26 to 50 of 64 Permanent Information Security Management Jobs in the UK

Information Security GRC Analyst £65,000+Bonus+Benefits London/Hybrid In your role as Information Security GRC Analyst, you will evaluate IT and cyber risks and carry out risk management tasks. Additionally, the position will help advance the maturity of cyber security by enhancing the … procedures required to safeguard our clients from online attacks. To protect the information assets, business services, and operations, you will work with the other team members, the remaining information systems teams, IT service providers, and partners throughout the organisation to implement and enhance IS and IT risk management and operational control capabilities. • Relevant training in cyber security risk assessment is required, as is practical experience in an IT or OT role with a desire to transition into cyber security, such as risk, audit, or cyber security. • Thorough understanding and expertise in designing, putting into practice more »

Are you an experienced Information Security professional looking for your next challenge? We have an exciting opportunity with a leading firm in the legal sector based in Birmingham. As the Subject Matter Expert within the Technical Services and Security team, you'll play a key role in … managing and maintaining the Information Security Management System (ISMS) and embedding a culture of security by design across the firm. The role offers hybrid working, 2 days a week in the Birmingham office, giving you a great work/life balance. Key Responsibilities: To manage, maintain … and monitor the Information Security Management System (ISMS) To bridge the gap between strategic activities and technical experts To work with the IT organisation and business management to align security priorities and plans with key business objectives. Skills and Experience: A minimum of 3 years more »

So if this sounds like the place you can thrive in and grow your career, please keep reading! We re looking for an experienced Information Security Manager who will lead, plan and execute our Info Sec strategy. You will play a key role in assuring the activities of … INSTANDA and a number of our 3rdParty partners. Competent around technology, security frameworks and the cyber threat environment, you will own assurance processes, contribute to a multitude of projects and be involved in decision making. Your input will be critical to the maintenance and development of Information Security … develop concepts and work with a broad array of individuals and problems. Playing a leading role within InfoSec, with your reach and activity enabling security as a principal consideration across INSTANDA. Responsibilities will include: Overseeing the INSTANDA information security management system (ISMS) including the implementation and more »

Group Cyber Security Operations Manager//Enterprise Bus & Rail Business//Up to £60k + Package//Flexible Working Arrangement Summary My client is seeking a highly skilled and experienced Group Cyber Security Operations Manager to join their company providing Bus and Rail services in … the UK. As the Group Cyber Operations Manager, you will be responsible for leading and managing all aspects of cyber operations to ensure the security and integrity of the organisation's digital assets and infrastructure and acting as a deputy for the Group Head of Cyber Security Operations … leading a team of Group Cyber Security Analysts and Group Senior Pen Tester. Key Responsibilities Develop and implement cybersecurity technical standards in-line with industry best practice and policies to safeguard the company's information systems and data. Lead a team of cybersecurity professionals to monitor, detect, and more »

Information Security Analyst | Outside IR35 | £500-£650 a day | 6 Months | Hybrid 2-3 days a week central London KDR are working with a leading Insurance client who are looking for a Information Security Analyst (6 month contract) who can take the lead on a specific … with a deadline for the end of 2024. This role is focused on a set of particular activities such as control assessment and risk management with a specific focus on NIST CIF. Responsibilities: Support the Information Security Manager in delivering the Information Security Management System and to drive continuous improvement for information security. Evaluate and assess cyber security controls across the business and its third party vendors to ensure compliance with the NIST CSF. Conduct comprehensive risk assessments using the NIST CSF. Collaborate with cross-functional teams to develop and implement more »

GRC team in the UK. This role is home-based, with travel to client sites . You'll be part of a team delivering security consultancy in a client-facing role, with a particular focus on: PCI DSS consultancy and assessments Security reviews against standards or guidelines such … as the NCSC 10 Steps to Cyber Security and NIST CSF ISO 27001 gap analyses Helping our clients to implement Information Security Management Systems and achieve and maintain ISO27001 certification Conducting risk assessments Creating or supporting third-party risk management and audit programmes Essential skills … Have experience working with the NIST CSF A good understanding of core concepts and technologies. For example, networking, Windows and Linux operating systems, and security technologies such as antimalware, IDS/IPS, etc. You do not need hands-on experience with these technologies or to have worked in an more »

