1 to 25 of 39 DemandTrendPermanent Information Security Jobs in Scotland

Job Description: Job Description Leonardo UK is seeking a proven, experienced Principal Consultant to join the Cyber & Security Solutions Division team. This role is focused on supporting the delivery of security aspects to the company's core products and to external stakeholders. This requires co-ordination with engineering teams and delivery of all facets of cyber and information security related to the delivery across the engineering lifecycle - from requirements all the way through to in-service support and maintenance. This is an exciting opportunity to be part of significant programmes, during which you will ensure that products meet the highest standards, in accordance with customer's requirements and risk appetite. You will be supported in this … team and with our customers. Talk to us to find out more. Key Responsibility Areas Leading a team or operating independently to meet all aspects of the cyber and information security delivery across an engineering lifecycle. Interpreting customer requirements into actionable security management plans, statements of work, and activities to be delivered across the lifecycle. Become the More ❯

Job Description: Job Description Leonardo UK is seeking a Senior Consultant to join the Cyber & Security Solutions Division team. This role is focused on supporting the delivery of security aspects to the company's core products and to external stakeholders. This requires engaging with engineering teams and delivery of all facets of cyber and information security … to us to find out more. Key Responsibility Areas Work as part of a larger team, delivering streams of work independently, to meet all aspects of the cyber and information security delivery across an engineering lifecycle. Interpreting customer requirements into actionable security management plans, statements of work, and activities to be delivered across the lifecycle. Oversight and … statements of work and artefacts to time, cost and quality constraints. Identification, management and escalation of technical and delivery risks and issues. Maintain customer relationships for the cyber and information security workstream, both internal and external. Mentoring of consultants within your team as required. Skills, Qualifications, Knowledge & Experience Required In addition to a passion for cyber and information More ❯

Ready to Make an Impact in Cybersecurity? Information Security Analyst - 6-Month FTC Global Law Firm London/Hybrid Our client, a leading global law firm , is looking for an experienced Information Security Analyst to join their London team on a 6-month fixed-term contract . This is a fantastic opportunity to work in a … high-impact role where information security is at the heart of global legal operations. Salary: Up to £70,000 per annum (pro rata) Hybrid Working: 3 days in the office, 2 days from home The Role: Support the delivery of robust information security and privacy practices across global operations. Conduct security risk assessments, support incident More ❯

NHS Fife Internal Applicants only - You must be currently employed by NHS Fife to apply for this post We are seeking to appoint an enthusiastic and highly motivated Information Security Officer . Applicants should have experience in information security and risk management. Experience in supporting data use within large, complex environments, along with good organisational, listening … and communication skills, is essential. The ability to deliver tasks on time to meet team and organisational objectives is also required. Qualifications in an information security framework, computing, or equivalent experience would be desirable. A flexible approach to the role's requirements, along with the ability to train staff on information security concepts and policies, is … work in the UK, you must demonstrate relevant permission to work, which can be evidenced through various routes such as visas or settled/pre-settled status. For more information, visit the GOV.UK website. Depending on the role, sponsorship via a UK Skilled Worker/Health & Care Worker Visa may be possible, provided the employer is a licensed sponsor More ❯

Senior Information Security Specialist page is loaded Senior Information Security Specialist Apply remote type Hybrid locations Glasgow (GBS) time type Full time posted on Posted 14 Days Ago job requisition id JR352 The Team The Cyber Defence/Security Operations Team manages Clyde & Co's global cyber security operations, including Threat & Vulnerability Management and … capability by working with IT, business stakeholders, and third parties to reduce and pre-empt cyber risk. It's an exciting opportunity to contribute to a high-performing, evolving security function. Key Responsibilities Reporting to the Cyber Defence/Security Operations Global Lead, the role supports and enhances security operations across: Threat & Vulnerability Management Configure and monitor … endpoint/host-based security tools. Identify and manage vulnerabilities; lead mitigation discussions. Oversee vulnerability scans and third-party pen tests. Track and resolve test findings. Stay updated on emerging threats. Incident Detection & Response Triage and investigate security incidents. Respond to incidents and enhance response capabilities. Develop and maintain incident response plans. Improve outsourced monitoring value through better More ❯

