InformationSecurity Assurance Analyst Overview: Our client is looking for an InformationSecurity Assurance Analyst Operations. The aim of this role is the effective operation, reporting and evidencing of their technology and informationsecurity control environment and the overall InformationSecurity Management System (ISMS). Based in Reigate/hybrid - 2 days … Maintaining and improving our ISMS – Updating ISMS policies, procedures, standards, and guidance – Coordinate and provide necessary support in planning and completing internal ISMS reviews. Supplier onboarding and annual supplier security assessments – Maintaining and developing our security awareness and education programmes – Analysis of informationsecurity alerts and incidents – Report on incidents, risks, threats and vulnerabilities – Scheduling internal … and external penetration and vulnerability tests and managing remediation planning Assist in evaluation of cyber security tools Manage online ISMS system. Assist the ISM to deliver InformationSecurity projects Participate in technology and informationsecurity related audits, providing support regarding the collation and supply of evidence to requests. Ensuring informationsecurity controls are More ❯
InformationSecurity Manager We are recruiting an InformationSecurity Manager who will be a key member of the Healix Risk Department. You will be working across Healix International Group to manage all areas of data & informationsecurity compliance including the oversight and management of the firm's control framework relating to these speciality areas. … As the InformationSecurity Manager you will design, implement & maintain the InformationSecurity Management System (ISMS) in accordance with ISO27001, Cyber Essential Plus & SOC2 and other relevant standards. In a travel risk management environment this role is critical for safeguarding sensitive traveller data, real-time location tracking and operational systems that support crisis response and duty … to address these risks including the compilation of business continuity plans (BCP). You will work very closely with colleagues in IT to enhance the technology & control frameworks regarding informationsecurity compliance & cyber threat security. About Healix Healix safeguard's people's health and wellbeing in every corner of the world. We offer international risk management and assistance More ❯
Hemel Hempstead, Hertfordshire, South East, United Kingdom
NTT Global Data Centers EMEA UK ltd
As our InformationSecurity Management Specialist (m/f/d) , you'llprovide experienced support in the implementation and management of the InformationSecurity Management System (ISMS) framework in alignment of current ISO 27001 standard and guidelines. With a focus on cybersecurity, this role involves leading risk assessments, ensuring alignment with industry standards and regulations, and … following informationsecurity practices and policies. What you will do Contribute to implementation, maintenance along with continuous improvement and associated instructional documentation of ISMS and its controls in line with the requirements of ISO 27001:2022 and similar standards. Ensure compliance and maintenance of ISO 27001:2022 standard as well as all InformationSecurity requirements with … respect to laws, regulations, client requirements, NTT DATA and Group requirements including active participation in internal and external ISMS audits. Support in informationsecurity audits, performed by organization or third-party personnel. Ensure that IT systems are assessed against InformationSecurity criteria and operate in compliance with the instructional InformationSecurity documentation. Conduct company More ❯
London, South East, England, United Kingdom Hybrid / WFH Options
Proactive Appointments
InformationSecurity Assurance & Cyber Specialist - Hybrid Our client is urgently looking for an experienced InformationSecurity Assurance & Cyber Specialist to join their team based in London on a permanent basis. Please note, the role is hybrid, with 2-4 days per week on-site. You will assist the Cyber & InformationSecurity Specialist in ensuring … our firm adheres to governance and assurance obligations, such as ISO 27001:22. You will also collaborate closely with the InformationSecurity Technology Manager to safeguard the company using the latest and most advanced security tools. This multifaceted role combines security governance and assurance with hands-on technical skills, utilising state-of-the-art security … benefits package including discretionary bonus, annual leave, pension scheme, private medical cover, life assurance, season ticket loan, cycle to work scheme, discounted gym membership and many, many more perks! InformationSecurity Assurance & Cyber Specialist – Key Skills: Highly experienced in informationsecurity governance, risk management, and compliance. Demonstrated experience with developing and implementing informationsecurityMore ❯
