101 to 125 of 767 Permanent Information Security Jobs

Information Security Assistant Manager 12 Month FTC - potential to go perm Bath - Hybrid Working £55,000 - £60,000 Working within the FinTech sector this role will hold a key part in a project that delivers modern cloud based platforms to clients of the organisation. Responsibilities will include: Providing … support on the information security project workstream Data governance and audits Maintain an up-to-date working knowledge of the relevant regulations and legislation, e.g. ISO27001, ISO9001 standards (and other information governance standards) Maintain an up-to-date working knowledge of a broad range of technologies including … Foundational knowledge of working with AWS cloud technologies and how information security best practices are applied to the AWS platform. Experience of infosec security, risk, and control frameworks (ISO27001) an effective and enthusiastic communicator with an ability to build strong professional relationships with 3rd party suppliers Knowledge more »

Role: Cyber Security Manager Location: Leeds Salary: £70,000 Locke & McCloud are looking for an experienced Cyber Security Manager on behalf of a Financial Services company. This organisation are undergoing a digital transformation project and are seeking a Cyber Security Manager with analytical skills and confident leading … a growing cyber security team. Key Responsibilities: Responsible for overseeing the day-to-day operations of the Cyber Security Team. Deputise for the Head of Cyber when they are not available. Management of the Security cloud migration process, addressing any identified gaps through experience and implementing remedies. … Conducting one-on-one performance meetings with the cyber security team. Maintaining the security of the organisation's IT services, including coordinating with third parties to ensure patching, vulnerability resolution, and system hardening. Managing the Cyber Security Incident process. Manage post-incident forensic investigations and reporting, engaging more »

10466JB £65k 75k per year Information Security Manager Hands-on Hybrid 3 days a week onsite We have an opportunity for a hands-on Information Security manager to join on a permanent basis for our client in London. Working as part of a small team … you will be responsible for the overall Information Security governance, controls and process as well as management of third parties. Further to this, you will be required to support to the wider network & infrastructure team. Essential Skills: Experience previously as an Information Security Manager/Head … of Information Security Proven experience as a hands-on network/infrastructure professional. Providing hands on cover as and when required Knowledge and understanding of security protocols and processes Excellent knowledge of governance controls and processes Experience of managing third party vendors including offshore Desirable skills: CCNP more »

Job Description Position Overview: Epsilon is seeking an experienced and dynamic professional to fill the position of Sr Vice President Cyber Security and Compliance. As the SVP of Cyber Security and Compliance, you will provide strategic leadership and operational excellence in the delivery of a best practice cyber … security operations and engineering program for the company. You will be responsible for delivering a security program across multiple security domains while operating in a federated model, collaborating closely with Publicis Groupe Global Security Office, business units and functional areas to define and deliver a cyber … security program aligned to the wider the company strategy. Key Responsibilities, Duties and Functions: Collaborate with the Publicis Groupe Global CISO to define and execute a comprehensive cyber security strategy for the company, aligned with the organization's global security objectives and regional IT strategies. Identify security more »

technologies. Join a tremendous technical team solving hard problems with true mission relevance on emerging technologies. Your greatest work is ahead! The Leidos National Security Sector is seeking a highly experienced, hands-on, information security professional that wants to be part of a dynamic team, supporting an … exciting mission. As a Principal Information Systems Security Officer (ISSO), you will be the senior staff member of a small team in Annapolis Junction, MD. This opportunity will have a direct impact maintaining and improving the security posture within our customer organization. Are you ready to join … a flourishing and meaningful career, share your resume with us today! Your Main Objective: Provide support for a program, organization, system, or enclave's information assurance program as assigned by the Technical Task Order Lead. Provide support for proposing, coordinating, implementing, and enforcing information systems security policies more »

of detail and be someone who can develop concepts and work with a broad array of individuals and problems. Playing a leading role within InfoSec, with your reach and activity enabling security as a principal consideration across INSTANDA. Responsibilities will include: Overseeing the INSTANDA information security management … controls across multiple teams, and in collaboration with colleagues across INSTANDA; Proactively identify opportunities to mentor and develop colleagues on all aspect of InfoSec, and; Collaborate effectively within internal colleagues in security critical roles to ensure InfoSec is embedded and understood. Requirements You ll have demonstrable, proven experience … within the following areas: You ll be a proactive self-starter, with a proven track record of building and owning an InfoSec strategy; running your own projects. You ll effectively manage stakeholders, demonstrating high levels of resilience as you seek to influence at all levels within our business. Accreditation in more »

