1 to 25 of 2,062 Permanent Information Security Jobs

Head of Information Security, Europe page is loaded Head of Information Security, Europe Apply locations London - 2 Gresham Street time type Full time posted on Posted 5 Days Ago job requisition id R-5246 The Head of Information Security, Europe reports directly to the Chief Information Security Officer, TMX Group and has … a dotted line reporting relationship to the Chief Technology Officer, Trayport. The Head of Information Security will be responsible for defining, implementing, and managing the organization's information security strategy and framework for Europe. This critical role involves overseeing all aspects of information security, including a strong focus on application security, ensuring compliance … with ISO27001 standards, financial services regulations, and other relevant legal and contractual requirements. As a senior leader of the Enterprise Information Security team, the role will also be accountable to provide information security oversight, through leadership and guidance across the TMX Group. The successful candidate will be a strategic leader with a strong technical background, including More ❯

UK HQ, 40 High Street, Street, Somerset, United Kingdom Req PURPOSE To work with multidisciplinary teams across Clarks Technology and business areas to identify, design, and build security controls to protect Clarks' applications, networks, and data from security risks. To develop and embed best-practice security processes and knowledge into technical teams aligned to Zero Trust principles … industry standards and frameworks (e.g. NIST, PCI DSS). To identify opportunities for automation and optimization and drive maximum value from existing technologies and services to strengthen Clarks' overall security posture. DIMENSIONS Financial : No direct financial responsibilities, though the role may be required to assist ITLT and other Clarks Technology managers in strategic planning linked to budgeting linked to … security and related technologies Reports : No direct line reports currently Impact the job has on the business: The company's exposure to security risks has never been greater - with an ever-changing threat landscape, continually evolving privacy regulations, the growth in Software-as-a-Service (SaaS) and AI, and the centrality of data to meet our business objectives More ❯

Job Description Senior Information Security Analyst Our Client is a leading global company specialising in pharma products. They are looking to recruit a Senior Information Security Analyst with at least 5 to 7 years of expertise in Technology Security. The Senior Information Security Analyst is responsible for maintaining information security policies, architecture … technical standards, controls, solutions, guidelines, procedures, and other elements necessary to maintain security posture. Responsible for assessing information risk and facilitating remediation of vulnerabilities and risks across the organization. Accountable for coordinating security measures to protect our computer infrastructure and information systems, ensuring an acceptable risk posture. The Senior Information Security Analyst is highly … cybersecurity analysts to detect, mitigate, and analyze threats. Works closely with other teams to develop controls such as firewalls, data leakage prevention, patching, encryption, vulnerability scanning, and configuration of security tools. Prior experience in an international enterprise environment is essential. Responsibilities Collaborate with IT teams to design and implement the company's cybersecurity strategy. Identify and address security More ❯

Description TA2 -13 Lead Principal Security Engineer 25-02-10 (LCAT: Senior Security Engineer) Position Summary Softek International is seeking a Lead Principal Security Engineer to support the DHS Enterprise Engineering Division (EED) Enterprise Security Engineering (ESE) team within the Office of the Chief Information Officer (OCIO)'s IT Operations Directorate. The ESE is responsible … for designing and implementing advanced security architectures, providing support for complex security incidents, ensuring the continuous protection compliance of the network and security infrastructure, and implementation and administration of a portfolio of security tools that protect DHS information systems and data. This team supports management and oversight of the technical infrastructure and security tools … sensors, servers, and data storage devices to support the DHS Network Operations Security Center (NOSC) Cyber (SOC) and other DHS stakeholders and Components. This role provides a team of security engineers with strategic guidance, technical expertise, and mentorship. This includes advising on best practices for security architecture and design, offering insights on the latest security threats More ❯

the way we think and work, by connecting systems and people, while committing to our vision and each other. We are now looking to recruit an experienced Head of Security to join our global team. Position Overview: We are seeking a highly skilled Head of Security to lead and enhance the security posture of Sonata One. This … role is critical in protecting the confidentiality, integrity, and availability of our information systems and data. The ideal candidate will have a deep understanding of cybersecurity threats, risk management frameworks, regulatory compliance, and modern security technologies. This role also includes responsibilities typical of a Data Protection Officer, ensuring that data privacy and governance meet the high regulatory standards … of the financial sector. Responsibilities: Strategic Management and Security Operations Develop, implement, and maintain information security policies, standards, and procedures. Lead the organization's cybersecurity strategy, risk assessments, and security roadmap. Manage information security projects and initiatives across IT and business units. Collaborate with senior leadership to align security goals with business objectives. More ❯

