Bath, Somerset, South West, United Kingdom Hybrid / WFH Options
Reed Technology
InformationSecurity Assistant Manager 12 Month FTC - potential to go perm Bath - Hybrid Working £55,000 - £60,000 Working within the FinTech sector this role will hold a key part in a project that delivers modern cloud based platforms to clients of the organisation. Responsibilities will include: Providing … support on the informationsecurity project workstream Data governance and audits Maintain an up-to-date working knowledge of the relevant regulations and legislation, e.g. ISO27001, ISO9001 standards (and other information governance standards) Maintain an up-to-date working knowledge of a broad range of technologies including … Foundational knowledge of working with AWS cloud technologies and how informationsecurity best practices are applied to the AWS platform. Experience of infosecsecurity, risk, and control frameworks (ISO27001) an effective and enthusiastic communicator with an ability to build strong professional relationships with 3rd party suppliers Knowledge more »
Role: Cyber Security Manager Location: Leeds Salary: £70,000 Locke & McCloud are looking for an experienced Cyber Security Manager on behalf of a Financial Services company. This organisation are undergoing a digital transformation project and are seeking a Cyber Security Manager with analytical skills and confident leading … a growing cyber security team. Key Responsibilities: Responsible for overseeing the day-to-day operations of the Cyber Security Team. Deputise for the Head of Cyber when they are not available. Management of the Security cloud migration process, addressing any identified gaps through experience and implementing remedies. … Conducting one-on-one performance meetings with the cyber security team. Maintaining the security of the organisation's IT services, including coordinating with third parties to ensure patching, vulnerability resolution, and system hardening. Managing the Cyber Security Incident process. Manage post-incident forensic investigations and reporting, engaging more »
10466JB £65k 75k per year InformationSecurity Manager Hands-on Hybrid 3 days a week onsite We have an opportunity for a hands-on InformationSecurity manager to join on a permanent basis for our client in London. Working as part of a small team … you will be responsible for the overall InformationSecurity governance, controls and process as well as management of third parties. Further to this, you will be required to support to the wider network & infrastructure team. Essential Skills: Experience previously as an InformationSecurity Manager/Head … of InformationSecurity Proven experience as a hands-on network/infrastructure professional. Providing hands on cover as and when required Knowledge and understanding of security protocols and processes Excellent knowledge of governance controls and processes Experience of managing third party vendors including offshore Desirable skills: CCNP more »
Job Description Position Overview: Epsilon is seeking an experienced and dynamic professional to fill the position of Sr Vice President Cyber Security and Compliance. As the SVP of Cyber Security and Compliance, you will provide strategic leadership and operational excellence in the delivery of a best practice cyber … security operations and engineering program for the company. You will be responsible for delivering a security program across multiple security domains while operating in a federated model, collaborating closely with Publicis Groupe Global Security Office, business units and functional areas to define and deliver a cyber … security program aligned to the wider the company strategy. Key Responsibilities, Duties and Functions: Collaborate with the Publicis Groupe Global CISO to define and execute a comprehensive cyber security strategy for the company, aligned with the organization's global security objectives and regional IT strategies. Identify securitymore »
technologies. Join a tremendous technical team solving hard problems with true mission relevance on emerging technologies. Your greatest work is ahead! The Leidos National Security Sector is seeking a highly experienced, hands-on, informationsecurity professional that wants to be part of a dynamic team, supporting an … exciting mission. As a Principal Information Systems Security Officer (ISSO), you will be the senior staff member of a small team in Annapolis Junction, MD. This opportunity will have a direct impact maintaining and improving the security posture within our customer organization. Are you ready to join … a flourishing and meaningful career, share your resume with us today! Your Main Objective: Provide support for a program, organization, system, or enclave's information assurance program as assigned by the Technical Task Order Lead. Provide support for proposing, coordinating, implementing, and enforcing information systems security policies more »
