1 to 25 of 38 Security Posture Jobs in the City of London

model across the firm and throughout all levels of the client organization, generating results that allow our clients to thrive. What You'll Do Position Overview As a Cyber Security Incident Response Manager at BCG, you will be a key member of our Cyber Security Incident Response Team (CSIRT), responsible for identifying, analyzing, and mitigating cyber threats. This … role requires a proactive approach to threat hunting, cyber threat intelligence, and incident response, ensuring the protection of BCG’s global network. You will work closely with the Security Operations Center (SOC), Security Information and Event Management (SIEM), and Managed Security Service Provider (MSSP) to enhance detection and response capabilities. Your expertise will contribute to strengthening our … security posture and minimizing business risks associated with cyber threats. What Will You Do? Act as a Tier 3 Incident Responder, supporting complex investigations into cyber security incidents. Conduct proactive threat hunting to detect and neutralize emerging threats. Monitor and analyze logs via SIEM, EDR, and network traffic analysis tools for potential attack indicators. Investigate security More ❯

About the Role: We’re a leading Managed Service Provider (MSP) delivering cutting-edge IT and security solutions to businesses worldwide. Our mission is to protect digital assets through proactive security measures, advanced threat intelligence, and world-class support. Join a dynamic, innovation-driven team where your skills make a real impact. Your Mission: As a Cyber Security Engineer, you’ll take charge of designing and implementing advanced security systems, supporting clients in improving their security posture, and staying ahead of emerging cyber threats. You’ll play a crucial role in delivering technical excellence, leading customer engagements, and mentoring team members. Key Responsibilities: Design, implement, and manage enterprise-grade security solutions (firewalls, SIEM … IDS/IPS, endpoint protection, cloud security). Shape strategic security recommendations and collaborate on technical win plans. Maintain and update security policies, procedures, and incident response plans. Deliver security awareness training and advise clients on best practices. Support audits and compliance initiatives (ISO 27001, NIST, GDPR, etc.). Work cross-functionally with internal and external More ❯

Introduction Infinigate Group are a leading, global distributer, specialising in total cyber security solutions and services. With 4 UK offices based in London, Woking, South Cerney and Fareham, we take pride in providing unrivalled support and value for our vendor and reseller partner communities. Our team at Infinigate consists of IT security experts as well as highly skilled … we adopt a flat hierarchy, high performing teams, efficient decision-making processes and a nurturing and learning environment which rewards performance. Role Purpose Infinigate are seeking an ambitious Cyber Security Engineer to join their UK IT Security team. This new role within the business has been designed in response to business growth demands and to offer career trajectory … candidate within an fast accelerating industry and company. To be successful in this role, you will wield a broad range of skills and deep understanding within Cloud network and security architecture (Azure), and excellent communication and stakeholder management skills. This role will see you taking ownership of for the delivery of security solutions within the group to support More ❯

uniquely collaborative model across the firm and throughout all levels of the client organization, generating results that allow our clients to thrive. What You'll Do The Senior Director – Security Engineering Platform Lead is responsible for leading the design, delivery, and continuous evolution of BCG's security platforms across identity, device, and data protection domains. This role ensures … end-to-end security engineering across all technology environments, including cloud, on-prem, and hybrid systems. The leader will drive strategic planning, execution, and operations of scalable, automated, and resilient security controls that protect BCG’s global operations and users, while enabling innovation and agility across BCG Core, BCG X, and CT worldwide. This role is also accountable … for embedding security within DevSecOps practices, enforcing automation at scale, and applying Site Reliability Engineering (SRE) principles across all security services. The role requires strong partnership with ISRM, with a focus on balancing and prioritizing security requirements, automation opportunities, user experience needs, and broader business outcomes. Key Responsibilities: Strategic Leadership & Transformation: Define and execute a unified security More ❯

