25 of 25 Permanent Information Security Jobs in the East of England

Information Security Compliance Analyst Permanent Salary: Negotiable Hybrid - Hertfordshire As an Information Security Compliance Analyst, you will support the development and maintenance of the EMEA wide information security management system in accordance with Global EIT strategy, EMEA business requirements and relevant information security legislation, including NIS 2, AI Act and GDPR. You … adherence by the EMEA EIT department to all relevant legislation and regulations, including but not limited to Health and Safety, Financial and Privacy laws. Main duties/responsibilities: Conduct information security, information system, and compliance-based risk assessments, evaluate responses and recommend risk treatment actions Develop and execute risk mitigation plans in conjunction with relevant internal and … external stakeholders/groups and to agreed timescales, following through to completion Support the creation, implementation and maintenance of information security policies and standards, in accordance with ISO 27001 other relevant frameworks and standards (NIST CSF, IEC 62443, CIS, GDPR etc.) Maintain the department’s information security procedures, including but not limited to information security More ❯

Information Security Compliance Analyst 12 Month FTC Hatfield - Hybrid As an Information Security Compliance Analyst, you will Support the development and maintenance of the EMEA information security management system, ensuring compliance with Global EIT strategy, EMEA business needs, and relevant legislation (e.g NIS 2, AI Act, GDPR). Maintain ISO 27001:2022 certification and … equivalent - essential. CISM and/or CISSP or other relevant certification is highly desirable ISO 27001:2022 Lead Implementer/Auditor certification is highly desirable Demonstratable experience in an Information Security, IT Governance, Risk and Compliance based role, including maintaining and continually improving an ISO 27001 compliant management system. Experience of information security management and/… or security awareness. Good knowledge of industry standard frameworks and best practices – ISO 27001: 2022, NIS2, AI Act etc. and their practical application in a corporate environment to ensure all elements of integrity, availability and confidentiality are adhered to. Extensive experience conducting information security risk assessments, reporting risks Experience of developing, implementing, managing, and maintaining Information More ❯

commitment that speaks to who we are and where we're headed. We're proud to share our story and Make Amazing Happen at CDW. As the Head of Information Security for the UK and International business you will report into the global CISO and also dotted line into the Director of Technology for UK&I and will … be accountable for all aspects of Information Security in the UK&I business. You will work as part of the global security leadership team to represent the UK&I business and as part of the UK&I Technology leadership team to implement global security best practices, protect our operations from threats and ensure compliance with customer … and regulatory requirements. Responsibilities Own and drive all aspects of Information Security across the UK&I business Build partnerships with UK&I leadership to ensure that local priorities and needs are understood while instilling a strong cybersecurity culture across the organisation Act as a senior member of the global Information Security team to represent UK&I More ❯

Business Analyst: Working within the CISO department as part of the security engineering team, the BA will be working with internal and external stakeholders (both IT and non-IT areas). Accountable for managing key business stakeholders to define requirements for change initiatives aimed at improving processes and systems ensuring alignment to business benefits and assuring quality delivery & testing … of these requirements as per business protection standards and technical specifications. The “Cyber Security Business Analyst” are responsible for • Lead the facilitation of business workshops to elicit, challenge, develop and convert business, functional, and non-functional requirements into process/systems solutions considering IT and business drivers. • Ensure all documented requirements are delivered in a clear, concise, and timely … change and improved business processes, including impact assessment of change requests to scope and requirements. • Ensure the quality & timeliness of the analysis, requirements, specifications & acceptance criteria produced with the security engineering function to guide the strategy around new security technology controls as well as with infrastructure engineering and application development programs and teams to advise on the security More ❯

What will you be doing? The PayPoint Group is looking to expand its Information Security team, and we have a new role for a Cyber Security Engineer. You will be responsible for creating, implementing, and maintaining security content such as rules, playbooks, dashboards, and reports for our security systems. This role requires a strong understanding … of security best practices, and experience working with enterprise security platforms within a SOC environment. You will join the Information Security team and use your experience and technical skills and work closely with your team members. This role is Hybrid with a requirement to be onsite at least once a week in Welwyn Garden City. Key … responsibilities Security Engineering You’ll develop and refine detection rules, alerts, and automation playbooks using Microsoft security platforms to identify threats and reduce false positives. Your role will also involve managing log ingestion, ensuring full coverage of critical assets, and driving the integration of automation and AI to enhance our security operations. Security Analysis Monitor and More ❯