Security Consultant – Project Risk Assessments Offshore (Poland) The Secure Project Lifecycle process has been established to perform risk assessments, ensuring security is considered as part of the design and throughout the project lifecycle. The SPL process governs projects within the Planview time recording and management system and those … that are managed outside such as Move to the Cloud (MttC) programme. The role will be to augment the Information Security team to perform risk assessments of projects, provide guidance and acquire outcomes/decisions from the project manager, enterprise architect, technical architect, solutions architect, data privacy officer … Team Lead. The responsibilities of the role will include the following: · Review submission of IS Criticality Assessment (ISCA) questionnaire (ISCA Dashboard) · Determine high level security requirements and project criticality, based on standard project activities and data classification from DP pre-screening · Work with assigned architect to ensure security more »

Information Security Analyst required by an established technology company located in Farnborough. Having recently become ISO270001 accredited they are looking for an Information Security Analyst to take responsibility for the policies, standards and procedures that fall within the scope of the ISO27001 accreditation. The Information Security Analyst will be responsible for Developing, maintaining and improving information security policies, procedures and standards Leading future ISO27001 audits both internal and external to ensure compliance Managing an annual penetration … test via an external supplier Internal information security training including "lunch & learns" and onboarding new employees Key experience Proven experience in an InfoSec Analyst role Knowledge of ISO27001 standards and maintaining the accreditation within an organisation Risk management Any experience in the following areas would be advantageous but more »

Job Summary: Be a key player in our Information Security team as a Remediation Analyst, focused on strengthening our cybersecurity posture. In this role, you'll collaborate closely with system owners, taking charge of remediation efforts for findings identified by our Information Security department. Your role … is crucial in ensuring our systems adhere to top-tier security standards. If you're passionate about translating security insights into actionable solutions and enjoy the challenge of securing digital landscapes, we invite you to join us. Apply now and be instrumental in fortifying our digital resilience. Job … Responsibilities: Assesses and evaluates systems to identify weaknesses and assess risk; performs vulnerability testing. Implements new or upgraded security measures or controls, and documents system or process changes. Reviews security violation reports or logs, investigates possible security exceptions and coordinates with internal teams or external agencies as more »

Our client is looking for an Information Security Analyst to join their Information Security team which is growing! This business is at the heart of the automotive industry with an epic culture and team, giving you an awesome opportunity to grow and be part of something … different and special. They are looking for someone who can: Monitor and manage compliance programmes aligned to security frameworks and regulations such as ISO 27001, PCI DSS, and GDPR. Identify improvements and encourage efficiency's and automation in controls, evidence gathering, and processes. Support the definition and growth of … the Security Control Framework, proactively designing, assessing, and maintaining effective security controls across various business functions. Provide expertise in risk management and the identification and assessment of security risks, ensuring they are appropriately reported through dashboards, reports, and workshops. Create, review, and maintain security policies, standards more »

INFORMATION SECURITY CONSULTANT Up to £70,000 + Excellent Staff Benefits Leeds, Wider West & South Yorkshire Region. Hybrid Working SECURE has strategically partnered with an award winning Cyber Security provider, to offer an exciting opportunity for an Information Security Consultant. Based in Leeds with hybrid … implementation and auditing, as well as proficiency in NIST Frameworks, aiming to enhance the organisation's Compliance Team Service Offering. Role Overview: As an Information Security Consultant, you will play a pivotal role in enhancing and maintaining our Information Security programme for both internal operations and … external client services. Responsibilities include conducting comprehensive security audits, managing third-party risk, delivering training sessions, and fostering strong relationships with stakeholders to ensure robust security measures. Skills & Experience: Demonstrated expertise in Information Security Governance, Risk, and Compliance (GRC), coupled with Security Operations exposure. Proficiency more »

Our client is looking for an Information Security Officer to join their Information Security team which is growing! This business is at the heart of the automotive industry with an epic culture and team, giving you an awesome opportunity to grow and be part of something … special. They are looking for someone who can: Monitor and manage compliance programmes aligned to security frameworks and regulations such as ISO 27001, PCI DSS, and GDPR. Identify improvements and encourage efficiency's and automation in controls, evidence gathering, and processes. Support the definition and growth of the Security Control Framework, proactively designing, assessing, and maintaining effective security controls across various business functions. Provide expertise in risk management and the identification and assessment of security risks, ensuring they are appropriately reported through dashboards, reports, and workshops. Create, review, and maintain security policies, standards, and procedures more »

streams and timelines that deliver frameworks for strategies. Minimum Qualifications At a minimum, here's what we need from you: Bachelor's Degree in Information Technology, Business Administration and Management, or related field 2+ years of experience in Information Security, Risk Management, Cyber Security, Governance, Risk … and Compliance In lieu of a degree, 6+ years of experience in Information Security, Risk Management, Cyber Security, Governance, Risk, and Compliance SANS GIAC Introduction to Information Security (GISF), or similar course Preferred Qualifications If we had our say, we'd also look for: Master … s Degree in Information Technology, MBA, or related field 4+ years of experience in Information Security and Controls Certified Information Security Systems Professional (CISSP), or similar certification Application Deadline: The application window for this position is anticipated to close on Jun-15-2024. We more »