Job Title: Senior Cyber Security Engineer Job Ref: SCSE-443 Closing Date: 25th July 2025 Summary We are seeking a Senior Cyber Security Engineer to join our London-based team. This role is critical in safeguarding our IT infrastructure and ensuring the resilience of our systems. You will be responsible for implementing and maintaining security protocols, managing … threat detection tools, and supporting the broader IT team in delivering secure and reliable services. You will play pivotal role in improving company security posture and internal best practices adoption. This is technical hands-on role. Senior Cyber Security Engineer will report to Director of Technology. Responsibilities Monitor, detect, respond, and manage security incidents across on … prem, cloud environments, and social media services, on multiple platforms and operating systems, Manage relationships and work closely with third-party cyber security service providers. Manage and optimize security tools, including endpoint protection, Microsoft Intune, Entra, Azure, and external detection and response tools. Conduct vulnerability assessments and coordinate patch management cycles. Collaborate with infrastructure and support teams to More ❯

Social network you want to login/join with: Cyber Security Analyst, london (city of london) col-narrow-left Client: Infinigate Group Location: london (city of london), United Kingdom Job Category: Other - EU work permit required: Yes col-narrow-right Job Views: 2 Posted: 16.06.2025 Expiry Date: 31.07.2025 col-wide Job Description: Introduction Infinigate Group are a leading, global … distributer, specialising in total cyber security solutions and services. With 4 UK offices based in London, Woking, South Cerney and Fareham, we take pride in providing unrivalled support and value for our vendor and reseller partner communities. Our team at Infinigate consists of IT security experts as well as highly skilled support staff. With the right people in … we adopt a flat hierarchy, high performing teams, efficient decision-making processes and a nurturing and learning environment which rewards performance. Role Purpose Infinigate are seeking an ambitious Cyber Security Analyst to join their UK IT Security team. This new role within the business has been designed in response to business growth demands and to offer career trajectory More ❯

you! So, even if you feel that you’re close but not an exact match, we encourage you to apply. Overview We are looking to add an experienced Senior Security Engineer to our Gallagher Technology Team. This role will be part of the global security architecture and engineering function in the UK, working closely with twin teams in … offer hybrid working, allowing you to spend two days a week in the office and three days working from home. Join a world-class team committed to driving exceptional security standards and making a real impact! How you'll make an impact Define and build Information Security engineering standards, artefacts, design patterns, and technical specification documents. Provide engineering … on Network Protocols, Remote Connectivity, Threat Prevention, Sandbox, DDoS, URL Filtering, and SSL decryption. Participate in troubleshooting design level issues. Assess, monitor, and recommend improvements to the global network security architecture to improve security posture, mitigate risks, and balance costs. Apply skills to security services and help build and protect enterprise systems, applications, data, and assets More ❯

Cyber Security Specialist – AVP (Security testing) Docklands, London - Hybrid £80,000 - £90,000 per annum + annual discretionary bonus On behalf of a Leading financial services organisation, I am seeking an experienced Cyber Security Specialist at AVP level. The individual will play a critical role in strengthening the organisation security posture with hands on testing … of Security controls. The Specialist applies their expertise to recommend corrective actions, improvements to security controls and runs lessons learned forums. You will also conduct regular risk assessments and maintain risk register in RSA Archer. The company operate a hybrid work policy and therefore you must be willing to commit to 2 days per week and must be … within commutable distance of their London HQ. Responsibilities: Maintain security policy, standards, procedures and frameworks. Ensure alignment with security industry standards such as NIST CSF and NIST 800-53. Hands on testing of Security controls Conduct regular risk assessments and maintain risk register in RSA Archer. Represent security on audits and assessments, ensuring compliance with More ❯

Cloud Security Engineer – Contract (Inside IR35)/Hybrid We are seeking an experienced Cloud Security Engineer with a strong emphasis on AWS. The successful candidate will be responsible for designing, implementing, and maintaining secure cloud infrastructure, ensuring a robust security posture and supporting continuous delivery of our applications. Key Responsibilities: Design and implement secure AWS cloud … infrastructure, focusing on system architecture, Identity and Access Management (IAM), encryption, data protection, and network security. Collaborate with the Information Security and application teams to drive cloud security initiatives and align with the broader security strategy. Enhance and secure CI/CD pipelines across multiple applications by embedding secure coding and DevSecOps best practices. Develop automation tools … and scripts to streamline security processes, monitor key security metrics, and support operational demands. Stay up to date with emerging threats, industry trends, and mitigation techniques to continually improve cloud security controls. Required Skills and Experience: Minimum 3 years in a DevSecOps capacity and 5+ years in cloud security or engineering roles. Strong expertise in AWS More ❯

