1 to 25 of 193 Security Posture Jobs in the UK

Head of Information Security Governance, Risk and Compliance & Awareness - Doxford, SR3 3XP Arriva is a leading European passenger transport partner, operating in 11 countries across the UK and Europe. The company employs around 35,000 people, delivering more than 1.5 billion passenger journeys connecting people and communities safely, reliably and sustainably. We have strong roots dating back to … agenda, and a continuously developing relationship with I Squared Capital – a global infrastructure investment fund manager - who acquired Arriva in 2024. We are looking for a Head of Information Security Governance, Risk, Compliance (GRC) & Awareness to join our Information Security Team on a full time, permanent basis, based from either our Doxford office, Sunderland or Lacon House, London. … Reporting to the Group Chief Information Security Officer, the Head of InfoSec GRC & Awareness is responsible for leading the governance, risk, and compliance functions within the Information Security domain. This role ensures that the organisation maintains a robust security posture through the development and enforcement of policies, standards, and awareness initiatives. The role is pivotal in More ❯

Head of Information Security Governance, Risk and Compliance & Awareness - Doxford, SR3 3XP Arriva is a leading European passenger transport partner, operating in 11 countries across the UK and Europe. The company employs around 35,000 people, delivering more than 1.5 billion passenger journeys connecting people and communities safely, reliably and sustainably. We have strong roots dating back to … agenda, and a continuously developing relationship with I Squared Capital – a global infrastructure investment fund manager - who acquired Arriva in 2024. We are looking for a Head of Information Security Governance, Risk, Compliance (GRC) & Awareness to join our Information Security Team on a full time, permanent basis, based from either our Doxford office, Sunderland or Lacon House, London. … Reporting to the Group Chief Information Security Officer, the Head of InfoSec GRC & Awareness is responsible for leading the governance, risk, and compliance functions within the Information Security domain. This role ensures that the organisation maintains a robust security posture through the development and enforcement of policies, standards, and awareness initiatives. The role is pivotal in More ❯

agenda, and a continuously developing relationship with I Squared Capital - a global infrastructure investment fund manager - who acquired Arriva in 2024. We are looking for a Head of Information Security Governance, Risk, Compliance (GRC) & Awareness to join our Information Security Team on a full-time, permanent basis, based from either our Doxford office, Sunderland or Lacon House, London. … Reporting to the Group Chief Information Security Officer, the Head of InfoSec GRC & Awareness is responsible for leading the governance, risk, and compliance functions within the Information Security domain. This role ensures that the organisation maintains a robust security posture through the development and enforcement of policies, standards, and awareness initiatives. The role is pivotal in … aligning security practices with business objectives and regulatory requirements. This position oversees the continuous improvement of security policies and standards, including technical standards, ensuring adherence across the enterprise. The role is accountable for measuring cyber maturity and driving compliance with internal and external requirements. It also includes oversight of the development and implementation of a comprehensive Operational Technology More ❯

Role: Cyber Security Engineer Location: Leeds, West Yorkshire Salary: £55,000 - £70,000 PLUS 25 Days Holiday, Vendor Certifications, International Travel, Private Pension About the Company: Our client, a global leader in Sustainability Consulting, is looking for a Cyber Security Engineer to join their growing Information Security Team. This exciting role provides an opportunity to shape and … strengthen security practices across the organization. If you are passionate about cybersecurity, have a strong technical background, and thrive in a fast-paced environment, we want to hear from you. Position Overview: As a Cyber Security Engineer, you will collaborate with the IT Security Team to advise, develop, and maintain security processes and policies. Your expertise … will guide the organization in enhancing security capabilities across its global infrastructure. This role offers a chance to make a real impact by ensuring the integrity and resilience of the company’s IT environment against evolving cyber threats. Key Responsibilities: Support incident management and security response efforts, providing expertise to address and resolve security incidents quickly and More ❯

