1 to 25 of 75 Contract Information Security Jobs in the UK

Information Security Analyst – 3-month contract – Northampton My Customer is seeking a detail-oriented and proactive Information Security Analyst to join their team. This role focuses on two critical areas: operational support for GDPR compliance , particularly handling Data Subject Access Requests (DSARs ), and ensuring day-to-day adherence to their Information Security Management System … ISMS). Key Responsibilities of the Information Security Analyst: 1. GDPR Compliance & DSAR Handling Act as the main point of contact for receiving, investigating, and responding to Subject Access Requests (SARs) and other GDPR-related requests. Liaise with internal teams to gather the required data, ensure accuracy, and meet legal timeframes. Maintain clear records of request handling in … and audit requirements. Provide input on GDPR matters where necessary, without being responsible for policy creation or process design. 2. ISMS Oversight & Compliance Support the ongoing maintenance of the Information Security Management System (ISMS) . Conduct regular checks and reviews to confirm that existing security policies and processes are being followed. Identify gaps in compliance and follow More ❯

Head of Information Security Location: London Rate: Up to £1,000/day outside IR35 Hybrid: 50% of time onsite Sector: Strong regulated industries Contract Type: 6-9 months contract Job Summary: Our client, a leading legal firm, is seeking an experienced Head of Information Security to lead their security function and drive enterprise-wide … strategy. This senior leadership role requires someone with a strong legal sector background who can quickly assess their current security posture, identify improvement opportunities, and establish strategic roadmaps. The ideal candidate will bring substantial exposure to data processing, enterprise applications, and outsourced systems, with proven experience in systems design, project management, and crisis management. You will be a highly … oversight roles. The ideal candidate will demonstrate collaborative skills, cultural fit, and flexibility to integrate quickly into their established team environment. Key responsibilities: Develop, implement, and manage enterprise-wide security strategy in partnership with senior stakeholders Assess current information security maturity and develop a strategic roadmap to achieve the target state Take ownership of ongoing audit projects More ❯

Job summary NHS England's Chief Information Security Office (CISO) Function's purpose is to enable safe care and build public trust by strengthening the cyber resilience of the NHS. The CISO supports the Transformation Directorate's purpose of delivering the best care and outcomes for patients, and enables faster, safer digital transformation of the NHS. As part … of the CISO Function the Senior Cyber Security Advisor sit in the Secure Consulting Team who provide specialist cyber security consultancy services to NHS England's Critical National Infrastructure and major national services, ensuring these services and digital programmes are Secure by Design. Senior Cyber Security Advisors ensure NHS England's systems operate from a cyber resilient … ll be given the support and autonomy to use your skills, knowledge, and experience, to make a real impact on improving people's lives. The role of Senior Cyber Security Advisors has been awarded a Recruitment and Retention Premia (RRP) in response to current labour market conditions. In recognition of this, the role attracts an additional monthly RRP payment More ❯

Job summary The Security Lead (Consulting) is focussed on ensuring that the NHS's systems operate from a cyber resilient architecture, looking at people, processes and technology. The role is part of a small team that supports all functions (Protective Monitoring, Threat Operations, Incident Management and Engineering) within the Cyber Security Operations Centre (CSOC) with the delivery of … be cyber resilient, supporting Transformation Directorate's purpose of delivering the best care and outcomes for the NHS. The Cyber Operations sub-directorate consists of 4 operational areas: Cyber Security Operations Unit (CSOU) - SIO Cyber Delivery Unit (CDU). Cyber Improvement Programme. Chief Information Security Office Function (CISO) The post of Security Lead has been awarded … an additional monthly RRP payment equal to 30% per annum.'Please be aware that RRP is non contractual and subject to review. Main duties of the job As a Security Lead (Consulting) you will: Support cross-team initiatives and interactions between teams including Engineering, Protective Monitoring, Threat Operations and Incident Management teams within the CSOC. Providing specialist knowledge and More ❯