Role: Technical Advisory Security Consultant Location: London/Manchester/Cheltenham The Opportunity: This is a Technical Advisory Cyber Security consultancy role with specific focus on assisting clients with Security Improvement and Remediation and Transformation programmes. Which may contain the following: Understanding the Security needs and … aspirations of a client Delivering Technical Security Improvement and Remediation programs Guiding Design and Implementation of Cyber controls The C&I SIR practice works with NCC Group clients to deliver prioritised programs of security improvements: in close collaboration with NCC Group security audit, Incident Response, Penetration and … Red Teams. Security Consultants play key roles in these client assignments: as recognised security experts they drive change, as well as advising clients and their service providers on changes they will make. Key to this role is assessing and enhancing pre-existing risk and security information more »

Our client is one of the UK’s leading Cyber & Information Security Consultancies and offer services ranging from Cyber Essentials assessments to InfoSec & GRC services, and are looking to expand their team after winning various projects! You will conduct thorough assessments, provide actionable recommendations, and ensure that clients … meet the necessary requirements to achieve CE+ certifications. If you’re looking to grow within the Cyber Essentials & Cyber Security consulting space with a highly reputable firm, then this is a great option for you! Main responsibilities: Conduct detailed Cyber Essentials Plus assessments for a variety of clients, ensuring … compliance with the standard’s requirements. Perform vulnerability assessments, penetration tests, and security audits as part of the certification process. Evaluate clients' infrastructure, policies, and practices to identify potential security risks and areas for improvement. Provide clear and concise reports outlining assessment findings, recommended actions, and compliance status. more »

Senior Information Security Analyst Hybrid, Kent £55K - £60K Your new company You’ll be working for an organisation who are keen to make a real difference. They are keen to attract and develop talent across the organisation and have a strong reputation as a good place to work. … They are investing into their Information Security Team, with this role being one of a number of different roles being recruited currently. Your new role Your role will be to assist the Information Security Manager with all things Security Operations. You will assist with the … Security career. You’ll be someone who wants to make a difference and work you will have a strong experience as an InfoSec/Cyber Analyst previously. Strong experience within an InfoSec/Cyber Analyst role previously. Good organisation skills, with strong attention to detail Microsoft stack background more »

Location: Mansfield -2 days per week in office rest remote Pay: available on application Ensuring compliance with industry-standard security practices and regulations, while continuously evaluating and enhancing the organisation's security posture. Playing a pivotal role in minimising risks & protecting assets. Here s a taste of what … the role will involve: Collaborating with senior management to develop and refine the organisation s information security strategy, aligning it with business objectives and regulatory requirements. Developing, implementing, and maintaining information & data security policies, standards, guidelines, and procedures to ensure compliance with relevant regulations (e.g. GDPR … industry standards such as Cyber Essentials, ISO 27001 & NIST guidelines. Managing the relationship(s) with 3 rd party suppliers responsible for implementing and managing security monitoring tools and technologies, ensuring we detect and respond to security threats in a timely manner. Developing and deliver a security awareness more »

Information Security GRC Analyst £65,000+Bonus+Benefits London/Hybrid In your role as Information Security GRC Analyst, you will evaluate IT and cyber risks and carry out risk management tasks. Additionally, the position will help advance the maturity of cyber security by enhancing the procedures … required to safeguard our clients from online attacks. To protect the information assets, business services, and operations, you will work with the other team members, the remaining information systems teams, IT service providers, and partners throughout the organisation to implement and enhance IS and IT risk management and … operational control capabilities. • Relevant training in cyber security risk assessment is required, as is practical experience in an IT or OT role with a desire to transition into cyber security, such as risk, audit, or cyber security. • Thorough understanding and expertise in designing, putting into practice, running, maintaining more »