of detail and be someone who can develop concepts and work with a broad array of individuals and problems. Playing a leading role within InfoSec, with your reach and activity enabling security as a principal consideration across INSTANDA. Responsibilities will include: Overseeing the INSTANDA informationsecurity management … controls across multiple teams, and in collaboration with colleagues across INSTANDA; Proactively identify opportunities to mentor and develop colleagues on all aspect of InfoSec, and; Collaborate effectively within internal colleagues in security critical roles to ensure InfoSec is embedded and understood. Requirements You ll have demonstrable, proven experience … within the following areas: You ll be a proactive self-starter, with a proven track record of building and owning an InfoSec strategy; running your own projects. You ll effectively manage stakeholders, demonstrating high levels of resilience as you seek to influence at all levels within our business. Accreditation in more »
Security Consultant – Project Risk Assessments Offshore (Poland) The Secure Project Lifecycle process has been established to perform risk assessments, ensuring security is considered as part of the design and throughout the project lifecycle. The SPL process governs projects within the Planview time recording and management system and those … that are managed outside such as Move to the Cloud (MttC) programme. The role will be to augment the InformationSecurity team to perform risk assessments of projects, provide guidance and acquire outcomes/decisions from the project manager, enterprise architect, technical architect, solutions architect, data privacy officer … Team Lead. The responsibilities of the role will include the following: · Review submission of IS Criticality Assessment (ISCA) questionnaire (ISCA Dashboard) · Determine high level security requirements and project criticality, based on standard project activities and data classification from DP pre-screening · Work with assigned architect to ensure securitymore »
InformationSecurity Analyst required by an established technology company located in Farnborough. Having recently become ISO270001 accredited they are looking for an InformationSecurity Analyst to take responsibility for the policies, standards and procedures that fall within the scope of the ISO27001 accreditation. The InformationSecurity Analyst will be responsible for Developing, maintaining and improving informationsecurity policies, procedures and standards Leading future ISO27001 audits both internal and external to ensure compliance Managing an annual penetration … test via an external supplier Internal informationsecurity training including "lunch & learns" and onboarding new employees Key experience Proven experience in an InfoSec Analyst role Knowledge of ISO27001 standards and maintaining the accreditation within an organisation Risk management Any experience in the following areas would be advantageous but more »
Job Summary: Be a key player in our InformationSecurity team as a Remediation Analyst, focused on strengthening our cybersecurity posture. In this role, you'll collaborate closely with system owners, taking charge of remediation efforts for findings identified by our InformationSecurity department. Your role … is crucial in ensuring our systems adhere to top-tier security standards. If you're passionate about translating security insights into actionable solutions and enjoy the challenge of securing digital landscapes, we invite you to join us. Apply now and be instrumental in fortifying our digital resilience. Job … Responsibilities: Assesses and evaluates systems to identify weaknesses and assess risk; performs vulnerability testing. Implements new or upgraded security measures or controls, and documents system or process changes. Reviews security violation reports or logs, investigates possible security exceptions and coordinates with internal teams or external agencies as more »
Our client is looking for an InformationSecurity Analyst to join their InformationSecurity team which is growing! This business is at the heart of the automotive industry with an epic culture and team, giving you an awesome opportunity to grow and be part of something … different and special. They are looking for someone who can: Monitor and manage compliance programmes aligned to security frameworks and regulations such as ISO 27001, PCI DSS, and GDPR. Identify improvements and encourage efficiency's and automation in controls, evidence gathering, and processes. Support the definition and growth of … the Security Control Framework, proactively designing, assessing, and maintaining effective security controls across various business functions. Provide expertise in risk management and the identification and assessment of security risks, ensuring they are appropriately reported through dashboards, reports, and workshops. Create, review, and maintain security policies, standards more »
Leeds, West Yorkshire, Yorkshire, United Kingdom Hybrid / WFH Options
