More ❯

Cloud Security Engineer - London - 480/pd Outside IR35 Please note - this role will require you to work from the London based office 1-2 days per week. You must have the unrestricted right to work in the UK to be eligible for this role. About the Role A digitally driven reinsurance broker is seeking a Cloud Security Engineer to play a key role in strengthening its cloud security posture across multi-cloud environments. This is a hands-on contract role focused on designing, implementing, and maintaining secure cloud environments, with a strong emphasis on leveraging the latest Google Cloud Platform (GCP) technologies. You'll work closely with engineering, operations, and compliance teams to embed … security best practices across platforms including GCP, Azure, and M365. Key Responsibilities Design, implement, and manage cloud security policies and solutions for GCP and Azure. Configure and maintain security tools such as Cloud IAM, Security Command Center, VPC Service Controls, Azure Security Center, Azure AD, and Microsoft Defender for Cloud. Conduct security assessments, vulnerability More ❯

Head of Information Security Location: London Rate: Up to £1,000/day outside IR35 Hybrid: 50% of time onsite Sector: Strong regulated industries Contract Type: 6-9 months contract Job Summary: Our client, a leading legal firm, is seeking an experienced Head of Information Security to lead their security function and drive enterprise-wide strategy. This … senior leadership role requires someone with a strong legal sector background who can quickly assess their current security posture, identify improvement opportunities, and establish strategic roadmaps. The ideal candidate will bring substantial exposure to data processing, enterprise applications, and outsourced systems, with proven experience in systems design, project management, and crisis management. You will be a highly technical … oversight roles. The ideal candidate will demonstrate collaborative skills, cultural fit, and flexibility to integrate quickly into their established team environment. Key responsibilities: Develop, implement, and manage enterprise-wide security strategy in partnership with senior stakeholders Assess current information security maturity and develop a strategic roadmap to achieve the target state Take ownership of ongoing audit projects and More ❯

Information Security GRC Manager | ISO27001, SOC2, Azure Security | Global Trading Platform £70–80k base + 10% bonus Hybrid in London Training budget for certifications + conference attendance Strong emphasis on professional autonomy and ethical leadership A newly created opportunity to lead and shape the GRC function of a global financial group at a pivotal time, supporting the secure … role with real scope: oversight of policy, third-party risk, architectural reviews, and cloud compliance. You'll work closely with the Head of InfoSec to maintain audit readiness, improve security posture, and influence business-wide awareness and accountability. What you’ll bring: 5+ years in InfoSec, IT Security or Ops within a regulated environment Certification required: CISSP … CISM, CRISC, or equivalent Strong knowledge of ISO27001:2022, SOC2 Type II, NIST CSF, PCI DSS, GDPR, DORA Confident with security risk assessments, audit responses, and policy governance Hands-on cloud security experience: ideally with Azure and the Shared Responsibility Model Comfort with complexity: able to analyze architecture, track metrics, and translate acronyms into actionable plans Mentorship ability More ❯

Information Security GRC Manager | ISO27001, SOC2, Azure Security | Global Trading Platform £70–80k base + 10% bonus Hybrid in London Training budget for certifications + conference attendance Strong emphasis on professional autonomy and ethical leadership A newly created opportunity to lead and shape the GRC function of a global financial group at a pivotal time, supporting the secure … role with real scope: oversight of policy, third-party risk, architectural reviews, and cloud compliance. You'll work closely with the Head of InfoSec to maintain audit readiness, improve security posture, and influence business-wide awareness and accountability. What you’ll bring: 5+ years in InfoSec, IT Security or Ops within a regulated environment Certification required: CISSP … CISM, CRISC, or equivalent Strong knowledge of ISO27001:2022, SOC2 Type II, NIST CSF, PCI DSS, GDPR, DORA Confident with security risk assessments, audit responses, and policy governance Hands-on cloud security experience: ideally with Azure and the Shared Responsibility Model Comfort with complexity: able to analyze architecture, track metrics, and translate acronyms into actionable plans Mentorship ability More ❯

Cyber Security Manager | Financial Services | Hybrid Do you want to be a driving force in my client's DFIR team? About the Role: As a Cyber Security Manager, you will be responsible for monitoring, analyzing, and improving the security posture of the organization. You will drive the maturity of security monitoring, incident response, and threat … intelligence capabilities, working closely with technical and business teams. Key Responsibilities: Develop and refine security monitoring controls and use-cases to detect threats and anomalies. Investigate security incidents, conduct forensics analysis, and manage incident response processes. Collaborate with independent penetration testing programs and support risk assessment processes. Implement and mature threat intelligence capabilities and integrate with security monitoring frameworks. Develop and oversee vulnerability management programs, ensuring alignment with industry standards. Provide subject matter expertise on cyber security frameworks, including NIST, MITRE ATT&CK, and Kill Chain methodologies. About You: Proven experience in Cyber Security, with a focus on incident response, security monitoring, and threat intelligence. Strong knowledge of security technologies, including SIEM More ❯

