Reading: Senior InformationSecurity Consultant European Bank for Reconstruction and Development Job Description Description -> As the Head of InformationSecurity, you will report to the Director, Operational Risk Management (ORM) and be responsible for leading the Bank's InformationSecurity risk identification and remediation activities. Responsibilities Measure and report on the implementation and … compliance of the Bank's InformationSecurity framework (policies, procedures, guidance) throughout the organisation and verify the implementation of InformationSecurity controls and evaluate their effectiveness. Manage internal teams and external consultants as they provide support in the delivery of risk mitigation activities. Influence and support change by aligning policy updates with new regulations and business … needs and critically, emerging security threats. Manage the programmes which provide security oversight over internal IT and Business projects and external suppliers. Act as the InformationSecurity SME to support the Bank's delivery of the new GRC solution, ensuring that existing solutions and services which deliver risk assessments, and third party supplier assurance assessments, are More ❯
worldwide. The main office is based near Liverpool Street station, London. We have offices in Bermuda, Brazil, Cyprus, Greece, Hong Kong, Japan, and Singapore. Overall Job Purpose : The Junior InformationSecurity Officer (JISO) will assist the InformationSecurity team in implementing and maintaining the informationsecuritymanagement system with the objective of managing … risks to information assets to an acceptable level. The JISO will develop a good understanding of the informationsecurity policies, standards and procedures and will assist InfoSec in implementing, managing and monitoring the relevant controls. It is imperative that the JISO develops a strong understanding of the organisation's technology landscape to help identify potential threats and … vulnerabilities. Key Responsibilities: Assist in maintaining the informationsecurity standards, procedures and guidelines. Participate in the informationsecurity risk management process to identify, assess, treat and monitor risks. Manage informationsecurity incidents and events to protect information assets. Help develop and implement incident response plans and procedures to ensure that informationMore ❯
Your new company - Financial Services Your new role - Permanent - ON SITE 5 Days per week. - UK OnlyWe are looking for a highly skilled Information technology Security Engineer to join the IT team. As the first line of defence in the IT department, the principal purpose of this job mainly focusses on informationsecurity, cybersecurity and data … security, including a wide scope, such as physical security of computer rooms, operating system level security of Windows and Linux, network security of firewall and other security devices, application security both development and testing phrase, terminal security, backup security, third party and supply chain security of IT service provider.Liaison with the … Head Office, Security Operation Centre of Data Centre for implementing security policies, projects and security controls. Work with Internal Audit and other departments to execute penetration tests, cybersecurity risk self-assessment, ensure best practice and international baseline standards are in place and in line with local regulations.The ideal candidate will be responsible for managing informationsecurityMore ❯
Interim Head of InformationSecurity needed for an initial 2 - 3-month engagement with our Cyber Security Consultancy client in London. The right candidate must have demonstrable experience in senior security roles, such as Chief InformationSecurity Officer (CISO), Head of Cyber Security or Head of InformationSecurity within complex environments … Transport or Logistics organisations. The role is Outside IR35 and requires 3 days per week onsite in London. The successful candidate will be engaged as and interim Head of InformationSecurity, working closely with the CIO in order to manage the informationSecurity Function whilst also delivering two specific projects involving planning for ISO certification in … the new year and an audit of the current Cyber Security setup, identifying any gaps and making recommendations. Key Skills & Experience required: Senior-level Cyber/InformationSecurityManagement experience , including working closely with c-suite stakeholders in order to deliver both strategic and tactical results. Proven expertise in Cyber Security audits and gap analysis. More ❯
InformationSecurity Manager £70,000- £75,000 PA Central London Well-established construction engineering business is seeking an experienced InformationSecurity Manager to join them on a permanent basis. You'll be joining at a critical time where they are expanding their technical team with an ambitious growth plan with multiple acquisitions planned over the coming … years. The InformationSecurity Manager will be a crucial component in ensuring the effective management of both the technical cyber security environment and wider informationsecuritymanagement piece for the business. This role is responsible for ensuring robust cyber security controls with a strong emphasis on ISO 27001 readiness. You'll liaise … prior experience to ensure certification plans stay on track. Working with external teams to align processes, you'll also oversee InfoSec/Cyber services, conduct risk assessments and recommend security improvements. Responsibilities: Ownership and maintenance of all security related policies and procedures, implementing Security by Design and driving a culture of cyber security awareness in the More ❯
