19 of 19 Permanent Security Posture Jobs in Central London

AWS Cloud Security Engineer – Contract (Inside IR35) Hybrid 2/3 days from the London office We are seeking an experienced Cloud Security Engineer with a strong emphasis on AWS. This is a hands on role, the successful candidate will be responsible for designing, implementing, and maintaining secure cloud infrastructure, ensuring a robust security posture and … applications. Key Responsibilities: Design and implement secure AWS cloud infrastructure, focusing on system architecture, Identity and Access Management (IAM), encryption, data protection, and network security. Collaborate with the Information Security and application teams to drive cloud security initiatives and align with the broader security strategy. Enhance and secure CI/CD pipelines across multiple applications by embedding … secure coding and DevSecOps best practices. Develop automation tools and scripts to streamline security processes, monitor key security metrics, and support operational demands. Stay up to date with emerging threats, industry trends, and mitigation techniques to continually improve cloud security controls. Required Skills and Experience: Minimum 3 years in a DevSecOps capacity and 5+ years in cloud More ❯

AWS Cloud Security Engineer – Contract (Inside IR35) Hybrid 2/3 days from the London office We are seeking an experienced Cloud Security Engineer with a strong emphasis on AWS. This is a hands on role, the successful candidate will be responsible for designing, implementing, and maintaining secure cloud infrastructure, ensuring a robust security posture and … applications. Key Responsibilities: Design and implement secure AWS cloud infrastructure, focusing on system architecture, Identity and Access Management (IAM), encryption, data protection, and network security. Collaborate with the Information Security and application teams to drive cloud security initiatives and align with the broader security strategy. Enhance and secure CI/CD pipelines across multiple applications by embedding … secure coding and DevSecOps best practices. Develop automation tools and scripts to streamline security processes, monitor key security metrics, and support operational demands. Stay up to date with emerging threats, industry trends, and mitigation techniques to continually improve cloud security controls. Required Skills and Experience: Minimum 3 years in a DevSecOps capacity and 5+ years in cloud More ❯

ROLE OVERVIEW//We are recruiting for an experienced IT Security and Resilience Specialist to join the IT Infrastructure Engineering Team. Which is part of the Technology Department, and the wider Business Services function based at the firm’s head office in London. This is a hybrid role that is both hands-on and process-focused, ensuring that … our disaster recovery (DR), failover, and operational resilience capabilities are effective, tested, annually reviewed and continually improved. The Security & Resilience Specialist will plan and execute DR and resilience testing, drive remediation activities through to closure, and ensure that evidence and documentation meet client, regulatory, and audit standards. This is not a purely administrative role; the successful candidate will work … directly with infrastructure and security teams to fix issues as well as document them. KEY RESPONSIBILITIES//The key responsibilities of this role are set out below and there may be others which are not listed. You may be required on occasion to work outside our normal working hours of 9:30am to 5:30pm. Cyber Security More ❯

ROLE OVERVIEW//We are recruiting for an experienced IT Security and Resilience Specialist to join the IT Infrastructure Engineering Team. Which is part of the Technology Department, and the wider Business Services function based at the firm’s head office in London. This is a hybrid role that is both hands-on and process-focused, ensuring that … our disaster recovery (DR), failover, and operational resilience capabilities are effective, tested, annually reviewed and continually improved. The Security & Resilience Specialist will plan and execute DR and resilience testing, drive remediation activities through to closure, and ensure that evidence and documentation meet client, regulatory, and audit standards. This is not a purely administrative role; the successful candidate will work … directly with infrastructure and security teams to fix issues as well as document them. KEY RESPONSIBILITIES//The key responsibilities of this role are set out below and there may be others which are not listed. You may be required on occasion to work outside our normal working hours of 9:30am to 5:30pm. Cyber Security More ❯

environments deemed hazardous or monotonous, we envision a future where human well-being is safeguarded while closing the gaps in critical global labour needs. About the Role As Cyber Security Lead , you will establish the security posture of Humanoid from the ground up — creating the frameworks, controls, and culture that protect our people, systems, data, and intellectual … property. This is a hands-on role with significant strategic impact: you will personally deliver core policies and controls in the early stages while shaping the security roadmap that supports Humanoid’s global ambitions. Reporting directly to the IT Director, you will have independence to assess and report on risk at the highest level. You will partner closely with … the IT Ops Lead (who implements day-to-day controls) and the ITSM Lead (who manages incidents and processes) to ensure security is embedded across the business. What You’ll Do Policy & Frameworks: Define and maintain security policies, standards, and governance models aligned with ISO 27001, SOC2, and NIST. Risk Management: Lead risk assessments, threat modelling, and vendor More ❯