The Cybersecurity team, within the IT department, is responsible for information and Cybersecurity. Responsibilities include information and cybersecurity risk management, and ensuring compliance to CAA, NIS and ISO27001 standards. The team also works closely with our majority shareholders, and partners, such as retailers, ground handlers, as well as suppliers, to ensure a joined-up approach to information and cyber security. We are seeking a highly skilled and motivated IT Cyber Security Engineer, with a passion for protecting digital assets against cyber threats, to join our dynamic team. The successful candidate will have a strong technical background and a thorough understanding of IT systems, which is essential for effectively securing our infrastructure, systems, and networks. Expertise … in information security, risk management and compliance is essential, as is a commitment to defending against cyber threats and integrating security across all layers of our IT environment to protect organisational data and technology. This role focuses on detecting, investigating, and responding to cybersecurity threats and incidents, while also managing BAU security tasks, ongoing maintenance, supporting More ❯

This position will be hybrid and can be hired in the Washington, DC metropolitan area. The Information Systems Security Manager (ISSM) will perform duties for the Optiv+ClearShark information systems environments, both unclassified and classified, will own and manage the information system security program for Optiv + ClearShark and will report directly to the Senior Corporate … production support for responsible solutions. How you'll make an impact Develop, administer, and sustain a CMMC Program and Certification. Ensure NIST 800-171 compliance for all applicable corporate information systems. Lead the development and implementation of security solutions and process improvements. Lead the enhancement of key security solutions in the GRC, Security Operations, and IAM … space. Ability to manage security vendors to resolve issues and maximize configurations. Lead the deployment, monitoring, troubleshooting, and changing of security solutions. Partner with IT and business colleagues to ensure proper security controls are included in new solutions. Research and evaluate the impact of new vulnerabilities, security alerts and threat intelligence bulletins. Participate in threat hunting More ❯

Information Security Compliance Officer Required Qualifications & Certifications: Education Bachelor's degree in Cybersecurity, Information Technology, Computer Science , or a related field. A master's degree in information security , Risk Management, or Compliance is a plus. Certifications (Highly Valued) CISSP (Certified Information Systems Security Professional) CISM (Certified Information Security Manager) CISA (Certified … Information Systems Auditor) ISO 27001 Lead Auditor/Implementer CRISC (Certified in Risk and Information Systems Control) GDPR Certification (e.g., IAPP CIPP/E, CIPM for data protection compliance) Experience Requirements: 3-5+ years of experience in Information Security, Compliance, or IT Risk Management. Experience with regulatory frameworks in UK & EU : GDPR (General Data Protection … Regulation) ISO 27001 (Information Security Management Systems) Cyber Essentials Plus (UK government-backed security framework) DORA (Digital Operational Resilience Act) - EU financial sector PCI-DSS (if handling payment data) Experience in: Managing vendor risk assessments for third-party compliance. Handling incident response & reporting (e.g., Data Breach Notifications under GDPR). Key Skills & Technical Knowledge: Deep understanding of More ❯

Employer details Our client is a well known systems security and network provider. They plays a strategic role in enabling secure and high-performance connectivity, cloud solutions, and cybersecurity frameworks. They are located near central station in Brussels. Thay want to hire a Information Security Architect that bridges the gap between operational security and security architecture. The role ensures that systems and security solutions are resilient, scalable, and aligned with industry best practices. Job description Design and maintain secure architectures for infrastructure, cloud, applications, and identity services. Provide high-level technical support and troubleshooting for complex security incidents and system issues. Advise on security technologies including SIEM, EDR, firewalls, IAM, PAM … and cloud-native security tools. Collaborate closely with engineering and operations teams to embed security into system designs and processes. Evaluate and recommend new security tools and technologies based on organizational needs. Define and maintain security reference architectures, standards, and best practices. Support compliance efforts (e.g., ISO 27001, NIS 2, GDPR) through architectural guidance and documentation. More ❯

