15 of 15 Permanent Information Security Specialist Jobs in the UK

Information Security Specialist (Information Security and Cyber Security) Hybrid working: 3 days per week in the office. The Information Security Specialist will play a pivotal role in shaping my clients cyber resilience strategy. The role involves providing expert guidance to stakeholders on information security matters, managing technical cybersecurity tools … and operations, and overseeing compliance with regulatory standards. It will lead the development and execution of the cyber and information security strategy, ensuring alignment with ISO 27001, GDPR and Cyber Essentials. The ideal candidate will have strong information security experience alongside hands-on technical knowledge of SIEM, EDR, vulnerability management, and incident response. Responsibilities: - Serve as … a subject matter expert for information security, advising stakeholders on risks, controls, and security best practices. - Support business units with risk-based security input for projects, client bids, and technology initiatives. - Manage cybersecurity tooling including SIEM, EDR, and mail filtering systems to ensure effective threat detection and response. - Monitor, investigate, and respond to alerts and incidents More ❯

improve the well-being of all by taking life science further and combine our attention to detail with the extraordinary, because it all matters. The opportunity Reporting to the Information Security Officer you will contribute to the efficiency, capability and profitability of the business by gathering, analysing and recommending changes to processes/systems within BUs, across multiple … Internal Audit team on the development, implementation and operation of ITGCs Supporting the implementation of ISO27001 controls and perform regular control audits to monitor compliance Developing and managing a security risk framework, aligning with the enterprise risk management approach Coordinating the performance of regular business impact assessments (BIAs) and the recording of results and updates Contributing to the design … and implementation of information security process and control improvements Mentoring other members of the Information security team and promote risk management best practices across IT Supporting the development and delivery of compliance training and awareness, fostering a culture of risk awareness and accountability across the organisation Providing advice to stakeholders on IT risk and compliance topics More ❯

improve the well-being of all by taking life science further and combine our attention to detail with the extraordinary, because it all matters. The opportunity Reporting to the Information Security Officer you will contribute to the efficiency, capability and profitability of the business by gathering, analysing and recommending changes to processes/systems within BUs, across multiple … Internal Audit team on the development, implementation and operation of ITGCs Supporting the implementation of ISO27001 controls and perform regular control audits to monitor compliance Developing and managing a security risk framework, aligning with the enterprise risk management approach Coordinating the performance of regular business impact assessments (BIAs) and the recording of results and updates Contributing to the design … and implementation of information security process and control improvements Mentoring other members of the Information security team and promote risk management best practices across IT Supporting the development and delivery of compliance training and awareness, fostering a culture of risk awareness and accountability across the organisation Providing advice to stakeholders on IT risk and compliance topics More ❯

Information Systems Security Specialist vacancy in Berkshire (060DM) Are you a former military professional with a background in information security, risk management, and assurance? Your experience in secure environments, risk analysis, and stakeholder engagement makes you the perfect fit for this Information Systems Security Specialist role. This is an opportunity to continue … making an impact by protecting critical systems and ensuring robust security measures in a complex environment. 12-month contract, with a chance of extension. Key Responsibilities Conduct risk analysis for information systems, providing strategic recommendations to decision-makers. Advise senior leadership and project teams on information security best practices. Develop and implement security architectures to … safeguard critical data and infrastructure. Assess and manage information risks across projects, supply chains, and stakeholders. Stay ahead of evolving security threats, leveraging industry standards and best practices. Oversee vulnerability assessments and ensure security compliance across IT systems. Provide technical risk assessments and contribute to the professional development of information security standards. What We're More ❯

Who we are looking for A Senior Information Security Specialist, who will focus on the technical side of IT Security, specifically looking at application security and code analysis to ensure applications are built securely. The application security team deal with the security of closed source, open source and in house written applications. The … and mitigated. It is therefore important that you possess an understanding of the Secure Software Development Lifecycles and the assessment of code. This role is part of the broader Information Security department, which is comprised of engineers and analysts with varying backgrounds. Collectively, the team utilises enterprise and bespoke tooling to identify and mitigate threats to safeguard the … role is eligible for inclusion in the Company s hybrid working from home policy. Preferred skills and experience Excellent understanding and demonstrable experience of automated, dynamic and static application security testing tools. Excellent understanding and experience with manual security testing to find vulnerabilities and logical issues. Knowledge and understanding of OWASP and its utilisation within threat modelling. Experience More ❯