IT Security Manager Location: Clydebank, Hybrid Options Available Employment Type: Permanent Full-Time We are currently looking for an experienced and proactive IT Security Manager to lead our information security function. This is a hands-on leadership role responsible for managing day-to-day cybersecurity operations, defining and implementing security policies, and supporting both technical … and strategic initiatives across the business. Role Overview: The IT Security Manager will be responsible for overseeing daily security operations, managing a skilled technical team, and defining the processes, standards, and policies that underpin secure business operations. They will play a key role in shaping and executing the IT security strategy, acting as a subject matter expert … while supporting compliance, training, incident management, and continuous improvement efforts across the organisation. Key Responsibilities: Oversees the daily operations of the IT Security team, ensuring service levels and internal objectives are consistently met. Leads the delivery of IT security projects, aligning them with broader strategic objectives and deadlines. Contributes expert guidance into IT strategy and supports its implementation More ❯

thinking organization committed to innovation, resilience, and trust. As we continue to grow and evolve in a digital-first world, we are seeking a strategic and business-savvy Business Information Security Officer (BISO) to bridge the gap between cybersecurity and business operations. The BISO is expected to be adaptable and have the ability to implement the integration of … cybersecurity into our IT and operational technology (OT) ecosystems. As the BISO, you will serve as the primary liaison between the BA Customers & Solutions Security & Resilience team and business units, ensuring that information and cybersecurity strategies align with business goals. You will be responsible for embedding security into business processes, managing risk, and driving a culture of … security awareness across the organization. The BISO will report directly to the Head of Business Excellence, with additional reporting to the Director of Asset Management on the OT topics. Main tasks Act as the trusted information and cybersecurity advisor to management and stakeholders Establishing, developing and implementing the Security Management System in the BU Heat UK through More ❯

As an Information Security Analyst, you serve as a digital guardian for the organisation, protecting critical information assets and systems from cyber threats. You are part of the Governance, Risk & Compliance team, and report to the Compliance & Information Security Manager. Our team works alongside other parts of the business to carry out audits, compliance continual … improvements, investigations and risk assessments. Your role is critical in maintaining security measures that safeguard sensitive data, ensure business continuity, and maintain stakeholder trust. You act as both a strategic advisor and hands-on practitioner, translating complex security concepts into actionable business solutions while staying ahead of an ever-evolving threat landscape. What I Do Is: Maintain and … support the internal audit schedule and requirements for all QC required frameworks using the GRC platform and planning tool to ensure security controls are in place and operating effectively Assist in the external audit process and support any development or implementation of remediation required Participate in the review, update and validation of our Policies, Procedures and Documentation, ensuring accuracy More ❯

The Chief Information Security Office (CISO) is a global team supporting the confidentiality, integrity, and availability of the firm's information assets across Europe, Asia, and the Americas. It implements security solutions to meet business needs and ensures trustworthiness of customer data and infrastructure. The Principal Security Architect is a cybersecurity expert collaborating with the … CTO and CIOs to design and govern security patterns for application development, ensuring security is integrated into technology infrastructure and business applications. This role requires cross-departmental collaboration within the organization to embed security as an emergent property of design decisions made across technology teams. The Principal Security Architect will lead a team of architects to … review solutions, ensuring security controls are incorporated and best practices are followed, particularly in infrastructure projects like cloud environments. The role involves overseeing efforts to identify requirements, evaluate technologies, and support product development to address security challenges globally. Purpose of the role Develop, implement, and manage the bank's cloud and security infrastructure, including security administration More ❯

to evolving regulations, general Health & Safety tasks, managing risk assessments, and supporting incident response processes. Key responsibilities include: Compliance Accreditations Overall management of Compliance areas of responsibility within our Information Security Management System (ISMS) including leading the ISO Committee, management and scheduling of internal audits and ensuring existing policies are updated to reflect organisational practises Responsibility of the … of risk assessments and assisting in our monthly risk reports to the senior leadership team Assist, or own in some cases, incident response proceedings in the event of an Information Security Incident or Health and Safety Incident Collaboration with internal and external teams to raise awareness of Compliance procedures Supporting key stakeholders with raising NDA’s and Data … knowledge working with and implementing ISO 27001 Knowledge and awareness of Health & Safety procedures and best practise with knowledge of the Health & Safety at Work Act 1994 advantageous Further information security accreditations or general ISO knowledge is advantageous but not a requirement A confident communicator with demonstrable Project Management skills, able to work on multiple projects simultaneously Comfortable More ❯