Junior Security Analyst 📍 East Cheshire 💼 Hybrid 💷 £35,000 - £40,000 We're seeking a Junior Security Analyst to join a growing security and compliance function. This role will shape our strategy, protect company data and systems, and ensure regulatory compliance across the board. You'll collaborate across departments to embed a culture of security and best … practice. We're ideally looking for someone at a Junior level or who has recently completed a Bachelor’s degree in information security, Cybersecurity, Computer Science, or a related field. Master’s degree or relevant postgraduate qualifications are a plus. 🔐 Key Responsibilities: Security Strategy, Planning and Reporting Security Operations Collaboration and Stakeholder Management Risk Management Compliance … Operations Audit, incident response, and risk management ✅ Requirements: Junior or Grad Cyber or Information Security Analyst Keen interest in ISO 27001, SOC 2 Type 2, and cloud environments. 📜 You will receive certifications in the following: CISSP, CISM, ISO 27001 Lead Implementer, CISA, CRISC, CIPP/E. Physical Security (PSP, CPP) certifications a plus. If you're interested More ❯

Senior Application Security Engineer Cambridgeshire Based - 1-2 days a week onsite We are looking for an experienced Senior Application Security Engineer to join our client's expanding Cyber Security team. This is an incredible opportunity to craft a world-class Application Security function , playing a critical role in embedding security within all stages of … the development lifecycle. What you'll be doing: Becoming a key contributor to the Cyber team by focusing on application security architecture and implementing a robust risk management programme. Collaborating closely with different teams to devise plans, perform threat modelling, adopt architecture best practices, drive secure development lifecycles, and manage risk remediation. Providing expertise in security best practices … and compliance while undertaking hands-on security testing. Identifying application security risks and supporting requirements for new projects and system developments. Representing the Cyber team during review sprints to ensure application security is prioritised before deployment. Partnering with architecture and development teams to review application design and code for security vulnerabilities. Establishing and promoting a threat More ❯

We are looking for an experienced Application security specialist to join our Cyber team with a hyper focus on supporting our application security architecture and risk management programme. You will help us build out a world class capability to align with our key stakeholders in the Games teams to provide a clear plan, review and support with threat … lifecycle and overall risk remediation. This is a hybrid role : Location: Cambridge, UK with travel to the office once per week. What you'll be doing: Provide guidance on security best practices and compliance and undertake security testing Identify Application security risks and requirements for new projects and system developments Represent cyber in review sprints on application … security prior to live implementation Collaborate with the architecture and development teams to review the design and code for security vulnerabilities Establish a threat modelling capability and evangelise secure coding in the development lifecycle Provide technical specialist advice to ensure that security standards are understood and can be complied with Develop security testing plans and integrate More ❯

by the team to ensure cost-effective and value add purchase on technological equipment, software, contracts and systems. Maintain the IT Risk Register, reporting to the Board any internal information security issues and incidents providing solutions and recommendations to resolution. Support the Board in the management of Group Risk on all IT related matters and report on risk … in Computer Science or related subject Experience with methodologies like PRINCE2, ITIL, Scrum and Agile Experienced (or at least significant exposure and keen interest) in the IT governance and information security discipline Proven experience in working with IT teams in complex and dynamic environments Excellent verbal and written communication skills including the ability to explain technical concepts and More ❯

Application Security Specialist (DevOps) Hybrid – Cambridge, UK (1 day a week in office) We’re looking for an experienced Application Security Specialist to join a growing cyber security team and play a key role in shaping a world-class application security programme. This role will give you the chance to work closely with engineering and development … teams, embedding security into the development lifecycle, driving automation, and influencing remediation plans that have real impact. What you’ll be doing Guiding teams on security best practices, compliance, and secure coding. Collaborating with architects and developers to review designs and code for vulnerabilities. Embedding/improving threat modelling and secure development practices into the SDLC. Designing and … integrating security testing plans. Performing and overseeing application security testing and driving remediation. Managing end-to-end vulnerability workflows, including bug bounty findings. Supporting incident response activities when needed. Monitoring and reporting on application security metrics, KPIs, and emerging threats. Automating processes for vulnerability detection and integrating tools into the pipeline. Note: this position includes participation in More ❯