Security Architect/ConsultantUtilitiesPredominantly remote: 1 day onsite in Warwick per month6 months+£650 per day In short: We're seeking a mid-level Security Architect/Consultant to support the business with a number of broad cyber initiatives. We're looking for a generic IT Cyber Architect/Consultant - nothing niche. In full: Job Purpose: The Security Consultant will support the Senior Security Architect, Lead Security Architect and Senior Security Officer to define security requirements and connect the business and IT programmes into the wider security organisation. Primary Roles & Responsibilities: Providing a security consultancy steer to programmes and projects, on security related matters. This includes formal input to projects … during the start-up, requirements, and design stages to ensure that security has been considered and is appropriate. Security review and design of application and technology architectures. Coordination of technical design/review activities with various segments within the Security team. Evaluation of systems and procedures to safeguard internal information systems and databases. Continuous view toward More ❯

Our client, a prestigious company within the technology sector, is currently seeking a skilled Firewall Security Consultant to join their dynamic team in Knutsford. This contract role requires a balance of on-site presence (2 days per week) and remote work. The primary focus is on ensuring firewall and proxy compliance, security signoff for change requests, service improvement … relationship management, and staff development within the cybersecurity framework. Key Responsibilities: Become an SME on the Skybox firewall security toolset Enforce security and control objectives adhering to Standards, Policies, and Procedures Meet requirements of key internal and external stakeholders Assess change integrity in architecture design, firewall/proxy deployment, and rule implementations Perform gatekeeper role for all firewall … and proxy infrastructure related change activities adhering to SLAs Identify potential security risks and minimise exposure to the organisation Identify improvements/automation possibilities for BAU tasks Develop and maintain constructive and respectful relationships with internal and external stakeholders Job Requirements: Information Security Knowledge - Essential Detailed understanding of all firewall types In-depth knowledge of network security More ❯

Job summary Are you a self-motivated cyber security professional with sharp situational judgement, a growth mindset, and a proven ability to navigate complex technical challenges? Do you thrive in high-impact environments where your work directly supports mission critical systems and healthcare delivery? NHS England's CISO Portfolio Office (CPO) is seeking an exceptional individual to join our … industry-leading cyber security function. Reporting directly to the Deputy Chief Information Security Officer, you will lead and deliver a diverse range of innovative and high-profile technical projects across the organisation, with the opportunity to directly influence key initiatives. The CISO team at NHS England has received national and international recognition from the National Cyber Security … its pioneering work in areas such as risk remediation, quantum computing, and third-party risk management. At NHS England, your work will have direct impact on the availability and security of systems relied upon by thousands of clinicians and millions of patients across the country. You will be joining a forward-thinking, inclusive, and collaborative cyber security team More ❯

The Role We are looking for an exceptionally seasoned Security Architect with over 15 years of progressive experience, including extensive leadership in designing and implementing robust security architectures, particularly within large-scale cloud environments and the highly regulated financial domain. This role demands a deep understanding of complex security challenges, a proven track record of strategic influence … and the ability to translate business requirements into secure, scalable, and compliant technical solutions. Your responsibilities: Strategic Security Leadership: Define, evangelize, and evolve the overall cloud security architecture strategy and roadmap, aligning with business objectives, relevant European regulatory requirements (e.g., GDPR, DORA, PSD2, NIS2 Directive), and industry best practices. Act as a trusted security advisor to senior … leadership, engineering teams, and business units on all aspects of cloud security. Lead the development and implementation of security architectural standards, patterns, and guidelines for cloud-native and hybrid-cloud deployments. Solution Design & Assurance: Provide expert security architecture guidance for critical enterprise applications, infrastructure, and data platforms, with a strong focus on secure-by-design principles. Conduct comprehensive More ❯