Secure Recruitment LTD
INFORMATIONSECURITY CONSULTANT Up to £70,000 + Excellent Staff Benefits Leeds, Wider West & South Yorkshire Region. Hybrid Working SECURE has strategically partnered with an award winning Cyber Security provider, to offer an exciting opportunity for an InformationSecurity Consultant. Based in Leeds with hybrid … implementation and auditing, as well as proficiency in NIST Frameworks, aiming to enhance the organisation's Compliance Team Service Offering. Role Overview: As an InformationSecurity Consultant, you will play a pivotal role in enhancing and maintaining our InformationSecurity programme for both internal operations and … external client services. Responsibilities include conducting comprehensive security audits, managing third-party risk, delivering training sessions, and fostering strong relationships with stakeholders to ensure robust security measures. Skills & Experience: Demonstrated expertise in InformationSecurity Governance, Risk, and Compliance (GRC), coupled with Security Operations exposure. Proficiency more »
Our client is looking for an InformationSecurity Officer to join their InformationSecurity team which is growing! This business is at the heart of the automotive industry with an epic culture and team, giving you an awesome opportunity to grow and be part of something … special. They are looking for someone who can: Monitor and manage compliance programmes aligned to security frameworks and regulations such as ISO 27001, PCI DSS, and GDPR. Identify improvements and encourage efficiency's and automation in controls, evidence gathering, and processes. Support the definition and growth of the Security Control Framework, proactively designing, assessing, and maintaining effective security controls across various business functions. Provide expertise in risk management and the identification and assessment of security risks, ensuring they are appropriately reported through dashboards, reports, and workshops. Create, review, and maintain security policies, standards, and procedures more »
streams and timelines that deliver frameworks for strategies. Minimum Qualifications At a minimum, here's what we need from you: Bachelor's Degree in Information Technology, Business Administration and Management, or related field 2+ years of experience in InformationSecurity, Risk Management, Cyber Security, Governance, Risk … and Compliance In lieu of a degree, 6+ years of experience in InformationSecurity, Risk Management, Cyber Security, Governance, Risk, and Compliance SANS GIAC Introduction to InformationSecurity (GISF), or similar course Preferred Qualifications If we had our say, we'd also look for: Master … s Degree in Information Technology, MBA, or related field 4+ years of experience in InformationSecurity and Controls Certified InformationSecurity Systems Professional (CISSP), or similar certification Application Deadline: The application window for this position is anticipated to close on Jun-15-2024. We more »
Role: Technical Advisory Security Consultant Location: London/Manchester/Cheltenham The Opportunity: This is a Technical Advisory Cyber Security consultancy role with specific focus on assisting clients with Security Improvement and Remediation and Transformation programmes. Which may contain the following: Understanding the Security needs and … aspirations of a client Delivering Technical Security Improvement and Remediation programs Guiding Design and Implementation of Cyber controls The C&I SIR practice works with NCC Group clients to deliver prioritised programs of security improvements: in close collaboration with NCC Group security audit, Incident Response, Penetration and … Red Teams. Security Consultants play key roles in these client assignments: as recognised security experts they drive change, as well as advising clients and their service providers on changes they will make. Key to this role is assessing and enhancing pre-existing risk and securityinformationmore »
Our client is one of the UK’s leading Cyber & InformationSecurity Consultancies and offer services ranging from Cyber Essentials assessments to InfoSec & GRC services, and are looking to expand their team after winning various projects! You will conduct thorough assessments, provide actionable recommendations, and ensure that clients … meet the necessary requirements to achieve CE+ certifications. If you’re looking to grow within the Cyber Essentials & Cyber Security consulting space with a highly reputable firm, then this is a great option for you! Main responsibilities: Conduct detailed Cyber Essentials Plus assessments for a variety of clients, ensuring … compliance with the standard’s requirements. Perform vulnerability assessments, penetration tests, and security audits as part of the certification process. Evaluate clients' infrastructure, policies, and practices to identify potential security risks and areas for improvement. Provide clear and concise reports outlining assessment findings, recommended actions, and compliance status. more »