InformationSecurity Manager £70,000- £75,000 PA Central London Well-established construction engineering business is seeking an experienced InformationSecurity Manager to join them on a permanent basis. You'll be joining at a critical time where they are expanding their technical team with an ambitious growth plan with multiple acquisitions planned over the coming … years. The InformationSecurity Manager will be a crucial component in ensuring the effective management of both the technical cyber security environment and wider informationsecuritymanagement piece for the business. This role is responsible for ensuring robust cyber security controls with a strong emphasis on ISO 27001 readiness. You'll liaise … prior experience to ensure certification plans stay on track. Working with external teams to align processes, you'll also oversee InfoSec/Cyber services, conduct risk assessments and recommend security improvements. Responsibilities: Ownership and maintenance of all security related policies and procedures, implementing Security by Design and driving a culture of cyber security awareness in the More ❯
InformationSecurity GRC Manager | ISO27001, SOC2, Azure Security | Global Trading Platform £70–80k base + 10% bonus Hybrid in London Training budget for certifications + conference attendance Strong emphasis on professional autonomy and ethical leadership A newly created opportunity to lead and shape the GRC function of a global financial group at a pivotal time, supporting the … role with real scope: oversight of policy, third-party risk, architectural reviews, and cloud compliance. You'll work closely with the Head of InfoSec to maintain audit readiness, improve security posture, and influence business-wide awareness and accountability. What you’ll bring: 5+ years in InfoSec, IT Security or Ops within a regulated environment Certification required: CISSP, CISM … CRISC, or equivalent Strong knowledge of ISO27001:2022, SOC2 Type II, NIST CSF, PCI DSS, GDPR, DORA Confident with security risk assessments, audit responses, and policy governance Hands-on cloud security experience: ideally with Azure and the Shared Responsibility Model Comfort with complexity: able to analyze architecture, track metrics, and translate acronyms into actionable plans Mentorship ability: ready More ❯
InformationSecurity GRC Manager | ISO27001, SOC2, Azure Security | Global Trading Platform £70–80k base + 10% bonus Hybrid in London Training budget for certifications + conference attendance Strong emphasis on professional autonomy and ethical leadership A newly created opportunity to lead and shape the GRC function of a global financial group at a pivotal time, supporting the … role with real scope: oversight of policy, third-party risk, architectural reviews, and cloud compliance. You'll work closely with the Head of InfoSec to maintain audit readiness, improve security posture, and influence business-wide awareness and accountability. What you’ll bring: 5+ years in InfoSec, IT Security or Ops within a regulated environment Certification required: CISSP, CISM … CRISC, or equivalent Strong knowledge of ISO27001:2022, SOC2 Type II, NIST CSF, PCI DSS, GDPR, DORA Confident with security risk assessments, audit responses, and policy governance Hands-on cloud security experience: ideally with Azure and the Shared Responsibility Model Comfort with complexity: able to analyze architecture, track metrics, and translate acronyms into actionable plans Mentorship ability: ready More ❯
InformationSecurity GRC Manager | ISO27001, SOC2, Azure Security | Global Trading Platform £70–80k base + 10% bonus Hybrid in London Training budget for certifications + conference attendance Strong emphasis on professional autonomy and ethical leadership A newly created opportunity to lead and shape the GRC function of a global financial group at a pivotal time, supporting the … role with real scope: oversight of policy, third-party risk, architectural reviews, and cloud compliance. You'll work closely with the Head of InfoSec to maintain audit readiness, improve security posture, and influence business-wide awareness and accountability. What you’ll bring: 5+ years in InfoSec, IT Security or Ops within a regulated environment Certification required: CISSP, CISM … CRISC, or equivalent Strong knowledge of ISO27001:2022, SOC2 Type II, NIST CSF, PCI DSS, GDPR, DORA Confident with security risk assessments, audit responses, and policy governance Hands-on cloud security experience: ideally with Azure and the Shared Responsibility Model Comfort with complexity: able to analyze architecture, track metrics, and translate acronyms into actionable plans Mentorship ability: ready More ❯
london (city of london), south east england, united kingdom
Prism Digital
InformationSecurity GRC Manager | ISO27001, SOC2, Azure Security | Global Trading Platform £70–80k base + 10% bonus Hybrid in London Training budget for certifications + conference attendance Strong emphasis on professional autonomy and ethical leadership A newly created opportunity to lead and shape the GRC function of a global financial group at a pivotal time, supporting the … role with real scope: oversight of policy, third-party risk, architectural reviews, and cloud compliance. You'll work closely with the Head of InfoSec to maintain audit readiness, improve security posture, and influence business-wide awareness and accountability. What you’ll bring: 5+ years in InfoSec, IT Security or Ops within a regulated environment Certification required: CISSP, CISM … CRISC, or equivalent Strong knowledge of ISO27001:2022, SOC2 Type II, NIST CSF, PCI DSS, GDPR, DORA Confident with security risk assessments, audit responses, and policy governance Hands-on cloud security experience: ideally with Azure and the Shared Responsibility Model Comfort with complexity: able to analyze architecture, track metrics, and translate acronyms into actionable plans Mentorship ability: ready More ❯