Application Security Specialist (DevOps) Hybrid – Cambridge, UK (1 day a week in office) We're looking for an experienced Application Security Specialist to join a growing cyber security team and play a key role in shaping a world-class application security programme. This role will give you the chance to work closely with engineering and development … teams, embedding security into the development lifecycle, driving automation, and influencing remediation plans that have real impact. What you'll be doing Guiding teams on security best practices, compliance, and secure coding. Collaborating with architects and developers to review designs and code for vulnerabilities. Embedding/improving threat modelling and secure development practices into the SDLC. Designing and … integrating security testing plans. Performing and overseeing application security testing and driving remediation. Managing end-to-end vulnerability workflows, including bug bounty findings. Supporting incident response activities when needed. Monitoring and reporting on application security metrics, KPIs, and emerging threats. Automating processes for vulnerability detection and integrating tools into the pipeline. Note: this position includes participation in More ❯

and delivery of infrastructure projects and business-as-usual (BAU) tasks, focusing primarily on the our data centre infrastructure. This role is vital for maintaining the stability, performance, and security of the Infrastructure as the MHRA undertakes a significant overhaul of its IT infrastructure, including the deployment of new equipment. The successful candidate will apply their technical expertise in … complex infrastructure issues, ensuring high-quality resolutions that prevent future incidents. Mentor and support junior engineers, fostering a collaborative environment and encouraging skills development across the team. Infrastructure Stability, Security, and Performance: Take ownership of the overall stability, performance, and security of our IT Infrastructure, which includes assisting in the management of data centre services such as blade … systems, virtualisation platforms, servers, Storage, Backup and power systems. Implement and maintain robust security protocols to safeguard the infrastructure, ensuring compliance with security policies and regulatory requirements. Proactively monitor and assess core network performance, identifying potential risks or weaknesses and applying pre-emptive solutions to minimise downtime and service disruptions. Play a pivotal role in the agency's More ❯

costs, travel costs and training costs. People Management Actively participates in the recruitment of new employees Organises work and measures team performance Ensures that staff have had all the information/training related to the processes/actions to be deployed and implemented Identifies training needs in the team and support in the search for suitable development measures Prepares … and proposes corrective actions Actively Monitors performance indicators and takes actions to ensure live performance of the end-to-end customer experience is met. Act in accordance with Computacenter Information Security Policies and report any potential or actual Security events or other Security risks to the organisation What youll need Previous people management experience in an More ❯

solutions with business objectives. Technical Leadership: Provide guidance on architecture decisions, ensuring that solutions are aligned with long-term technical goals and day to day team leadership. Data Governance & Security: Ensure compliance with GDPR, data retention policies, and Jollyes’ information security standards Documentation & Standards: Establish best practices for coding, version control, anddeployment across the data stack. (Currently … oral), with attention to detail and technically opinionated Curious and action-orientated: driven to make data useful Comfortable making decisions and implementing new solutions Can handle sensitive and confidential information Experience working with non-data stakeholders to translate their needs and generate useful results presented in an understandable way Familiarity with orchestration tools (Airflow, DBT) and data warehouse modelling More ❯

optimise infrastructure, networks, and cybersecurity to ensure maximum system uptime. Oversee enterprise systems including SAP S/4HANA and the Warehouse Management System (WMS) . Safeguard compliance with GDPR , information security , and corporate governance standards. Inspire, mentor, and grow a high-performing IT team (2 direct reports). Partner with global IT teams and external vendors to deliver More ❯

Join a Leading Semiconductor Company as a GRC & Cyber Risk Manager ! Our client is at the forefront of secure, scalable computing. As part of our Enterprise Security team, you’ll play a pivotal role in shaping how we manage cyber risk across their global operations and supply chain. This is a high-impact contract role for a technical risk … Contract Length: 6 months (with potential extension) Daily Rate: £700 per day (inside IR35) Location: Cambridge (hybrid – twice per week on-site) Key Responsibilities Lead and enhance Arm’s Information Security Risk Management Framework within ServiceNow IRM. Act as technical SME for ServiceNow IRM, embedding frameworks and best practices. Oversee third-party cyber risk assessments, contract reviews, and … lessons learned into the control environment. Develop and monitor Key Risk and Control Indicators to inform decision-making. Collaborate across Enterprise IT and Engineering to identify and manage service security risks. Support AI and automation initiatives to streamline GRC processes. Key Requirements Proven hands-on experience with ServiceNow IRM and risk quantification methodologies. Strong knowledge of ISO 27001, NIST More ❯

Data Architecture Ensure solutions align with client enterprise architecture frameworks and standards. Design and optimise data models, flows, and integrations to support interoperability, analytics, and reporting. Champion data governance, security, and privacy best practices in line with client and GDPR requirements. 3. Stakeholder Engagement Work closely with clinical, IT, and management teams to understand requirements and communicate architectural decisions. … Ensure solutions adhere to Client Digital, and other relevant regulatory standards. Document architectures, decisions, and processes in accordance with NHS governance protocols. Support business continuity, disaster recovery, and cyber security initiatives. Essential Skills & Experience: Proven experience as a Solution Architect within Client or large healthcare organisations. Hands-on experience with EPR systems (e.g., Cerner, Epic, System C, Allscripts, or … architecture principles. Proficiency in designing integrations using APIs, middleware, and messaging platforms. Knowledge of cloud platforms (Azure, AWS, GCP) and on-premise/hybrid environments. Familiarity with data governance, information security, and GDPR compliance. Excellent stakeholder management, communication, and presentation skills. Ability to work in multidisciplinary teams and manage competing priorities. Desirable Skills: Formal architecture certification (e.g., TOGAF More ❯