Contract type Permanent Contract Job summary We are seeking a proactive Information Security Specialist skilled in security operations, threat intelligence, and risk management. This role is crucial for maintaining robust security protocols, identifying vulnerabilities, and ensuring compliance with security standards. The ideal candidate will have a strong background in IT infrastructure security, preferably … and incident response. Having CISSP or other relevant certifications (e.g., Network+, Security+, MCSP, CAN) would be beneficial to have to perform this role. Day-to-Day of the Role: Security Operations and Infrastructure Assist in identifying, analysing, and following up on security vulnerabilities in IT systems. Help maintain accurate IT asset inventory across various security platforms (e.g. … CMDB, AV, SIEM). Participate in regular security reviews, vulnerability assessments, and help ensure compliance with established security standards. Monitor user access and permissions, identifying and reporting potential unauthorized access. Implement and maintain Active Directory and File Share security controls. Participate in regular AD security assessments and remediation efforts. Threat Intelligence and Incident Response Monitor and More ❯

Contract type Permanent Contract Job summary We are seeking a proactive Information Security Specialist skilled in security operations, threat intelligence, and risk management. This role is crucial for maintaining robust security protocols, identifying vulnerabilities, and ensuring compliance with security standards. The ideal candidate will have a strong background in IT infrastructure security, preferably … and incident response. Having CISSP or other relevant certifications (e.g., Network+, Security+, MCSP, CAN) would be beneficial to have to perform this role. Day-to-Day of the Role: Security Operations and Infrastructure Assist in identifying, analysing, and following up on security vulnerabilities in IT systems. Help maintain accurate IT asset inventory across various security platforms (e.g. … CMDB, AV, SIEM). Participate in regular security reviews, vulnerability assessments, and help ensure compliance with established security standards. Monitor user access and permissions, identifying and reporting potential unauthorized access. Implement and maintain Active Directory and File Share security controls. Participate in regular AD security assessments and remediation efforts. Threat Intelligence and Incident Response Monitor and More ❯

INFORMATION SECURITY GRC SPECIALIST Buckinghamshire | Hybrid Working (Flexible Days) Contract: Permanent Salary: Up to £65,000 + BONUS Reports to: GRC Manager Individual Contributor Role – No Direct Reports Are you a security governance expert looking to play a crucial role in an evolving and high-impact environment? We are seeking an Information Security GRC … Specialist to join our InfoSec Governance, Risk and Compliance (GRC) team. In this role, you’ll help protect the confidentiality, integrity, and availability of our information assets by embedding best-in-class governance practices, assessing risk, and ensuring compliance with key industry standards like ISO27001. You'll work across the business as a trusted security advisor, helping … teams understand and manage their risk profile and compliance obligations. What You’ll Bring A strong understanding of the current threat landscape, security risks, and compliance standards. Extensive experience in information security, ideally within a GRC or risk management role. Experience delivering risk assessments and managing compliance against standards like ISO27001. Skilled in writing and implementing security More ❯

Information Security Risk & Compliance Specialist About CyberArk : CyberArk (NASDAQ: CYBR ), is the global leader in Identity Security . Centered on privileged access management, CyberArk provides the most comprehensive security offering for any identity - human or machine - across business applications, distributed workforces, hybrid cloud workloads and throughout the DevOps lifecycle. The world's leading organizations trust … the Role: We are seeking a highly motivated and detail-oriented GRC Compliance Expert to join our Governance, Risk, and Compliance team. This role is pivotal in supporting customer security assessments during RFx processes, driving compliance initiatives including DORA , NIS2 , and other regulatory frameworks, and assisting with broader GRC activities across the organization. The ideal candidate is a self … located in our office in London. We ask to come to the office twice per week. Support the sales and legal teams during RFx processes by responding to customer security questionnaires, assessments, and due diligence requests. Coordinate and manage responses to customer security audits and assurance inquiries. Monitor regulatory changes and contribute to compliance initiatives such as DORA More ❯

value everybody for who they are and what they bring to the table, supporting one another as we continue to deliver for our customers. LI-KS1 Create & Maintain an information security management system (ISMS) capable of demonstrating compliance against internal security requirements and external commitments including certification and regulatory requirements. Provide subject matter expertise in the application … to any new or existing programme of work. Prepare and support internal and/or external compliance audit activities. Manage remediation of any audit (internal & External) non-conformities. Ensure security policies (on a risk-based approach) are produced, signed off by relevant stakeholders, published, and communicated. Also, ensure that policies are managed throughout their lifecycle and updated through yearly … or ad-hoc reviews. Produce relevant security standards documentation in consultation with Technical teams. Lead on providing information to Three UK Customers (B2B) regarding Three UK's security practices. Support proactive and effective oversight of technology and security risk management frameworks, methodologies, processes, assurance, remediation, and reporting activities across the company. Assist in designing, building, and More ❯