to evolving regulations, general Health & Safety tasks, managing risk assessments, and supporting incident response processes. Key responsibilities include: Compliance Accreditations Overall management of Compliance areas of responsibility within our Information Security Management System (ISMS) including leading the ISO Committee, management and scheduling of internal audits and ensuring existing policies are updated to reflect organisational practises Responsibility of the … of risk assessments and assisting in our monthly risk reports to the senior leadership team Assist, or own in some cases, incident response proceedings in the event of an Information Security Incident or Health and Safety Incident Collaboration with internal and external teams to raise awareness of Compliance procedures Supporting key stakeholders with raising NDA’s and Data … knowledge working with and implementing ISO 27001 Knowledge and awareness of Health & Safety procedures and best practise with knowledge of the Health & Safety at Work Act 1994 advantageous Further information security accreditations or general ISO knowledge is advantageous but not a requirement A confident communicator with demonstrable Project Management skills, able to work on multiple projects simultaneously Comfortable More ❯

cyber risks within their respective lines of business. Actively govern cyber risk in the Deloitte Technology risk register. Partner effectively with Deloitte Technology and BISO teams to facilitate cyber security risk reviews and analysis. Empower Deloitte Technology teams to establish cyber risk ownership and agree on acceptable risk levels aligned with their risk appetite. Review, test, and constructively challenge … Deloitte Technology cyber teams on their cyber security risk assessments, including risk mitigation and management responses. Manage any new requirements for cyber risk dashboards and maintain existing dashboards. Work closely with Cyber risk reporting team to automate and digitize risk metrics, ensuring accurate representation of all Cyber Risk Data. Relationship Management Lead, coach, and mentor project teams to incorporate … security into enterprise and client-facing applications. Collaborate with teams across Deloitte to reduce exposure to cyber risk across the enterprise. Serve as a trusted advisor to BISO, solution architects, developers, technical risk analysts and others on information security principles, standards, and best practices. Strategic Maintain the Deloitte Cyber risk framework, ensuring alignment with the Deloitte Enterprise More ❯

Senior Product Security Engineer Develop and implement global regulatory compliance strategies for Sonos products Location: Glasgow, Scotland, United Kingdom Job Tags: Operations About The Role Senior Product Security Engineer - Regulatory Compliance At Sonos we want to create the ultimate listening experience for our customers and know that it starts by listening to each other. As part of the … applicants must live within commuting distance of our Glasgow office location and should expect to be in office a minimum of 4 days per week. At Sonos, our Product Security Vision is to protect our products by implementing proven security practices and leveraging expertise to create experiences that both delight our customers and safeguard them and their information from cyber threats. We are seeking an experienced and strategically-minded Senior Product Security Engineer - Regulatory Compliance to join our Product Security team. This is a critical new role central to establishing and maturing our Governance, Risk, and Compliance (GRC) capabilities specifically for our world class products and services. You will be the internal subject matter expert More ❯

Senior Cyber Security Engineer - 12 months Contract Hybrid 2 days Tuesday & Wednesday, other 3 remote OUTSIDE OF IR35 Preferred Locations: Aberdeen, Staines, Glasgow, or Reading Applicants must be able to pass the HMG Baseline Personnel Security Standard (BPSS) check. The Senior Cyber Engineer will support project implementation aligned with company objectives, including continuous improvement of margin, customer satisfaction … environments to support business, production, and operational goals. Key Objectives: Assess the cybersecurity robustness of architectures, technologies, & procedures in client facilities. Design solutions that meet client requirements and implement security measures (e.g., antivirus, patch management, insider threat protection, incident response, compliance). Conduct vulnerability assessments & audits on client systems & network devices, considering OT sensitivities. Provide expertise in network design … data communication, servers, VMs, switches, firewalls) and testing procedures (FAT). Prepare material requisitions & contribute to technical bid evaluations. Review vendor drawings & consolidate feedback from other disciplines. Undertake Cyber Security Risk Assessments and advise on mitigation actions. Support evaluation of clients' security posture, identifying vulnerabilities & areas for improvement. Stay updated on security trends, threats, & best practices. Apply More ❯

days left to apply) job requisition id 137415 End Date Friday 22 August 2025 Salary Range £90,440 - £106,400 We support flexible working - click here for more information on flexible working options Flexible Working Options Hybrid Working, Job Share Job Description Summary . Job Description JOB TITLE: Lead Infrastructure Engineer SALARY: £90,440 - £106,400 LOCATION: Edinburgh or … an office site About this opportunity At Lloyds Banking Group, we're moving to the next stages of our digital transformation, and it's our job within the Chief Security Office (CSO) to ensure that we keep our customers, colleagues and assets safe from threat! The Lead Infrastructure Engineer will lead a team of Engineers within the Security Operations Lab, being responsible for one or more technical products. This role is accountable for infrastructure and security strategy, as well as the technical product roadmaps across the Data Loss Management (DLM) feature team. A key focus will be on improving Data Loss Prevention (DLP) and Data Security Posture Management (DSPM) capabilities, ensuring alignment with business goals More ❯

