1 to 25 of 37 Permanent Information Security Jobs in Scotland

Information Security Analyst – FMCG, North Lanarkshire 📍 Location: North Lanarkshire (Hybrid working) 💼 Salary: £55k+ Comprehensive Benefits Package 🕒 Type: Full-Time | Permanent Are you ready to take on a hands-on role protecting business-critical systems and data from evolving cyber threats? We’re seeking a skilled Information Security Analyst to join our client and lead the implementation … and operation of essential security controls that underpin their enterprise infrastructure. This is a fantastic opportunity to apply your deep technical knowledge in a complex and varied environment, supporting business-wide initiatives while developing and maturing our security posture. 🔧 Key Responsibilities We are seeking an experienced Information Security Analyst to safeguard client’s digital assets and … ensure alignment with their Information Security Management System (ISMS). You’ll lead the design, implementation, and monitoring of security controls, supporting the group of companies in compliance with global frameworks. You’ll manage Vendor Security Assurance, review solution designs, and conduct risk-based assessments to integrate security into commercial initiatives. Collaboration with wider group More ❯

Information Security Analyst – FMCG, North Lanarkshire Location: North Lanarkshire (Hybrid working) Salary: £55k+ Comprehensive Benefits Package Type: Full-Time | Permanent Are you ready to take on a hands-on role protecting business-critical systems and data from evolving cyber threats? We’re seeking a skilled Information Security Analyst to join our client and lead the implementation … and operation of essential security controls that underpin their enterprise infrastructure. This is a fantastic opportunity to apply your deep technical knowledge in a complex and varied environment, supporting business-wide initiatives while developing and maturing our security posture. Key Responsibilities We are seeking an experienced Information Security Analyst to safeguard client’s digital assets and … ensure alignment with their Information Security Management System (ISMS). You’ll lead the design, implementation, and monitoring of security controls, supporting the group of companies in compliance with global frameworks. You’ll manage Vendor Security Assurance, review solution designs, and conduct risk-based assessments to integrate security into commercial initiatives. Collaboration with wider group More ❯

Description The Data Security Engineer is responsible for designing, implementing, and maintaining MO's data security frameworks to safeguard sensitive information against unauthorised access, breaches and cyber threats. This role focuses on identifying vulnerabilities, establishing robust security protocols and ensuring compliance with industry standards and regulatory requirements. The Data Security Engineer collaborates with cross-functional … teams to develop security solutions that align with business objectives, enhance system resilience and promote a culture of data security across the organisation. By proactively addressing security challenges, this role plays a pivotal part in protecting MO's digital assets and fostering trust among stakeholders & customers. You are a detail-oriented and analytical professional with a passion … for safeguarding data and a deep understanding of security best practices. With a solid foundation in cybersecurity principles, you have experience designing and implementing security measures that protect sensitive information in complex environments. Your technical expertise spans areas such as encryption, access controls, vulnerability assessments and incident response. You have excellent problem-solving skills and a proactive More ❯

Full Time vacancy that will close in 18 days at 23:59 BST. The Vacancy We currently have an exciting opportunity to join our IT department as a Cyber Security Lead, on a full time basis in our Glasgow office. What will your role look like? Our IT team is made up of enthusiastic and experienced IT professionals who … provide innovative technology in a collaborative and supportive environment. This role sits within our IT networking and security team who are responsible for maintaining key cyber security technologies along with the underlying network infrastructure. For this role we are looking to recruit an experienced Cyber Security Lead, who would like the opportunity to expand their knowledge further … in this area. You will be responsible for managing a small team of cyber security engineers, driving new cyber security initiatives, maximising the value we get from existing cyber security technologies including our M365 tenancy and assisting with colleagues and the IT Network & Security Manager to deliver the IT business plan. Our firm invests in the More ❯

team of experts have extensive knowledge and experience in the financial services sector and are passionate about delivering solutions that make a difference. The Role We are seeking an Information Security & Business Continuity Analyst to join our team. This role is crucial in ensuring the security and integrity of our information systems and data. You will … be responsible for implementing and maintaining security measures to protect our organisation's assets from cyber threats and ensuring compliance with industry standards. Key Responsibilities Assist in the planning and implementation of security controls and testing to ISO27001 standards, including developing and enforcing security policies and best practices to ensure compliance. Perform business impact analyses (BIA) across … key technology processes, systems and facilities and identify any gaps that may exist in critical information gathered and recorded. Support the IS Manager in Disaster Recovery (DR), and Business Continuity (BC) planning activity, ensuring that alternate facilities are provisioned and ready in the event of a disaster. Threat Management – assist with threat assessment and work with business units in More ❯