Information Security Analyst - Audit, Compliance & Cybersecurity United Kingdom - Southampton At NICE, we don't limit our challenges. We challenge our limits. Always. We're ambitious. We're game changers. And we play to win. We set the highest standards and execute beyond them. And if you're like us, we can offer you the ultimate career opportunity that … And if you're like us, we can offer you the ultimate career opportunity that will light a fire within you. So, what's the role all about? The Information Security Analyst is primarily responsible for ensuring compliance with information security frameworks such as Cyber Essentials, Cyber Essentials Plus, ISO 27001, ISO 27701, ISO 42001, GDPR … reports and present findings to management during status updates and closing meetings. External Audit Coordination: Collaborate with external audit teams to streamline processes and provide requested documentation and evidence. Security Monitoring: Use tools such as Rapid7 InsightIDR or other SIEM solutions to assist with security monitoring and incident detection. Incident Response Support: Participate in incident response efforts, documenting More ❯

We have an exciting new opportunity for aCyber Defence and Security Operations Managerto join the A&O Shearman Belfast office. Apply today via the link below or contact for more information. About the team The firm's ability to keep our clients' data secure is a bedrock for our reputation as a trustworthy professional services partner to many of … the world's large and prestigious organisations. Information security is not an afterthought; it is core to all that we do, to protect not only our data but that of our clients, and has the unwavering support of the Board. Led by our new CISO, the in-house Information Security team is a core part of … our technology services structure with mature or evolving capability across all areas of digital security and cyber defence. We align our efforts to the NIST framework and other recognised certifications including ISO27001 and SOC2 and strive to keep pace with the continually evolving threat landscape, in support of A&O Shearman's strategy to lead where global complexity creates More ❯

The team you'll be working with: The Security Architect will be responsible for the design, implementation and ongoing development of the security architecture of the client's IT systems. The Security Architect will draw upon Enterprise Security Architecture or Security Solutions Architecture to: - Identify business objectives, user needs, risk appetite and cyber security obligations - Identify vulnerabilities, perform threat modelling, undertake risk assessment, evaluate the effectiveness of security controls - Verify and evidence alignment to 'Secure by Design' principles, corporate security policy/standards as well as industry recognised frameworks and best practice What you'll be doing: Develop, deliver and continually enhance a coherent approach to the design of secure client … end-to-end solutions Develop secure conceptual, logical and high level designs by identifying appropriate security controls to be embedded in solutions that meet business requirements whilst evidencing alignment to the target risk appetite. Own the design and be able to articulate and justify design recommendations at security architecture assurance gates Draft design documentation, options papers, risk assessments More ❯

Description Clearwaters.IT is seeking an experienced Senior SOC Chief to support a program within the Department of Commerce. This role will oversee the Security Operations Center (SOC), ensuring the coordination, execution, and efficiency of incident response activities. The Senior SOC Chief will be responsible for managing project tracking schedules, maintaining risk registers, and mitigating risks and issues associated with … timely, accurate, and of the highest quality. This position is on-site in Washington D.C. The position is contingent on the award. The SOC Chief will lead the 24x7x365 Security Operations Center, overseeing all aspects of cybersecurity monitoring, detection, incident response, and reporting in accordance with federal regulations, policies, and guidelines to ensure continuous protection of agency IT systems … management, risk register maintenance, and the development of risk and issue mitigation strategies for SOC operations and incident response. Ensure the timeliness and quality of deliverables so that all information and data are accurate and complete. Lead Information Security GAP Analysis review, perform administrative functions such as reviewing performance and operations to ensure appropriate performance. Ensure effective More ❯

