1 to 25 of 56 Permanent Security Management Jobs in the UK

about our work and annual plan for delivering this is available on our website. An exciting opportunity has arisen to join the NHSCFA Technology team as an Information & Cyber Security Analyst. We are looking for someone with a proven background in Information/Cyber security and a flexible 'can do' attitude and approach to work in the Information … Cyber Security (I&CS) Team who manage and maintain the security of NHSCFA ICT infrastructure and information systems. You will work within the I&CS team to proactively monitor IT systems; identify, manage and resolve security incidents, vulnerabilities, security alerts and threats; potentially perform penetration testing; and contribute to maintaining security certifications, assurances and accreditations. … IMPORTANT Note: This position requires UK National Security Vetting to at least SC level. Please confirm residency below. We reserve the right to close this vacancy before the advertised closing date should we receive a significant number of applications. Potential applicants can contact Kannan Soman at kannan.soman@nhscfa.gov.uk for an informal chat if they have any questions regarding the More ❯

Your new role - Permanent - ON SITE 5 Days per week. You will be required to obtain security clearance and undergo vigorous onboarding checks - UK Only. Sponsorship NOT available.The main purpose of this job mainly focusses on information security, cybersecurity, and data security, including a wide scope, such as physical security of computer rooms, operating system level … security of Windows and Linux, network security of firewall and other security devices, application security both development and testing phrases, terminal security, backup security, third party and supply chain security of IT service provider.Liaison with the Head Office, Security Operation Centre or Data Centre for implementing security policies, projects and security … tests, cybersecurity risk self-assessment, ensure best practice and international baseline standards are in place and in line with local regulations.The ideal candidate will be responsible for managing information security systems, ensuring compliance with regulatory requirements, and conducting thorough security audits.You will be part of the IT committee and work closely with the risk and compliance team.Ideally, having More ❯

Your new role - Permanent - ON SITE 5 Days per week. You will be required to obtain security clearance and undergo vigorous onboarding checks - UK Only. Sponsorship NOT available. The main purpose of this job mainly focusses on information security, cybersecurity, and data security, including a wide scope, such as physical security of computer rooms, operating system … level security of Windows and Linux, network security of firewall and other security devices, application security both development and testing phrases, terminal security, backup security, third party and supply chain security of IT service provider. Liaison with the Head Office, Security Operation Centre or Data Centre for implementing security policies, projects … and security controls. Work with Internal Audit and other departments to execute penetration tests, cybersecurity risk self-assessment, ensure best practice and international baseline standards are in place and in line with local regulations. The ideal candidate will be responsible for managing information security systems, ensuring compliance with regulatory requirements, and conducting thorough security audits. You will More ❯

Overview Join Chambers and Partners as our next Cyber Security Analyst/Lead, a pivotal role at the heart of our commitment to safeguarding information and maintaining trust. You’ll lead the development and delivery of our information security programme, protecting our systems, data, and digital assets from evolving threats. This is an exciting opportunity to drive key … security initiatives, oversee cutting-edge technologies, and ensure compliance with leading industry frameworks within a globally respected organisation. Main Duties and Responsibilities 1. Security Strategy & Governance: Develop, implement, and maintain the organization's information security strategy, policies, standards, and procedures in alignment with business objectives and regulatory requirements. Lead the development and implementation of an Information Security Management System (ISMS), based on ISO 27001 Conduct regular security risk assessments, identify vulnerabilities, and recommend appropriate mitigation strategies. Stay up-to-date with the latest cybersecurity threats, trends, technologies, and best practices. Provide expert advice and guidance on information security matters to various stakeholders across the organization. 2. Security Operations & Incident Response: Oversee the More ❯

Information Security Compliance & Risk Specialist Maritime and Coastguard Agency Apply before 11:55pm on Friday 30th November 2025 Reference number (phone number removed) Salary £44,241 This role is part of the Government Digital and Data Profession, and the role attracts a Digital and Data allowance of up to £14,756, subject to an assessment of your skills and … Service Pension with an employer contribution of 28.97% Job grade Senior Executive Officer Contract type Permanent Business area MCA - Information Technology Type of role Information Technology Knowledge and Information Management Risk Management Security Working pattern Flexible working, Full-time, Job share, Part-time Number of jobs available 1 Contents Location About the job Benefits Things you need … to know Apply and further information Location Southampton About the job Job description The Information Security Compliance and Risk Specialist will: Develop & maintain the MCA's Information Security Management System (ISMS) and all underpinning documentation, including stakeholder engagement & compliance checks. Be responsible for the delivery of information security risk management processes, across all asset types More ❯