improve the well-being of all by taking life science further and combine our attention to detail with the extraordinary, because it all matters. The opportunity Reporting to the Information Security Officer you will contribute to the efficiency, capability and profitability of the business by gathering, analysing and recommending changes to processes/systems within BUs, across multiple … Internal Audit team on the development, implementation and operation of ITGCs Supporting the implementation of ISO27001 controls and perform regular control audits to monitor compliance Developing and managing a security risk framework, aligning with the enterprise risk management approach Coordinating the performance of regular business impact assessments (BIAs) and the recording of results and updates Contributing to the design … and implementation of information security process and control improvements Mentoring other members of the Information security team and promote risk management best practices across IT Supporting the development and delivery of compliance training and awareness, fostering a culture of risk awareness and accountability across the organisation Providing advice to stakeholders on IT risk and compliance topics More ❯

improve the well-being of all by taking life science further and combine our attention to detail with the extraordinary, because it all matters. The opportunity Reporting to the Information Security Officer you will contribute to the efficiency, capability and profitability of the business by gathering, analysing and recommending changes to processes/systems within BUs, across multiple … Internal Audit team on the development, implementation and operation of ITGCs Supporting the implementation of ISO27001 controls and perform regular control audits to monitor compliance Developing and managing a security risk framework, aligning with the enterprise risk management approach Coordinating the performance of regular business impact assessments (BIAs) and the recording of results and updates Contributing to the design … and implementation of information security process and control improvements Mentoring other members of the Information security team and promote risk management best practices across IT Supporting the development and delivery of compliance training and awareness, fostering a culture of risk awareness and accountability across the organisation Providing advice to stakeholders on IT risk and compliance topics More ❯

Job Description: Job Description Leonardo UK is seeking a Senior Consultant to join the Cyber & Security Solutions Division team. This role is focused on supporting the delivery of security aspects to the company's core products and to external stakeholders. This requires engaging with engineering teams and delivery of all facets of cyber and information security … to us to find out more. Key Responsibility Areas Work as part of a larger team, delivering streams of work independently, to meet all aspects of the cyber and information security delivery across an engineering lifecycle. Interpreting customer requirements into actionable security management plans, statements of work, and activities to be delivered across the lifecycle. Oversight and … statements of work and artefacts to time, cost and quality constraints. Identification, management and escalation of technical and delivery risks and issues. Maintain customer relationships for the cyber and information security workstream, both internal and external. Mentoring of consultants within your team as required. Skills, Qualifications, Knowledge & Experience Required In addition to a passion for cyber and information More ❯

Job Description: Job Description Leonardo UK is seeking a proven, experienced Principal Consultant to join the Cyber & Security Solutions Division team. This role is focused on supporting the delivery of security aspects to the company's core products and to external stakeholders. This requires co-ordination with engineering teams and delivery of all facets of cyber and information security related to the delivery across the engineering lifecycle - from requirements all the way through to in-service support and maintenance. This is an exciting opportunity to be part of significant programmes, during which you will ensure that products meet the highest standards, in accordance with customer's requirements and risk appetite. You will be supported in this … team and with our customers. Talk to us to find out more. Key Responsibility Areas Leading a team or operating independently to meet all aspects of the cyber and information security delivery across an engineering lifecycle. Interpreting customer requirements into actionable security management plans, statements of work, and activities to be delivered across the lifecycle. Become the More ❯