The team you'll be working with: NTT DATA is one of the world's largest global security service providers, partnering with some of the most recognized security technology brands. We're looking for passionate, curious, and motivated individuals to join our team. What you'll be doing: Using your background in Security Architecture, you will help … our clients: Security Architecture: Translate business, data protection and security requirements into practical and well-structured architectural designs, utilizing industry best practices and security frameworks (e.g., NIST, ISO 27001, CIS). Develop and maintain secure architectural patterns and standards, with a solid working knowledge of cloud security (AWS, Azure, GCP). Apply risk-based and threat … based approaches to evaluate and recommend appropriate and proportionate security technologies and solutions (e.g., SIEM, IAM, CASB, container security). Outline key security components, interfaces, and dependencies. Develop architectural diagrams and overviews. Document security design principles and provide rationale. Ensure designs align with business objectives, security policies, and industry best practices, with a focus on More ❯

Senior Cyber Risk Analyst We are seeking a Senior Analyst with a robust background in cybersecurity risk assessment and internal security audits, complemented by broad technical expertise across modern IT environments. This role requires a deep understanding of desktops, mobile devices, networks, operating systems, and cloud services, as well as the ability to effectively communicate complex technical concepts to … will possess advanced analytical skills, relevant certifications, and experience working cross-functionally-including direct client engagement-to support regulatory and business objectives. Primary Responsibilities Conduct comprehensive risk assessments of information systems, applications, business processes, and underlying technical infrastructure-including desktops, phones, network devices, operating systems (Windows, macOS, Linux), and cloud platforms (AWS, Azure, GCP). Collaborate closely with compliance … business stakeholders, and external clients to understand operational requirements, regulatory obligations, and risk tolerance. Serve as a technical point of contact for clients, addressing and managing their technical requirements, security concerns, and risk management needs. Clearly document identified risks and work with stakeholders to propose, evaluate, and track compensating controls that address security gaps when standard controls are More ❯

Akima Mission Optimization (AMO) is looking for a Information Assurance Policy and Compliance- Ops lead to work in Albuquerque, New Mexico. To join our team of outstanding professionals, apply today! Responsibilities Lead Tier-2 and higher cybersecurity operations, ensuring 24/7 security monitoring and rapid response to threats. Analyze security alerts, intrusion attempts, and advanced persistent … threats (APTs) to mitigate risks. Coordinate incident response efforts, investigating security events and implementing corrective actions. Manage and maintain firewalls (Cisco ASA, Palo Alto, or equivalent), intrusion detection/prevention systems (IDS/IPS), and security logs to ensure compliance and security integrity. Utilize SIEM tools to correlate security logs, identify anomalies, and proactively address vulnerabilities. … Conduct log analysis, security forensics, and root cause investigations for cyber incidents. Information Assurance (IA) Policy & Compliance Ensure compliance with DoD, DOE, and Law Enforcement cybersecurity regulations, including RMF, NIST 800-53, and FISMA. Develop, implement, and enforce IA policies, security guidelines, and best practices to safeguard IT systems. Oversee patch management, system hardening, and vulnerability scanning More ❯

Job Description BAE Systems is excited to offer an opportunity to support a dynamic DOJ program as an Information Systems Security Engineer (ISSE), providing mission critical support to our federal law enforcement customer. If you are looking for an opportunity to help shape the future architecture for client forensic networks, work with a very diverse team of technical … team, and have demonstrated career experience as an ISSO or ISSE and with the Federal ATO process. Some duties of the position include: Functional Responsibilities: Senior level capabilities regarding Information system security. Knowledgeable of current Information Assurance (IA) technologies to the architecture, design, development, evaluation, and integration of applications, systems, and networks to maintain the system security posture. Develops compliancy and standardization within the customer's policies regarding various information systems. Work closely with Government customers to ensure the confidentiality, integrity, and availability of systems, applications, networks, and data through the planning, analysis, development, implementation, maintenance, and enhancement of information systems security programs; infrastructure; application; Security Assessment and Authorization (SAA), IA policy More ❯

