51 to 75 of 567 Permanent Information Security Jobs in the UK

Role: Vehicle Risk Analyst Job Type: Permanent Location: Leamington Spa, UK. Ready to utilise your skills and Knowledge in Information and Cyber Security (ICS) Risk Management Strategy concepts ? Are you looking for an exciting opportunity to play a key role safeguarding Clients information asset on a global … opportunities. Lead a team and their technical growth. Collaborate with customers and stakeholders. The Role: As a Vehicle Risk Analyst, you will assist the Information and Cyber Security team which plays a vital role safeguarding Clients information asset on a global basis. This role is part of … the Governance, Risk and Compliance function whose purpose is to manage information risk to acceptable levels, using a framework of controls and oversight across the enterprise. You will ensure we deliver appropriate governance, risk, and compliance for information security throughout and you will also provide some support more »

Information Security Goverence, Risk and Controls Officer/Information Security Manager Reporting into CISO. Small Ethical Financial Services Insurance group (Member owned) 100% remote role £70,000K Salary + benefits + Bonus + Excellent Pension/Healthcare/Holidays etc Our client is expanding their Information Security group with a wider range of new projects and infrastructure challenges. You ideally will be able to provide expertise in maintaining and supporting IT security strategies, managing overall IT security governance, and compliance processes. YOU MUST HAVE Previous experience managing IS027001 and Cyber Essentials audits … and ensuring adherence to these levels + a wide range of the experience below & ensure effective implementation of IT security controls and processes. They are an ethical and quality organization that can provide an wide range of challenges, and in an organization that is growing and understands the challenges more »

Information Security Goverence, Risk and Controls Officer/Information Security Manager Reporting into CISO. Small Ethical Financial Services Insurance group (Member owned) 100% remote role £70,000K Salary + benefits + Bonus + Excellent Pension/Healthcare/Holidays etc Our client is expanding their Information Security group with a wider range of new projects and infrastructure challenges. You ideally will be able to provide expertise in maintaining and supporting IT security strategies, managing overall IT security governance, and compliance processes. YOU MUST HAVE Previous experience managing IS027001 and Cyber Essentials audits … and ensuring adherence to these levels + a wide range of the experience below & ensure effective implementation of IT security controls and processes. They are an ethical and quality organization that can provide an wide range of challenges, and in an organization that is growing and understands the challenges more »

We are seeking a Cyber Security Engineer to join our clients Information Security team. In this role, you will support the operation and assurance of our security controls, contribute to security governance and assurance activities, and provide security input for IT change initiatives. You … will offer technical security expertise to assist the Information Security Manager in ensuring that information security is implemented and maintained effectively as we transition to the cloud. A strong working knowledge of Azure security technologies and hands-on experience with their operation is essential. … Key Responsibilities of the Cyber Security Engineer: Provide security and risk assessment consultancy on projects, workgroups, and committees, offering recommendations for risk mitigation to ensure IT security is considered in the design of new or changing services. Offer security expertise in cloud security, specifically Azure more »

Information Security Manager - Hands-on Hybrid 3 days a week onsite We have an opportunity for a hands-on Information Security manager to join on a permanent basis for our client in London. Working as part of a small team, you will be responsible for the … overall Information Security governance, controls and process as well as management of third parties. Further to this, you will be required to support to the wider network & infrastructure team. Essential Skills: Experience previously as an Information Security Manager/Head of Information Security Proven … experience as a hands-on network/infrastructure professional. Providing hands on cover as and when required Knowledge and understanding of security protocols and processes Excellent knowledge of governance controls and processes Experience of managing third party vendors including offshore Desirable skills: CCNP certification CISM/CISSP Benefits include more »

Senior Cloud Security Engineer - UK remote - £75,000 - £95,000 + Bonus + Benefits Locke & McCloud are looking for an experienced Senior Cloud Security Engineer to join our clients growing security engineering function. As a Senior Cloud Security Engineer, you will be responsible for designing, implementing … and managing security measures across our clients cloud platforms. You will work to develop security strategies, respond to incidents, and continuously improve our client cloud security posture. Main responsibilities: Design and implement comprehensive security controls and best practices for cloud infrastructure. Develop and enforce security policies, standards, and guidelines to ensure compliance with ISO27001, NIST, PCI-DSS, Cyber Essentials, and GDPR. Conduct security assessments, vulnerability scans, and penetration tests to identify and mitigate risks. Monitor and respond to security incidents, including conducting forensic investigations and root cause analyses. Collaborate with DevOps and more »