Job summary The Associate Information Security Practitioner role is part of the Moorfields Information Security Team. The team ensures that our systems and data are safe, secure, and resilient - so that we can focus on delivering high-quality, patient-centred care, and are trusted by our patients, service users and staff. The team has operational responsibility for security tooling, such as anti-virus and intrusion prevention, security assurance platforms, security testing and monitoring platforms, etc) and for our managed services (security operations centre). The team performs assurance and compliance activities most notably contributing to the annual NHS Data Security Protection Toolkit (DSPT) cycle. We put people at the heart of everything we … Digital, Data and Technology experts that deliver excellence in a busy department. Main duties of the job At this role level, you will: Contribute to operational support of information security solutions and services Engage with our third party provision of information security service Contribute Information Security expertise to projects and operational services Support assurance activities and the More ❯

one aspect of your life - we want to help you create your ideal work/life blend, rather than squeezing in life around work. As the Head of Cyber Security at PEXA UK, you'll play a key role in protecting the digital backbone of our business. Working closely with the UK CTO, Group CISO in Australia, and the … PEXA UK leadership team, you'll define and drive the security strategy, standards, and posture across our three UK brands: PEXA UK, Smoove, and Optima Legal. You'll lead our Security Operations (SOC), Security Engineering, and Information Security and Governance functions, covering everything from incident response and secure architecture to audits, lender assurance, and compliance … with ISO 27001 and FCA requirements. This is a senior leadership role offering the opportunity to define security strategy, strengthen governance, and protect critical systems, data, and operations. You'll shape how we manage threats, embed secure-by-design principles, and foster a culture of security awareness across the organisation. You'll also collaborate closely with technology, legal More ❯

identify and draw attention to opportunities for enhancing our delivery and providing additional services to organisations we work with. We are seeking a highly motivated and experienced Lead Software Security Engineer to join our team. You will have a strong background in software development, security, and operations. This role is required to support the Digital Product Management team … in embedding security requirements and best practices into new Digital Products and Services. You will work closely with the Digital Product Management and IT Security teams to establish and build the right security controls and quality state gates across the product lifecycle. This includes security tooling to manage these controls. In this busy and rewarding role … you'll also: Collaborate with software development teams to integrate security into the development lifecycle Own the cultural shift to a Security DevSecOps mindset Manage & implement security controls, tools, and processes to secure applications and infrastructure Monitor and respond to security incidents and threats in a timely manner Stay up-to-date with security trends More ❯

Overview As Cyber Security Manager at Two Circles, you play a key role in keeping our systems, people and data safe from external and internal threats by focusing on incident detection, response and remediation; threat hunting; security monitoring; continual improvement and providing technical assurance for solution design and changes. This will include maintaining and improving our security posture in tandem with GRC practices and policies as they evolve to align with current and future standards and frameworks, such as SOC 2, ISO 27001, as well as applicable legislation, including GDPR and UK DPA, working closely with our Legal and Privacy as well as the wider Technology team. Internally-facing, you will lead day to day … cyber security operations and project based work. You will help train and upskill your fellow Two Circlers on topics such security awareness, OWASP Top 10 and Security by Design, as well as understanding and feeding into their processes and workflows, to keep good security practice on the agenda. Externally, this role will also engage with our More ❯

Overview AWS Cyber Security Engineer Location: Farnborough, UK (Hybrid Working Policy) Clearance: High level of security clearance - (DV - Developed Vetting) UNLEASH YOUR POTENTIAL Everything we do is built on a commitment to do the right thing for our customers, our people and our community. Our mission and our values guide the way we do business. The foundation of … conviction that ethics and integrity is core to how we operate. Because of a key strategic development and a new exciting business opportunity, we have a requirement for a security-cleared Cyber Security Engineer based in the UK working at our Farnborough site and remotely. Leidos has more than 30 years' experience of developing and running some of … committed to developing and growing our staff. Leidos is a global science and technology solutions leader working to solve the world's toughest challenges in the defence, intelligence, homeland security, civil, and health markets. The company's 33,000 employees support vital missions for government and commercial customers. Your Role and Responsibilities; As a result of some exciting programme More ❯

Senior Security Technical Program Manager, AWS Security Job ID: Amazon Web Services Australia Pty Ltd Amazon Web Services (AWS) is the leading cloud service provider, providing virtualised infrastructure, storage, networking, messaging, and many other services to customers all over the world. AWS runs a globally distributed environment, operating at massive levels of scale. Businesses, from start-ups to … enterprises to large government customers, run their operations and applications on AWS' highly secure infrastructure. As a Senior Security Technical Program Manager (Sr. Security TPM) within our team, you'll influence and own long-term security outcomes for AWS. You'll be working with external customers and regulated industries to understand their needs. You'll be able … to technically review and/or design security systems and solutions that enable them to operate more effectively, securely and safely. You will work with your team, partners, and customers to innovate and deliver on the vision and purpose of your programs. While working directly with AWS service teams, infrastructure, and administrative teams, you'll identify opportunities to improve More ❯