Information Security Associate Specialist – Policy & Standards Ipswich The Policy & Standards Specialist is an expanding role and entails managing and communicating the changes to the AXA XL Information Security Policy (ISP) and supporting Standards, for the reference and benefit of all employees and contractors. DISCOVER your opportunity … The specialist will work under the responsibility of the Head of IS Services and Risk Management or delegate and will report to the Security Policy & Standards Lead. The responsibilities of the role will include the following: • Maintaining the ISP and Standards, ensuring proposed changes are evaluated, writing additional … minutes for later reference • Present amendments from the PSRG to the IS Steering Committee for validation • When necessary, present ISP & Standards updates to the Security Committee • Maintain and improve the Policy & Standards Tracker, ensuring all changes are accurately recorded • Provide formal feedback to Group Security on changes agreed more »

Job summary This role presents an excellent opportunity for an Information Governance (IG) subject matter expert to join South West London ICB as the Senior Information Governance Manager working within the Patient Information Team We are looking for an outstanding IG specialist who is, innovative, dynamic, highlymotivated … highlycompetent,andresilient. The ideal candidate will have substantial information governance management experience; excellent political aptitude; be a strong and experienced leader and have a proven track record of delivering against objectives. They will exercise sound judgement, providing advice that is routed in robust evidence and experience and will … commencing 22nd July 2024 Main duties of the job The post holder will be responsible for overseeing the delivery of South West London ICB Information Governance (IG) function, including Freedom of Information, Subject Access, IG breach processes and managing IG Projects This is a key role within the more »

Cyber Security Consultant/Architect Type: Permanent/Contract Location: Reading (Hybrid) Job Context This role is responsible for providing subject matter expertise and guidance to Business teams and and Partners that own the day to day management and safeguarding of customer information and protection of physical …/logical assets of the company. Experience of working with and influencing various levels of management, building relationships and influence across teams and a wider community of other leaders and managers. A clear communicator. Ability to lead, make decisions, problem solve and work within teams. Can demonstrate flexibility and … agility to move between role types within teams. Will have clear subject matter experience within one or many security domains and an ability to connect and work across multiple domains. Can demonstrate knowledge of their area articulated through key operating elements of people, process and technology. Ability to contribute more »

Location: Birmingham or London Hybrid: 2-3 days a week Salary: £55-62k (dependant on experience) + comprehensive benefits package Information Security Officer with strong ISO27001 experience required by an International Law Firm. The role will be hybrid working with 2-3 days per week in the … Lead Implementer/Auditor highly advantageous ISMS implementation Strong experience with ISO 27001 Excellent knowledge of GDPR, Business Continuity and Disaster Recovery Planning, Security Incident response, and Information Security policies. CISSP/CISA/CISM highly advantageous Experience working in a regulated environment such as Financial Services … skills, capable of engaging with technical and non-technical colleagues and clients up to C-level Key objectives: To manage, maintain and monitor the Information Security Management System (ISMS) within the firm’s Integrated Management System (IMS) To embed a culture of information security more »

Opportunity: Cyber Security GRC Analyst Location: Crawley or Ipswich 5 Days a Week for 1st 6 Months, 3 Days On Site after probation Working Preference: Onsite, Hybrid Working Supported Salary and Package: £55,000 per year (depending on your experience/technical skill set) plus annual bonus and … sponsorship for this opportunity. Overview of the client: A leading supplier of renewable energy in the southeast, our client is looking for an experienced Security GRC Analyst to join them on a full-time basis. This role will see the successful applicant supporting the GRC Manager, to implement ISMS … develop and implement new governance and compliance strategies and practices. Requirements: Practical experience in a GRC role or related profession e.g. risk, audit, cyber security or similar practical experience in IT or OT role with a desire to move into cyber security, must have some relevant training of more »

You Be Doing? Your role will be at the core of everything that our client does - from supporting their customers with high quality cyber security consultancy and cyber assurance. As part of the growth of their existing successful cyber security risk and compliance team, new and exciting roles … are available for cyber security specialists. You will: Create and support risk assessments and security risk management processes. Develop information security management/governance systems. Communicate information security risks recommending appropriate risk treatment/mitigation to a variety of stakeholders. Provide security … advice, guidance and recommendations to project teams and customers (following Secure by Design principles). Apply your knowledge and skills to projects achieving suitable security accreditation or compliance with security policies and standards. Work with the wider engineering specialists in delivering cyber assurance to all projects. Location: Our more »

what they do, alongside Agile+ working policies. Your new role Reporting to the IT Compliance Manager, you will be the Subject Matter Expert for Information Security. The key objectives of the role are to manage, maintain and monitor the Information Security Management System (ISMS) within the … firm's Integrated Management System (IMS). You will embed a culture of information security within the firm, with a focus on security by design alongside acting as an interface for security between the strategic and process-based activities and the work of the technology … focused experts, analysts, and administrators. You will be expected to work with the IT organisation and business management to align security priorities and plans with key business objectives. What you'll need to succeed Ideally, you will be educated to degree level or equivalent, with a minimum of more »