Job information: Functional Title - IT Security Specialist Department – Security Governance and Risk Management Corporate level – Associate Vice President Report to – Director of Security Location - London, onsite 2 days per week About the role: The individual will be part of the security function that is responsible for security governance, risk and assurance, to ensure the organisations … security posture is robust, compliant against the security policy, standards and controls. The position will require close collaboration with technical, operational, compliance and audit teams to create a secure and compliant technology environment. What you will be doing: Maintain security policy, standards, procedures and frameworks. Ensure alignment with security industry standards such as NIST CSF … and NIST 800-53. Act as an advisor to colleagues across the organisation on best security practice. Conduct regular risk assessments and maintain risk register in RSA Archer. Identify assess and prioritize security risk across the organisation’s information assets and environments. Understanding security gaps and provide evaluation and treatment options, consultation on remediation approaches to More ❯

GTF is currently hiring an CyberSecurity Consultant to work remotely. As a cybersecurity consultant, your key responsibilities revolve around helping organizations protect their digital assets and improve their overall security posture. Key responsibilities: Conducting comprehensive security assessments: This involves evaluating an organization's IT infrastructure, networks, systems, and applications to identify potential weaknesses and vulnerabilities. Performing vulnerability testing … Suite, Metasploit), you'll simulate attacks to uncover exploitable flaws. Developing threat analysis schedules and staying updated on emerging threats: Keeping abreast of the latest attack vectors, malware, and security trends is crucial. Developing and implementing security policies, standards, and procedures: This includes creating guidelines aligned with industry best practices and regulatory requirements (e.g., NIST CSF, ISO … GDPR). Designing and architecting secure IT environments: This may involve network security design, cloud security architecture (AWS, Azure, GCP), and implementing security technologies. Developing and assisting in the implementation of incident response plans: Creating documented procedures for handling security breaches and other incidents. Conducting tabletop exercises and simulations: Helping organizations practice their incident response procedures. More ❯

Information Security/Information Privacy SME (Contract) Location: Central London (Hybrid – 2 days onsite per week) Contract: Inside IR35 or Umbrella Engagement Duration: 6–12 months (with potential extension) Industry: Private Banking/Wealth Management Role Overview: We are seeking a highly experienced Information Security/Information Privacy Subject Matter Expert (SME) to support a leading private bank … and customer data remain secure and compliant with applicable standards (e.g., ISO 27001, GDPR, FCA requirements). Key Responsibilities: Serve as the SME for all matters related to information security and privacy. Advise on the development and maintenance of security policies, procedures, and frameworks. Review and strengthen current information security architecture and controls. Conduct risk assessments, gap … . Provide expert input on GDPR, UK Data Protection Act, and other relevant regulations. Partner with internal stakeholders across legal, compliance, IT, and operations to improve the organisation’s security posture. Assist with incident response planning and investigations as needed. Provide training and awareness support to staff and leadership. Support internal and external audits, including FCA and ISO More ❯

Social network you want to login/join with: Information Security Manager, London (City of London) Client: ConSol Partners Location: London (City of London), United Kingdom Job Category: Other EU work permit required: Yes Job Views: 6 Posted: 26.06.2025 Expiry Date: 10.08.2025 Job Description: I'm excited to share that one of our clients is hiring for an Information … Security Lead in London . If you're interested, please send your CV to apply. Title: Information Security Lead Location: London Job Type: Hybrid (3-4 days onsite) Purpose: The Information Security Lead will ensure the confidentiality, integrity, and availability of the client's information and IT systems, applying expertise in sectors like energy, mining, chemicals, or … process manufacturing to enhance security posture. Responsibilities include developing security strategies, leading initiatives, assessing vulnerabilities, and ensuring compliance with industry regulations, tailored to the soda and chemicals industries. Key Responsibilities: Develop and implement security strategies aligned with business goals and regulations. Lead creation and enforcement of security policies specific to the sectors. Conduct risk assessments and More ❯