Stock Exchange (EXPN), we have a team of 22,500 people across 32 countries. Our corporate headquarters are in Dublin, Ireland. Learn more at experianplc.com. Job Description Experian Global Security Office (EGSO) provides a full suite of information security services from engineering to security risk management, policy, metrics, and identity management. The Information Security Governance team … is the principal advocate for information security and delivers a comprehensive information security strategy to improve the security posture of the organization. As our Data & Analytics Specialist you will join a talented and experienced information security team and help to define the security posture of a top global company. You'll touch all … areas of the Experian business while also becoming an expert in security best practices, and related regulation whilst applying your knowledge of automation and tools such as Power BI, Power Automate and Logica Apps to a range of projects. You will be an expert in business process automation with a focus on information security, a change champion and More ❯

and throughout all levels of the client organization, generating results that allow our clients to thrive. What You'll Do The Global Platform Team Lead and Senior Director - IT Security is responsible for leading the design, delivery, and continuous evolution of BCG's security platforms across identity, device, and data protection domains. This role ensures end-to-end … security engineering across all technology environments, including cloud, on-prem, and hybrid systems. The leader will drive strategic planning, execution, and operations of scalable, automated, and resilient security controls that protect BCG's global operations and users, while enabling innovation and agility across BCG Core, BCG X, and CT worldwide. This role is also accountable for embedding security within DevSecOps practices, enforcing automation at scale, and applying Site Reliability Engineering (SRE) principles across all security services. The role requires strong partnership with ISRM, with a focus on balancing and prioritizing security requirements, automation opportunities, user experience needs, and broader business outcomes. Key Responsibilities: Strategic Leadership & Transformation: Define and execute a unified security engineering strategy More ❯

Information Security Engineer Birmingham Our client are a leading provider of care, education, and therapeutic services for vulnerable children and young people across the UK. They are passionate about creating safe, nurturing environments that transform lives. As part of their digital evolution, they are seeking a skilled Information Security Engineer/Analyst to help strengthen their cyber security posture and safeguard our systems and data. Reporting directly to the Head of IT this is a hands-on technical role focused on securing enterprise applications, infrastructure, and sensitive data. You'll be instrumental in implementing and maintaining robust security measures, conducting assessments, and responding to incidents. Collaboration across departments will be key to embedding security best practices throughout the organisation. Key Duties & Responsibilities Evaluate application architecture, source code, and third-party integrations for security risks Support secure software development lifecycle (SDLC) processes and promote secure coding standards Identify and remediate vulnerabilities using industry-standard tools Administer and configure security technologies (e.g., firewalls, SIEM, IDS/IPS, endpoint protection) Oversee access controls and More ❯

The Global Delivery Director - Secure Data is a critical leadership role that enables the secure foundation of BCG's digital operations globally. By driving scalable, automated, and user-focused security engineering-and by embedding security into modern engineering and operational practices-this role ensures BCG can innovate securely while maintaining trust, compliance, and operational excellence. The Global Delivery … Director - Secure Data is responsible for leading the design, delivery, and continuous evolution of BCG's data security strategy and controls. This role ensures that BCG's most sensitive data is protected globally through secure-by-design engineering, automation at scale, and resilient security platforms. The Director will drive strategic planning, execution, and operations of scalable, automated, and … resilient security solutions that safeguard BCG's global operations and users, while enabling innovation and agility across BCG Core, BCG X, and CT worldwide. This role is accountable for embedding security within DevSecOps practices, applying Site Reliability Engineering (SRE) principles across all security services, and aligning with privacy, compliance, and business leaders to maintain trust and regulatory More ❯

I am currently working with a Charity who are seeking a Head of Information Security and Compliance. You will join an ambitious, focused and dynamic team who are passionate about how technology can enable our staff to deliver incredible support to the armed forces community. Role Purpose: The Information Security and Compliance Manager is responsible for developing, implementing … and maintaining security policies, procedures, and controls to protect the data and systems. They will play a pivotal role in the management and containment of security incidents, ensuring continuous improvement in their security posture while raising awareness for staff, volunteer and member communities. The post holder will lead on activities that assess, report and mitigate risk … practices and settings to include sensitivity labels, data retention policies and data loss protection policies Collaborate with the Head of Risk, DPO and VCISO to identify and manage information security risks and mitigating controls Lead the wider business areas to ensure security policies and procedures are embedded in all business processes. Take an active role in in the More ❯

