1 to 25 of 56 Security Posture Jobs with Hybrid or WFH Options

Job: Security Architect Location: Reading, UK, Hybrid Job Type: Permanent Job Description We are seeking a highly skilled and experienced Security Architect to join our team who will be responsible for development of the Security Architecture that ensures the appropriate protection of all aspects of security, (people, process, electronic, data, physical) in Spring Fibre. • You will be a subject matter expert and provide security guidance and recommendations to technology/business teams and contribute to Spring’s security policies, standards, and guidelines related to information and Network security. • This is a technical role … and suitable for someone who has hands on experience in Cybersecurity. Responsibilities Help develop an Enterprise Security Architecture Framework, including patterns for identity & authentication, authorization and access control, cryptographic key and certificate management, auditing and security monitoring, data leakage prevention, privacy enhancement & protection and other standards in alignment more »

IT Cyber Security Manager Surrey - Hybrid Working My client is a leading financial services organisation based in Surrey who are recruiting for a IT Cyber Security Manager As a IT Cyber Security Manager, you will Provide Security Input for projects in a Digital Transformation Programme as … well as establish and maintain cyber security policies and procedures. Own threat management and response. Manage and mentor the cyber security team. Manage Security tooling risks and processes. Own vulnerability management through the whole lifecycle from internal and external monitoring and identification to remediation and reporting. IT … Cyber Security Manager Benefits: 22 days holiday + 8 Bank Holiday (Holiday's increase to 27, 1 additional day per year worked) Healthy contributed pension Training and development Access to a number of financial based products Dress down Fridays As a IT Cyber Security Manager, you will perform more »

We are currently recruiting for a Chief Information Security Officer (CISO) , reporting to the Chief Technology Officer, to be responsible for ensuring the security, privacy, and compliance of Tunstall's operations on a global scale. This role could work on a hybrid basis from any of our main … you be doing in this role? As our CISO , you will safeguard the company's internal infrastructure, but also influence and contribute to the security and resilience of our operations, assets, and reputation. This role is not just the shaping of strategy but the execution and hands-on delivery … of this strategy. You will help shape and build a comprehensive cyber security and information security strategy that aligns with business objectives and play a pivotal role in ensuring the security of our SaaS products . The identification, assessment, and prioritisation of security risks associated with more »

Job Description Senior Information Security Analyst Our Client is a leading global company specialising in pharma products. They are looking to recruit a Senior Information Security Analyst with at least 5 to 7 years expertise in Technology Security. The Senior Information Security Analyst is responsible for maintaining … information security policies, architecture, technical standards, technical controls, security solutions, guidelines, procedures, and other elements necessary to maintain security posture. Responsible for assessing information risk and facilitating remediation of identified vulnerabilities & risks across the organization. Accountable for coordinating the execution of security measures to protect our … computer infrastructure, information systems and to ensure the organization maintains an acceptable risk posture. The Senior Information Security Analyst is highly engaged in risk management and mitigation, including evaluating vendor risk, examining vendor contracts for terms of service, understanding third-party risk, and data privacy issues. The analyst serves more »

Security Operations Engineer, AWS Environment (SecOps), Idox Cloud Home based, with occasional travel. About the role This is an opportunity for a talented and experienced Security Operations Engineer with a broad understanding of security fundamentals in a cloud solution, AWS environment. We would like to hire a … SecOps professional to have a strong focus on ensuring the security posture of our AWS environment. The role involves designing, implementing, and maintaining security measures in collaboration with the corporate security team to protect our infrastructure, applications, and data hosted on AWS. The ideal candidate will … projects – all applying appropriate best practice, quality assurance and governance, as appropriate for each project. The SecOps Engineer will take a proactive approach to security matters and risk management, leading investigations, root cause analysis and vulnerabilities under the guidance of the cloud architecture team. There may be an opportunity more »

Cyber Security Lead | Liverpool | Competitive £££ Your new company Leading provider of insurance and legal services that employ over 1000 people across several sites including Liverpool, Leeds and Glasgow. Your new role My client is seeking a highly skilled and experienced technical Cyber Security Lead to join the existing … IT team in Liverpool. The Cyber Security Lead will be responsible for overseeing the technical aspects of the organisations information security program, including the management of an outsourced Security Operations Centre (SOC). You will be responsible for establishing the security strategy for the group and … improving security posture while ensuring alignment of technical security measures with business objectives and regulatory requirements. Key Responsibilities: • Evaluate new security technologies and solutions to enhance the organization's security posture. • Ensure proper configuration and tuning of security tools to maximize effectiveness. • Incident Response more »

go ahead and apply. We'd love to hear from you! About the role Hargreaves Lansdown (HL) are now recruiting for a Senior Cloud Security Analyst to join the team. The Senior Cloud Security Analyst is a specialist role with the primary focus on Cloud Security Governance … Risk & Compliance. You will be supporting the Information Security function to ensure HL remains effective in protecting critical information assets within risk appetite. What you'll be doing Leading the technical aspects of cloud security risk and controls by overseeing and conducting, as necessary, Cloud Compliance assessments for … AWS and Azure risk assessments. Assisting the Senior Information Security Team in ensuring HL's Information Security Management System remains effective in protecting HL critical information assets within risk appetite. Conducting analysis of cloud-based assets pertaining to information security incidents, audits, and testing while adhering to more »