Principal Security Consultant page is loaded Principal Security Consultant Apply locations GB - Edinburgh GB - Newcastle time type Full time posted on Posted 24 Days Ago job requisition id R Job Description: Job Description Leonardo UK is seeking a proven, experienced Principal Consultant to join the Cyber & Security Solutions Division team. This role is focused on supporting the … delivery of security aspects to the company's core products and to external stakeholders. This requires co-ordination with engineering teams and delivery of all facets of cyber and information security related to the delivery across the engineering lifecycle - from requirements all the way through to in-service support and maintenance. This is an exciting opportunity to … team and with our customers. Talk to us to find out more. Key Responsibility Areas Leading a team or operating independently to meet all aspects of the cyber and information security delivery across an engineering lifecycle. Interpreting customer requirements into actionable security management plans, statements of work, and activities to be delivered across the lifecycle. Become the More ❯

delivery of risk and compliance advisory services (preferable candidates from Big4 organizations) • Should have proven capabilities of executing atleast 3-4 advisory/consulting engagements • Excellent technical capabilities around information security, business continuity and technology risk assessments. ISO 27K, NIST, AI Governance, CIS etc. • Good compliance understanding of industry domains such as BFSI – (SOX, FFIEC, PCI-DSS, BASEL … MAS etc.), Healthcare & Life-sciences – (HIPAA, Hi-Trust, FDA CFR, GxP Compliance), Telecom, Retail, Data Privacy (GDPR, CCPA) Energy & Utilities (NERC, FERC) Information Security (ISO 27000, NIST, CIS) TPRM • Business Resiliency & Cyber Recovery, ZTA • GRC Project & Program Management • Excellent written and verbal communications skills • Should be able to travel 70%-80% on short as well as long term More ❯

Senior Security Consultant, Professional Services, UK NatSec, WWPS Job ID: AWS EMEA SARL (UK Branch) Are you interested in being part of AWS, the industry leading cloud computing platform? Are you excited about building security solutions at scale? Do you want to help UK public sector organisations operate safely in the cloud and better achieve their missions through … the secure adoption of AWS? Eager to learn from many different organisations' use cases of AWS security services? Our Worldwide Public Sector Professional Services organisation works together with our AWS customers to address their security needs. At AWS, we're hiring highly passionate and deeply technical Security Consultants to help our customers build comprehensive security models … transform how they secure their sensitive workloads and develop their technical expertise. Our security consultants deliver architecture guidance, develop security infrastructure and patterns in code, lead proof-of-concept projects, and conduct security workshops for customers. AWS security consultants collaborate with customers to address security and compliance challenges, and they help implement and migrate customer More ❯

wide standardised approach to Incident Response, advancing the University's capability to manage cyber incidents effectively, and thereby protecting our students, staff, research, and contractual obligations. Based within the Information Security team, you will be the sole Incident Response Lead, providing direction and knowledge to navigate and effectively handle incidents. You will ensure effective incident management by overseeing … the effective coordination and escalation across internal departments while engaging with external stakeholders, vendors, and UK authorities such as the National Cyber Security Centre (NCSC) . This is an exciting opportunity for a proactive professional to shape and strengthen the University's approach to cyber incident management. Job Purpose The Incident Response Lead will lead on the University's …/Information Security's response to operational resilience incidents (cyber) as well as the University' engagement with external stakeholders and vendor engagement. The lead will be expected to engage with a range of internal stakeholder to ensure appropriate escalation and coordination between functional groups/departments. You will be familiar with and expected to engage with UK authorities More ❯

A leading organisation in the offshore and renewables sector is seeking an experienced Information Security Manager (ISM) to head its Cyber Security strategy and best practices. Operating in the booming renewables industry, they specialise in installation, construction, offshore renewables, decommissioning, and engineering. This permanent role offers the flexibility to be based in their offices in Aberdeen or … London. This is a strategic leadership role, bridging the gap between senior management's vision and the technical expertise of security teams. The ISM will play a crucial part in shaping and delivering security initiatives that protect critical infrastructure while ensuring alignment with business objectives. Key Responsibilities: As ISM, you will design and implement a robust cybersecurity strategy … proactively identifying and mitigating risks while ensuring compliance with industry standards. You will lead a team of security professionals, providing guidance and mentorship to drive operational excellence. Your role will involve overseeing security infrastructure, managing incident response, and working closely with vendors and internal teams to enhance the organisation's security posture. Additionally, you will champion security More ❯

coordinating the delivery of IT services to ensure they meet the needs of our business. This will require communication, coordination and collaboration with various IT service owners (network, applications, information security, etc.). The ideal candidate will have a strong understanding of IT infrastructure, excellent project management skills, and a passion for delivering top-notch customer service. Responsibilities … and compliance, driving forward ITIL service delivery across the group, ensuring best practices are embedded in our daily operations Ensuring our IT services meet the highest availability, performance, and security standards to support our business objectives. Ensure that IT services comply with all relevant laws, regulations, and company policies. Working closely with security & compliance teams to manage risks … data and metrics to evaluate service desk performance, identify trends and issues, and develop improvement plans. Strong problem-solving skills. Proven understanding of enterprise networking, servers, cloud technologies, and information security, and experienced service ownership of IT service management platforms (e.g., ServiceNow, Fresh service). Familiar with Microsoft 365, Azure, and other cloud services, a sound knowledge of More ❯