Senior Cloud Security Engineer - London hybrid - £75,000 - £95,000 + Bonus + Benefits Locke & McCloud are looking for an experienced Senior Cloud Security Engineer to join our clients growing security engineering function. As a Senior Cloud Security Engineer, you will be responsible for designing, implementing … and managing security measures across our clients cloud platforms. You will work to develop security strategies, respond to incidents, and continuously improve our client cloud security posture. Main responsibilities: Design and implement comprehensive security controls and best practices for cloud infrastructure. Develop and enforce security policies, standards, and guidelines to ensure compliance with ISO27001, NIST, PCI-DSS, Cyber Essentials, and GDPR. Conduct security assessments, vulnerability scans, and penetration tests to identify and mitigate risks. Monitor and respond to security incidents, including conducting forensic investigations and root cause analyses. Collaborate with DevOps and more »

Role: Head of Security Operations Location: Manchester Salary: £100,000+ Locke & McCloud has partnered with a leading cybersecurity provider to source an ambitious Head of Security Operations. Joining the business at this juncture is an unprecedented opportunity as this organisation is looking to grow their team into the … of this role is to lead the SOC team, delivering robust, scalable and innovative solutions to our customers Managing the Tier 2 & Tier 3 security analysts and influencing a high- performance team and culture Incident queue management Oversight of incidents, changes and challenges Resource allocation Escalation management - managing all … goals and carrying out regular performance reviews Working with other SOC teams for mentoring and cross-training Onboarding/offboarding SOC customers for different security services About you: 3+ years in a managerial role in Cyber Security Operations (ideally managing a SOC team) Masters in Cyber Security more »

Role: Cyber Security Lead Location: Leeds Salary: £65,000+ Locke & McCloud are seeking an experienced Cyber Security professional to lead a small and growing team of cyber security professionals at a legal services firm. Keen to hear from technical cyber security professionals experienced in the Microsoft … Security suite and have end to end Azure project experience. Key Responsibilities: Responsible for overseeing the day-to-day operations of the Cyber Security Team. Develop and oversee the Security cloud migration process, identifying any gaps. Conduct regular performance meetings with team members and deputise for the … Cyber Security Manager when necessary. Create and maintain security support documentation, including processes and procedures, to ensure effective support. Collaborate with various departments within the IT Department to safeguard the infrastructure, from implementing new systems to monitoring existing ones. Demonstrate the ability to lead a team in challenging more »

Information Security Analyst required by an established technology company located in Farnborough. Having recently become ISO270001 accredited they are looking for an Information Security Analyst to take responsibility for the policies, standards and procedures that fall within the scope of the ISO27001 accreditation. The Information Security Analyst will be responsible for Developing, maintaining and improving information security policies, procedures and standards Leading future ISO27001 audits both internal and external to ensure compliance Managing an annual penetration … test via an external supplier Internal information security training including "lunch & learns" and onboarding new employees Key experience Proven experience in an InfoSec Analyst role Knowledge of ISO27001 standards and maintaining the accreditation within an organisation Risk management Any experience in the following areas would be advantageous but more »

Role: Cyber Security Manager Location: Leeds Salary: £70,000+ Locke & McCloud are looking for an experienced Cyber Security Manager on behalf of a Financial Services company. This organisation are undergoing a digital transformation project and are seeking a Cyber Security Manager with analytical skills and confident leading … a growing cyber security team. Key Responsibilities: Responsible for overseeing the day-to-day operations of the Cyber Security Team. Deputise for the Head of Cyber when they are not available. Management of the Security cloud migration process, addressing any identified gaps through experience and implementing remedies. … Conducting one-on-one performance meetings with the cyber security team. Maintaining the security of the organisation's IT services, including coordinating with third parties to ensure patching, vulnerability resolution, and system hardening. Managing the Cyber Security Incident process. Manage post-incident forensic investigations and reporting, engaging more »

IT Security Engineer Glasgow - Hybrid working 3 days per week in the office £60,000 - £70,000 + benefits Fantastic new permanent opportunity for an experienced IT Security Engineer with a broad background within IT Infrastrucutre and security engineering and operations for this specialist financial services analytics … business based in Glasgow. As a specialist Security Engineer, you will work as part of their DevSecOps team based in Glasgow. The role will involve working closely with the wider technology teams to enhance their cyber maturity. Furthermore, it provides the opportunity to contribute towards the implementation and management … of various security technologies. Main responsibilities: Analysing security events and incidents relating to internal and customer assets. Designing and developing SIEM security use cases. Designing and implementing security controls and secure configurations. Maintaining proactive vulnerability scanning ensuring that all known vulnerabilities are addressed in line with more »

Our client is looking for an Information Security Analyst to join their Information Security team which is growing! This business is at the heart of the automotive industry with an epic culture and team, giving you an awesome opportunity to grow and be part of something … different and special. They are looking for someone who can: Monitor and manage compliance programmes aligned to security frameworks and regulations such as ISO 27001, PCI DSS, and GDPR. Identify improvements and encourage efficiency's and automation in controls, evidence gathering, and processes. Support the definition and growth of … the Security Control Framework, proactively designing, assessing, and maintaining effective security controls across various business functions. Provide expertise in risk management and the identification and assessment of security risks, ensuring they are appropriately reported through dashboards, reports, and workshops. Create, review, and maintain security policies, standards more »