thinking organization committed to innovation, resilience, and trust. As we continue to grow and evolve in a digital-first world, we are seeking a strategic and business-savvy Business InformationSecurity Officer (BISO) to bridge the gap between cybersecurity and business operations. The BISO is expected to be adaptable and have the ability to implement the integration of … cybersecurity into our IT and operational technology (OT) ecosystems. As the BISO, you will serve as the primary liaison between the BA Customers & Solutions Security & Resilience team and business units, ensuring that information and cybersecurity strategies align with business goals. You will be responsible for embedding security into business processes, managing risk, and driving a culture of … security awareness across the organization. The BISO will report directly to the Head of Business Excellence, with additional reporting to the Director of Asset Management on the OT topics. Main tasks Act as the trusted information and cybersecurity advisor to management and stakeholders Establishing, developing and implementing the SecurityManagement System in the BU More ❯
Home " Jobs " Markets Product Security Engineer This is an amazing opportunity to work with InformationSecurity and Compliance Team at ION. As a Product Security Engineer, you would be the key enabler of secure and compliant products. You should have knowledge of attack paths across the technology stack, including tactics, techniques and procedures (TTPs) used by … adversaries to exploit vulnerabilities. You will be trusted advisor throughout the product development lifecycle, incorporating knowledge of emerging threats, business goals and system design to improve platform security posture. You will be responsible for aligning the Markets security strategy, security design and controls engineering to product roadmap. You will also be responsible for providing transparency to leadership … on product control performance and associated risk. Key Responsibilities: Within the Product Security Team as part of the ION Markets CISO function, you will deal with the following activities: Monitor and identify security events and emerging threats associated with the product line you are managing and any dependencies; Act as the interface between CSIRT and Product teams as More ❯
InformationSecurity Lead Auditor Department: Audit Employment Type: Permanent Location: London, UK Reporting To: Regional Operations Manager Description Please note, that a full driving licence is required as this is a field-based role. Join our growing Lead Auditor teams across the UK! At ISOQAR, we draw on our experience, knowledge, and ambition to empower organisations to achieve … solutions, the Alcumus Group helps organisations increase resilience and manage risk, protecting its customers, workforce, stakeholders, and the environment. Due to our continued growth, we are seeking professionals within informationsecurity to join our expanding Lead Auditor teams supporting a broad range of clients across the UK . With onsite practical experience and deep knowledge of industry processes … and Divisional inductions, you will undertake a 12-week training programme, including classroom and onsite learning with a Senior Lead Auditor, to achieve your Lead Auditor qualifications in Quality Management Systems (9001) and InformationSecurityManagement Systems (27001). What that means day to day The life of a Lead Auditor is varied and engaging, with More ❯
Croydon, London, United Kingdom Hybrid / WFH Options
Gold Group
Cyber Security Manager Croydon, South London Hybrid working - 2 days per week in the office Cyber Security Manager needed for a leading organisation based in Croydon, who are looking to employ an experienced Cyber Security Manager with an in-depth knowledge of Cybersecurity frameworks, tools, and technologies, ISO27001 adoption, Incident management and Change management. This role … involves the development and implementation of security strategies, policies, and procedures to protect against cybersecurity threats, as well as actively monitoring and responding to security incidents. Salary expectation: * Salary: £70,000 per annum * 25 day's annual holiday * Pension Plan * Flexible working * Hybrid working - Office 2 days per week Some of the main duties of the Cyber Security Manager will include: * Security Strategy & Implementation: Design, implement, and maintain comprehensive cybersecurity policies, procedures, and controls * Threat Detection & Response: Continuously monitor the digital environment for potential vulnerabilities and security breaches * Incident Management : Lead incident response activities, coordinating with IT teams to mitigate risks and minimise damage. Responsible for writing incident reports, gathering input across the technical More ❯
South Croydon, Surrey, England, United Kingdom Hybrid / WFH Options
Gold Group Ltd