Full Time - 37 hours Location(s): Flexible on UK Locations such as Harlow (Essex), Glenrothes or Livingston (Scotland) - Hybrid with a minimum of 2 days a week on site. Security Clearance Requirements: SC (UK Eyes only) Travel: Occasional travel to our UK sites is required Why join Raytheon Raytheon UK is a powerhouse in defence and aerospace, where innovation … working on new and existing requirements, testing/integration and implementation, performance tuning and patching, including some periodic monthly out of hours working. Ensuring operational integrity and compliance covering information security, change management, asset management and software licensing. Provide 3rd line expertise and troubleshooting of all related service issues including management of vendors to ensure services are fully … Agree and participate in scheduled BC/DR exercises, to ensure that service is tested and DR ready. Candidate requirements Essential Bachelor's degree or higher in Computer Science, Information Technology or related field or equivalent work experience Have an understanding of ITIL best practice Working knowledge of Active Directory Lightweight application development experience Working knowledge/experience of More ❯

Full Time - 37 hours Location(s): Flexible on UK Locations such as Harlow (Essex), Glenrothes or Livingston (Scotland) - Hybrid with a minimum of 2 days a week on site. Security Clearance Requirements: SC (UK Eyes only) Travel: Occasional travel to our UK sites is required Why join Raytheon Raytheon UK is a powerhouse in defence and aerospace, where innovation … working on new and existing requirements, testing/integration and implementation, performance tuning and patching, including some periodic monthly out of hours working. Ensuring operational integrity and compliance covering information security, change management, asset management and software licensing. Provide 3rd line expertise and troubleshooting of all related service issues including management of vendors to ensure services are fully … Agree and participate in scheduled BC/DR exercises, to ensure that service is tested and DR ready. Candidate requirements Essential Bachelor's degree or higher in Computer Science, Information Technology or related field or equivalent work experience Have an understanding of ITIL best practice Working knowledge of Active Directory Lightweight application development experience Working knowledge/experience of More ❯

Lead and facilitate meetings and workshops and confidently present to key stakeholders. Identify operational impacts and support operational readiness activities to ensure change is embedded successfully. Adhere to all Information Security Policies. Complete other duties as directed by the Lead Business Analyst. Your profile Key Skills, Experience, and Competency Requirements: Experience as a Business Analyst in a regulated More ❯

applicable. Identify operational impacts and support operational readiness activities to ensure change is embedded successfully. Work effectively and self-sufficiently in a fast-changing working environment. Adhere to all Information Security Policies. Complete other duties as directed by the Lead Business Analyst. Your profile Key Skills, Experience, and Competency Requirements: Experience as a Business Analyst in a regulated More ❯

Information Security Specialist Overview Ref: (phone number removed) Information Security Specialist/ISO 27001/GDPR Exciting opportunity to join a global business that is still growing, the environment is fast paced and interesting and they really look after their people. Role Responsibilities Responsibilities will include: Providing technical expertise relating to the implementation and operation of … technical security controls Providing technical support and ensuring understanding and investigation of information security vulnerabilities and threats Providing advice to support teams on how to remediate and reduce identified vulnerabilities Liaising with 3rd party support and product organisations Providing technical leadership on security incident response and investigation Essential skills will include: Proven experience in implementing and … managing security frameworks such as ISO 27001, NIST CSF/NIST SP 800-53, and GDPR Strong technical skills in designing, implementing, and maintaining security controls Excellent problem-solving skills with the ability to interpret complex security topics and translate them into practical, actionable insights A proactive mindset, focused on continuous improvement, team development, and aligning security More ❯