within the company. Acquired in February 2020, by Pollard Banknote Limited (PBL), a major supplier to the global lottery industries, brought mkodo strong financial security, access to resources and clients at a global level. About the role: Reporting to a Software Engineering Manager or Head of Engineering, the .NET … presents at Brown Bag Lunches and Team Meetings. Assisting in interviews and recruitment. Support mkodo in the implementation and ongoing maintenance of its ISO27001 Information Security Management System (ISMS). Adhere to all relevant mkodo ISO27001 Information Security Management System (ISMS) policies, procedures and … requirements at all times. Complete any reasonable tasks relating to the mkodo ISO27001 Information Security Management System (ISMS). Key Skills & Attributes: Significant experience in modern .NET development; mobile app development experience using .NET (Xamarin, .NET iOS, .NET Android or Maui) is highly desirable but can be more »

SecOps Consultant South London (Hybrid) Permanent £70,000-£8 5 ,000 (DOE) SecOps - Security Consultant join excellent program, ideally with active SC and NPPV3 clearance. The position is based in South London with the option to work remotely from home (WFH) on a 'hybrid' basis of 2-3 days … work with a leading digital transformation business on large-scale IT modernisation programmes for government clients. Key skills, experience + tasks will include: SecOps Security Consultant working with SecOps Lead , responsible for ensuring that security procedures are maintained in compliance with the Government Security Classifications framework, are … change, client policies and procedures. Expertise in supporting secure government cloud Migration/Transformation projects. Developing, maintaining, and monitoring policies and procedures. Maintenance of security operating procedures (SyOps) and information security management policies. Experience in investigating security breaches, in delivering security training and awareness more »

to address identified weaknesses and vulnerabilities. Set up and enhance a comprehensive red and purple team penetration testing program, aligning it with major threat information and industry cybersecurity intelligence. Establish and maintain a vulnerability management process to identify, assess, prioritise, and track remediation of security vulnerabilities and … disaster recovery and business continuity strategies and plans are in place, with regular testing to verify their effectiveness. Key Skills and Qualifications Leadership and Management: Experience: in a leadership role within a Cybersecurity Assurance function or similar, such as Cybersecurity Integration or Engineering, with a focus on assurance testing … techniques and methodologies. Team Management: Proven track record in leading a security team or function, with an emphasis on collaboration across partners with varying levels of technical security competency. Educational Background: Professional Information Security certification by a recognised professional body such as Certified in Information more »

a high pace and rewarding environment for a great company with a large scope of progression.Ideal Candidate:Ideal Candidate:Have a strong background in information security, risk management, and compliance, as well as a minimum of 3 years experience in designing and delivering client-facing ISO … related Information Security consultancy, DPIAs and other Data Protection related services.Develop a Virtual Information Security Advisor serviceDeveloping and ISO 27001 Implementation programmeManaging the existing Internal Audits Managed Service offeringYou will be responsible for carrying out Data Protection Impact Assessments for existing clients, and managing a dedicated … Protection offering from the ground up, including:Establishing ROPAEstablishing DPIA questionnaires and processesPerforming DPIAsDesigning and implementing Performing Supplier due diligence processes.Oversee our organisation’s information security management system (ISMS) in accordance with ISO 27001 standardsConduct risk assessments, manage the company Risk Register and Risk Treatment Plan, and more »

a high pace and rewarding environment for a great company with a large scope of progression.Ideal Candidate:Ideal Candidate:Have a strong background in information security, risk management, and compliance, as well as a minimum of 3 years experience in designing and delivering client-facing ISO … related Information Security consultancy, DPIAs and other Data Protection related services.Develop a Virtual Information Security Advisor serviceDeveloping and ISO 27001 Implementation programmeManaging the existing Internal Audits Managed Service offeringYou will be responsible for carrying out Data Protection Impact Assessments for existing clients, and managing a dedicated … Protection offering from the ground up, including:Establishing ROPAEstablishing DPIA questionnaires and processesPerforming DPIAsDesigning and implementing Performing Supplier due diligence processes.Oversee our organisation’s information security management system (ISMS) in accordance with ISO 27001 standardsConduct risk assessments, manage the company Risk Register and Risk Treatment Plan, and more »