Lead Security Architect The Opportunity Albany Beck is partnering with a global Investment Bank to deliver a critical Protocol Analysis & Remediation programme. We’re looking for a Lead Security Architect with deep technical expertise and a strategic mindset to drive the design and implementation of security controls focused on reducing the risk of attackers moving undetected between … you'll lead discovery, design, and implementation efforts, playing a vital role in reducing risk and progressing toward a Zero Trust framework. Key Responsibilities Lead the development of robust security architectures to detect, prevent and contain lateral movement between endpoints and workloads. Drive the discovery phase by analysing logs (via Azure Log Analytics) and auditing configurations to identify vulnerabilities … and insecure protocols. Define and present security architecture designs and risk reduction recommendations to Cyber Security Architecture and Engineering teams for sign-off. Collaborate with Linux and Windows SMEs to implement secure configurations and protocol controls. Architect and enforce network segmentation and access control models. Conduct security assessments, provide remediation strategies, and guide stakeholders in secure design More ❯

A growing multi-site retail business is looking for a Systems Analyst to support the ongoing performance, security, and usability of its IT systems and infrastructure. This role will focus on Microsoft 365 environments, end-user support, and contributing to the organisation’s broader cyber security posture. Working across head office, retail locations, and remote teams, this person … issues across key systems including ERP, POS, and integrated third-party tools. Oversee the provisioning, maintenance, and secure storage of company IT assets and A/V equipment. 🛡 Cyber Security & Compliance Help enforce and evolve best-practice security protocols (MFA, anti-virus, mail filtering, etc.). Participate in vulnerability management, incident response, and system audits. Maintain accurate documentation … IT support to escalate and resolve complex issues. Support user testing, training, and post-launch support for system changes. 📚 Process, Documentation & Continuous Improvement Ensure all IT processes, systems, and security practices are well documented. Contribute to ongoing process optimisation across IT support and incident response. Experience & Skills Required Proven experience in an IT support or systems analyst role — ideally More ❯

newly created role will be responsible for leading and growing the IAM ops function (3 people) and will be responsible for streamlining access controls and improving the organisation’s security posture from an IAM perspective. The role offers the chance to work in a fast moving, heavily regulated environment Key responsibilities on a daily basis will include: Designing … all IAM frameworks aligning to industry best practices User access management – overseeing user provision Security compliance to regulatory requirements – ISO27001, GDPR, SOX Role based access control assessment (RBAC) oversight Stakeholder engagement at all levels Reporting and documentation – user access policies and audit logs Cross team collaboration – technology, security and group risk. Incident Response: Ability to quickly and effectively … respond to access-related security incidents, including breaches, unauthorized access, or policy violations. Training and user awareness In order to be suitable you will need the following background: Experience in a similar IAM management/SME role Understanding if IAM tooling (SailPoint, OKTA, Azure AD), MFA and RBAC. We are not seeking candidates with an SME focus on one More ❯

Cloud Solutions Architect – Security & Secrets Management Focus • This is a strategic and hands-on cloud security architecture role with a focus on secrets management and non-human identity protection across multi-cloud and SaaS environments. • This is a 3–6 month contract paying up to £600/650 p/d, based remotely with potential on-site collaboration … organisations to drive innovation and secure complex systems across industries. What will you be doing? As a Cloud Solutions Architect, you will lead the design and delivery of cloud security enhancements, with emphasis on secrets management and identity access management in cloud environments. You’ll be the SME for related security capabilities and will engage with internal engineering … teams to embed secure design patterns. You’ll also drive standards, mentor teams, and help operationalise best practices within the cloud security domain. What will you need? • 3+ years experience implementing secrets management solutions at scale (e.g. HashiCorp Vault, Azure Key Vault, AWS Secrets Manager) • Experience with cloud security posture management (CSPM) across AWS, Azure, GCP • Proficiency More ❯