Our client is looking for an Information Security Officer to join their Information Security team which is growing! This business is at the heart of the automotive industry with an epic culture and team, giving you an awesome opportunity to grow and be part of something … special. They are looking for someone who can: Monitor and manage compliance programmes aligned to security frameworks and regulations such as ISO 27001, PCI DSS, and GDPR. Identify improvements and encourage efficiency's and automation in controls, evidence gathering, and processes. Support the definition and growth of the Security Control Framework, proactively designing, assessing, and maintaining effective security controls across various business functions. Provide expertise in risk management and the identification and assessment of security risks, ensuring they are appropriately reported through dashboards, reports, and workshops. Create, review, and maintain security policies, standards, and procedures more »

/City: London Contract Type: Contract Closing Date: 24/11/2023 An exciting opportunity has arisen for a proven DV Cleared Chief Information Security Officer (CISO) within the public sector, Acting as a role model for delivery by showing efficiency and focus, while being open to … effectively. Experience • Demonstrable and practical experience at a senior level, in the public or private sector, of working in a combination of risk management, information security, and IT roles; • Experience of leading and motivating large teams against a challenging resource background; • Proven ability to understand complex user and … technology needs and provide contextualised security advice or direction to allow those needs to be met securely through operational security arrangements; • Demonstrable experience of setting standards and the development of procedures that deliver end-to-end, tightly monitored environments including in complex organisations; • Experience of leading transformation programmes more »

+ Bonus + Benefits Locke & McCloud are looking for an experienced Senior DevSecOps Engineer to join our client who’re currently building out their Security Engineering team within their established Cyber Security function. In this role, you will be part of a growing team that will enable you … to lead the growth and development of various DevSecOps and Security Architecture projects, influence and implement change, with various opportunities to lead and grow a team. Main responsibilities: Collaborate with cross-functional teams to implement security practices throughout the SDLC, emphasising DevSecOps principles. Design, implement, and manage security controls and automation tools to enhance the security posture of cloud-based applications and infrastructure. Conduct thorough security assessments and risk analyses, identifying vulnerabilities and recommending remediation strategies. Develop and maintain security policies, standards, and procedures in alignment with industry best practices and compliance requirements. Provide more »

a vibrant, inclusive, and innovative place with great ambition working together within the community. This role will help with ensuring compliance with industry-standard security practices and regulations, while continuously evaluating and enhancing the organisation's security posture. Playing a pivotal role in minimising risks & protecting assets. You … they offer a great benefits package and development opportunities. Responsibilities of the role: Collaborating with senior management to develop and refine the organisation's information security strategy, aligning it with business objectives and regulatory requirements. Developing, implementing, and maintaining information & data security policies, standards, guidelines, and … and industry standards such as Cyber Essentials+, ISO 27001 & NIST guidelines. Managing the relationship(s) with 3rd party suppliers responsible for implementing and managing security monitoring tools and technologies, ensuring we detect and respond to security threats in a timely manner. Develop and deliver a security awareness more »

Role: Technical Advisory Security Consultant Location: London/Manchester/Cheltenham The Opportunity: This is a Technical Advisory Cyber Security consultancy role with specific focus on assisting clients with Security Improvement and Remediation and Transformation programmes. Which may contain the following: Understanding the Security needs and … aspirations of a client Delivering Technical Security Improvement and Remediation programs Guiding Design and Implementation of Cyber controls The C&I SIR practice works with NCC Group clients to deliver prioritised programs of security improvements: in close collaboration with NCC Group security audit, Incident Response, Penetration and … Red Teams. Security Consultants play key roles in these client assignments: as recognised security experts they drive change, as well as advising clients and their service providers on changes they will make. Key to this role is assessing and enhancing pre-existing risk and security information more »

relationships. As the local Cyber management presence, provide guidance and support for the area. Key Tasks and Responsibilities: Review, analyze, design, and advise on security controls, configurations, and implementations for IT projects Continuously improve the integration and effectiveness of implemented technologies Maintain awareness of cybersecurity threats, events, tactics, techniques … tracking, remediation for identified cybersecurity operational weaknesses Identify, create and mature cybersecurity operations processes Work with IT risk assessment function to ensure the proper security configurations and controls are implemented for IT projects Provide pros/cons of security solutions impact business strategies Create documentation of findings and … CIRT) activities. Assign work to Cyber SOC for remediation Escalate pertinent findings in a timely manner Leverage vendors and internal resources to interface various security tools to automate critical response tasks Support Compliance managers in providing Cybersecurity artifacts Align information cybersecurity operations with NIST, and ISO 27001 requirements more »