Senior Information Security Analyst DGH Recruitment are currently recruiting on behalf of a leading client in the professional services industry who require an Senior Information Security Analyst to join the firm in London. Key Responsibilities: * Develop and deliver the firm's information security strategy and roadmap. * Provide subject matter expertise and guidance on information security to … partners and staff. * Lead and mentor a small team, fostering professional growth and development. * Lead the implementation and ongoing management of ISO 27001, including policy and control implementation and stakeholder engagement. * Lead the development, implementation, and review of security policies, standards, and procedures. * Own and manage the relationship with the firm's Managed Security Operations Centre (SOC … acting as the primary point of contact, ensuring service levels are met, and coordinating incident response. * Oversee operational security including server and endpoint protection, M365 security, identity and access management, vulnerability assessments, patching, and system hardening. Required Experience: * Extensive experience in information security management, ideally within professional services environments. * Proven management capabilities, including team More ❯

Information Security Manager £70,000- £75,000 PA Central London Well-established construction engineering business is seeking an experienced Information Security Manager to join them on a permanent basis. You'll be joining at a critical time where they are expanding their technical team with an ambitious growth plan with multiple acquisitions planned over the coming years. The … Information Security Manager will be a crucial component in ensuring the effective management of both the technical cyber security environment and wider information security management piece for the business. This role is responsible for ensuring robust cyber security controls with a strong emphasis on ISO 27001 readiness. You'll liaise with assessors and internal … prior experience to ensure certification plans stay on track. Working with external teams to align processes, you'll also oversee InfoSec/Cyber services, conduct risk assessments and recommend security improvements. Responsibilities: Ownership and maintenance of all security related policies and procedures, implementing Security by Design and driving a culture of cyber security awareness in the More ❯

Information Security Manager £70,000- £75,000 PA Central London Well-established construction engineering business is seeking an experienced Information Security Manager to join them on a permanent basis. You'll be joining at a critical time where they are expanding their technical team with an ambitious growth plan with multiple acquisitions planned over the coming years. The … Information Security Manager will be a crucial component in ensuring the effective management of both the technical cyber security environment and wider information security management piece for the business. This role is responsible for ensuring robust cyber security controls with a strong emphasis on ISO 27001 readiness. You'll liaise with assessors and internal … prior experience to ensure certification plans stay on track. Working with external teams to align processes, you'll also oversee InfoSec/Cyber services, conduct risk assessments and recommend security improvements. Responsibilities: Ownership and maintenance of all security related policies and procedures, implementing Security by Design and driving a culture of cyber security awareness in the More ❯

Role: IT Information Security Manager Salary: £65,000 - £75,000 Per Annum, Plus Benefits Package Location: Hereford with a hybrid working arrangement Must have: The right to work in the UK Full UK driving licence Be able to gain BPSS (Baseline Personnel Security Standard) clearance Be able to gain SC (Security Check) clearance as standard along with … any specific security clearances that may be required Our leading services client requires an accomplished Information Security Manager to be responsible for protecting the Group's data and information systems from cyber threats and unauthorised access. This includes developing and implementing security policies, assessing risks, providing reports and managing security incidents. You will also oversee security awareness training, security compliance, security accreditation and collaborate with various stakeholders to foster a security-conscious culture. Key Deliverables: Align the business' security stance to comply with ISO 27001and Cyber Essentials Plus, or in accordance with the Cyber Assessment Framework Improve the Cyber Awareness within the company via communications, Cyber Awareness training and monitoring of More ❯

Daintta are a rapidly growing, values-driven team of specialists who work with government clients across Cyber, Telecommunications and Data. We are seeking a talented and motivated Technical Cyber Security Consultant to join our team and contribute to our mission of protecting the UK through data-driven insights and solutions. As a Technical Consultant, you will be expected to … evidence-based decision-making Key Responsibilities Assessing your client's' needs, understanding how their needs may differ from their wants, and appropriately managing stakeholder relationships. Selecting, understanding and adapting security control frameworks. Designing, justifying and implementing security management strategies. Identifying risks from design documentation and proposing proportionate cyber security controls. Ensuring security principles are applied … during design and development to reduce risk. Developing and communicating corporate information security policy, standards and guidelines. Developing organisational strategies that address information control requirements. Identifying and monitoring environmental and market trends and proactively assessing impact on business strategies, benefits and risks. Performing threat modelling and risk assessments to develop a holistic picture of threat. Developing new architectures that More ❯