environments deemed hazardous or monotonous, we envision a future where human well-being is safeguarded while closing the gaps in critical global labour needs. About the Role As Cyber Security Lead , you will establish the security posture of Humanoid from the ground up — creating the frameworks, controls, and culture that protect our people, systems, data, and intellectual … property. This is a hands-on role with significant strategic impact: you will personally deliver core policies and controls in the early stages while shaping the security roadmap that supports Humanoid’s global ambitions. Reporting directly to the IT Director, you will have independence to assess and report on risk at the highest level. You will partner closely with … the IT Ops Lead (who implements day-to-day controls) and the ITSM Lead (who manages incidents and processes) to ensure security is embedded across the business. What You’ll Do Policy & Frameworks: Define and maintain security policies, standards, and governance models aligned with ISO 27001, SOC2, and NIST. Risk Management: Lead risk assessments, threat modelling, and vendor More ❯

the way. So why not join us at FairPlay and be part of something bigger. What we are looking for: FairPlay Sports Media are looking for an Enterprise IT Security Engineer to come on board and work with our new Enterprise IT Manager to take control of the monitoring and maintenance of out Cyber Security posture, working … with our third-party SOC and being the first point of contact for any security alerts raised. This is the perfect role for someone with service desk experience who wants to move into a security focused role while still being involved in end user support and system upgrade projects. The Enterprise IT team are looking for a key … estate, all of which we need to provide exceptional end user support for while always ensuring a high level of security. This is a blended role focusing on Cyber Security response and monitoring while also providing BAU support and being involved in Continual Improvement projects. You will be given great autonomy to find and deliver improvements to the Security More ❯

the way. So why not join us at FairPlay and be part of something bigger. What we are looking for: FairPlay Sports Media are looking for an Enterprise IT Security Engineer to come on board and work with our new Enterprise IT Manager to take control of the monitoring and maintenance of out Cyber Security posture, working … with our third-party SOC and being the first point of contact for any security alerts raised. This is the perfect role for someone with service desk experience who wants to move into a security focused role while still being involved in end user support and system upgrade projects. The Enterprise IT team are looking for a key … estate, all of which we need to provide exceptional end user support for while always ensuring a high level of security. This is a blended role focusing on Cyber Security response and monitoring while also providing BAU support and being involved in Continual Improvement projects. You will be given great autonomy to find and deliver improvements to the Security More ❯

needed, and ensure SLA compliance. Conduct root cause analysis and implement solutions. Deliver planned and ad-hoc IT projects within established frameworks. Create and maintain all IT documentation. Administer security tools and maintain governance, risk, and compliance standards. Improve security posture, using tools such as Microsoft Secure Score. Support implementation of business process improvements. Review and suggest … least 2 years in a service delivery capacity. Experience with internal and external stakeholders, regulated environments, and ITIL-aligned processes. A combination of the following is preferred: CompTIA (Networking, Security, A+, Server), Microsoft Certifications (e.g. Azure Administrator, Security, Server Hybrid Admin, Power Platform Fundamentals). Membership in relevant bodies such as BCS, IEEE, ISACA, (ISC) , CompTIA, or ITIL More ❯

Because that’s what drives you to be better, be more and ultimately, be more fulfilled. SOC Consultant Hybrid-3 days onsite Requirement: 10+ years of experience in Cyber security Designing & implementation on Network Security, SIEM, SOAR & Threat Intelligence. Key Responsibilities: Lead Sentinel Deployment for OT SOC Architect and implement Microsoft Sentinel across global OT environments to centralize … security monitoring and incident response. Log Source Integration Configure and onboard diverse log sources including Nozomi Networks, firewalls, Cribl, EDR (e.g., Defender for Endpoint), VMDR (e.g., Qualys), and other OT/IT systems into Sentinel. Custom Analytics & Detection Rules Develop, and fine-tune KQL-based analytics rules tailored to OT threat scenarios, ensuring high-fidelity alerts and minimal false … to enhance detection capabilities and contextualize alerts within the OT landscape. Incident Response Automation Design and implement playbooks using Logic Apps to automate incident response workflows for common OT security events. Execution of the use cases on SIEM, SOAR & Threat Intelligence Build custom workbooks and dashboards to visualize OT security posture, threat trends, and SOC performance metrics. More ❯