Experience in a technical support environment. Strong attention to detail and ability to manage a varied workload. Excellent stakeholder engagement and communication skills. Understanding of compliance requirements (Legal, Clinical, InfoSec). A collaborative and customer-focused approach. Ready to make a difference? Apply now and help us improve healthcare technologybringing better outcomes and experiences to patients across the UK. EDI More ❯

roadmap, ensuring quality and innovation. Building strong collaboration between engineering and wider business teams. Exploring new technologies to improve how people work and deliver value. Overseeing compliance, resilience, and information security. What Youll Bring Experience leading engineering teams in SaaS or platform-based businesses. Strong background in Microsoft Azure (.NET, C#, T-SQL, DevOps). A passion for building More ❯

clear, easy to understand terms and strive to provide customer satisfaction at all times. Key Responsibilities: Train and upskill users when appropriate to do so with computer skills and information security expertise. Lead, mentor, and develop a team of Support Analysts. Monitor and manage ticket queues to ensure SLA compliance and workload balance. Act as a technical escalation More ❯

out of digital tools and ways of working onto the project. Manage the leaning of processes to ensure that they can be digitized Adhering to corporate IT standards and Information security requirements Ensure best practices and processes are followed with regards to Digital Establish structure and plan to achieve our Highways and Major Projects digital minimum expectations Ensure More ❯

Collaborate with third-party technology partners and provide direct support and training to departments on IT applications and assets. - Implement structured processes for managing internal requests impacting IT and Information Security configurations. - Ensure compliance with Group policies while proactively identifying and resolving critical issues. What You Will Bring: - Proven experience managing IT functions and leading projects within a … of business processes such as sales, planning, production, and logistics. - Expertise in drafting technical specifications and conducting business process analysis. - Knowledge of IT administration, corporate domains, networking, and endpoint security systems. This role is integral to the company's drive for operational excellence and innovative solutions. As a Business Systems Manager, you will contribute to the optimisation of business More ❯

oversee customer-facing platforms, data infrastructure, and innovation. Balancing strategic foresight with hands-on leadership, you’ll inspire a high-performing team, align technology with business goals, and ensure security, compliance, and resilience. Key responsibilities Define and deliver the technology roadmap, shaping architecture, innovation, and delivery. Foster a collaborative, values-led technology culture. Drive integration between technology and wider … business functions. Adopt emerging technologies for measurable business impact. Manage risk, compliance, and information security. What you’ll bring Proven senior technology leadership, ideally in SaaS or platform-based businesses. Strong technical expertise in Microsoft Azure (.NET, C#, T-SQL, DevOps). Outstanding communication and business alignment skills. Experience leveraging AI or automation for efficiency. Benefits: Private Medical Cover More ❯

oversee customer-facing platforms, data infrastructure, and innovation. Balancing strategic foresight with hands-on leadership, you’ll inspire a high-performing team, align technology with business goals, and ensure security, compliance, and resilience. Key responsibilities Define and deliver the technology roadmap, shaping architecture, innovation, and delivery. Foster a collaborative, values-led technology culture. Drive integration between technology and wider … business functions. Adopt emerging technologies for measurable business impact. Manage risk, compliance, and information security. What you’ll bring Proven senior technology leadership, ideally in SaaS or platform-based businesses. Strong technical expertise in Microsoft Azure (.NET, C#, T-SQL, DevOps). Outstanding communication and business alignment skills. Experience leveraging AI or automation for efficiency. Benefits: Private Medical Cover More ❯

oversee customer-facing platforms, data infrastructure, and innovation. Balancing strategic foresight with hands-on leadership, you’ll inspire a high-performing team, align technology with business goals, and ensure security, compliance, and resilience. Key responsibilities Define and deliver the technology roadmap, shaping architecture, innovation, and delivery. Foster a collaborative, values-led technology culture. Drive integration between technology and wider … business functions. Adopt emerging technologies for measurable business impact. Manage risk, compliance, and information security. What you’ll bring Proven senior technology leadership, ideally in SaaS or platform-based businesses. Strong technical expertise in Microsoft Azure (.NET, C#, T-SQL, DevOps). Outstanding communication and business alignment skills. Experience leveraging AI or automation for efficiency. Our client’s values More ❯