Your new company - Financial Services Your new role - Permanent - ON SITE 5 Days per week. - UK OnlyWe are looking for a highly skilled Information technology Security Engineer to join the IT team. As the first line of defence in the IT department, the principal purpose of this job mainly focusses on information security, cybersecurity and data … security, including a wide scope, such as physical security of computer rooms, operating system level security of Windows and Linux, network security of firewall and other security devices, application security both development and testing phrase, terminal security, backup security, third party and supply chain security of IT service provider.Liaison with the … Head Office, Security Operation Centre of Data Centre for implementing security policies, projects and security controls. Work with Internal Audit and other departments to execute penetration tests, cybersecurity risk self-assessment, ensure best practice and international baseline standards are in place and in line with local regulations.The ideal candidate will be responsible for managing information security More ❯

Position Overview We are seeking a Senior Azure Security Engineer to join our UK-based team. This role will be responsible for implementing and maintaining robust security solutions across our Azure cloud infrastructure. You'll play a key role in ensuring compliance, hardening environments, and leveraging Microsoft's security tools to protect our systems and data. Key … Responsibilities Security Architecture & Implementation Implement and maintain secure Azure architectures in line with best practices Develop and support cloud security policies and technical standards Conduct security assessments, risk analysis, and contribute to security roadmaps Collaborate with teams to integrate security into CI/CD and cloud-native applications Microsoft Security Stack Configure and manage … Microsoft Defender for Cloud, Defender for Endpoint, and Sentinel Deploy Microsoft Purview for compliance and information protection Manage Microsoft 365 Defender (Office 365, Identity, Endpoint) Support Conditional Access, Entra ID, and Identity Governance setups Implement Data Loss Prevention (DLP) and sensitivity labels Work with Azure Key Vault and manage encryption and certificate strategies Collaborate with our SOC and managed More ❯

program at USSOCOM, its Component Commands, TSOCs, and deployed forces. The Contractor shall execute a comprehensive assessment, compliance and validation of customer networks to ensure compliance with regulations and security and standards. The end goal is to ensure the integrity of customer systems by identifying and mitigating potential shortcomings and vulnerabilities. Advise USSOCOM, its Component Commands, TSOCs, and deployed … forces on network and system risks, risk mitigation courses of action, and operational. Additionally, the Cybersecurity Systems Analyst should be able to perform security evaluations and vulnerability assessments using the DOD Assured Compliance Assessment Solution (ACAS), Nessus vulnerability scanning tool and Security Content Automation Protocol tool. Identify applicable STIGs and perform assessments using the Security Content Automation … issues, and draft certification letters for the government. The contractor will liaison with the Site Integration Facility (SIF) to ensure systems and application meet the standards in the DISA Security Technical Implementation Guides (STIG). The Cybersecurity Systems analyst should be knowledgeable of cyber network defense tools such as end point security, SIEM, comply to connect, etc. Typical More ❯

60k per annum As a Cloud/Cyber Security Solutions Architect , you will design and implement advanced cloud and security architectures to protect an organisation's critical digital assets. You'll collaborate with key stakeholders, ensuring that security solutions align with business objectives and regulatory requirements. Your expertise in cybersecurity technologies will drive the development of secure … solutions, incorporating identity and access management, data protection, network security, and compliance strategies. You will also ensure seamless integration of these security measures within existing systems while staying ahead of industry trends and emerging threats. Key Responsibilities : Cloud Architecture Design : Develop cloud-based solutions, integrating security from the ground up. Security Assessment & Planning : Identify and mitigate … security risks, ensuring regulatory compliance. Identity & Access Management : Implement RBAC, MFA, and IAM solutions to safeguard sensitive data. Data Protection & Encryption : Protect data at rest, in transit, and in use through encryption and tokenization. Network Security : Design secure network architectures, implement IDS/IPS, firewalls, and VPNs. Security Monitoring & Incident Response : Build monitoring solutions, develop incident response More ❯