An excellent opportunity has arisen for an IT Security Associate to join a leading financial services organisation in the City of London. This permanent role sits within a mature security function responsible for global operational security across IT infrastructure and business applications – including privileged access management, threat protection, threat detection and incident management. Working closely with … the IT Security Manager, you will help ensure security services are delivered effectively and that core controls remain fully operational and fit for purpose. Key Responsibilities: Oversee and review the performance of outsourced security functions, acting as an initial escalation point and ensuring SLAs are met Undertake IT security investigations, including analysis, expert opinion and formal … reporting Contribute to the delivery of IT and cyber security improvement projects Support business and IT change (e.g. change management, exception management), assessing security impact and risk Maintain awareness of emerging security technologies and threats, recommending enhancements where appropriate Key Requirements: Circa 5 years’ experience in a related IT role, with strong exposure to security More ❯

Principal Security Engineer The Role: Synoptix are expanding their Cyber Security capability by applying it to Systems Thinking, allowing for delivery of Cyber Security Solutions to both defence and commercial clients. We re looking for a technically strong, client-focused Principal Security Engineer to support the development, implementation, and assurance of secure system architectures and solutions. … This role sits within our Secure by Design capability and supports both internal development projects and external client engagements. Working alongside the existing team, contributing to security requirements definition, risk assessments, technical security design, and security documentation for both internal platforms and client systems. Dynamic Working: A blend of home and office-based working is encouraged Key … Responsibilities: Lead and Deliver Cyber Security work packages to clients, this includes applying Systems Engineering methodologies into Cyber solutions. Risk identification and management Requirements Capture Validation Verification Be responsible for the technical content of client deliverables, for example. Security Management Plans Security Case Report following Secure by Design through life principals Verification Plans Validation Test More ❯

Principal Security Engineer The Role: Synoptix are expanding their Cyber Security capability by applying it to Systems Thinking, allowing for delivery of Cyber Security Solutions to both defence and commercial clients. We're looking for a technically strong, client-focused Principal Security Engineer to support the development, implementation, and assurance of secure system architectures and solutions. … This role sits within our Secure by Design capability and supports both internal development projects and external client engagements. Working alongside the existing team, contributing to security requirements definition, risk assessments, technical security design, and security documentation for both internal platforms and client systems. Dynamic Working: A blend of home and office-based working is encouraged Key … Responsibilities: Lead and Deliver Cyber Security work packages to clients, this includes applying Systems Engineering methodologies into Cyber solutions. Risk identification and management Requirements Capture Validation Verification Be responsible for the technical content of client deliverables, for example. Security Management Plans Security Case Report following Secure by Design through life principals Verification Plans Validation Test More ❯

ON SITE 5 Days per week. You will be required to undergo vigorous onboarding checks - UK Only. Sponsorship NOT available.The main purpose of this job mainly focusses on information security, cybersecurity, and data security from a Greenfield perspective.We are on a journey to secure Cyber Essentials plus and ISO27001 certification.You MUST have experience working with banking/financial … services regulations, FCA, PRA etc.Liaison with the Head Office, Security Operation Centre or Data Centre for implementing security policies, procedures, projects and security controls. Work with Internal Audit and other departments to execute penetration tests, cybersecurity risk self-assessment, ensure best practice and international baseline standards are in place and in line with local regulations.The ideal candidate … will be responsible for managing information security systems, ensuring compliance with regulatory requirements, and conducting thorough security audits.You will be part of the IT committee and work closely with the risk and compliance team.Ideally, having a background in IT/Network security, progressing into information security and cybersecurity.**Key Responsibilities:**- Develop, draft, implement, and maintain information More ❯

SITE 5 Days per week. You will be required to undergo vigorous onboarding checks - UK Only. Sponsorship NOT available. The main purpose of this job mainly focusses on information security, cybersecurity, and data security from a Greenfield perspective. We are on a journey to secure Cyber Essentials plus and ISO27001 certification. You MUST have experience working with banking …/financial services regulations, FCA, PRA etc. Liaison with the Head Office, Security Operation Centre or Data Centre for implementing security policies, procedures, projects and security controls. Work with Internal Audit and other departments to execute penetration tests, cybersecurity risk self-assessment, ensure best practice and international baseline standards are in place and in line with local … regulations. The ideal candidate will be responsible for managing information security systems, ensuring compliance with regulatory requirements, and conducting thorough security audits. You will be part of the IT committee and work closely with the risk and compliance team. Ideally, having a background in IT/Network security, progressing into information security and cybersecurity. **Key Responsibilities More ❯