Role Profile - Cloud Security Engineer Purpose: A leading insurance sector client is seeking a highly skilled and experienced Cloud Security Engineer to play a critical role in advancing the organization's cloud security capabilities. The successful candidate will lead the design, implementation, and continuous improvement of cloud security across multi-cloud platforms-primarily Google Cloud Platform … Azure. This role is essential in ensuring that all cloud infrastructure, services, and data remain protected, compliant, and resilient against emerging cyber threats. Working within the broader technology and security teams, the Cloud Security Engineer will be responsible for policy enforcement, incident response, security tooling, and embedding security across the development lifecycle. Key Responsibilities: Develop, implement … and maintain comprehensive cloud security policies, standards, and technical controls for GCP and Azure environments. Configure, manage, and optimize native cloud security tools such as GCP Security Command Center, Cloud IAM, VPC Service Controls, Azure Security Center, Microsoft Defender for Cloud, and Azure Active Directory. Lead regular vulnerability assessments, security audits, and penetration testing activities More ❯

Information Security Compliance Analyst - Contract Job overview Reporting to the Information Security Compliance Officer, you will be responsible for ensuring the organisation's compliance with all relevant information security, legal regulations, contractual obligations, and industry best practice. Key responsibilities Conduct regular security audits to assess the effectiveness of the organization's security … and to a high standard ISO27001:2022 Document and report on audit findings and recommendations to relevant stakeholders Provide support to the ISCO on projects and bids from a security compliance and … assurance perspective Monitor regulatory changes and updates to ensure the organization remains compliant with all relevant requirements Support in implementing the companies ongoing Security compliance regime, working with InfoSec colleagues and technical stakeholders to continuously assess, quantify and report on the successful and effective compliance across the business with relevant standards, policies, and security frameworks Please apply to More ❯

Cyber Security Specialist ** Location: London/Hybrid (2 days in office) Rate: A highly competitive salary is available for suitable candidates Role Profile As a Cyber Security Specialist, you will be the go-to Subject Matter Expert (SME) for various projects, offering your insights and recommendations to enhance our security posture. With a strong technical background, you … will work independently while leveraging the support of a tight-knit team. Your primary focus will be on providing expert advice and guidance on security solutions, particularly in cloud environments, especially Azure. Key Responsibilities: Provide expert security advice and guidance on a range of projects. Act as the security SME, ensuring security considerations are integrated into … project plans and deliverables. Collaborate with project teams to identify and mitigate security risks effectively. Conduct comprehensive security assessments and reviews of systems, applications, and processes. Identify vulnerabilities and recommend appropriate security measures. Ensure compliance with security policies, standards, and regulations, contributing to the ongoing maturity of organisational security. Promote security awareness across the organisation. More ❯

Cloud Security Engineer (Azure/GCP) - Contract Key Responsibilities Develop, implement, and manage cloud security policies and solutions for GCP and Azure environments. Configure and maintain security services and tools within Google Cloud Platform (e.g., Cloud IAM, Security Command Center, VPC Service Controls) and Azure/M365 (e.g., Azure Security Center, Azure AD, Microsoft Defender … for Cloud). Conduct regular security assessments, vulnerability scanning, and penetration testing of cloud infrastructure and applications. Monitor cloud environments for security threats, anomalies, and incidents, and lead incident response efforts. Collaborate with development, operations, and compliance teams to integrate security best practices into the CI/CD pipeline and ensure secure configurations. Develop and enforce security policies, standards, and guidelines for cloud services, ensuring alignment with regulatory requirements and internal security frameworks. Provide expertise and guidance on data protection, network security, and identity and access management within cloud platforms. Preferably, assess and enhance the security of Salesforce, including data security, access controls, and compliance. Desirable Qualifications: 6+ years of experience in More ❯