InformationSecurity Officer* *Full-time, Permanent* *Basingstoke (hybrid)* *£85,000* *Reassured are looking for an InformationSecurity Officer to lead and evolve our approach to protecting data, systems and customer trust.* If you're passionate about embedding security into business operations and driving awareness across teams, this is a brilliant opportunity to make a real … impact. You’ll be responsible for managing our informationsecurity operations, governance and certifications, including ISO27001 and Cyber Essentials Plus. Working closely with IT leadership and stakeholders across the business, you’ll ensure our systems and processes meet the highest standards while fostering a culture of security-first thinking. *What you'll be doing:* * Leading the development … and delivery of our informationsecurity strategy * Managing audits, certifications and risk assessments * Supporting secure system design and change * Driving company-wide security awareness and training * Acting as Incident Response Manager for security events *What we're looking for:* * 5+ years’ experience in informationsecurity * Strong knowledge of ISO27001, Cyber Essentials Plus and risk More ❯
more sustainable than single-use packaging. To strengthen our IT department, we are currently looking for a Cybersecurity & Compliance Manager. This is a key role focused on ensuring the security and regulatory compliance of our systems and processes. The position offers flexibility and can be fulfilled either remotely (within the Greater London area) or in a hybrid setup from … Dudley. Position purpose The Cybersecurity & Compliance Manager will lead Tosca’s efforts to ensure adherence to NIST CFS 2.0, ISO 27001, and other standards. This role focuses on developing security protocols, maintaining documentation, conducting risk assessments, and ensuring regulatory compliance. Responsibilities include managing security infrastructure, incident response, and promoting cybersecurity awareness. The position requires collaboration with Global IT … knowledge of NIST and ISO standards, risk management expertise, and effective communication skills. This is a full-time role, with travel up to 30% of the time. Responsibilities Implement security protocols and manage informationsecurity programs Report performance, exceptions, and outages to all audiences transparently. Align disaster recovery with business continuity plans. Ensure compliance with ISO27001, NIST More ❯
london (city of london), south east england, united kingdom
Tosca
more sustainable than single-use packaging. To strengthen our IT department, we are currently looking for a Cybersecurity & Compliance Manager. This is a key role focused on ensuring the security and regulatory compliance of our systems and processes. The position offers flexibility and can be fulfilled either remotely (within the Greater London area) or in a hybrid setup from … Dudley. Position purpose The Cybersecurity & Compliance Manager will lead Tosca’s efforts to ensure adherence to NIST CFS 2.0, ISO 27001, and other standards. This role focuses on developing security protocols, maintaining documentation, conducting risk assessments, and ensuring regulatory compliance. Responsibilities include managing security infrastructure, incident response, and promoting cybersecurity awareness. The position requires collaboration with Global IT … knowledge of NIST and ISO standards, risk management expertise, and effective communication skills. This is a full-time role, with travel up to 30% of the time. Responsibilities Implement security protocols and manage informationsecurity programs Report performance, exceptions, and outages to all audiences transparently. Align disaster recovery with business continuity plans. Ensure compliance with ISO27001, NIST More ❯
more sustainable than single-use packaging. To strengthen our IT department, we are currently looking for a Cybersecurity & Compliance Manager. This is a key role focused on ensuring the security and regulatory compliance of our systems and processes. The position offers flexibility and can be fulfilled either remotely (within the Greater London area) or in a hybrid setup from … Dudley. Position purpose The Cybersecurity & Compliance Manager will lead Tosca’s efforts to ensure adherence to NIST CFS 2.0, ISO 27001, and other standards. This role focuses on developing security protocols, maintaining documentation, conducting risk assessments, and ensuring regulatory compliance. Responsibilities include managing security infrastructure, incident response, and promoting cybersecurity awareness. The position requires collaboration with Global IT … knowledge of NIST and ISO standards, risk management expertise, and effective communication skills. This is a full-time role, with travel up to 30% of the time. Responsibilities Implement security protocols and manage informationsecurity programs Report performance, exceptions, and outages to all audiences transparently. Align disaster recovery with business continuity plans. Ensure compliance with ISO27001, NIST More ❯