Job Title : Security and Compliance Manager Salary: £70,000-£100,000 + Benefits Location : UK - Remote Industry : AI + Consultancy This role offers an unparalleled chance to lead and shape the strategic direction of information security, quality management, AI governance, and data privacy. The successful candidate will be at the forefront of ensuring the organisation's adherence to … the highest standards, driving both internal and external trust. Key Responsibilities: - Strategic Leadership: Develop, implement, and continuously refine strategies for information security (ISO 27001), quality management (ISO 9001), AI governance (informed by ISO 42001 principles), and data privacy (e.g., GDPR, DPA), ensuring these align seamlessly with business objectives. - ISO &Compliance Framework Management: Lead the design, implementation, maintenance, and auditing … of an integrated management system. Serve as the primary contact for certification bodies and spearhead all audit activities. - Information Security Officer (ISO Role): Oversee the organisation's security posture, policies, risk management, and incident response, providing technically credible input . - AI Governance Lead: Manage the implementation and operation of AI governance, ensuring responsible AI practices. - Data Privacy More ❯

Security and Compliance Manager, london (city of london) Client: Immersum Location: london (city of london), United Kingdom Job Category: Other - EU work permit required: Yes Job Views: 4 Posted: 26.06.2025 Expiry Date: 10.08.2025 Job Description: Job Title : Security and Compliance Manager Location : UK - Remote This role offers an unparalleled chance to lead and shape the strategic direction of … information security, quality management, AI governance, and data privacy. The successful candidate will be at the forefront of ensuring the organisation's adherence to the highest standards, driving both internal and external trust. Key Responsibilities: - Strategic Leadership: Develop, implement, and continuously refine strategies for information security (ISO 27001), quality management (ISO 9001), AI governance (informed by ISO … Compliance Framework Management: Lead the design, implementation, maintenance, and auditing of an integrated management system. Serve as the primary contact for certification bodies and spearhead all audit activities. - Information Security Officer (ISO Role): Oversee the organisation's security posture, policies, risk management, and incident response, providing technically credible input . - AI Governance Lead: Manage the implementation and More ❯

Job Responsibilities Own the cultural shift to a Security DevSecOps mindset Manage & implement security controls, tools, and processes to secure applications and infrastructure Monitor and respond to security incidents and threats in a timely manner Stay up-to-date with security trends and best practices to continuously improve security posture Automate security testing … and deployment processes to ensure rapid and secure delivery of software Assessing Risk around the SDLC. Responsible for Risk assessments. Integrate Application Security Tools within existing Development Processes Assist with the Planning & Execution of Application Penetration Tests Serve as a Subject Matter Expert (SME) in the field of Application Security Skills Required Strong experience in software development and … security, key responsibility to "Wrap security around Products". Proficient in scripting languages such as PowerShell, YAML, JASON, etc. Experience in software security design review Strong knowledge of development principles such as NCSC Secure Development & Deployment Guidance, OWASP, NIST Secure Software Development Framework (SSDF - 800-218), Microsoft Azure Secure Development best practices, ISO27001 Experience with Azure cloud More ❯

We are seeking a skilled and hands on Information Security Analyst or Engineer to join a leading Global Law firm on an initial 12 month fixed term contract. This role is critical in helping the firm enhance its Information Security function by addressing existing audit findings (from both client and ISO audits), improving control maturity, and delivering defined … Security Target Operating Model. In this role, you will be a key technical contributor, supporting both project based initiatives and BAU tasks. This is an opportunity for someone comfortable working within application configuration portals. Key responsibilities include: Implementing and fine tuning configurations across security platforms Supporting audit remediation and control improvement activities Working with Cloud and on-prem … Active Directory environments Managing and maintaining Entra ID and M365 security configurations Collaborating with MSSP partners to enhance SIEM logic and configurations Writing and maintaining scripts and tools for security automation and configuration Troubleshooting and resolving technical issues across the security stack We’re looking for someone with: Proven experience in a security engineering or analyst More ❯