I am currently working with a Charity who are seeking a Head of Information Security and Compliance. You will join an ambitious, focused and dynamic team who are passionate about how technology can enable our staff to deliver incredible support to the armed forces community. Role Purpose: The Information Security and Compliance Manager is responsible for developing, implementing … and maintaining security policies, procedures, and controls to protect the data and systems. They will play a pivotal role in the management and containment of security incidents, ensuring continuous improvement in their security posture while raising awareness for staff, volunteer and member communities. The post holder will lead on activities that assess, report and mitigate risk … practices and settings to include sensitivity labels, data retention policies and data loss protection policies Collaborate with the Head of Risk, DPO and VCISO to identify and manage information security risks and mitigating controls Lead the wider business areas to ensure security policies and procedures are embedded in all business processes. Take an active role in in the More ❯

ensure they focus on the right priorities Oversee SOC activities by reviewing your team's performance metrics, incident reports and other key indicators Lead incident response efforts when a security incident occurs, the SOC team has to respond as quickly as possible Lead these efforts by establishing clear incident response procedures and protocols and conveying them to the team … Analyse incident reports to understand your organization's security posture by reviewing incident reports, SOC managers identify patterns and trends that may indicate weaknesses or vulnerabilities in their security defences Serve as the point of contact (POC) for security incidents within the company. You are the primary liaison between the SOC team, other internal stakeholders, and … external parties such as vendors, clients or regulatory bodies. Be responsible for conducting information security investigations as a result of security incidents. These are previously identified by the Level 2 security analyst who are monitoring the security consoles from various SOC entry channels (SIEM, Tickets, Email and Phone) End to end security incident management. You More ❯

safe and secure information space. Cloud SecOps Lead – Job Description We are looking for a Cloud SecOps Lead to guide and support a team of engineers in managing cloud security operations across partner environments. This role involves close collaboration with SOC teams, project stakeholders, and architecture groups to ensure a strong security posture and operational excellence. This … and is open only to UK Citizens or individuals with Indefinite Leave to Remain (ILR) who have resided continuously in the UK for the past five years, due to Security Clearance requirements. Key Responsibilities Lead investigations of security incidents raised by SIEM and CNAPP tooling. Drive improvements in cloud security posture using Microsoft Defender for Cloud. … Guide project teams on remediation steps and ensure alignment with security best practices. Support WebOps activities including deployment and configuration of SIEM and CNAPP tools. Oversee vulnerability management processes and ensure timely remediation. Manage and maintain LogicMonitor for cloud platform monitoring Create and update logicmodules Configure alert rules and escalation chains Manage ServiceNow integration for incident handling Build and More ❯

Application Security Lead Entertainment UK Hybrid/Remote Job description This role works closely with development teams to verify our partners applications satisfy the defined security criteria, supporting the organization on the security design and conducting reviews of applications, while improving automation. Primary Responsibilities: Provide technical leadership and guidance on application security best practices, methodologies, and … technologies. The ideal candidate will serve as a trusted advisor to development teams, architects, and stakeholders across our clients organisation. Design and review security architectures for applications, ensuring the implementation of effective security controls and countermeasures. Conduct threat modelling exercises to identify potential security risks and vulnerabilities early in the development lifecycle. Conduct in-depth security assessments, code reviews, and penetration testing of applications to identify and mitigate security vulnerabilities. Utilise industry-standard tools and methodologies to assess the security posture of applications and provide actionable recommendations for remediation Essential At least three years experience in a similar senior Information Security position Customer-oriented person, with the ability to educate and More ❯

or looking to be part of something that truly matters, Ipsotek is where your ideas and impact can thrive. Role Overview Ipsotek is seeking a strategic and hands-on Security Lead to own and evolve our security posture across the business. This pivotal role will oversee security strategy , vulnerability management , and security operations (SecOps) , acting … as the primary point of contact for all security-related matters within Ipsotek and externally with the Eviden Centre of Excellence . You will also liaise directly with the Eviden COO to align Ipsotek’s security strategy with broader group-level initiatives and priorities. This role requires close collaboration with development , project operations , presales , and client-facing teams … ensuring security is embedded across the lifecycle of our solutions. It also includes client trust and onboarding activities , helping build and maintain confidence in Ipsotek’s information protection practices. Key Responsibilities Security Strategy & Governance Define and implement Ipsotek’s security strategy aligned with business and regulatory requirements. Liaise with the Eviden COO and Eviden Centre of Excellence More ❯