Role: WAF Security Engineer Location: Fully Remote Inside IR35 6 month initial Looking for experience with Akamai - WAF and DEVSECOPS. Our Financial Sector client is looking for an experienced Security Engineer who has experience working on projects that involve Web Application Firewall and Akamai. This contract offers remote … solutions and applications and will be pivotal in crafting, testing, and implementing advanced WAF solutions. This role involves a strong focus on developing robust security measures against web-based attacks, contributing significantly to the security posture of our organization and achieving audits. Key Responsibilities Develop and refine … complex custom WAF rules and features, ensuring mitigation of Minimum Viable Product (MVP) and security posture gaps. Coding expertise to create effective testing mechanisms for baseline and custom WAF rules, integrating these tests seamlessly into automation pipelines. Offer subject matter expert (SME) support in various security testing more »

Cyber Security Advisor (Inside IR35) Contract Term: 6 Months (Extension Likely) Contracting Authority: The Foreign, Commonwealth & Development Office Location: Glasgow or London – Hybrid Working As a Cyber Security Advisor your main responsibilities will be to: Provide cyber security and risk management advice for change programmes, projects and … service procurement. Collaborate with Delivery Mangers, Product Owner and Solution Architects on Security Risks within technical projects. Deliver high-quality risk assessments and supporting documentation to the RSO Security Governance Authority. Justifying decisions characterised by high levels of risk, impact and complexity. Respond effectively to reviews and challenges … Office, and NCSC Staff, incorporating feedback collaboratively to deliver approved risk assessments. Work with Product and Delivery Managers, Engineers, and Architects to produce accurate security documentation for product delivery, maintenance, and support, including solution technology costs, licensing, resource requirements, and total cost of ownership. Assess the robustness of third more »

distinct IT units within European Technology, each has its own individual set of technology platforms. Reporting to, and working with the Senior Cloud Security Manager, within the Central Technology Services (CTS) function, this role will give you the opportunity to deliver the cloud security strategy and enhance the … cloud security of our European Organisation. We are at an exciting and important stage in our evolution. There is a need to bring market leading speed, agility, cost efficiency and risk mitigation to enable the delivery of strategies across the European businesses. To meet this challenge, a new strategy … created, which you'll be part of. What you will help us achieve You will be a technical lead for the delivery of Cloud Security services to the European organisation. For you this means being part of our Cloud Product team. Our mission is to create an agile, secure more »

Description Leidos has an opportunity for a Security Engineer at Lackland AFB, in San Antonio, TX supporting the Department of the Air Force CLOUDworks . For this position, candidates must already possess a TS/SCI security clearance in order to be considered. Primary Responsibilities The Security … Intelligence Community (IC) customers migrating to Commercial Cloud Services (C2S)/Commercial Cloud Enterprise (C2E). Play a key role in e stablishing system security designs and integrating all cloud solutions and strategies into the Risk Management Framework and overall business practices supporting Infrastructure as a Service (IaaS), Platform … customers at all classification levels. Clearly communicate with Air and Space Force C2S/C2E members and teams, delegated authorizing officials and other government security representatives. Adherence to all aspects of the Information Assurance (IA) program, Preparation of Assessment and Authorization (A&A) documents, procedures, and policies to ensure more »

OT Cyber Security Consultant Remote working Main Activities deploy, and oversee Cyber Security Management Systems (CSMS) aligned with the ISA 62443-2-1 standard customised for client-specific industrial automation and control system requirements. clients through compliance with regulatory standards such as the NIS Regulations, ensuring all activities … adhere to relevant laws, regulations, and industry guidelines. comprehensive security assessments, including health checks and gap analysis against standards like the Cyber Assessment Framework (CAF) and NIST CSF 2.0, to gauge and enhance clients' security posture. and implement OT Security Policies, Procedures, Guidelines, and Work Instructions as … ensuring robust governance and operational security. and participate in risk assessments in line with ISA-62443-3-2 standards, focusing on identifying and mitigating security risks in system design. or lead in the creation and refinement of OT Security Charters and OT Security Target Operating Models, supporting more »

level. This role requires someone driven, willing to get hands on, has a keen eye for documentation and is passionate about delivering an excellent security service. A great team player is a must. Job Purpose: The main purpose of this role is to bring stability and a standard approach … to security monitoring across a number of SIEM tools for multiple environments, thus ensuring a strong security posture is maintained. Primarily the role will be concerned with taking on all security monitoring for a handful of small client environments and the corporate environment. The role will … as a BAU service for a new Private Cloud solution. As a Senior SOC Analyst you will play a pivotal role in ensuring the security and resilience of our organisation, and client’s information systems. The Senior SOC analyst will be the first recruit into the SOC Team and more »