The Security Assurance Manager is responsible for identifying, assessing, and advising on the mitigation of security risks to protect the organisation's and our customers assets, employees, and operations. This role involves developing and implementing risk management strategies, conducting security assessments, ensuring compliance with regulations, and collaborating with key stakeholders to enhance the security posture of the company. Additionally, the Security Assurance Manager will undertake security threat assessments on assets across the London portfolio, advising colleagues and staff on risk mitigation opportunities and strategies. The role will also involve networking with other risk professionals in the industry and implementing a program of tabletop exercises across the portfolio, providing guidance on best practices. … The Security Assurance Manager will also advise and report back to senior management while being an integral part of the portfolio senior management team. Key Responsibilities Identify, analyse, and evaluate security threats, vulnerabilities, risks and solutions across the organisation. Develop, advise and implement risk mitigation strategies to minimise security threats. Conduct regular security assessments, audits, and More ❯

We have an exciting opportunity for a Software Security Engineer to join our Global Healthcare client. As a Security Engineer, you ll provide hands-on technical expertise to guide software development, delivery and continuous improvement focusing on risk and security. You ll help evolve our client s new Digital Platform so that it s secure and compliant with … both internal and industry regulations. You ll analyse new feature code to identify security risks and work with engineers to mitigate them, working and applying modern security standards such as OWASP CI/CD, DSOMM, SAMM and Cloud Security Posture management systems such as Azure Defender and Prisma Cloud. Our client empowers their people to balance … DAST (preferred) ideally with HTTP APIs Ability to manage large scale software estates from a operational perspective (build, release, monitoring, rollbacks, high availability, etc) Hands on experience building automated security test suites JOB DESCRIPTION Analysing new feature code to identify security risks and working with engineers to mitigate Delivering improvements to our DSOMM score, either working with teams More ❯

to create their own destiny andmake a positive contribution to the world of banking and society. THE ROLE We are seeking a Client facing and strategically mindedSVP, Head of Security Ops, Risk & Controls to lead the structuredoversight, operational assurance, and continuous improvement of our SaaSplatform. This role will sit at the heart of our operational governance model, workingwith both … the CTO, SaaS, this role will partner closelywith Group-wide functions including GRC, Legal, Finance, QA, and Engineering toensure secure, resilient, and high-quality SaaS delivery. OPPORTUNITIES Operational Risk& Security Oversight Own the governance of operational security and threat readiness in partnership with the CISO. Define, maintain, and enforce security standards for the SaaS organisation, including technical … FunctionalCollaboration & Strategic Reporting Collaborate across business, legal, compliance, and technology teams to align on priorities and unify the operational governance approach. Deliver structured, actionable reporting to senior leadership on security posture, control performance, audit status, platform quality, SLA outcomes, and risk mitigation. SKILLS Provenleadership experience in IT operations, service governance, or operational riskwithin a regulated or SaaS business More ❯

Join a fast-growing, inclusive, and collaborative cybersecurity consulting firm where your expertise is valued and your career can thrive! Our client, a specialised Cyber Security Consulting firm, is expanding rapidly. They’re looking for an ambitious and driven Senior Cyber Security Consultant to join their Cyber GRC Risk Advisory team. About the role: As a Senior Cyber … Security Consultant , you’ll play a key role in Governance, Risk, and Compliance (GRC) , helping clients across a number of sectors strengthen their security posture. You’ll work with industry-leading frameworks like Cyber Essentials (CE), Cyber Essentials Plus (CE+), NIST 2, ISO 27001/223001, DORA , and more. This is the perfect opportunity if you’re looking … for more autonomy, rapid career growth, and a dynamic environment —far from the rigid structures of large corporate consultancies. As a Senior Cyber Security Consultant, what will you be doing?: Offer consultancy services to a wide range of clients with varying needs across different industries and regions. This may involve working as part of a team or taking the More ❯