London, South East, England, United Kingdom Hybrid / WFH Options
DMS Computer Recruitment
The Role: We are looking for a Cloud Security Engineer with experience on AWS, to join our growing team. The successful candidate will have an essential role in ensuring the informationsecurity of our business. You will be working in a team that is designing and building resilient and secure Cloud environments that proactively prevent security threats. You will typically have industry accreditations like AWS Certified Security - Specialty The main responsibilities of the position include: Design and build resilient Cloud infrastructures that are protected against security threats Develop and assess Cloud security solutions to secure systems, databases and networks Conduct assessment and make recommendations to ensure that appropriate controls are in place … Gain insight into security incidents and threats by monitoring/analyzing logs and performing vulnerability assessments Participate in efforts that shape the company’s security policies, procedures and standards for use in Cloud environments Create technical and managerial level security reports for Cloud-based applications and infrastructure Implement and tests network and security Disaster Recovery procedures More ❯
About Us Our Information & Technology (I&T) Digital Security organisation is on a mission to deliver scalable, flexible, and effective security services that support the evolving needs of our business. We operate as a centralised team, providing strategic security architecture and assurance across all business units, assets, and change initiatives. Our goal is to proactively mitigate … externally with our technology partners. Our team is committed to maintaining a secure digital environment that aligns with regulatory requirements and industry best practices. About the Role As an InformationSecurity Architect, you will play a key role in shaping and maintaining our enterprise security architecture. You’ll work closely with enterprise architects, functional area specialists, and … security experts to ensure that all IT systems and platforms are designed with robust, scalable, and compliant security solutions. Your responsibilities will include: Developing and maintaining security architectural models, standards, and procedures. Advising on security strategies to manage risks and ensure compliance with internal policies and external regulations. Supporting the creation of reference architectures and artefacts More ❯
Snelshall West, Milton Keynes, Buckinghamshire, England, United Kingdom
DS Smith
different countries across EMEA with over 30,000 colleagues. About the role Reporting to Head of I&T GRC, Governance and Risk Lead will be responsible for driving information and cyber security awareness, delivering security awareness training including phishing and facilitation of cyber scenario desktop simulations across central and manufacturing site teams. You will review, manage and … where required prepare responses to internal and external customer enquiries in relation to information and cyber security arrangements. You will support IT, procurement, legal, data protection and digital security and business stakeholder in relation to supplier information and cyber security due diligence and requirements. As the successful candidate you will also lead risk-based party … security assurance, management, and continuous improvement activities. In addition, facilitate and coordinate IT risk management risk register, tools, process, reporting and review. You will take responsibility for managing a subset of aspects of ISO 27001 related documentation and control activities. As the I&T Governance and Risk Lead you will have the responsibility of aspects of the I&T More ❯
just to name a few! Job Description Your Career As a Senior Consultant in Unit 42 you will have the opportunity to work across a number of proactive cyber security domains including Cloud Security, Security Operations, Cyber Risk Management and Artificial Intelligence in cyber security. We are seeking an individual who is passionate about cyber security … consulting outcomes for clients, as they work to address the challenges associated with today’s cyber threat landscape. Your Impact SOC Advisory 4+ years of consulting experience in SOC, security engineering, SIEM administration, and incident management and demonstrated success with serving large, multinational organisations in designing and implementing an organisation’s security operations program, organisational structures, and capabilities … Possess a deep technical knowledge in Security Incident and Event Management (SIEM) platforms, Security Orchestration and Response (SOAR) technologies, Endpoint Protection and Response/Next Gen Protection and Response (EDR/XDR) tools, Next GenFirewalls, Threat Intelligence and Hunting platforms Defensive Security Skills (desired) Experience in security operations design, engineering and/or analysis and investigations More ❯