Job Description Reporting to the CIO, you will be responsible for managing the day to day information security at the firm. Working closely with third party providers you will be responsible for ensuring the day to day IT security suppliers perform to expectations. You will take part … in ongoing and upcoming improvement projects, working through the implications within hardware and software changes and upgrades, cyber security risk analysis and information security policies. You will lead in the incident response to any information security breach, working closely with the rest of the IT … Team, as well as risk and compliance functions. Previous law firm experience is advantageous. Line management of the Information Security Analyst Uses experience and best practice to provide authoritative advice and guidance on the requirements for security controls in collaboration with experts in other functions e.g. legal more »

delivery. To effectively manage a GRC team that meets company objectives, including required profit margins. To deliver and oversee consistently high-quality GRC based information security consultancy services to our clients. Engaging with colleagues in the technical/testing and sales teams to drive future client requirements and … to deliver projects outside of comfort zone Excellent verbal and written communication E: j.bhard@locke-mccloud.com Locke & McCloud are the UK’s leading cyber security & information security staffing company – through having a sole focus on the cyber & information security space we have been able to … foster solid relationships with some of the UK’s most exciting cyber security consultancies & end users. Our focus on the information security space allows us to be able to help you find the most exciting opportunities in the cyber security market. If you are on the more »

days remote* *We are unable to sponsor as this is a permanent Full time role* A prestigious company is looking for an IT Security/GRC Manager. This manager will be a hands-on manager in enterprise GRC for applications, Infrastructure, 3rd party security, vendor risk management, and … Responsibilities: Lead the GRC program roadmap, status reporting on initiatives, metrics, and delivery of the program services. Lead in the creation and maintenance of security policies, standards, processes, and guidelines. Evaluate exception requests and make approval recommendations to management. Lead and mature the security awareness and phishing program. … development, plan, coordinate, measure, and evaluate cyber training/education courses, methods, and techniques based on instructional needs. Manage and support the 3rd Party Security Vendor Risk Management program, management of SOC2 reporting and ISO27001 certification, and assessments or security requests from clients. Manage control testing, issues management more »

days remote* *We are unable to sponsor as this is a permanent Full time role* A prestigious company is looking for an IT Security/GRC Manager. This manager will be a hands-on manager in enterprise GRC for applications, Infrastructure, 3rd party security, vendor risk management, and … Responsibilities: Lead the GRC program roadmap, status reporting on initiatives, metrics, and delivery of the program services. Lead in the creation and maintenance of security policies, standards, processes, and guidelines. Evaluate exception requests and make approval recommendations to management. Lead and mature the security awareness and phishing program. … development, plan, coordinate, measure, and evaluate cyber training/education courses, methods, and techniques based on instructional needs. Manage and support the 3rd Party Security Vendor Risk Management program, management of SOC2 reporting and ISO27001 certification, and assessments or security requests from clients. Manage control testing, issues management more »

Senior Information Security Specialist Permanent Salary: Between £57,000 - £69,000 plus business performance quarterly bonus Harrogate, North Yorkshire Working Arrangement: Hybrid - mostly in office working Your new company I'm currently looking for an information security specialist to work for an esteemed Yorkshire FMCG organisation … in a holistic Information Security role which will see you involved in areas of Governance, Risk and Compliance, Cyber Defence and assisting their Managed Service Security Provider to an extent on operational cybersecurity. This role is mainly on site in Harrogate, North Yorkshire with flexible working offered … and limited hybrid working. The ideal candidate will be a seasoned security professional with a demonstrable background in the GRC space, a practical understanding of some of the core security frameworks (NIST, Cyber Essentials +, ISO27001), and a level of understanding of core security analysis tools (SIEM more »

+ Bonus + Benefits Locke & McCloud are looking for an experienced DevSecOps Engineer to join our client who are actively building out their Security Engineering function. In this role you will be driving the capability and maturity of our clients DevSecOps function and will have the opportunity to lead … hands on experience specifically in the DevSecOps space and are looking to work on some super exciting projects, then please apply! Main responsibilities: Integrate security tools and processes into the DevOps pipeline to ensure secure code deployment and infrastructure management. Design and implement automated security testing, including static … code analysis, dynamic application security testing, and vulnerability scanning. Collaborate with development and operations teams to identify and mitigate security risks throughout the software development lifecycle. Implement and manage security controls for cloud environments in AWS and Azure, ensuring compliance with best practices and industry standards. Develop more »

+ Bonus + Benefits Locke & McCloud are looking for an experienced DevSecOps Engineer to join our client who are actively building out their Security Engineering function. In this role you will be driving the capability and maturity of our clients DevSecOps function and will have the opportunity to lead … hands on experience specifically in the DevSecOps space and are looking to work on some super exciting projects, then please apply! Main responsibilities: Integrate security tools and processes into the DevOps pipeline to ensure secure code deployment and infrastructure management. Design and implement automated security testing, including static … code analysis, dynamic application security testing, and vulnerability scanning. Collaborate with development and operations teams to identify and mitigate security risks throughout the software development lifecycle. Implement and manage security controls for cloud environments in AWS and Azure, ensuring compliance with best practices and industry standards. Develop more »