Cyber Security Manager | Financial Services | Hybrid Do you want to be a driving force in my client's DFIR team? About the Role: As a Cyber Security Manager, you will be responsible for monitoring, analyzing, and improving the security posture of the organization. You will drive the maturity of security monitoring, incident response, and threat … intelligence capabilities, working closely with technical and business teams. Key Responsibilities: Develop and refine security monitoring controls and use-cases to detect threats and anomalies. Investigate security incidents, conduct forensics analysis, and manage incident response processes. Collaborate with independent penetration testing programs and support risk assessment processes. Implement and mature threat intelligence capabilities and integrate with security monitoring frameworks. Develop and oversee vulnerability management programs, ensuring alignment with industry standards. Provide subject matter expertise on cyber security frameworks, including NIST, MITRE ATT&CK, and Kill Chain methodologies. About You: Proven experience in Cyber Security, with a focus on incident response, security monitoring, and threat intelligence. Strong knowledge of security technologies, including SIEM More ❯

Job title: Security Architect Client: Investment Bank Rate: Up to £900 p/d (inside IR35) Duration: 6 month rolling Location: London/Hybrid My client are seeking an experienced Security Architect to join their Cyber Security team. The successful candidate will be responsible for designing and maintaining secure architectures across cloud, on-premises, and hybrid environments. … This role involves defining security standards, conducting risk assessments, evaluating emerging technologies, and ensuring secure design practices are embedded across the organization. The role requires close collaboration with engineering, infrastructure, and DevSecOps teams, providing expert guidance to uphold a strong security posture and support strategic business initiatives. Key Responsibilities: Design secure architectures across cloud, on-premises, and … hybrid environments. Define security principles, standards, and reference architectures. Review technical designs for security compliance and risk. Establish secure-by-design guidelines and support DevSecOps practices. Evaluate new technologies and lead security tool POCs and integrations. Perform threat modelling and security risk assessments. Collaborate with cross-functional teams on secure architecture and governance. Provide security More ❯

Job title: Security Architect Client: Investment Bank Rate: Up to £900 p/d (inside IR35) Duration: 6 month rolling Location: London/Hybrid My client are seeking an experienced Security Architect to join their Cyber Security team. The successful candidate will be responsible for designing and maintaining secure architectures across cloud, on-premises, and hybrid environments. … This role involves defining security standards, conducting risk assessments, evaluating emerging technologies, and ensuring secure design practices are embedded across the organization. The role requires close collaboration with engineering, infrastructure, and DevSecOps teams, providing expert guidance to uphold a strong security posture and support strategic business initiatives. Key Responsibilities: Design secure architectures across cloud, on-premises, and … hybrid environments. Define security principles, standards, and reference architectures. Review technical designs for security compliance and risk. Establish secure-by-design guidelines and support DevSecOps practices. Evaluate new technologies and lead security tool POCs and integrations. Perform threat modelling and security risk assessments. Collaborate with cross-functional teams on secure architecture and governance. Provide security More ❯

Lead Incident Response Engineer PLEASE NOTE: 4 days per week required in the office. Reporting into the Security Operations Centre Senior Manager, the role will take the lead across the EMEA region to develop and integrate the Incident Response (IR)/SOC security infrastructure to monitor both on premise and cloud environments. The role will serve as a … resource in the SOC and Incident Response processes. - Configure and integrate platforms, tools, service providers, and solutions into IR/SOC systems, make recommendations as needed. - Consolidate and improve security logging and monitoring solutions on premise and in the cloud to detect and respond to security threats in Real Time. - Drive efforts to automate and accelerate the detection … and response processes. - Ensure integration of input from the deployed suite of security tools to SOC systems (eg SIEM/SOAR), including, but not limited to, IDS/IPS, End Point Protection, MDR/XDR, PAM, MFA, DNS Security, and cloud security posture management. Required Skills/Experience: - 8+ years of hands-on experience in information More ❯

working with a key client on a Network Analyst requirement. We’re looking for someone to play a pivotal role in delivering a network segmentation programme focused on improving security posture and preventing lateral movement. Essential Proven experience implementing network segmentation strategies Strong understanding of lateral movement risks and mitigation techniques Skilled in mapping data flows across complex More ❯

across regions, and aligned with international regulations especially in the US. The role requires strong leadership across diverse regulatory landscapes, deep technical IAM expertise, and the ability to influence security posture globally. Skills Description: At least 10 years as a Program/Project Manager within the financial services, including 5+ years in IAM related function. Strong knowledge of More ❯

across regions, and aligned with international regulations especially in the US. The role requires strong leadership across diverse regulatory landscapes, deep technical IAM expertise, and the ability to influence security posture globally. Skills Description: At least 10 years as a Program/Project Manager within the financial services, including 5+ years in IAM related function. Strong knowledge of More ❯