just to name a few! Job Description Your Career As a Senior Consultant in Unit 42 you will have the opportunity to work across a number of proactive cyber security domains including Cloud Security, Security Operations, Cyber Risk Management and Artificial Intelligence in cyber security. We are seeking an individual who is passionate about cyber security … consulting outcomes for clients, as they work to address the challenges associated with today’s cyber threat landscape. Your Impact SOC Advisory 4+ years of consulting experience in SOC, security engineering, SIEM administration, and incident management and demonstrated success with serving large, multinational organisations in designing and implementing an organisation’s security operations program, organisational structures, and capabilities … Possess a deep technical knowledge in Security Incident and Event Management (SIEM) platforms, Security Orchestration and Response (SOAR) technologies, Endpoint Protection and Response/Next Gen Protection and Response (EDR/XDR) tools, Next GenFirewalls, Threat Intelligence and Hunting platforms Defensive Security Skills (desired) Experience in security operations design, engineering and/or analysis and investigations More ❯
Surrey, England, United Kingdom Hybrid / WFH Options
Hays Specialist Recruitment Limited
sector offers hybrid working in this role based in North Surrey area. Your new role You will be working in the Risk team and will design, implement & maintain the InformationSecurity Management System (ISMS) in accordance with ISO27001 in a company that manages highly sensitive data. You will support the firm's governance, addressing areas of risk and … plans to address these risks, including the compilation of business continuity plans (BCP). You will work closely with colleagues in IT to enhance the technology & control frameworks regarding informationsecurity compliance & cyber threat security. Risk & Compliance You will lead the development, implementation, and continuous improvement of our InformationSecurity Management System (ISMS) in line with … ISO 27001 and other regulatory standards. Assessing security posture, identifying vulnerabilities, and developing mitigation strategies to manage enterprise-wide informationsecurity risks. Maintaining and enhancing the organisation's risk register and heat map, ensuring risks are scored, tracked, and treated effectively. Overseeing the implementation and management of systems, including firewalls, encryption, and data protection controls. You will More ❯
Caldecotte, Milton Keynes, Buckinghamshire, England, United Kingdom
Connells Group HQ
Job Description We are seeking a Senior Security GRC Manager to join our Group Technology team in Milton Keynes . You will play a pivotal role in shaping and advancing our security governance, risk, and compliance practices across the Group Technology function. You will have a hands-on role to monitor, report on and lead initiatives to strengthen … our security posture, ensuring regulatory alignment. This is an exciting opportunity to make a tangible impact, working with a diverse range of stakeholders and supporting the strategic direction of the business. Key Responsibilities: Governance & Compliance : Lead the development, implementation, and continuous improvement of security and technology control frameworks; maintain and update security policies and standards; support governance … forums, including InformationSecurity, Business Continuity, and Audit & Risk Committees. Risk Management : Conduct operational risk assessments and provide expert consultancy on security risks, incidents, and investigations; identify and address gaps in controls, providing clear reporting and recommendations. Stakeholder Engagement: Collaborate with internal teams and external partners to manage security and technology risks; support external and internal More ❯
Job Title: Head of Cyber Security Salary: £82,000 - £95,000 Location: London Key Skills: Cyber Security Strategy & Governance, Incident Response & Risk Management, Stakeholder & Board-Level Communication, Leadership & Team Development We are seeking a highly experienced Head of Cyber Security to lead the delivery of a best-in-class security posture within a large, complex public … sector organisation. This is a senior, business-critical position with responsibility for all aspects of information security. The successful candidate will ensure the organisation achieves and maintains compliance with public sector and healthcare-specific standards, while also driving operational excellence across the enterprise. You will work closely with internal teams to safeguard staff, service users, and wider stakeholders from … cyber risk. Protecting critical health services from evolving threats is a top priority, and this role plays a central part in ensuring robust security measures are in place. Reporting directly to the Director of Digital Services, the Head of Cyber Security will be a core member of the senior digital leadership team. You will oversee the development, implementation More ❯