Senior Application Security Engineer We are looking for an information security professional to lead my clients application security program. As a Senior Application Security Engineer, you’ll partner with product teams to help improve the security posture and design of both our enterprise and … consumer-facing products. You'll be part of a team developing a modern AppSec program with a highly automated approach to security coupled with a collaborative approach to working with Engineering partners. You’ll be operating in a fast paced, agile environment, with a goal of making security … will have a huge impact on the product roadmap, and in building a trusting relationship with the engineering community. What you'll do Provide security guidance to engineering teams on new products and technologies Taking ownership and driving the application security and privacy initiatives Perform threat modeling and more »

solutions and applications and will be pivotal in crafting, testing, and implementing advanced WAF solutions. This role involves a strong focus on developing robust security measures against web-based attacks, contributing significantly to the security posture of organization. Experience : 8+ years Key Responsibilities: Develop and refine complex … custom WAF rules and features, ensuring mitigation of Minimum Viable Product (MVP) and security posture gaps. Coding expertise to create effective testing mechanisms for baseline and custom WAF rules, integrating these tests seamlessly into automation pipelines. Offer subject matter expert (SME) support in various security testing areas … WAF-focused advice on web and API attack methodologies, evasions, and mitigation techniques, leveraging your ethical hacking background. Contribute to DevSecOps/DevOps with security testing expertise to enhance the automation aspects of the project Key Accountabilities: Utilize ethical hacking skills to safeguard the organization from web-based attacks more »

wellness journeys for all those across the UK! They now need an experienced Lead InfoSec Engineer , to create and manage the company-wide information security programme to ensure that information assets are properly protected. You will be tasked with the design and execution of policies, procedures and technology, to … s information assets are properly protected against cyber threats. Reporting to the Head of Engineering, you will: Develop and implement the company's information security strategy, policies, and procedures. Design and execute security controls to protect the confidentiality, integrity, and availability of the company's systems and data. … Lead security assessments and audits to identify vulnerabilities and develop remediation plans. Monitor and respond to security incidents and breaches, ensuring timely resolution and escalation as needed. Conduct regular security awareness training for employees to promote a culture of security awareness. Collaborate with cross-functional teams more »

creating and implementing secure solutions to ensure the safety of our platforms? Do you enjoy responding to real-time threats? About our Team The Security Assurance team is dedicated to safeguarding Elsevier's customer-facing products, supporting infrastructure, and enterprise technology stack from security threats. We achieve this … by proactively integrating security best practices throughout the entire engineering and development lifecycle. Its functions encompass a range of activities such as conducting design and implementation assessments, performing application security reviews, penetration testing, researching security issues, developing security tools and automation, and engaging in offensive security tactics. About the Role The core responsibility entails safeguarding the Elsevier brand through proactive security application testing, validating security controls, and simulating tactics employed by malicious actors seeking to compromise or breach security measures deployed across our entire technology infrastructure Responsibilities Performing comprehensive security testing more »

Your new role You will be overseeing the development and enforcement of cyber security protocols. You will have the opportunity to lead a Cyber Security team in safeguarding systems by managing threat protection infrastructure and ensuring compliance. Analyse and report on cyber threats, advising on risk mitigation and … legal adherence to enhance security measures. Your responsibilities will include (but not be limited to): Perform comprehensive security control reviews and collaborate with external experts. Analyse IT security posture, manage OS patches, and conduct vulnerability scans; advise on risk mitigation. Investigate security breaches, preserve evidence … and maintain a Cybersecurity Incident Response Plan. Develop IT security training for users and promote security awareness. Support IT leadership in technical planning and prioritise system developments. Manage daily IT security operations, liaise with stakeholders, and ensure technology alignment. Oversee server and software maintenance, including upgrades and more »

Your new role You will be overseeing the development and enforcement of cyber security protocols. You will have the opportunity to lead a Cyber Security team in safeguarding systems by managing threat protection infrastructure and ensuring compliance. Analyse and report on cyber threats, advising on risk mitigation and … legal adherence to enhance security measures. Your responsibilities will include (but not be limited to): Perform comprehensive security control reviews and collaborate with external experts. Analyse IT security posture, manage OS patches, and conduct vulnerability scans; advise on risk mitigation. Investigate security breaches, preserve evidence … and maintain a Cybersecurity Incident Response Plan. Develop IT security training for users and promote security awareness. Support IT leadership in technical planning and prioritise system developments. Manage daily IT security operations, liaise with stakeholders, and ensure technology alignment. Oversee server and software maintenance, including upgrades and more »