or looking to be part of something that truly matters, Ipsotek is where your ideas and impact can thrive. Role Overview Ipsotek is seeking a strategic and hands-on Security Lead to own and evolve our security posture across the business. This pivotal role will oversee security strategy , vulnerability management , and security operations (SecOps) , acting … as the primary point of contact for all security-related matters within Ipsotek and externally with the Eviden Centre of Excellence . You will also liaise directly with the Eviden COO to align Ipsotek’s security strategy with broader group-level initiatives and priorities. This role requires close collaboration with development , project operations , presales , and client-facing teams … ensuring security is embedded across the lifecycle of our solutions. It also includes client trust and onboarding activities , helping build and maintain confidence in Ipsotek’s information protection practices. Key Responsibilities Security Strategy & Governance Define and implement Ipsotek’s security strategy aligned with business and regulatory requirements. Liaise with the Eviden COO and Eviden Centre of Excellence More ❯

Position: Security Lead/Security Architect Type: Permanent Location: London 2 days p/week; 3 days remote Salary: £84K - £94K DOE Looking for your next step in security leadership? This is a great opportunity for an experienced security professional to take ownership of an organisation's technology security strategy - driving best practice, influencing culture … and embedding security at the heart of delivery. The Role As the Security Lead/Security Architect, you'll be the go-to person for all things security across global engineering teams. You'll shape strategy, improve governance, and guide technical teams to build secure, resilient systems. This role blends hands-on technical insight with strategic … influence - perfect for someone who enjoys both detail and direction. What You'll Be Doing Lead the organisation's security posture across technology and engineering. Set and deliver security strategy and best practice frameworks (ISO 27001, NIST, AWS Well-Architected). Oversee incident response, risk assessments, and vulnerability management. Drive a positive security culture across technical More ❯

architectures including firewalls intrusion detection prevention systems and encryption technologies Adhere to enterprise governance review processes to deliver project goals deliverables Follow enterprise ITSM CMDB processes Monitor and analyze security s using Security Information and Event Management SIEM tools and respond to security incidents in a timely and effective manner Collaborate with cross functional teams to develop … and enforce identity and access management IAM policies and network access control NAC solutions Stay abreast of the latest security threats industry trends and best practices to proactively enhance the organization's network security posture Ensure compliance with relevant security regulations and standards and assist in audit processes as needed Conduct regular security assessments including … penetration testing and vulnerability assessments to identify and remediate potential security risks ESSENTIAL EXPERIENCE 12 years of Proven experience in network security with a strong understanding of network security fundamentals encryption technologies and secure network design principles Zscaler Private Access Internet Access Experience in design and delivery of Zero Trust Network Access in ITOT environments Proficiency in More ❯

our overall success. We invite you to share your perspectives, cultural backgrounds, and innovative ideas; we look forward to your contributions. Join the Vix team as an experienced Cloud Security Engineer! This on-site position in Manchester involves collaborating with our Cloud Operations team and the Security team to maintain robust security protocols. You'll play a … crucial role in guiding our technical teams to meet security standards, successfully passing security audits, and safeguarding both company and customer data. As the first point of contact for security incidents, your expertise will be essential in keeping our systems secure. We regret that this position is only available for UK citizens/Residents with indefinite leave … the UK, with current full time work rights for the United Kingdom, currently residing in the UK. The position is located in Manchester. Responsibilities Evaluate and strengthen our overall security posture by performing continuous audits, risk assessments, threat modelling, and architecture reviews to ensure effective controls and adherence to regulatory standards. Consistently monitor and assess cloud environments for More ❯

Description Security Engineer Security Clearance Required - DV ('Developed Vetting') Location: 80% On-Site to Huntingdon, UK UNLEASH YOUR POTENTIAL At Leidos, we deliver innovative solutions through the efforts of our diverse and talented people who are dedicated to our customers' success. We empower our teams, contribute to our communities, and operate sustainably. Everything we do is built on … and our community. Our Mission, Vision, and Values guide the way we do business. Are your ready for your next challenge? We are in search for a number Cyber Security Engineers with a varied technical background - Required to work at our customer sites in Huntingdon and/or London with occasional travel to other UK sites. In this role … you will be working in a team of security engineers reporting into the cyber security engineering lead to ensure that the customer sites maintain a strong cyber security posture. You will have responsibility for ensuring that security enforcing functions and managed and maintained to a high standard whilst securely implementing new capabilities. You will ensure that More ❯