Senior InformationSecurity Analyst We are looking for a Senior InformationSecurity Analyst with a strong operational background with a focus on Cyber Security and a working knowledge of GRC to be part of a central team supporting a mixture of security operations ensuring compliance with business needs. This will focus around vulnerability and … threat management, making sure security controls are functioning, mentorship of junior members and working being part of a 24 x 7 remote support rota. If you have experience of working in Cyber Securityand are keen to make a difference here is what we are looking for: Significant experience of working in a security related role, with demonstrable experience … within an operational aspect with extensive vulnerability and threat management. A strong understanding of Risk Assessment frameworks and methodologies. The ability to explain complex security issues in a fashion that could be understood by non-technical people. Knowledge of cloud security, with a knowledge of Azure/O365 Possess a knowledge of various technologies, how they can combine More ❯
InformationSecurity Consultant - DORA/NIST FocusRemoteA boutique consultancy by nature, the GRC is looking at growing once again. With work spanning across a variety of sectors ever project will be different their organisation's cyber resiliency more effectively.The focus (not limited too): gap assessments and/or assisting in the certification of clients to known security standards such as ISO 27001, NIS2 and DORA; developing organisation-level policy and process documentation; providing on-demand security expertise to businesses to manage informationsecurity gaps; and custom security projects that will help clients successfully implement and continuously improve their approach to GRC. Bonus* Certifications (CISSP, SSCP, CCSP, or CAP, CompTIA certifications (Security+, Network+ … Europe Ltd are Equal Opportunities Employers. By applying for this role your details will be submitted to Modis International Ltd and/or Modis Europe Ltd. Our Candidate Privacy Information Statement which explains how we will use your information is available on the Modis website. More ❯
London, South East, England, United Kingdom Hybrid / WFH Options
Devonshire Hayes Recruitment Specialists Limited
Are you an experienced Cyber Security Specialist? If so I have an exciting opportunity for you with a London based Financial Services firm. The role is permanent with a salary of up to £60K and the role is hybrid with 2x days a week on site at their London office. Strong understanding of information and cyber security principles and practices. Experience with security assessment and risk management methodologies. Proficiency in cloud security, particularly with Azure security tools and services. Knowledge of security standards and frameworks (e.g., ISO 27001, NIST, CIS). Familiarity with security technologies such as firewalls, web proxies/remote access solutions. Experience with ZTNA, CTI, threat modelling is … beneficial. Bachelor’s degree in informationsecurity, Computer Science, or a related field, or relevant industry experience. Relevant security certifications (e.g., CISSP, CISM, CEH) are highly desirable. Proven experience in an informationsecurity role, preferably in a cloud-based environment. More ❯
IT Security Manager | Zero Trust, Azure Security, ISO27001 | Global Payments Company £70–80k base + 10% bonus Hybrid in London Join a growing InfoSec team at a pivotal time for a global financial institution. This is an IT Security Manager role with governance oversight, guiding InfoSec operations, mentoring analysts, and translating security frameworks into practical, actionable … steps. You’ll influence policy, architecture, and data governance, all while supporting the secure rollout of new banking operations. What you’ll bring: 5+ years’ experience in InfoSec, IT Security, or operational security in a regulated environment Certifications: CISSP or SSCP (or equivalent) required Hands-on knowledge of ISO27001 and supporting an ISMS (audit experience useful but not … just theory Experience mentoring staff or junior analysts (no direct line management required) Adaptability to a medium-sized, SME environment What you’ll be doing: Security oversight: Guide InfoSec operations with practical, hands-on input on incidents and risk mitigation Data governance: Drive data protection, labelling, and retention projects using Microsoft Purview Third-party risk: Support supplier securityMore ❯
london (city of london), south east england, united kingdom
Prism Digital