Role: Senior Security Operations Engineer Location: Central London - Hybrid (2-3 days in office per week) Salary: c.£150,000 Base, £200k+ Total Comp Our client is a pioneering quantitative investment manager, who are building an elite global security team. We're looking for an exceptional Senior Security Operations Engineer to play a vital role in shaping their future security posture and operations. In this pivotal position, you'll have the opportunity to design and implement cutting-edge security capabilities across a complex technology ecosystem. With teams distributed worldwide, you'll collaborate with experts … and ultra-low latency trading. Technologies span AWS, Azure, Linux, Windows, Docker, Kubernetes and more. What You'll Do Architect and automate sophisticated, scalable security systems, processes and controls Oversee and evolve comprehensive security monitoring, threat detection and intrusion prevention/response Proactively assess risks and threats to more »

new permanent opportunity for an experienced Dev SecOps Engineer with fast growing specialist Fintech business. This is a great opportunity to join a new security focussed squad within their forward-thinking engineering team you will have a unique opportunity to shape what security means to the business. As … a passionate security advocate, you will navigate complex challenges and approach platform design pragmatically. Leverage modern tools, languages, and platforms to contribute to efficient, secure, and scalable delivery of high-performance products. Main responsibilities: Work within a newly formed Security squad to continuously improve security posture within their cloud estate. Consult, advocate, and teach security best practice across engineering. Utilise modern tooling to shift security left, collaborating closely with development teams to ensure security is addressed early in the development lifecycle. Review security best practice, remediating and implementing controls to ensure more »

Help strengthen our team as our Level 2 SOC/Security Analyst - Compliance, Assurance & Continual Improvement. Home based role. A great opportunity to join our operational security team to support our initial and ongoing assessment of Operational Security controls against Cyber Security best practice, Organizational Policies … and recognized Security Frameworks, working with relevant stakeholders to identify areas for improvement, and support development, enhancement and implementation of robust security controls. In addition, this role will identify areas of improvement within the Operational Security function, proactively identifying opportunities to enhance and optimize internal processes, ensuring … that they are both efficient and effective. This role is crucial in ensuring that even the most sophisticated cyber security controls are robustly implemented and enhanced. What You’ll Be Doing: Verification and Compliance: Verify that systems and processes meet specified security requirements. Assess the correctness of cyber more »

Cloud Security Architect - Remote - £140K We have partnered up with one of the leading challenger banks who are looking for a Cloud Security Architect to join their expanding Security function. They are offering remote working in the UK You'll have the opportunity to monitor and assess … the security posture of their cloud infrastructure, including AWS, Azure, or other relevant platforms, as well as collaborate with cross-functional teams to develop and implement cloud security best practices and standards acting as a second line assurance function. Currently working as a Cloud Security Architect … or similar Great experience in cloud security, either AWS, Azure or GCP Proficiency in cloud platforms such as AWS, Azure, or GCP. Strong understanding of security frameworks, compliance standards, and regulations (e.g., NIST, ISO 27001, PCI DSS). Experience with security assessment tools and techniques. Cloud Security more »

Home based role Help strengthen our team as our Level 2 SOC/Security Analyst - Compliance, Assurance & Continual Improvement . Home based role. A great opportunity to join our operational security team to support our initial and ongoing assessment of Operational Security controls against Cyber Security best practice, Organizational Policies, and recognized Security Frameworks, working with relevant stakeholders to identify areas for improvement, and support development, enhancement and implementation of robust security controls. In addition, this role will identify areas of improvement within the Operational Security function, proactively identifying opportunities to enhance … and optimize internal processes, ensuring that they are both efficient and effective. This role is crucial in ensuring that even the most sophisticated cyber security controls are robustly implemented and enhanced. What You'll Be Doing: Verification and Compliance: '€¢Verify that systems and processes meet specified security requirements. more »

Information Security Engineer - Hybrid- £90K Our client is an industry leading e commerce who are looking to expand their Security team by adding an experienced Senior Information Security Engineer. They are offering hybrid working with their office located in Central London You will play a crucial part … in implementing and maintaining PCI DSS compliance, spearheading security initiatives and improvements throughout our organisation and supporting our security operations centre (SOC) team as a line of business SME. You'll be working closely with infrastructure, software engineering, and product focused business units to improve our security posture for new and existing products and ways of working. Requirements: Proven knowledge of information and cyber security engineering Great experience with PCI DSS. Good SIEM knowledge (Splunk is ideal) Great understanding of logs and log events across Linux, Windows, AWS, AV and Vulnerability scanning etc Good more »