IT Infrastructure & Security Specialist – EMEA The Advocate Group are proudly representing a key client within the FMCG sector. Are you an infrastructure and cybersecurity expert looking to work for a high-growth, high-impact brand with an exciting global footprint? We’re partnering with a leading international FMCG client who is expanding their EMEA operations and seeking an … Infrastructure & Security Specialist to play a pivotal role in maintaining and developing their IT landscape. You’ll be joining a business operating at scale — supplying millions of units across the EMEA region — and directly influencing the robustness, availability, and scalability of their infrastructure and security frameworks. What You’ll Be Doing: Proactively manage EMEA infrastructure stability, uptime … and security across On-Prem, Network, and Cloud environments. Monitor SIEM, EDR, MDR/IDS tools and respond to incidents or vulnerabilities. Oversee physical and cloud backups and assist in infrastructure upgrades. Collaborate with internal and external support teams to maintain system integrity. Lead R&D into emerging cybersecurity threats and integrate next-gen tech solutions. Embed core security More ❯

Information Security Specialist Overview Ref: (phone number removed) Information Security Specialist/ISO 27001/GDPR Exciting opportunity to join a global business that is still growing, the environment is fast paced and interesting and they really look after their people. Role Responsibilities Responsibilities will include: Providing technical expertise relating to the implementation and … operation of technical security controls Providing technical support and ensuring understanding and investigation of information security vulnerabilities and threats Providing advice to support teams on how to remediate and reduce identified vulnerabilities Liaising with 3rd party support and product organisations Providing technical leadership on security incident response and investigation Essential skills will include: Proven experience in … implementing and managing security frameworks such as ISO 27001, NIST CSF/NIST SP 800-53, and GDPR Strong technical skills in designing, implementing, and maintaining security controls Excellent problem-solving skills with the ability to interpret complex security topics and translate them into practical, actionable insights A proactive mindset, focused on continuous improvement, team development, and More ❯

Information Security Specialist Overview Ref: (phone number removed) Information Security Specialist/ISO 27001/GDPR Exciting opportunity to join a global business that is still growing, the environment is fast paced and interesting and they really look after their people. Role Responsibilities Responsibilities will include: Providing technical expertise relating to the implementation and … operation of technical security controls Providing technical support and ensuring understanding and investigation of information security vulnerabilities and threats Providing advice to support teams on how to remediate and reduce identified vulnerabilities Liaising with 3rd party support and product organisations Providing technical leadership on security incident response and investigation Essential skills will include: Proven experience in … implementing and managing security frameworks such as ISO 27001, NIST CSF/NIST SP 800-53, and GDPR Strong technical skills in designing, implementing, and maintaining security controls Excellent problem-solving skills with the ability to interpret complex security topics and translate them into practical, actionable insights A proactive mindset, focused on continuous improvement, team development, and More ❯

Bela Recruitment is recruiting an IT Security/ISO 27001 Specialist based in Dungannon, Co.Tyrone, Northern Ireland. The Company I’ve worked with this company for over 10 years sourcing staff across all departments. They are a great company to work for and have been investing heavily in their own ISO & IT Systems for several years, hence the … need for this ISO Compliance Specialist, to ensure ISO systems and data is central to their success. Responsibilities Support the business across ISO 27001 - developing, managing and maintaining policies and paperwork. Be detail-oriented, with strong knowledge of ISO 27001 standards and a proven track record in helpling secure audits. Any ethical standards experience will also be a big … identify areas for improvements. Full job spec on receipt of cv. Requirements 2+ years ISO 27001 experience, management, auditing and certification across a range of standards. Knowledge of IT security and technical knowledge. Ideally degree educated in an IT or Technology subject, and/or ISO/Auditing qualifications. Strong analytical and problem-solving skills. Excellent communication and interpersonal More ❯

Are you passionate about cloud security and eager to make a difference in a fast-growing environment? An established law company with over 280 years of experience with setting new standards and shaping the future of law, is seeking for a skilled Cloud Security Engineer to join the team! As one of the top-tier leader in the … industry, they excel in areas that are of utmost importance to clients and businesses globally. The company is searching for a skilled Cloud Security Engineer to join the team, focused on evaluating and optimizing security configurations across Azure IaaS and GCP platforms. If you would like to learn more about this opportunity, feel free to reach out and … apply today! Responsibilities: Assess and enhance security configurations across Azure IaaS and GCP environments Provide expert recommendations aligned with industry standards and emerging security threats Administer Azure security environments, focusing on IaaS, container security (e.g., AKS), and DevOps pipelines Evaluate Terraform scripts, advising on automation processes for secure infrastructure deployment Optimize Azure Defender and other monitoring More ❯