Cloud Security Engineer (Azure/GCP) - Contract Key Responsibilities Develop, implement, and manage cloud security policies and solutions for GCP and Azure environments. Configure and maintain security services and tools within Google Cloud Platform (e.g., Cloud IAM, Security Command Center, VPC Service Controls) and Azure/M365 (e.g., Azure Security Center, Azure AD, Microsoft Defender … for Cloud). Conduct regular security assessments, vulnerability scanning, and penetration testing of cloud infrastructure and applications. Monitor cloud environments for security threats, anomalies, and incidents, and lead incident response efforts. Collaborate with development, operations, and compliance teams to integrate security best practices into the CI/CD pipeline and ensure secure configurations. Develop and enforce security policies, standards, and guidelines for cloud services, ensuring alignment with regulatory requirements and internal security frameworks. Provide expertise and guidance on data protection, network security, and identity and access management within cloud platforms. Preferably, assess and enhance the security of Salesforce, including data security, access controls, and compliance. Desirable Qualifications: 6+ years of experience in More ❯

Model Transformation Standardise and simplify technology governance, policies, and processes to reflect a modern, strategic IT function. Embed frameworks such as: ISO/IEC 27001: The international standard for information security management systems (ISMS), ensuring data confidentiality, integrity, and availability. ITIL (Information Technology Infrastructure Library): A framework for standardising IT service management practices and aligning them with … developing strong working relationships with key external partners Experience in implementing IT strategies Experienced in running and managing IT infrastructure, application, and network services Ensuring organisation-wide compliance with information security and governance policies ITIL/ISO 20000/ISO 9001 experience Experience in similar organisation structures (many sites and geographically spread) Experience of upper mid/large … enterprise IT service provision Experienced in running and managing outsourced IT services Skills and Abilities: IT Service Management IT Project Management Proven ability in the development and implementation of information security and information governance policies, procedures, and mechanisms Proven ability to implement effective disaster recovery and business continuity plans High degree of analytical and problem-solving skills More ❯

Role: Android Security EngineerSalary/Rate: £500-600 per day Location: hybrid London, mainly remoteContract Duration: until December 2025 A unique opportunity has arisen for a skilled professional with a strong background in mobile application security to join a specialist team tackling complex technical challenges. The successful candidate will be responsible for conducting in-depth analysis of Android … applications, providing clear and actionable insights into potential security and privacy risks. You would be operating at the top tier, handling the most complex and technically demanding cases that require advanced expertise and critical thinking. The role is based mainly remotely, however candidates must be willing to work in central London as required. This will run until the end … if there is a better way for us to communicate, please do let us know. Developer, Engineer, Programmer, Java, Android, Mobile OS, Malware, Virus, Penetration Test, Threat, OSCP, Cyber, Infosec, Security, Information Security, Pentest #vacancy #jobadvert #recruit #hiring #jobsearch #careers #talent #recruitment #job Circle Recruitment is acting as an Employment Agency in relation to this vacancy. Earn More ❯

Role: Android Security Engineer Salary/Rate: £500-600 per day Location: hybrid London, mainly remote Contract Duration: until December 2025 A unique opportunity has arisen for a skilled professional with a strong background in mobile application security to join a specialist team tackling complex technical challenges. The successful candidate will be responsible for conducting in-depth analysis … of Android applications, providing clear and actionable insights into potential security and privacy risks. You would be operating at the top tier, handling the most complex and technically demanding cases that require advanced expertise and critical thinking. The role is based mainly remotely, however candidates must be willing to work in central London as required. This will run until … if there is a better way for us to communicate, please do let us know. Developer, Engineer, Programmer, Java, Android, Mobile OS, Malware, Virus, Penetration Test, Threat, OSCP, Cyber, Infosec, Security, Information Security, Pentest #vacancy #jobadvert #recruit #hiring #jobsearch #careers #talent #recruitment #job Circle Recruitment is acting as an Employment Agency in relation to this vacancy. Earn More ❯