timely and accurate fashion and provide user assistance where required. Support all Helpdesk enquiries and filter to the relevant member of the ICT Department. Support the Business Systems where management, configuration and administration falls under the scope of ICT, such as Themis, HART and other bespoke software. Support all Systems and its users in daily usage and training. Setup … maintain and troubleshoot user accounts and security, on all systems and hardware, ensuring they follow Information Management and Information Security Management systems. Carry out administrative tasks, maintenance, and update user profiles for Business Systems and other ICT management tools, using change management procedures where necessary. Provide a first point of service for all ICT … handling and storing of ICT assets. Document instances of asset failure, repair, installation and removal. Follow ICT procedures and provide support in their conception and review changes. Monitor information security in-line with the Information Security Management System and Report any suspected misuse and incidents to the ISMS Representatives. Ensure all assets are being appropriately allocated and More ❯

Step into a pivotal role at the forefront of cyber security, driving impact for our client base! Were looking for an experienced Governance, Risk & Compliance Manager to join our dynamic team. This is your opportunity to take a leading role in shaping and delivering robust security strategies that protect our clients and strengthen their resilience against evolving cyber … threats. As our new GRC Manager, you will be the driving force behind the implementation of our Information Security Management System (ISMS) for assigned clients. Your expertise will help organisations understand their security challenges and enable them to enhance their security posture. Youll lead from the front, fostering a culture of compliance and risk awareness across … you'll be doing: Implement ISMS strategy, policies and practices for assigned clients. Deliver services aligned with ISO27001 standards Provide regular reporting on ISMS effectiveness and operational performance. Manage security operations in line with organisational policy, standards and industry best practice. Conduct security risk and threat assessments (operational and system). Engage with internal stakeholders and third-party More ❯

Step into a pivotal role at the forefront of cyber security, driving impact for our client base! We’re looking for an experienced Governance, Risk & Compliance Manager to join our dynamic team. This is your opportunity to take a leading role in shaping and delivering robust security strategies that protect our clients and strengthen their resilience against evolving … cyber threats. As our new GRC Manager, you will be the driving force behind the implementation of our Information Security Management System (ISMS) for assigned clients. Your expertise will help organisations understand their security challenges and enable them to enhance their security posture. You’ll lead from the front, fostering a culture of compliance and risk … you'll be doing: Implement ISMS strategy, policies and practices for assigned clients. Deliver services aligned with ISO27001 standards Provide regular reporting on ISMS effectiveness and operational performance. Manage security operations in line with organisational policy, standards and industry best practice. Conduct security risk and threat assessments (operational and system). Engage with internal stakeholders and third-party More ❯

IT Security and Governance Manager, ISO27001, c £ 50000 - 60000+ benefits, nr Cheltenham, Gloucestershire. 3 days in the office, 2 days WFH Growing company are looking for an IT Security and Governance Manager who will co-ordinate all the governance and compliance including Certifications such ISO 27001, Cyber Essentials and NIST. You will support the ongoing production and publication … of Policies, Awareness and Risk across the business. These controls are provided in the Information Security Management system. Main responsibilities include - Manage the compliance Portal/Information Security Management System. Manage supplier engagements based on IT Security Certifications and to drive improvements where required. Manage the relevant Certifications. Primarily ISO 27001, Cyber Essentials and NIST … ISO 27001 critical, training available for NIST). Contribute to awareness activities. Supporting the management of Risk. Supporting the daily maintenance activities and response where necessary. Policies, Awareness and Risk across the business Experience Required - Previous knowledge and responsibility for ISO 27001. Good knowledge of Cyber Essentials (NIST an advantage). Data Protection or similar compliance qualification. Understanding of More ❯

Information Security Manager Location: Oxfordshire Salary: £48,000 – £57,000 Contract: Permanent, Full-Time Hybrid Working: 50/50 split Team size: 1 direct report (Junior InfoSec Analyst) Ready to lead the charge in safeguarding cutting-edge science? Join my client , a world-renowned research organisation, as their Information Security Manager . This is your chance to make … enabling groundbreaking environmental research. Why this role matters Cybersecurity isn’t just about defence – it’s about empowering innovation. In this hands-on leadership role, you’ll shape the security strategy, mentor a talented team, and embed a culture of security across the organisation. Reporting to the Head of IT, you’ll combine strategic vision with technical expertise … to keep my client resilient and future-ready. What you’ll do Lead my client’s Information Security programme with creativity and cost-effectiveness Manage a small, dedicated team and oversee budgets Develop and maintain security policies, standards, and procedures Drive risk assessments, incident response, and internal reporting Champion security awareness through training for all staff Recommend More ❯

