1 to 25 of 27 Permanent Threat and Vulnerability Management Jobs in London

Information Protection Reporting and Analytics Analyst page is loaded Information Protection Reporting and Analytics Analyst Apply locations Quincy, Massachusetts London, England Boston, Massachusetts Kilkenny, Ireland Dublin 2, Ireland time type Full time posted on Posted 5 Days Ago time left to apply End Date: June 30, 2025 (30+ days left … to apply) job requisition id R-766929 Who we are looking for State Street seeks to recruit a cross-functional, Reporting and Analytics (RA) Analyst responsible for a variety of functions within the Fusion & Security Operations (F&SO) Governance Program at State Street. This includes gathering, analyzing, and enriching data … for utilization on scorecards and related to governance reporting across the cybersecurity space related to Data Loss Prevention (DLP), Key/Cert/Encryption Management (KCEM), Software Development Lifecycle (SDLC), Cloud Security (CS), Cyber Incident Management (CIM), and Threat and Vulnerability Management (TVM) within the State More ❯

a well known members institution in search of a Senior Network & Infrastructure Engineer based out of their Westminster office. The role will be supporting and maintaining the operations of the business as well as leading on network and infrastructure projects. They are a hybrid environment so the position also gives … Azure cloud. The ideal candidate will have good experience supporting a wintel/o365 environment as well as experience in firewall upgrades, network upgrades and wifi upgrades. This role will also manage a couple of junior engineers (no management experience necessary). The role is based in Westminster with … develop the IT infrastructure, to ensure the continued provision of secure network, cloud & remote resources required across the group with minimal downtime. To provide and secure a multi-layered infrastructure to support multiple business models for membership services, commercial activities, Events & Charity. To provide technical infrastructure support of all server More ❯

Job Role: Head of Information Security Location: London Hours: 35 hours per week Monday to Friday We are looking for a highly experienced and strategic Head of Information Security to lead and shape the organisation’s security posture across IT Security, Cyber Security, and Information Security functions. You have a … deep understanding of technical and governance-based security practices, with the ability to balance operational resilience, risk management, and business enablement. In this role which reports to our Chief Information Officer, you will drive the overall security strategy, ensuring that security controls, policies, and technologies effectively protect the organisation … s assets, infrastructure, and data. You will work closely with senior leadership, providing expert guidance on threat mitigation and security best practices. If you thrive in a dynamic environment and have a passion for building and evolving enterprise security programs, we want to hear from you Main Responsibilities Define, implement More ❯

Job ID: Amazon Australia Company Pty Ltd Amazon Web Services (AWS) is the leading cloud service provider, providing virtualised infrastructure, storage, networking, messaging, and many other services to customers all over the world, including government customers. AWS runs a globally distributed environment, operating at massive levels of scale. Businesses, from … start-ups to enterprises to large government customers, run their operations and applications on AWS' highly secure infrastructure. AWS Security is looking for a highly talented and motivated Physical Security Analyst to work with our team, designing the secure facilities to maximize the effectiveness of the physical security program. The … duties include extra-low voltage system design and engineering, working with the architectural and engineering teams to assure security best practices are observed, drafting new systems into the design teams build plans, and coordinating with physical security leaders to understand the new build and security system designs, adhering to an More ❯

The team you'll be working with: Consultant - Offensive Security Testing Role Overview: We are seeking a highly skilled and experienced Offensive Security Consultant with a strong focus on threat intelligence and attack methods. The ideal candidate will manage and conduct advanced penetration testing engagements, leveraging threat intelligence to simulate … real-world attacks across various environments, including OT, IT, web applications, cloud infrastructure, and APIs. This role requires a deep understanding of adversarial tactics, excellent communication skills, and the ability to provide strategic, actionable recommendations to enhance our clients' security posture. What you'll be doing: Responsibilities: Lead and manage … the full lifecycle of complex penetration testing engagements, applying a threat intelligence-led approach. Execute advanced penetration tests across environments such as applications, infrastructure, web, APIs, O365, Azure, AWS, and OT, using current threat landscape knowledge and attacker TTPs. Develop and maintain detailed test plans and use cases informed by More ❯