Senior Information Systems Security Specialist Summer-Browning Associates is currently assisting our client in the Public Sector, who is seeking a Senior Information Systems Security Specialist for a 6-month assignment. Location: Hybrid working- London Essential Skills: The ideal candidates will hold an Active SC clearance and have a proven Information Security background, with … the following skills/experience: Experience of security assurance and the measurement of controls. Experience of IT Security documentation (policies, standards, processes, procedures and patterns). Experience of IT Health Check and Vulnerability Assessments Experience of risk and threat modelling. Qualifications: accreditation/assurances CISM/XCCP/ISO 27001 To apply, please submit your most recent CV More ❯

On behalf of The Department for Transport, (Vehicle Cerification Agency), we are looking for a Cyber Security Lead Auditor (Inside IR35) for a 24 Month contract based REMOTELY with visits to Bristol and/or Nuneaton. Are you ready to lead the charge in securing the next generation of connected vehicles? We're seeking a technically exceptional and strategically … minded Cyber Security Lead Auditor to join our dynamic team within the UK's Type Approval Authority. This is your opportunity to play a pivotal role in ensuring vehicles meet the rigorous cyber security and software updating standards required for global compliance. About the Role As our Cyber Security Lead Auditor, you'll be at the forefront … of assessing and auditing vehicle manufacturers' cyber security and software update management systems in line with UNECE R155 and R156 regulations. You'll lead audit teams, evaluate complex technical claims, and ensure manufacturers are equipped to defend against evolving cyber threats. This role blends deep technical expertise with leadership and strategic oversight. You'll work closely with manufacturers and More ❯

Our client, a leading global organization, is partnering with a prestigious end client based in Reading. Were excited to offer an outstanding opportunity for a Security Architect with strong background in financial services to join a dynamic team on an initial 6-month contract. If you are interested and have the relevant skills and experience, please apply promptly to … discuss further. Location: Reading, UK (Hybrid 4 days onsite) Contract Duration: 6 Months Rate: £700 - 750 Inside IR35 About the Role We are seeking an exceptionally experienced Security Architect to join a major transformation programme in the financial services sector . This is a hands-on, strategic role that involves shaping cloud security architecture, influencing senior stakeholders, and … helping build secure, resilient systems in one of the most tightly regulated industries in the world. Why This Role is Unique Step into a mission-critical role influencing the security posture of a major financial player. Collaborate on high-scale, multi-cloud projects using cutting-edge technologies (AWS, Azure, GCP). Be part of a forward-thinking environment focused More ❯

DV Cleared Security Assurance Co-ordinator - London 5 days a week onsite - market rates inside IR35 -until 27.03.2027 Top 2 Evaluation Criteria 1. Active DV Clearance and a sole UK National 2. Strong background in information security, compliance, or assurance. Essential: * Experience working in a secure or regulated environment (e.g., Defence, Government, Nuclear, Finance). * Strong background … in information security, compliance, or assurance. * Confident communicator across technical, military, and civilian stakeholders. * Proven ability in audits and physical assurance checks. * Strong judgement, initiative, and ability to operate effectively in a small, high-trust team. * MS Office suite Desirable: * Experience with or understanding of CASD (Customer Access Security Device). * Knowledge of PKI operations and secure … credentialing. * ITILv4 Foundation or Agile SAFe Foundation certifications. * Previous experience within a secure government department. * Membership in a relevant professional body (e.g., BCS, ISACA, IISP). DV Cleared Security Assurance Co-ordinator - London 5 days a week onsite - market rates inside IR35 -until 27.03.2027 Damia Group Limited acts as an employment agency for permanent recruitment and employment business for More ❯

follows (but not limited to, as business requirements evolve/change):o Server architectureo Virtualisation technologieso Datacentre operationso Cloud operationso Domain directory serviceso Data storage and managemento Device managemento Information security management and cyber securityo Database administration serviceso Network operations (wired/wireless/mobile)o Business continuity management and disaster recovery planningYou will put people at the … in the provision of first class services and consistent levels of capability, as required by the organisationSkills needed for this roleAsset and configuration management Maintain secure configuration and accurate information, controlling IT assets in one or more significant areas Verify the location and state of assets, and support the full IT asset management lifecycle (from request through to retirement … software Support the purchase of software, hardware and services relating to the delivery of projects and the transition into IT OperationsIncident management Identify and register incidents, gathering the required information and allocating it to the appropriate channel Diagnose and prioritise incidents, investigate their causes and find resolutionsOwnership and initiative Own an issue until a new owner has been found More ❯