Our client is one of the UK’s leading Cyber & Information Security Consultancies and offer services ranging from Cyber Essentials assessments to InfoSec & GRC services, and are looking to expand their team after winning various projects! You will conduct thorough assessments, provide actionable recommendations, and ensure that clients … meet the necessary requirements to achieve CE+ certifications. If you’re looking to grow within the Cyber Essentials & Cyber Security consulting space with a highly reputable firm, then this is a great option for you! Main responsibilities: Conduct detailed Cyber Essentials Plus assessments for a variety of clients, ensuring … compliance with the standard’s requirements. Perform vulnerability assessments, penetration tests, and security audits as part of the certification process. Evaluate clients' infrastructure, policies, and practices to identify potential security risks and areas for improvement. Provide clear and concise reports outlining assessment findings, recommended actions, and compliance status. more »

Location: Mansfield -2 days per week in office rest remote Pay: available on application Ensuring compliance with industry-standard security practices and regulations, while continuously evaluating and enhancing the organisation's security posture. Playing a pivotal role in minimising risks & protecting assets. Here’s a taste of what … the role will involve: Collaborating with senior management to develop and refine the organisation’s information security strategy, aligning it with business objectives and regulatory requirements. Developing, implementing, and maintaining information & data security policies, standards, guidelines, and procedures to ensure compliance with relevant regulations (e.g. GDPR … industry standards such as Cyber Essentials+, ISO 27001 & NIST guidelines. Managing the relationship(s) with 3 rd party suppliers responsible for implementing and managing security monitoring tools and technologies, ensuring we detect and respond to security threats in a timely manner. Developing and deliver a security awareness more »

+ Bonus + Benefits Locke & McCloud are looking for an experienced DevSecOps Engineer to join our client who are actively building out their Security Engineering function. In this role you will be driving the capability and maturity of our clients DevSecOps function and will have the opportunity to lead … hands on experience specifically in the DevSecOps space and are looking to work on some super exciting projects, then please apply! Main responsibilities: Integrate security tools and processes into the DevOps pipeline to ensure secure code deployment and infrastructure management. Design and implement automated security testing, including static … code analysis, dynamic application security testing, and vulnerability scanning. Collaborate with development and operations teams to identify and mitigate security risks throughout the software development lifecycle. Implement and manage security controls for cloud environments in AWS and Azure, ensuring compliance with best practices and industry standards. Develop more »

+ Bonus + Benefits Locke & McCloud are looking for an experienced DevSecOps Engineer to join our client who are actively building out their Security Engineering function. In this role you will be driving the capability and maturity of our clients DevSecOps function and will have the opportunity to lead … hands on experience specifically in the DevSecOps space and are looking to work on some super exciting projects, then please apply! Main responsibilities: Integrate security tools and processes into the DevOps pipeline to ensure secure code deployment and infrastructure management. Design and implement automated security testing, including static … code analysis, dynamic application security testing, and vulnerability scanning. Collaborate with development and operations teams to identify and mitigate security risks throughout the software development lifecycle. Implement and manage security controls for cloud environments in AWS and Azure, ensuring compliance with best practices and industry standards. Develop more »

candidate. You'll be responsible for managing, maintaining and deploying Azure infrastructure. Key Responsibilities: Design, implement, and manage Azure cloud infrastructure solutions, ensuring scalability, security, and reliability. Implement and maintain CI/CD pipelines and other DevOps practices for cloud-based applications. Monitor cloud infrastructure and services, proactively identifying … issues to ensure optimal performance. Manage identity and access management in Azure, including Azure Active Directory and role-based access control (RBAC). Implement security policies, firewalls, and network security groups to safeguard cloud resources. Collaborate with development teams to troubleshoot and resolve infrastructure issues. Managing robust backup … of Infrastructure and networks in project delivery. Work with Technology Change teams to integrate delivery of infrastructure into solutions delivery. Stay abreast of new security technology, emerging security threats, vulnerabilities, and security controls. About you: Bachelor's degree in computer science, engineering, or a related field. more »

Who we are looking for An Information Security Specialist who will focus on the technical side of IT Security, specifically looking at application security and code analysis, ensuring applications are built securely. The Information Security team deal with the security of closed-sourced … open-source and in-house written applications. The objective is to ensure that systems and services are built with privacy and security by design. You will be working closely with the Software Development team, to confirm that application based vulnerabilities are understood and mitigated. This is done from a … security assessment point of view rather than code QA, therefore code reading skills are desirable. The team comprises of a variety of individuals, ranging from graduates to time served engineers with backgrounds as sys-admin, networks, service operation as well as security. We use first class, enterprise level tools more »