an office site About this opportunity At Lloyds Banking Group, we're moving to the next stages of our digital transformation, and it's our job within the Chief Security Office (CSO) to ensure that we keep our customers, colleagues and assets safe from threat! The Lead Infrastructure Engineer will lead a team of Engineers within the Security Operations Lab, being responsible for one or more technical products. This role is accountable for infrastructure and security strategy, as well as the technical product roadmaps across the Data Loss Management (DLM) feature team. A key focus will be on improving Data Loss Prevention (DLP) and Data Security Posture Management (DSPM) capabilities, ensuring alignment with business goals … collaboration is crucial for building a resilient, scalable, and proactive data loss prevention strategy! What We're Looking For Strategic Leadership and Technical Direction Define and implement infrastructure and security strategies aligned with business and compliance objectives. Develop and maintain technical roadmaps for DLM, with a focus on DLP and DSPM capabilities. Collaborate closely with the DLM Product Owner More ❯

Net Talent are delighted to be partnering with an ambitious Managed Security Service Provider established in Scotland with a growing global footprint. They are driven to help protect organisations against the rising threat of cyber-attacks in an ever-evolving digital world. The have become a known Microsoft Security Partner with NCSC status as well as several prestigious … deliver exceptional client services. This role is critical in maintaining business continuity by providing first-line technical support, incident management, and problem resolution while upholding the highest standards of information security that our clients expect. Technical Support & Incident Management Provide technical support via phone, email, and ticketing systems for hardware, software, and network issues Triage and prioritise incoming … rights across various systems and applications Deploy and configure new hardware and software according to company standards Monitor system performance and proactively identify potential issues before they impact operations Security & Compliance Ensure all support activities comply with cybersecurity best practices and industry standards Assist with security incident response when required, following established protocols Maintain strict confidentiality of sensitive More ❯

ITC Infotech is looking for a Cyber Security Analyst to join our team in Edinburgh, UK. Your X-Factor Work ethic - You are a consummate professional. Aptitude - You have an innate capacity to transition from project to project without skipping a beat. Communication - You have excellent written and verbal communication skills for coordination across projects and teams. Impact - You … You have the drive to succeed paired with a continuous hunger to learn. Leadership - You are trusted, empathetic, accountable, and empower others around you. Working as a member of Information Security team, the Cyber Cloud Monitoring Analyst is part of the global team that is responsible for providing 24/7 real-time monitoring of the firm's … cloud security posture within Azure, AWS, and CGP. This team is also responsible for incident identification, documentation, remediation and tracking for all cloud services. More specifically, the Supplier Personnel will support the global Cyber Cloud Monitoring function and have following key responsibilities: Perform investigation and escalation for complex or high severity security threats or incidents and handles and More ❯

ITC Infotech is looking for a Cyber Security Analyst to join our team in Edinburgh, UK. Your X-Factor Work ethic - You are a consummate professional. Aptitude - You have an innate capacity to transition from project to project without skipping a beat. Communication - You have excellent written and verbal communication skills for coordination across projects and teams. Impact - You … You have the drive to succeed paired with a continuous hunger to learn. Leadership - You are trusted, empathetic, accountable, and empower others around you. Working as a member of Information Security team, the Cyber Cloud Monitoring Analyst is part of the global team that is responsible for providing 24/7 real-time monitoring of the firm's … cloud security posture within Azure, AWS, and CGP. This team is also responsible for incident identification, documentation, remediation and tracking for all cloud services. More specifically, the Supplier Personnel will support the global Cyber Cloud Monitoring function and have following key responsibilities: Perform investigation and escalation for complex or high severity security threats or incidents and handles and More ❯

ITC Infotech is looking for a Cyber Security Analyst to join our team in Edinburgh, UK. Your X-Factor Work ethic - You are a consummate professional. Aptitude - You have an innate capacity to transition from project to project without skipping a beat. Communication - You have excellent written and verbal communication skills for coordination across projects and teams. Impact - You … You have the drive to succeed paired with a continuous hunger to learn. Leadership - You are trusted, empathetic, accountable, and empower others around you. Working as a member of Information Security team, the Cyber Cloud Monitoring Analyst is part of the global team that is responsible for providing 24/7 real-time monitoring of the firm's … cloud security posture within Azure, AWS, and CGP. This team is also responsible for incident identification, documentation, remediation and tracking for all cloud services. More specifically, the Supplier Personnel will support the global Cyber Cloud Monitoring function and have following key responsibilities: Perform investigation and escalation for complex or high severity security threats or incidents and handles and More ❯