program at USSOCOM, its Component Commands, TSOCs, and deployed forces. The Contractor shall execute a comprehensive assessment, compliance and validation of customer networks to ensure compliance with regulations and security and standards. The end goal is to ensure the integrity of customer systems by identifying and mitigating potential shortcomings and vulnerabilities. Advise USSOCOM, its Component Commands, TSOCs, and deployed … forces on network and system risks, risk mitigation courses of action, and operational. Additionally, the Cybersecurity Systems Analyst should be able to perform security evaluations and vulnerability assessments using the DOD Assured Compliance Assessment Solution (ACAS), Nessus vulnerability scanning tool and Security Content Automation Protocol tool. Identify applicable STIGs and perform assessments using the Security Content Automation … issues, and draft certification letters for the government. The contractor will liaison with the Site Integration Facility (SIF) to ensure systems and application meet the standards in the DISA Security Technical Implementation Guides (STIG). The Cybersecurity Systems analyst should be knowledgeable of cyber network defense tools such as end point security, SIEM, comply to connect, etc. Typical More ❯

our mission and be an organization anyone would be proud to be a part of. POSITION SUMMARY The Zero Trust Architect is a strategic leader responsible for securing the information infrastructure supporting the Distributed Common Ground System (DCGS) and STATEFARM programs. This role leads the design, implementation, and sustainment of a robust Zero Trust Architecture (ZTA) in compliance with … the Department of Defense Zero Trust Reference Architecture, OMB Memorandum M-22-09, and NIST 800-207. The architect conducts comprehensive assessments of system security postures, identifies vulnerabilities, and implements identity-centric access controls across all layers of the enterprise. They establish and manage a centralized, policy-driven control plane that enforces secure access, role-based permissions, and … VPNs, firewalls, and identity management systems to ensure dynamic and adaptive enforcement. ESSENTIAL JOB FUNCTIONS Provide a blend of technical expertise, strategic mindset, and effective communication skills to drive security transformations successfully. Design and implement Zero Trust Engineering solutions in accordance with DAF Zero Trust Strategy 1.0, OMB M-22-09, and NIST 800-207. Establish a centralized More ❯

Information Security Specialist opportuntiy in Washington, DC Public Trust will be required We are seeking a proactive, detail-oriented Information Security Specialist to join our growing team. In this role, you will be responsible for implementing and maintaining our organization's security posture, monitoring for threats, and ensuring compliance with relevant frameworks and regulations. The … ideal candidate is a critical thinker with a strong technical background and a passion for safeguarding systems and data. Key Responsibilities: • Monitor, detect, and respond to security threats and incidents. • Conduct vulnerability assessments and risk mitigation. • Ensuring security updates are current across all systems • Implement and manage security tools (e.g., SIEM , endpoint protection). • Monitor for compliance … with security standards such as NIST Risk Management Framework (RMF), • Collaborate with IT and Engineering teams to embed security in infrastructure and applications. • Investigate security breaches and document findings and recommendations. • Participate in security awareness training and programs. • Stay current with emerging threats, trends, and technologies. Required Qualifications: • Bachelor's degree in Information Security More ❯

GEMINI INDUSTRIES INC. provides technical, management and operations services to support National Security projects. We provide rapid response to the critical needs of our customers and those they serve. We perform analyses and develop operations plans to anticipate and prepare for the future. And we deliver advanced technology to improve our customer's success in executing its mission. Gemini … personnel • Work at a high operations tempo • Integrated teams delivering rapid solutions • An attitude that balances "I can make it better" with "As long as we succeed" Position: Senior Information Systems Security Engineer SME (Advisor - SME) Location: Fairfax, VA or Ft Washington, MD (Situational telework eligible) Clearance: TS Clearance SCI Eligible/SAP Eligible Education: MA/MS … in Computer Science, Information Technology, Cybersecurity, or related field (or BS in a related field plus an additional 4 years of related work experience) Certifications: A DoD 8570.01-M IAT Level III technical certification (such as CISSP, CASP, or other level 3 technical certification) is required.; and a Cloud Service Provider Associate Certification (AWS, Azure, Oracle, or Google) is More ❯