We’re recruiting on behalf of a leading legal firm for an Information Security Manager to lead and strengthen their information security function. This is a hands-on, strategic role where you’ll manage a small team, oversee ISO 27001 and Cyber Essentials Plus compliance, and drive continuous improvement across the business. What You’ll Do: Develop and … deliver the firm’s information security strategy. Lead and mentor a small team of IT security professionals. Own ISO 27001 implementation and Cyber Essentials Plus certification. Manage operational security: endpoint protection, M365 security, SIEM/SOC, vulnerability management, and incident response. Lead security projects. Build strong relationships with stakeholders and deliver security awareness … training. What We’re Looking For: Proven experience in information security management, ideally in professional services. Hands-on experience with ISO 27001 and Cyber Essentials Plus. Strong technical knowledge: endpoint security, M365/Entra ID, SIEM, network security, encryption, backup/recovery. Certifications highly desirable: CISM, CISSP, ISO 27001 Lead Implementer . Excellent communicator, strategic thinker More ❯

About SPS: Special Projects and Services Limited (SPS) is a UK-based security and risk management company founded in 1991. Operating globally, SPS provides crisis response, risk assessment, medical operations support, and project management in high-risk or complex environments. Known for its expertise in global assistance and specialist security operations, SPS was acquired by Concentric … in 2025, strengthening its position as a trusted provider of integrated risk and crisis management solutions. Overview: You will support the delivery of IT services across the UK business, assisting with technical support, device management, and ongoing tech ops projects. This role provides structured, hands-on training in IT systems administration, cyber security, and compliance, contributing to … access permissions, and documenting asset inventory. Support the purchase, setup, and installation of IT equipment as required. Maintain an accurate inventory of all technology assets, ensuring updates to asset management systems. Assist in developing, documenting, and managing processes for supporting the IT environment holistically, including but not limited to: workstation deployment, system access management, software patching/upgrades More ❯

s longstanding client, an organisation with a great reputation in their domain with a healthy appreciation for how technology enables their staff and operations, is looking to hire a security-savvy professional with a passion for protecting sensitive data. Right now they're seeking an exceptional InfoSec/Information Security Manager to take the reins and lead their … information security programme; safeguarding their clients, organisation data, and core systems. They're a great firm we've seen treat those we have already introduced into their teams very well, and offer a range of incentives (including a 30% bonus, flexible hybrid working arrangements, and a comprehensive host of other benefits including private healthcare, professional development and ongoing upskilling … with and more), so take a look and apply if this looks like a great next step for your career: Key Responsibilities: Develop, execute, and maintain the overarching information security strategy/policies/relevant frameworks in adherence to ISO standards and other key regulations Oversee the firm's ISO 27001 accreditation and oversee regular risk assessments; taking ownership More ❯

s longstanding client, an organisation with a great reputation in their domain with a healthy appreciation for how technology enables their staff and operations, is looking to hire a security-savvy professional with a passion for protecting sensitive data. Right now they're seeking an exceptional InfoSec/Information Security Manager to take the reins and lead their … information security programme; safeguarding their clients, organisation data, and core systems. They're a great firm we've seen treat those we have already introduced into their teams very well, and offer a range of incentives (including a 30% bonus, flexible hybrid working arrangements, and a comprehensive host of other benefits including private healthcare, professional development and ongoing upskilling … with and more), so take a look and apply if this looks like a great next step for your career: Key Responsibilities: Develop, execute, and maintain the overarching information security strategy/policies/relevant frameworks in adherence to ISO standards and other key regulations Oversee the firm's ISO 27001 accreditation and oversee regular risk assessments; taking ownership More ❯

both Head Office and Field staff and escalate issues to 3rd line as appropriate Configuring/decommissioning users Building and configuring desktops/laptops Monitoring and checking backups, capacity, security, hardware/software and operating system issues with the fileservers and network equipment Monitoring and checking system logs Ensuring anti-virus/anti-spam is current and kept up … Office and Field users (SCCM knowledge would be beneficial to this role) Overseeing stock allocation in the Computer Room Comprehensive support for Microsoft environments Advanced troubleshooting of Microsoft Office & security applications Incident management and resolution User account lifecycle management Hardware and device setup Backup and system monitoring Log analysis and proactive maintenance Endpoint security management Collaboration with 1st Line Support Participation in IT projects Software deployment and patch management Asset and inventory management What we need from you: Proven experience working in a Service Desk function/1st Line Support Strong expertise in Windows 10/11 Proven experience with MS Office 365 Ability to work independently on 2nd line technical issues More ❯