Cyber Security Manager Croydon, South London Hybrid working - 2 days per week in the office Cyber Security Manager needed for a leading organisation based in Croydon, who are looking to employ an experienced Cyber Security Manager with an in-depth knowledge of Cybersecurity frameworks, tools, and technologies, ISO27001 adoption, Incident management and Change management. This role … involves the development and implementation of security strategies, policies, and procedures to protect against cybersecurity threats, as well as actively monitoring and responding to security incidents. Salary expectation: * Salary: £70,000 per annum* 25 day's annual holiday* Pension Plan* Flexible working* Hybrid working - Office 2 days per week Some of the main duties of the Cyber Security Manager will include: * Security Strategy & Implementation: Design, implement, and maintain comprehensive cybersecurity policies, procedures, and controls* Threat Detection & Response: Continuously monitor the digital environment for potential vulnerabilities and security breaches* Incident Management : Lead incident response activities, coordinating with IT teams to mitigate risks and minimise damage. Responsible for writing incident reports, gathering input across the technical More ❯
Croydon, London, United Kingdom Hybrid / WFH Options
Gold Group Limited
Location: Croydon Salary: Up to £70000.00 per annum Benefits & Hybrid working Sector: IT & Telecoms Type: Permanent Contact: Simon Kiely Job Published: 1 day ago Cyber Security Manager Croydon, South London Hybrid working - 2 days per week in the office Cyber Security Manager needed for a leading organisation based in Croydon, who are looking to employ an experienced Cyber … Security Manager with an in-depth knowledge of Cybersecurity frameworks, tools, and technologies, ISO27001 adoption, Incident management and Change management. This role involves the development and implementation of security strategies, policies, and procedures to protect against cybersecurity threats, as well as actively monitoring and responding to security incidents. Salary expectation: Salary: £70,000 per annum … day's annual holiday Pension Plan Flexible working Hybrid working - Office 2 days per week Some of the main duties of the Cyber Security Manager will include: Security Strategy & Implementation: Design, implement, and maintain comprehensive cybersecurity policies, procedures, and controls Threat Detection & Response: Continuously monitor the digital environment for potential vulnerabilities and security breaches Incident ManagementMore ❯
Model Transformation Standardise and simplify technology governance, policies, and processes to reflect a modern, strategic IT function. Embed frameworks such as: ISO/IEC 27001: The international standard for informationsecuritymanagement systems (ISMS), ensuring data confidentiality, integrity, and availability. ITIL (Information Technology Infrastructure Library): A framework for standardising IT service management practices and aligning … to reduce cost and complexity. Oversee the consolidation of the IT environment, supporting migration towards a unified operating ecosystem (currently a mix of Microsoft and Google platforms). Relationship Management Lead and be responsible for overall implementation of the architecture and technology deliverables, fostering a culture of collaboration across IT and business teams to identify and address IT business … them effectively. Finance Oversee delivery of financial business cases to reduce IT costs. The Successful Applicant Experience : Experience in tender negotiation and IT purchasing Experience in supplier and contract management and reviewing performance against SLAs Experienced in developing strong working relationships with key external partners Experience in implementing IT strategies Experienced in running and managing IT infrastructure, application, and More ❯
Are you looking for an exciting new opportunity? Join a London based, product-agnostic consultancy specialising in informationsecurity governance, risk, and compliance management for clients across Europe. With a deep-rooted passion for cyber risk, the team excels at developing measurable controls that align with an organisation's risk appetite, capacity, and tolerance for breaches. Known … for crafting innovative and cost-effective InformationSecurityManagement Systems (ISMS), the consultancy enables quantifiable compliance with key informationsecurity legislation, regulations, and industry standards, including PCI DSS, the UK Data Protection Act 2018 (DPA 2018), GDPR, and ISO/IEC 27001. If you would like to learn more about this opportunity, feel free to … of OWASP methodologies and offensive testing across black/grey/white-box approaches. Proficiency in tools like Burp Suite, Kali, Nmap, Nessus, Qualys, Metasploit. Familiarity with cloud platform security testing (AWS, Azure, GCP). Understanding of mobile security (Android & iOS), networking protocols, and the OSI model. Excellent verbal and written communication skills, especially for client-facing engagements. More ❯
About the Opportunity Contentful strives to build a secure and safe service and commits considerable effort and resources to security. Our Security team supports corporate-wide informationsecuritymanagement programs and collaborates closely with internal teams. We believe that Security must be anchored by DevOps principles with strong repeatable processes. We are looking for a … committed and driven Security Engineer (f/m/f) with experience working in cloud-native product infrastructure and corporate environments. In this role, you will manage daily alerts and operations while leading broader collaborative initiatives such as architecture design collaboration, threat modeling, and vulnerability identification, to drive meaningful security improvements. Candidates should be skilled in cloud-native … technologies with demonstrable proficiency in infrastructure as code and application development. This hands-on role offers an opportunity to grow your expertise in cloud technologies and security tooling while making meaningful impact by embedding security practices and supporting secure third-party integrations in a fast-pacted software-as-a-service environment. Required to be in our London office More ❯