ITC Infotech is looking for a Cyber Security Analyst to join our team in Edinburgh, UK. Your X-Factor Work ethic - You are a consummate professional. Aptitude - You have an innate capacity to transition from project to project without skipping a beat. Communication - You have excellent written and verbal communication skills for coordination across projects and teams. Impact - You … You have the drive to succeed paired with a continuous hunger to learn. Leadership - You are trusted, empathetic, accountable, and empower others around you. Working as a member of Information Security team, the Cyber Cloud Monitoring Analyst is part of the global team that is responsible for providing 24/7 real-time monitoring of the firm's … cloud security posture within Azure, AWS, and CGP. This team is also responsible for incident identification, documentation, remediation and tracking for all cloud services. More specifically, the Supplier Personnel will support the global Cyber Cloud Monitoring function and have following key responsibilities: Perform investigation and escalation for complex or high severity security threats or incidents and handles and More ❯

business continuity and disaster recovery planning and testing Manage internal audits, compliance reporting, and remediation activities Coordinate GDPR compliance and data protection processes across the organisation Drive improvements in security culture through awareness and training Collaborate with stakeholders to identify and address control deficiencies Qualifications & Experience Substantial relevant experience in control management for governance, compliance, IT audits, IS assurance … and risk management programmes Understanding of regulatory requirements, including cross-industry regulations (e.g., GDPR, Data Protection Act) and industry-specific regulations Knowledge of common information security management frameworks, such as ISO/IEC 27001, ITIL, COBIT as well as those from NIST, including 800-53 and Cybersecurity Framework Knowledge of OneTrust risk management toolset or similar preferred Proven … ability to communicate with technical teams to elicit information and requirements Excellent written and verbal communication skills, interpersonal and collaborative skills, and the ability to communicate compliance and risk related concepts to technical and nontechnical audiences CISA, CISM or equivalent BSc or equivalent qualification in IT based degree. At Sword, our core values and culture are based on caring More ❯

costs, travel costs and training costs. People Management Actively participates in the recruitment of new employees Organises work and measures team performance Ensures that staff have had all the information/training related to the processes/actions to be deployed and implemented Identifies training needs in the team and support in the search for suitable development measures Prepares … and proposes corrective actions Actively Monitors performance indicators and takes actions to ensure live performance of the end-to-end customer experience is met. Act in accordance with Computacenter Information Security Policies and report any potential or actual Security events or other Security risks to the organisation What youll need Previous people management experience in an More ❯

to build relationships within the service desk team and the wider organisation. Understand the business Objectives, Vision, Mission and Values. Support the organisation's commitment to good quality and information security management (ISO 27001 and ISO 9001 certifications) by adhering consistently to policies and procedures. 2nd Line/3rd Line Service Desk Analyst Knowledge/Skills Required: To … representative of the knowledge, skill, and/or ability required. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions. Bachelor's degree in information technology, Computer Science, or related field (or equivalent work experience). Knowledge of ITIL Framework; ideally having an ITIL Foundation 3+ years' experience in an IT Service Desk/… skills: such as telephony skills, communication skills, active listening and customer-care) Experience with Server hardware raid rebuilds and restores. Understanding of WAN and LAN connectivity, routers, firewalls, and security Remote access solution implementation and support: VPN, RDP, and Remote Desktop Control. Hands-on experience with scripting or automation (desirable) Driving Licence Team player, you will thrive in a More ❯

to build relationships within the service desk team and the wider organisation. Understand the business Objectives, Vision, Mission and Values. Support the organisation's commitment to good quality and information security management (ISO 27001 and ISO 9001 certifications) by adhering consistently to policies and procedures. 2nd Line/3rd Line Service Desk Analyst Knowledge/Skills Required: To … representative of the knowledge, skill, and/or ability required. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions. Bachelor's degree in information technology, Computer Science, or related field (or equivalent work experience). Knowledge of ITIL Framework; ideally having an ITIL Foundation 3+ years' experience in an IT Service Desk/… skills: such as telephony skills, communication skills, active listening and customer-care) Experience with Server hardware raid rebuilds and restores. Understanding of WAN and LAN connectivity, routers, firewalls, and security Remote access solution implementation and support: VPN, RDP, and Remote Desktop Control. Hands-on experience with scripting or automation (desirable) Driving Licence Team player, you will thrive in a More ❯