Because that’s what drives you to be better, be more and ultimately, be more fulfilled. SOC Consultant Hybrid-3 days onsite Requirement: 10+ years of experience in Cyber security Designing & implementation on Network Security, SIEM, SOAR & Threat Intelligence. Key Responsibilities: Lead Sentinel Deployment for OT SOC Architect and implement Microsoft Sentinel across global OT environments to centralize … security monitoring and incident response. Log Source Integration Configure and onboard diverse log sources including Nozomi Networks, firewalls, Cribl, EDR (e.g., Defender for Endpoint), VMDR (e.g., Qualys), and other OT/IT systems into Sentinel. Custom Analytics & Detection Rules Develop, and fine-tune KQL-based analytics rules tailored to OT threat scenarios, ensuring high-fidelity alerts and minimal false … to enhance detection capabilities and contextualize alerts within the OT landscape. Incident Response Automation Design and implement playbooks using Logic Apps to automate incident response workflows for common OT security events. Execution of the use cases on SIEM, SOAR & Threat Intelligence Build custom workbooks and dashboards to visualize OT security posture, threat trends, and SOC performance metrics. More ❯

Cyber Security Analyst (VP) - Investment Management - London Our client, a leading investment management firm, is seeking a Cyber Security Analyst (VP level) to join their London office. This role sits within the compliance function and plays a critical part in supporting external audits, particularly SOC 1 Type II and SOC 2. It combines hands-on security monitoring … and incident response with ensuring IT and security controls meet audit and client assurance requirements. As a key member of the Global Information Technology team, you will collaborate closely with IT, compliance, and external auditors to provide control evidence, enhance processes, and strengthen the firm's overall security posture. Responsibilities include monitoring and investigating security alerts, supporting … patching, and maintaining a forward-looking 6-12 month roadmap to align emerging requirements with timely policy updates. Key Skills & Experience: Strong understanding of core cybersecurity principles including network security, identity management, and threat detection Hands-on experience with security and IT monitoring tools such as SIEM, Network Configuration Manager, Zabbix, HALO, DarkTrace, and Fortinet firewalls Familiarity with More ❯

Cyber Security Analyst (VP) - Investment Management - London Our client, a leading investment management firm, is seeking a Cyber Security Analyst (VP level) to join their London office. This role sits within the compliance function and plays a critical part in supporting external audits, particularly SOC 1 Type II and SOC 2. It combines hands-on security monitoring … and incident response with ensuring IT and security controls meet audit and client assurance requirements. As a key member of the Global Information Technology team, you will collaborate closely with IT, compliance, and external auditors to provide control evidence, enhance processes, and strengthen the firm's overall security posture. Responsibilities include monitoring and investigating security alerts, supporting … patching, and maintaining a forward-looking 6-12 month roadmap to align emerging requirements with timely policy updates. Key Skills & Experience: Strong understanding of core cybersecurity principles including network security, identity management, and threat detection Hands-on experience with security and IT monitoring tools such as SIEM, Network Configuration Manager, Zabbix, HALO, DarkTrace, and Fortinet firewalls Familiarity with More ❯

A leading fintech company is seeking a Lead AppSec Engineer to join their established team. Youll be instrumental in embedding security into every stage of the software development lifecycleguiding engineers, shaping best practices, and driving secure, scalable solutions across our platform. Key Responsibilities: Security Advisory : Serve as the go-to expert for application security across engineering teamsproviding … hands-on guidance, resolving concerns, and fostering a security-first mindset. DevSecOps Enablement : Promote and implement secure development practices across CI/CD pipelines, secrets and key management, dependency management, and secure design. Vulnerability Management : Lead vulnerability remediation effortstriaging findings, prioritizing risks, and partnering with teams to deliver effective, pragmatic fixes. Tooling & Automation : Integrate security tools (e.g., SAST … DAST, SCA, secrets scanning) into developer workflows, ensuring automation is both scalable and developer-friendly. Cloud Security Collaboration : Work alongside infrastructure teams to ensure secure configuration of AWS and Azure environments, with a focus on IAM, network security, encryption, and observability. Architecture & Design Reviews : Provide input and recommendations to ensure new services and features are secure by design. More ❯