Kent, England, United Kingdom Hybrid / WFH Options
Hays
Senior InformationSecurity Analyst Hybrid, Kent £55K - £60K Your new company You’ll be working for an organisation who are keen to make a real difference. They are keen to attract and develop talent across the organisation and have a strong reputation as a good place to work. … They are investing into their InformationSecurity Team, with this role being one of a number of different roles being recruited currently. Your new role Your role will be to assist the InformationSecurity Manager with all things Security Operations. You will assist with the … Security career. You’ll be someone who wants to make a difference and work you will have a strong experience as an InfoSec/Cyber Analyst previously. Strong experience within an InfoSec/Cyber Analyst role previously. Good organisation skills, with strong attention to detail Microsoft stack background more »
Location: Mansfield -2 days per week in office rest remote Pay: available on application Ensuring compliance with industry-standard security practices and regulations, while continuously evaluating and enhancing the organisation's security posture. Playing a pivotal role in minimising risks & protecting assets. Here s a taste of what … the role will involve: Collaborating with senior management to develop and refine the organisation s informationsecurity strategy, aligning it with business objectives and regulatory requirements. Developing, implementing, and maintaining information & data security policies, standards, guidelines, and procedures to ensure compliance with relevant regulations (e.g. GDPR … industry standards such as Cyber Essentials, ISO 27001 & NIST guidelines. Managing the relationship(s) with 3 rd party suppliers responsible for implementing and managing security monitoring tools and technologies, ensuring we detect and respond to security threats in a timely manner. Developing and deliver a security awareness more »
InformationSecurity GRC Analyst £65,000+Bonus+Benefits London/Hybrid In your role as InformationSecurity GRC Analyst, you will evaluate IT and cyber risks and carry out risk management tasks. Additionally, the position will help advance the maturity of cyber security by enhancing the procedures … required to safeguard our clients from online attacks. To protect the information assets, business services, and operations, you will work with the other team members, the remaining information systems teams, IT service providers, and partners throughout the organisation to implement and enhance IS and IT risk management and … operational control capabilities. • Relevant training in cyber security risk assessment is required, as is practical experience in an IT or OT role with a desire to transition into cyber security, such as risk, audit, or cyber security. • Thorough understanding and expertise in designing, putting into practice, running, maintaining more »
Job Description Reporting to the CIO, you will be responsible for managing the day to day informationsecurity at the firm. Working closely with third party providers you will be responsible for ensuring the day to day IT security suppliers perform to expectations. You will take part … in ongoing and upcoming improvement projects, working through the implications within hardware and software changes and upgrades, cyber security risk analysis and informationsecurity policies. You will lead in the incident response to any informationsecurity breach, working closely with the rest of the IT … Team, as well as risk and compliance functions. Previous law firm experience is advantageous. Line management of the InformationSecurity Analyst Uses experience and best practice to provide authoritative advice and guidance on the requirements for security controls in collaboration with experts in other functions e.g. legal more »
delivery. To effectively manage a GRC team that meets company objectives, including required profit margins. To deliver and oversee consistently high-quality GRC based informationsecurity consultancy services to our clients. Engaging with colleagues in the technical/testing and sales teams to drive future client requirements and … to deliver projects outside of comfort zone Excellent verbal and written communication E: j.bhard@locke-mccloud.com Locke & McCloud are the UK’s leading cyber security & informationsecurity staffing company – through having a sole focus on the cyber & informationsecurity space we have been able to … foster solid relationships with some of the UK’s most exciting cyber security consultancies & end users. Our focus on the informationsecurity space allows us to be able to help you find the most exciting opportunities in the cyber security market. If you are on the more »