IT Security Manager | Zero Trust, Azure Security, ISO27001 | Global Payments Company £70–80k base + 10% bonus Hybrid in London Join a growing InfoSec team at a pivotal time for a global financial institution. This is an IT Security Manager role with governance oversight, guiding InfoSec operations, mentoring analysts, and translating security frameworks into practical, actionable … steps. You’ll influence policy, architecture, and data governance, all while supporting the secure rollout of new banking operations. What you’ll bring: 5+ years’ experience in InfoSec, IT Security, or operational security in a regulated environment Certifications: CISSP or SSCP (or equivalent) required Hands-on knowledge of ISO27001 and supporting an ISMS (audit experience useful but not … just theory Experience mentoring staff or junior analysts (no direct line management required) Adaptability to a medium-sized, SME environment What you’ll be doing: Security oversight: Guide InfoSec operations with practical, hands-on input on incidents and risk mitigation Data governance: Drive data protection, labelling, and retention projects using Microsoft Purview Third-party risk: Support supplier securityMore ❯
IT Security Manager | Zero Trust, Azure Security, ISO27001 | Global Payments Company £70–80k base + 10% bonus Hybrid in London Join a growing InfoSec team at a pivotal time for a global financial institution. This is an IT Security Manager role with governance oversight, guiding InfoSec operations, mentoring analysts, and translating security frameworks into practical, actionable … steps. You’ll influence policy, architecture, and data governance, all while supporting the secure rollout of new banking operations. What you’ll bring: 5+ years’ experience in InfoSec, IT Security, or operational security in a regulated environment Certifications: CISSP or SSCP (or equivalent) required Hands-on knowledge of ISO27001 and supporting an ISMS (audit experience useful but not … just theory Experience mentoring staff or junior analysts (no direct line management required) Adaptability to a medium-sized, SME environment What you’ll be doing: Security oversight: Guide InfoSec operations with practical, hands-on input on incidents and risk mitigation Data governance: Drive data protection, labelling, and retention projects using Microsoft Purview Third-party risk: Support supplier securityMore ❯
Job Title : IT Security Specialist Contract Type: Permanent, Part Time, Full Time, Job Share option available Salary Range: £37,600 - £56,400 Location: Eastleigh - hybrid Closing Date for applications: Thursday 16th October IT Security Specialist: We have an exciting opportunity for an IT Security Specialist to join our InformationSecurity team at Ageas, reporting directly … to the Counter Threat Unit Manager. As an IT Security Specialist, you will support the day-to-day operations of the Counter Threat Unit, applying your strong background in infrastructure engineering, cloud-based architectures, and solution delivery. You will contribute to maintaining our secure systems across hybrid environments, leveraging your expertise in both on-premises and cloud platforms such … as Azure, AWS, and GCP. Main Responsibilities as IT Security Specialist: Assist in gathering and analysing threat intelligence; monitor systems and networks to identify anomalies and support situational awareness. Follow established processes to help ensure compliance with legal, regulatory, and internal security requirements. Contribute to the investigation and resolution of security incidents, working in line with organisational More ❯
A well-established business is looking for an accomplished InformationSecurity Manager to join its team based in Uxbridge, west London. Please note this is an office-based role, so you will work from the office 5 days per week. In this role of significant responsibility, you will design and lead the informationsecurity strategy for More ❯
Overview Job Description - Principal Engineer - Cyber Security () Principal Engineer - Cyber Security - Job Title: Principal Engineer - Cyber Security Location: Frimley, Bristol, Weymouth, Portsmouth. We offer a range of hybrid and flexible working arrangements - please speak to your recruiter about the options for this particular role. Salary: Up to £61,500 depending on skills and experience Responsibilities Define and … implement risk-based cybersecurity requirements for systems and subsystems, providing technical expertise and guidance across all aspects of cyber security and resilience Conduct in-depth cybersecurity analysis, including development of threat taxonomies, security architectures, security baselines, and risk mitigation strategies Develop and execute cybersecurity test plans and schedules, carrying out both informal and formal security testing … activities Support engineering lifecycle reviews and design assurance processes to ensure security is embedded throughout system development Produce and maintain key security artefacts, including risk registers, security assurance cases, plans, and schedules, while contributing security input to broader engineering documentation Qualifications Degree in a relevant STEM subject or maintaining recognised Industry Security Qualifications e.g., CCP More ❯