strengthen their cyber resilience and deliver enterprise-wide transformation. Their Cyber Strategy & Transformation practice works with both public and private sector clients to design and implement strategies that improve security posture, manage risk, and enable secure digital growth. The Role As a Senior Consultant, you’ll act as a key delivery lead within transformation projects, taking ownership of … to ensure alignment, buy-in, and practical implementation of solutions. Collaborate with cross-functional teams spanning consulting, risk, and technology. Experience Required 3–5 years of experience in cyber security, risk, or consulting. Strong working knowledge of cyber frameworks such as NIST CSF, ISO 27001, or CIS Controls. Demonstrable experience delivering on transformation or strategy projects. Strong communication skills More ❯

strengthen their cyber resilience and deliver enterprise-wide transformation. Their Cyber Strategy & Transformation practice works with both public and private sector clients to design and implement strategies that improve security posture, manage risk, and enable secure digital growth. The Role As a Senior Consultant, you’ll act as a key delivery lead within transformation projects, taking ownership of … to ensure alignment, buy-in, and practical implementation of solutions. Collaborate with cross-functional teams spanning consulting, risk, and technology. Experience Required 3–5 years of experience in cyber security, risk, or consulting. Strong working knowledge of cyber frameworks such as NIST CSF, ISO 27001, or CIS Controls. Demonstrable experience delivering on transformation or strategy projects. Strong communication skills More ❯

A leading Fintech/Payments company is looking for a proactive and technically skilled Application Security Engineer/DevSecOps to champion secure development practices across our software delivery lifecycle. In this role, youll play a key part in identifying and reducing application-layer risks, integrating security into the development pipeline, and ensuring that security considerations are embedded … throughout the SDLC. Working closely with engineering and platform teams, youll help automate security processes, lead threat modelling exercises, and continually improve the organisations application security posture. Key Responsibilities Secure Development Lifecycle (SDLC) Experience working with static and dynamic code analysis tools (SAST, DAST) is essentialwhile you dont need to have set them up, you should have collaborated … with developers to ensure code is scanned and critical vulnerabilities are blocked in the pipeline. Integrate security controls into CI/CD pipelines and development workflows. Manage and monitor SAST, DAST, and SCA tools to detect vulnerabilities early in the lifecycle. Conduct secure code reviews and support remediation efforts. Threat Modelling & Architecture Review Requirements (Primarily Essential) 2+ years of More ❯

Are you an experienced Cyber Security Programme Manager looking for your next challenge? We're working with a global organisation seeking a strategic leader to drive a multi-year, enterprise-wide cyber security transformation. In this high-impact role, you'll oversee the end-to-end delivery of complex security initiatives, working closely with an external partner … and collaborating with senior stakeholders, technical teams, and third-party suppliers to significantly strengthen the organisation's security posture. This is a hybrid role, with 3 days per week in their modern, Central London office for in-person collaboration. Key Responsibilities Lead the delivery of a multi-year cyber security uplift programme, managing both internal and external partners. … Oversee multiple project streams, ensuring effective governance, risk management, and stakeholder engagement. Drive change management and embed new security practices across the organisation. Monitor programme progress, report on key metrics, and ensure compliance with security policies and industry standards. Manage significant programme budgets, ensuring value and mitigating financial risk. About You A track record of successfully managing large More ❯

Cyber Security Consultant – Cyber Strategy & Risk London | Up to £50k + Package Join a dynamic consultancy helping organisations strengthen their cyber resilience. This role is ideal for someone with hands-on experience in cyber strategy, risk assessments, and frameworks such as NIST and ISO27001. You’ll support a variety of clients, helping them protect critical assets and improve their … security posture. What you’ll be doing: Supporting cyber strategy and risk assessment projects across multiple clients Assisting with implementation of NIST and ISO27001 frameworks Preparing reports and recommendations for client stakeholders Collaborating with senior consultants to deliver high-quality client outcomes Contributing to internal knowledge-sharing and continuous improvement initiatives Experience required: Practical experience in cyber strategy or More ❯