their team. This role focuses on two critical areas: operational support for GDPR compliance , particularly handling Data Subject Access Requests (DSARs ), and ensuring day-to-day adherence to their Information Security Management System (ISMS). Key Responsibilities of the Data Protection Officer: 1. GDPR Compliance & DSAR Handling Act as the main point of contact for receiving, investigating, and … and audit requirements. Provide input on GDPR matters where necessary, without being responsible for policy creation or process design. 2. ISMS Oversight & Compliance Support the ongoing maintenance of the Information Security Management System (ISMS) . Conduct regular checks and reviews to confirm that existing security policies and processes are being followed. Identify gaps in compliance and follow … ISO 27001). Skills from the Data Protection Officer: Proven experience managing GDPR-related activities, especially actioning Subject Access Requests . Familiarity with data protection regulations and handling sensitive information securely. Hands-on experience working within an ISMS framework , ideally in environments aligned to ISO 27001. A methodical and structured approach to compliance verification and policy adherence. Excellent communication More ❯

in supporting IT infrastructure and resources necessary for delivering high-quality IT services. You will be responsible for managing and supporting infrastructure applications, monitoring performance, and ensuring compliance with information security procedures. Your expertise will contribute to continual service improvement and effective problem resolution throughout the information system lifecycle. Key Responsibilities: Execute processes to support IT infrastructure … SLAs.Prepare for new or changed services, managing the change process while maintaining regulatory and professional standards.Monitor and report on application service performance, ensuring availability and capacity meet business demands.Apply information security procedures to maintain compliance across infrastructure applications.Manage system performance, focusing on business performance contributions and financial sustainability.Develop and implement continual service improvement plans.Facilitate both reactive and proactive More ❯

in supporting IT infrastructure and resources necessary for delivering high-quality IT services. You will be responsible for managing and supporting infrastructure applications, monitoring performance, and ensuring compliance with information security procedures. Your expertise will contribute to continual service improvement and effective problem resolution throughout the information system lifecycle. Key Responsibilities: Execute processes to support IT infrastructure … new or changed services, managing the change process while maintaining regulatory and professional standards. Monitor and report on application service performance, ensuring availability and capacity meet business demands. Apply information security procedures to maintain compliance across infrastructure applications. Manage system performance, focusing on business performance contributions and financial sustainability. Develop and implement continual service improvement plans. Facilitate both More ❯

Security Consultant - Artificial Intelligence (AI) Our client, a global insurance organisation, is looking to recruit the services of an experienced Senior Risk Analyst with deep expertise in Artificial Intelligence (AI), Machine Learning (ML), and Large Language Models (LLMs) to join our client's Security Risk Management team. This role plays a pivotal part in assessing and managing risks … Collaborate with stakeholders across IT, Data Privacy, Innovation, and Business to identify and mitigate risks. Translate complex technical risks into business-friendly language for executive audiences. Improve and evolve security risk assessment methodologies for advanced AI systems. Develop threat models and propose compensatory controls. Present findings to internal governance groups and help shape AI risk frameworks. Required Skills & Experience … communication skills, up to C-level. Strong analytical and reporting abilities. Familiarity with risk management frameworks (ISO 3100X, NIST 800 series, ENISA, EBIOS, OCTAVE, FAIR). Preferred: Background in information security and security frameworks (eg, MITRE ATT&CK, ISO 2700X). Experience working in multinational environments. Knowledge of AI governance or ethics is a plus. Details 9+ More ❯