Cantor Fitzgerald’s Global Information Security team is seeking a Governance, Risk, and Compliance (GRC) Lead with expertise on managing cyber risk, ensuring compliance with regulatory requirements, and maintaining corporate controls. This role will be primarily responsible for leading efforts related to third-party risk management, client due diligence … awareness training, and regulatory compliance. The ideal candidate will have a strong grasp of cybersecurity threats and hands-on experience. Key Responsibilities Governance Risk and Compliance Advise project teams, application owners, infrastructure services, and other IT teams on information security controls, such as access management, incident handling, business continuity … system development lifecycle, threat and vulnerability management, and data protection. Identify and manage risks and vulnerabilities, providing strategic mitigation recommendations. Continuously improve policies and procedures related to controls and operational processes. Develop and deliver precise and timely metrics and reports. Third-Party Risk Management: Conduct risk assessments More ❯

A dynamic and prestigious professional services company based in the heart of the City of London are seeking a talented Cyber Security Analyst to join their team. This multifaceted position offers an exceptional opportunity for an experienced professional to work with their offices around the world to support cyber security … initiatives. The successful candidate will possess strong analytical skills, an understanding of security administration, risk management and identity access management solutions. The main focus of the role will include: Performance of system security administration on designated technology platforms in accordance with the defined policies, standards and procedures, as … well as with industry best practices and vendor guidelines Completion of threat and vulnerability assessments, in some cases followed by appropriate remedial action, to ensure that systems are protected from known and potential threats and are free from known vulnerabilities Collating security incident and event data to produce monthly More ❯

Inc. Hazeltree is a global leader in cloud-based treasury solutions, empowering investment firms with cutting-edge technology to optimize financial performance, enhance liquidity, and mitigate risk. As part of our commitment to security and innovation, we are expanding our Information Security Team and seeking a DevSecOps Engineer to drive … security automation and best practices across our cloud infrastructure and IT operations. Job Overview As a DevSecOps Engineer , you will play a pivotal role in integrating security practices into our DevOps pipeline and IT operations . Working at the intersection of operations, security, and development , you will collaborate closely with … internal teams to safeguard critical business operations by design and default. You will be responsible for security automation, CI/CD pipeline enhancements , and cloud security management , ensuring compliance with industry standards. Key Responsibilities Security & DevOps Integration: Support and extend the secured CI/CD pipeline to enhance development More ❯

to be the source of truth in global supply chains. Our mission is to build a world-class business that will evolve for decades and help create a tangible difference in our world. Oritain is the global leader in scientifically verifying origin, notably in the cotton/textiles, food, and … pharmaceutical sectors. We exist to protect the reputations of our customers and US borders by identifying and mitigating well-known risks in global supply chains. Sustainability isn't just about tackling climate change; it represents a growing conscience around our actions and their impact on people, animals, and the planet. … The personal, professional, and governmental move to sustainable practice is driven by a desire to change our impact on the world. We can only do this by knowing the certainty of our actions. Take the Lead as Our Global Cybersecurity Expert! As a result of our continued growth, we're More ❯

of Security Operations, you will be responsible for leading the day-to-day operational cybersecurity functions for the Group. You will ensure robust, efficient and globally coordinated security operations that protect the organisation's people, systems, and data. This includes direct ownership of security controls, security testing, vendor management, vulnerability and threat management, and incident response. You will work daily with the Group CISO to support consistent, high-assurance security practices across all regions, in-line with regional regulation and to support the management of cyber incidents. It is essential the individual who will fill … this role has prior management experience, has supported building security teams previously and has knowledge around their responsibility at this level to report incidents and security concerns within regulatory timelines and standards. About the role Within this role, you will have been supporting the Group CISO by managing the More ❯

Information Security Engineer - Development and Automation - UK, Remote Optum is a global organisation that delivers care, aided by technology to help millions of people live healthier lives. The work you do with our team will directly improve health outcomes by connecting people with the care, pharmacy benefits, data and resources … they need to feel their best. Here, you will find a culture guided by diversity and inclusion, talented peers, comprehensive benefits and career development opportunities. Come make an impact on the communities we serve as you help us advance health equity on a global scale. Join us to start Caring. … no limits here on the resources you'll have or the challenges you'll encounter. We have been supporting global healthcare systems from Ireland and the UK for more than 20 years, building a dynamic and diverse team of more than 2,100 talented individuals. With a continued record of More ❯