the business objectives across new and growth areas. Key Responsibilities: Leading and scaling the UX function - setting up design systems, accessibility standards etc from scratch. Working with the Senior Management Team - making cases for more design resources and continuously measure, track and share the value on an ongoing basis. People Management and Leadership - managing and developing UX Designer … currently working as a Head of or Lead in a fast growing business Experience leading teams of both designers and user researchers Experience setting up accessibility standards from scratch Information architecture, content design and personas Experience with service design Good taste in product design Worked on localisation projects Experience across both web and app and B2B and B2C Healthcare … upload your portfolio with your application Skin Analytics manufactures medical devices and complies with ISO standards 13485 and 27001. As part of your employment, you will be assigned Quality Management System (QMS) and InformationSecurityManagement System (ISMS). We require that our employees agree to complete their assigned training and diligently follow all company quality More ❯
willing to listen to others ideas. Skin Analytics manufactures medical devices and complies with ISO standards 13485 and 27001. As part of your employment, you will be assigned Quality Management System (QMS) and InformationSecurityManagement System (ISMS). We require that our employees agree to complete their assigned training and diligently follow all company quality … management and informationsecurity processes. The National Institute for Health and Care Excellence has recommended DERM for use within the NHS until May 2028, while further evidence is gathered. Competitive salary Share options package - all our employees have ownership in the company Private healthcare 25 days annual leave (5 day company shutdown in August + bank holidays More ❯
Manage and collaborate with integrations squad - working with Tech Lead, Fullstack Engineer and QA Engineer. Cross functional working - working with other business unit Product Managers, Engineers and the Senior Management Team. Prioritisation and building roadmap for future integrations - push back on requests, guiding teams and strategising about what's best for the business. Managing demanding workload - requests will come … knowledge (platform/backend) is advantageous Skin Analytics manufactures medical devices and complies with ISO standards 13485 and 27001. As part of your employment, you will be assigned Quality Management System (QMS) and InformationSecurityManagement System (ISMS). We require that our employees agree to complete their assigned training and diligently follow all company quality … management and informationsecurity processes. The National Institute for Health and Care Excellence has recommended DERM for use within the NHS until May 2028, while further evidence is gathered. Competitive salary Share options package - all our employees have ownership in the company Private healthcare 25 days annual leave (5 day company shutdown in August + bank holidays More ❯
the better our work will be. Skin Analytics manufactures medical devices and complies with ISO standards 13485 and 27001. As part of your employment, you will be assigned Quality Management System (QMS) and InformationSecurityManagement System (ISMS). We require that our employees agree to complete their assigned training and diligently follow all company quality … management and informationsecurity processes. More ❯
teams with QA, Product, and Regulatory Skin Analytics manufactures medical devices and complies with ISO standards 13485 and 27001. As part of your employment, you will be assigned Quality Management System (QMS) and InformationSecurityManagement System (ISMS). We require that our employees agree to complete their assigned training and diligently follow all company quality … management and informationsecurity processes. The National Institute for Health and Care Excellence has recommended DERM for use within the NHS until May 2028, while further evidence is gathered. Competitive salary Share options package - all our employees have ownership in the company Private healthcare 25 days annual leave (5 day company shutdown in August + bank holidays More ❯
support the workload and responsibilities of the Data Protection Officer (DPO) to ensure compliance with the UK GDPR and the Data Protection Act 2018. Working under the supervision and management of the DPO they will be responsible for identifying privacy-related risks and the management of the same, together with developing policy and compliance documentation and raising awareness … confidence to find a way through a complex organisation to fact find and problem solve. They will be pro-active, with an appreciation of the need to help deliver management or mitigation measures in response to identified risks. Working closely with business users, they will be ready to 'roll up their sleeves' and fix shared problems, rather than advising … and the project to ensure compliance with the UK GDPR, the Data Protection Act 2018 and other applicable data protection laws and regulations (including the Data Protection and Digital Information Bill when it becomes law). Monitoring developments in relevant law, regulation, policy, guidance and codes of practice. Enhancing existing policies, plans and procedures, and supporting the creation of More ❯