Information Security Specialist Overview Ref: (phone number removed) Information Security Specialist/ISO 27001/GDPR Exciting opportunity to join a global business that is still growing, the environment is fast paced and interesting and they really look after their people. Role Responsibilities Responsibilities will include: Providing technical expertise relating to the implementation and operation of … technical security controls Providing technical support and ensuring understanding and investigation of information security vulnerabilities and threats Providing advice to support teams on how to remediate and reduce identified vulnerabilities Liaising with 3rd party support and product organisations Providing technical leadership on security incident response and investigation Essential skills will include: Proven experience in implementing and … managing security frameworks such as ISO 27001, NIST CSF/NIST SP 800-53, and GDPR Strong technical skills in designing, implementing, and maintaining security controls Excellent problem-solving skills with the ability to interpret complex security topics and translate them into practical, actionable insights A proactive mindset, focused on continuous improvement, team development, and aligning security More ❯

Oxford or Glasgow, if preferred. Why join Dionach by Nomios? Since being acquired by Nomios in late 2024, Dionach by Nomios has continued its dynamic growth as a leading information security company. Specializing in penetration testing and information assurance services, we offer an incredible opportunity to be part of an experienced team, build your skills, and grow … professionally. Dionach by Nomios holds impressive certifications, including CREST, CHECK, PCI QSA, and ISO 27001. With our focus on enhancing customers' security and fostering team development, you will be joining a company that prioritizes both your growth and the safety of our clients. We are in an exciting phase of expansion and are looking for self-motivated individuals ready … for all our employees. If you require accommodations during the application process, let us know, and we'll work to meet your needs. What You'll Do Deliver cyber security assurance services to identify vulnerabilities in different areas on a variety of technologies, including vulnerability assessments on external networks, internal networks, applications, and enterprise security systems. Delivering presentations More ❯

accelerate change Curious - we turn knowledge into action Role Purpose We are looking for an experienced Systems Architect to make intuitive high-level decisions for software development, data architecture, security architecture, and infrastructure architecture. You will need to see the "big picture" and create architectural approaches for software design, data flows, information security, and cloud/on … an eye on generalised and repeatable patterns. Assist with solving complex technical problems when they arise through the methodical application of solution knowledge. Ensure software meets requirements of quality, security, extensibility, maintainability, and observability. Develop architecture roadmaps aligned with long-term product roadmaps. About You A Bachelor's/Master's degree in computer science/engineering or related … least one of those technologies along with its tooling and ecosystem. Excellent knowledge of data architecture and experience working with enterprise data platforms. Excellent knowledge of infrastructure architecture and security such as networking, containers, storage, API gateways, etc. with a special emphasis on AWS/Azure cloud infrastructure. Knowledge of software quality assurance principles, test automation tools, CI/ More ❯

We are working with a leading FinTech company who are seeking an Information Security Analyst to join their team. This role is crucial in ensuring the security and integrity of information systems and data. The successful candidate will be responsible for implementing and maintaining security measures to protect organisational assets from cyber threats and ensuring … compliance with industry standards. Key Responsibilities Assist in the planning and implementation of security controls and testing to ISO27001 standards. Perform business impact analyses (BIA) across key technology processes, systems, and facilities, identifying gaps in critical information gathered and recorded. Communicate significant changes in Business Continuity plans to the Information Security (IS) Manager. Support the IS … Manager in Disaster Recovery (DR) planning, ensuring that alternate facilities are provisioned and ready in the event of a disaster. Respond to customer security questionnaires to support third-party assurance obligations. Work with business units to ensure Business Continuity Plans are produced and maintained consistently. Provide support and guidance to staff undertaking security awareness training, tracking completion and More ❯

We are working with a leading FinTech company who are seeking an Information Security Analyst to join their team. This role is crucial in ensuring the security and integrity of information systems and data. The successful candidate will be responsible for implementing and maintaining security measures to protect organisational assets from cyber threats and ensuring … compliance with industry standards. Key Responsibilities Assist in the planning and implementation of security controls and testing to ISO27001 standards. Perform business impact analyses (BIA) across key technology processes, systems, and facilities, identifying gaps in critical information gathered and recorded. Communicate significant changes in Business Continuity plans to the Information Security (IS) Manager. Support the IS … Manager in Disaster Recovery (DR) planning, ensuring that alternate facilities are provisioned and ready in the event of a disaster. Respond to customer security questionnaires to support third-party assurance obligations. Work with business units to ensure Business Continuity Plans are produced and maintained consistently. Provide support and guidance to staff undertaking security awareness training, tracking completion and More ❯