Overview: We’re seeking a proactive and detail-oriented Information Security Analyst to join a London based Banks growing security function. Reporting to the Cyber Security Manager , you will support the daily operational security activities across the business. This role is ideal for a professional with 2–3 years' experience … structured environment in a security analyst or security operations role. You'll focus on daily log analysis, vulnerability management support, antivirus monitoring, and helping to close security-related incidents. Key Responsibilities: 🔍 Security Monitoring & Analysis Review, monitor, and analyze daily security logs using SIEM tools (e.g., Splunk, Sentinel, Defender … . Identify false positives, escalate true positives, and assist in incident investigations. Support service desk and IT teams with closing out security-related calls and incidents. 🛠️ Threat & Vulnerability Management Assist with running and analyzing vulnerability scans; help track remediation. Monitor and manage endpoint protection and antivirus alerts. More ❯

Senior Cloud & Apps Security Engineer - £80,000 - £110,000 + Bonus + Benefits London/Remote AWS, Azure, Kubernetes, Service Mesh, API gateways, and API security, Python, JavaScript, GoLang, Terraform, CloudFormation (AWS), and Azure Resource Manager (ARM) templates. Are you passionate about cloud security and eager to engineer robust security … solutions within AWS and Azure environments? We are seeking Senior Cloud & Application Security Engineers to help our client define and implement its cloud security strategy. If you're an experienced Security Engineering professional excited to work with cutting-edge technology and collaborate with diverse teams, we want to hear from … you! Key Skills: Strong understanding of cloud and application security concepts, including secure coding practices, threat modeling, vulnerability management, and access control mechanisms. Experience with AWS, Azure, Kubernetes, Service Mesh, API gateways, and API security (authentication and authorization). Proficiency in programming languages such as Python, JavaScript, GoLang More ❯

+ Bonus + Benefits Remote/London 1-2 days p/m AWS, Azure, Kubernetes, Service Mesh, API gateways, and API security, Python, JavaScript, GoLang, Terraform, CloudFormation (AWS), and Azure Resource Manager (ARM) templates. Are you passionate about cloud security and eager to engineer robust security solutions within AWS … and Azure environments? We are seeking Senior Cloud & Application Security Engineers to help our client define and implement its cloud security strategy. If you're an experienced Security Engineering professional excited to work with cutting-edge technology and collaborate with diverse teams, we want to hear from you! Key Skills … Strong understanding of cloud and application security concepts, including secure coding practices, threat modeling, vulnerability management, and access control mechanisms. Experience with AWS, Azure, Kubernetes, Service Mesh, API gateways, and API security (authentication and authorization). Proficiency in programming languages such as Python, JavaScript, GoLang, Terraform, CloudFormation (AWS More ❯

+ Bonus + Benefits Remote/London 1-2 days p/m AWS, Azure, Kubernetes, Service Mesh, API gateways, and API security, Python, JavaScript, GoLang, Terraform, CloudFormation (AWS), and Azure Resource Manager (ARM) templates. Are you passionate about cloud security and eager to engineer robust security solutions within AWS … and Azure environments? We are seeking Senior Cloud & Application Security Engineers to help our client define and implement its cloud security strategy. If you're an experienced Security Engineering professional excited to work with cutting-edge technology and collaborate with diverse teams, we want to hear from you! Key Skills … Strong understanding of cloud and application security concepts, including secure coding practices, threat modeling, vulnerability management, and access control mechanisms. Experience with AWS, Azure, Kubernetes, Service Mesh, API gateways, and API security (authentication and authorization). Proficiency in programming languages such as Python, JavaScript, GoLang, Terraform, CloudFormation (AWS More ❯