days remote* *We are unable to sponsor as this is a permanent Full time role* A prestigious company is looking for an IT Security/GRC Manager. This manager will be a hands-on manager in enterprise GRC for applications, Infrastructure, 3rd party security, vendor risk management, and … Responsibilities: Lead the GRC program roadmap, status reporting on initiatives, metrics, and delivery of the program services. Lead in the creation and maintenance of security policies, standards, processes, and guidelines. Evaluate exception requests and make approval recommendations to management. Lead and mature the security awareness and phishing program. … development, plan, coordinate, measure, and evaluate cyber training/education courses, methods, and techniques based on instructional needs. Manage and support the 3rd Party Security Vendor Risk Management program, management of SOC2 reporting and ISO27001 certification, and assessments or security requests from clients. Manage control testing, issues management more »
days remote* *We are unable to sponsor as this is a permanent Full time role* A prestigious company is looking for an IT Security/GRC Manager. This manager will be a hands-on manager in enterprise GRC for applications, Infrastructure, 3rd party security, vendor risk management, and … Responsibilities: Lead the GRC program roadmap, status reporting on initiatives, metrics, and delivery of the program services. Lead in the creation and maintenance of security policies, standards, processes, and guidelines. Evaluate exception requests and make approval recommendations to management. Lead and mature the security awareness and phishing program. … development, plan, coordinate, measure, and evaluate cyber training/education courses, methods, and techniques based on instructional needs. Manage and support the 3rd Party Security Vendor Risk Management program, management of SOC2 reporting and ISO27001 certification, and assessments or security requests from clients. Manage control testing, issues management more »
Harrogate, North Yorkshire, Yorkshire, United Kingdom Hybrid / WFH Options
Hays
Senior InformationSecurity Specialist Permanent Salary: Between £57,000 - £69,000 plus business performance quarterly bonus Harrogate, North Yorkshire Working Arrangement: Hybrid - mostly in office working Your new company I'm currently looking for an informationsecurity specialist to work for an esteemed Yorkshire FMCG organisation … in a holistic InformationSecurity role which will see you involved in areas of Governance, Risk and Compliance, Cyber Defence and assisting their Managed Service Security Provider to an extent on operational cybersecurity. This role is mainly on site in Harrogate, North Yorkshire with flexible working offered … and limited hybrid working. The ideal candidate will be a seasoned security professional with a demonstrable background in the GRC space, a practical understanding of some of the core security frameworks (NIST, Cyber Essentials +, ISO27001), and a level of understanding of core security analysis tools (SIEM more »
+ Bonus + Benefits Locke & McCloud are looking for an experienced DevSecOps Engineer to join our client who are actively building out their Security Engineering function. In this role you will be driving the capability and maturity of our clients DevSecOps function and will have the opportunity to lead … hands on experience specifically in the DevSecOps space and are looking to work on some super exciting projects, then please apply! Main responsibilities: Integrate security tools and processes into the DevOps pipeline to ensure secure code deployment and infrastructure management. Design and implement automated security testing, including static … code analysis, dynamic application security testing, and vulnerability scanning. Collaborate with development and operations teams to identify and mitigate security risks throughout the software development lifecycle. Implement and manage security controls for cloud environments in AWS and Azure, ensuring compliance with best practices and industry standards. Develop more »
+ Bonus + Benefits Locke & McCloud are looking for an experienced DevSecOps Engineer to join our client who are actively building out their Security Engineering function. In this role you will be driving the capability and maturity of our clients DevSecOps function and will have the opportunity to lead … hands on experience specifically in the DevSecOps space and are looking to work on some super exciting projects, then please apply! Main responsibilities: Integrate security tools and processes into the DevOps pipeline to ensure secure code deployment and infrastructure management. Design and implement automated security testing, including static … code analysis, dynamic application security testing, and vulnerability scanning. Collaborate with development and operations teams to identify and mitigate security risks throughout the software development lifecycle. Implement and manage security controls for cloud environments in AWS and Azure, ensuring compliance with best practices and industry standards. Develop more »