Sector: Infrastructure & IT, IT Management Job Type: Permanent Technologies: System Administration DevOps AWS CISSP leardship Communication cloudhosted software platform security ISO 27001 Calling for a Head of Infrastructure & Security to join a Real Time Engagement Platform market leader for the entertainment industry sector. Our client is looking … for a new leader of Infrastructure and Security to ensure that the company s engineering team has access to secure and reliable development environments. The selected Head of Infrastructure and Security will help ensure that our client achieves the highest levels of performance and security standards and … their promises to their customers. That involves setting up policies and best practices, working through industry certifications such as ISO 27001 and guiding the management team through the process. Your role : Responsible for the smooth running of the company s cloud-hosted infrastructure Responsible for the company s Information more »

data-driven, trusted and sustainable digital transformation. As a next generation digital business with worldwide leading positions in digital, cloud, data, advanced computing and security, it brings deep expertise for all industries in more than 47 countries. By uniting unique high-end technologies across the full digital continuum with … class talents, Eviden expands the possibilities of data and technology, now and for generations to come. The opportunity We are looking for motivated Cyber Security Architects to join our team. If you are a forward-thinking person, who loves working with clients to identify their needs, build relationships and … provide quality solutions in a fast-paced environment, then, read below! The candidates must be eligible to obtain a security clearance to SC level. Location: Home based (Travelling to client sites when needed) Role and responsibilities: Understanding client requirements for cyber security solutions and translating these into technology more »

data-driven, trusted and sustainable digital transformation. As a next generation digital business with worldwide leading positions in digital, cloud, data, advanced computing and security, it brings deep expertise for all industries in more than 47 countries. By uniting unique high-end technologies across the full digital continuum with … class talents, Eviden expands the possibilities of data and technology, now and for generations to come. The opportunity We are looking for motivated Cyber Security Architects to join our team. If you are a forward-thinking person, who loves working with clients to identify their needs, build relationships and … provide quality solutions in a fast-paced environment, then, read below! The candidates must be eligible to obtain a security clearance to SC level. Location: Home based (Travelling to client sites when needed) Role and responsibilities: Understanding client requirements for cyber security solutions and translating these into technology more »

data-driven, trusted and sustainable digital transformation. As a next generation digital business with worldwide leading positions in digital, cloud, data, advanced computing and security, it brings deep expertise for all industries in more than 47 countries. By uniting unique high-end technologies across the full digital continuum with … class talents, Eviden expands the possibilities of data and technology, now and for generations to come. The opportunity We are looking for motivated Cyber Security Architects to join our team. If you are a forward-thinking person, who loves working with clients to identify their needs, build relationships and … provide quality solutions in a fast-paced environment, then, read below! The candidates must be eligible to obtain a security clearance to SC level. Location: Home based (Travelling to client sites when needed) Role and responsibilities: Understanding client requirements for cyber security solutions and translating these into technology more »

Security Governance Lead – IT Governance, Operational Resilience, DORA, ISO/IEC 27001, ITIL, COBIT, GDPR, Permanent – London 90,000 - 110,000A well-respected Insurance business is searching for a Security Governance & Data Lead to join their team to assist in the development, maintenance and improvement of their security … the business to ensure that the initiative is a success and that it is compliant with relevant legislation, regulations and industry standards related to information security and data privacy within a Lloyds setting. You will get involved with in the creation and introduction of security governance frameworks … cyber security policies and procedures, data protection policies, and the data governance strategy while ensuring to conduct risk mitigation strategies.To be successful in this role, you should fit the following profile:Over 8 years’ experience within IT governance, security or data management roles.Extensive experience and specialist expertise more »

Are you a dynamic and adaptable professional with a passion for cyber security? Do you excel in providing expert guidance and innovative security solutions? If so, We are looking for you! The position is working for a high profile company and offers great benefits which include a car … allowance and bonus scheme along with much more. What the role will be doing: As a Cyber Security Consultant, you will have a diverse and challenging remit. Your flexibility and agility will be key as you switch between various security disciplines within the team. You will: Actively represent … the security organisation in business project initiatives, ensuring security requirements are considered throughout the project lifecycle. Collaborate with a broad range of stakeholders to articulate the security vision, principles, and governance/assurance standards. Provide security requirements and design input across multiple projects within Network and more »

seeking a Senior Cyber GRC Analyst to join their team based in their Crawley office. This is a permanent opportunity to support the Cyber Security Governance, Risk & Compliance Manager in developing IT governance, risk management, and compliance strategies to safeguard essential business services and operations from cyber threats. … Key Responsibilities: Conduct cyber security risk assessments following the company's risk assessment framework and methodology. Produce management information related to the risk and control environment. Operate and maintain the information security management system in compliance with ISO 27001/27002. Develop GRC policies … standards, and procedures to monitor information security controls. Ensure a fit for purpose IT control environment and support a roadmap for IT controls improvements. Design, implement, and run processes to monitor IT compliance to legal and regulatory requirements. Manage IT resilience and business continuity plans, including conducting test more »