as well as providing BAU Support to 200 users across the business. Key Responsibilities Include: Network Architecture & Management (Cisco Meraki) Lead network design and management across schools using Cisco Meraki. Optimize Meraki wireless, switching, and security appliances. Manage VLANs, segmentation, and network performance. Collaborate with vendors and internal … teams on connectivity and ISP engagement. Infrastructure, Cloud & Security Administer Microsoft 365 and Google Workspace tenants (user provisioning, MFA, licensing, Conditional Access). Manage Azure cloud services, focusing on performance, identity, and cost control. Oversee IAM, including Azure AD, SSO, and policy enforcement. Maintain SSL certificates across infrastructure. Manage MDM … platforms (Intune, Jamf) across the organisation. Implement and maintain IT security policies aligned with global standards. Coordinate external security assessments, audits, and penetration testing. Develop and maintain business continuity and disaster recovery strategies. Security Strategy & Compliance Regularly audit system configurations and permissions. Lead endpoint protection, external threat prevention, and vulnerability More ❯

Are you passionate about cloud security and looking to make a significant impact? Holland & Barrett is seeking a Cloud Security Specialist to help us define and implement our cloud security strategy. If you're an experienced professional eager to work with cutting-edge technology and collaborate with diverse teams, we … want to hear from you! Key Responsibilities: Security Strategy: Help define and execute the Holland & Barrett cloud security strategy, partnering with platform and Site Reliability Engineering (SRE) teams to build robust infrastructure that supports our business. Perimeter Security: Establish platform perimeter security by implementing controls at ingress and egress points … including creating and maintaining an edge network with a Web Application Firewall (WAF), Distributed Denial of Service (DDoS) protection, and a Content Delivery Network (CDN). Access Control: Establish an access control baseline focusing on the principle of least privilege and segregation of duties. Monitor and enforce these controls once More ❯

The Role The Principal Security Consultant is a senior leader specialising in designing, implementing and managing advanced security solutions. With expertise in SOC engineering tools and one of either Cloud Security, Identity and Access Management (IAM) or Threat Modelling, this role focuses on enhancing the security posture of organisations. … The consultant will lead strategic security initiatives, collaborate with clients or stakeholders to solve complex challenges, and deliver solutions tailored to modern enterprise needs. Design and implement robust cloud security architectures across multi-cloud platforms (AWS, Azure, Google Cloud). Design and deploy IAM solutions to ensure robust authentication, authorisation … and access controls. Lead threat modelling exercises to identify, assess and mitigate risks in systems and applications. Lead the design, implementation and optimisation of SIEM solutions (e.g. Splunk, Sentinel). Integrate SIEM systems with other security tools like EDR, SOAR and threat intelligence feeds. Skills Extensive experience in Cyber Security More ❯

shifts, we are leveraging our competitive advantages to strengthen our brand. A key growth strategy is to Double Down on the 3Ds (Delivery, Digital, and Drive Thru). McDonald's will accelerate technology innovation so that over 65 million customers daily experience a fast, easy service at our 25,000+ … is committed to powering tomorrow's feel-good moments. We are at the forefront of transformative technology, exploring new ways to serve our customers and spread happiness through AI, robotics, and emerging tech, digitizing the Golden Arches. Our global scale allows us to reshape all areas of our business, industry … and communities. We face complex tech challenges daily, supported by diverse, talented teams from around the world, thriving where feel-good meets fast-paced innovation. Learn more via the McDonald's Global Technology Technical Blog . Job Description: We are seeking a Senior Analyst to oversee daily operations within the More ❯

Manager candidates based in London. This grade pays up to £90,000 basic salary plus bonuses, pension, broad benefits, professional membership costs, training & development and more. Oliver James is partnered with a world class leading consulting group in their latest phase of cyber security growth. We are interested in connecting … Manager candidates based in London. This grade pays up to £90,000 basic salary plus bonuses, pension, broad benefits, professional membership costs, training & development and more. In addition, our client offers a clear and defined path for career progression where employees have complete control of their development. Candidates carrying a … of the below skills would be particularly relevant: Strong skills in areas such as cyber strategy, cyber risk, cyber maturity, security architecture, cyber transformation, and regulatory compliance for cyber. Experience with recognised cyber security standards and regulations, such as NIST CSF, CRI2.0, ISO27001, NCSC CAF, GDPR, and NIS2. Experience working More ❯

A leading bank is seeking a skilled Security Operations Manager to strengthen its IT Security team. This role involves optimizing security controls, frameworks, and processes while supporting the integration of new technologies to enhance the bank's security posture. You will act as the right hand to the Head of … IT Security, ensuring robust security services across the organization. Key Responsibilities: Security Operations: Oversee and improve IT Security operations, ensuring efficient and compliant management of security services. Vendor Management: Manage outsourced security providers, ensuring performance meets established SLA standards. Incident Response: Lead and manage IT security incidents, including … forensics when necessary. Security Services: Drive the delivery of services including Threat & Vulnerability Management, Privileged Access Management, IAM, DLP, Network Security, and Penetration Testing. Project Leadership: Lead IT/Cybersecurity improvement projects as an SME. Risk & Compliance: Evaluate IT changes for security risks, ensuring compliance with security More ❯

consultant candidates based in London. This grade pays up to £60,000 basic salary plus bonuses, pension, broad benefits, professional membership costs, training & development and more. In addition, our client offers a clear and defined path career progression where employees have complete control of their development. Key Responsibilities: Candidates carrying … of the below skills would be particularly relevant: Strong skills in areas such as cyber strategy, cyber risk, cyber maturity, security architecture, cyber transformation and regulatory compliance for cyber. Experience of various recognised cyber security relevant standards and regulations, such as NIST CSF, CRI2.0, ISO27001, NCSC CAF, GDPR and NIS2. … Experience working in a variety of environments or organisational contexts to develop cyber strategy and manage cyber risk. Desire to work with large organisations trying to solve the latest cyber security problems. Relevant certifications, such as M.Inst.ISP, CISSP, CISM, CISA or an MSc in cyber security or a related discipline. More ❯

Date: 21 April 2025 IR35 Status: PAYE A top-tier financial services organisation is seeking a Security Engineer with deep expertise in ForgeRock IAM and cloud security . You’ll be leading efforts to secure large-scale identity platforms, automate security workflows, and embed “security by design” into DevSecOps. Key … PingIDM, PingDS Advanced cloud security knowledge (AWS CLI, security controls, policies) Strong experience with PKI, HSMs, certificate lifecycle management Proficiency in penetration testing , threat modeling, and vulnerability management Automating security with GitLab CI/CD, Chef, AWS CLI Collaborating with CISO, engineering, and product teams on secure … based self-sovereign identity Hands-on coding in JavaScript, Java, or Python Apply now to join a critical security initiative protecting millions of customers and shaping IAM best practices at enterprise scale. More ❯

Date: 21 April 2025 IR35 Status: PAYE A top-tier financial services organisation is seeking a Security Engineer with deep expertise in ForgeRock IAM and cloud security . You’ll be leading efforts to secure large-scale identity platforms, automate security workflows, and embed “security by design” into DevSecOps. Key … PingIDM, PingDS Advanced cloud security knowledge (AWS CLI, security controls, policies) Strong experience with PKI, HSMs, certificate lifecycle management Proficiency in penetration testing , threat modeling, and vulnerability management Automating security with GitLab CI/CD, Chef, AWS CLI Collaborating with CISO, engineering, and product teams on secure … based self-sovereign identity Hands-on coding in JavaScript, Java, or Python Apply now to join a critical security initiative protecting millions of customers and shaping IAM best practices at enterprise scale. More ❯

The IT Security Lead will report to the Senior IT Director to ensure secure and compliant IT Systems are implemented and maintained throughout the organisation. Client Details Our client is a large and global organisation within the healthcare industry, known for its commitment to innovation and excellence. They have a … significant presence in Newcastle Upon Tyne and a new office in Uxbridge. Description Develop and implement IT security strategies and infrastructure. Lead implementation of Security tools Lead threats and vulnerabilities assessment, analysis and management Monitor and analyse the organisation's security posture on an ongoing basis. Lead and coordinate … IT security incident response efforts, continue improving the incident management process. Ensure compliance with all relevant information security and healthcare industry regulations. Conduct and facilitate IT security audits and risk assessments. Provide training and guidance on IT security best practices. Develop and maintain relationships with external IT security entities. More ❯