501 to 525 of 2,036 Permanent Information Security Jobs

environment for every teammate that's welcoming, respectful and inclusive, with great opportunity for professional growth. Find your future with us. The Boeing Company is currently seeking a Cybersecurity - Information System Security Officer (ISSO) to support Department of Defense (DoD) and Special Access Program (SAP) activities in Herndon, VA. The selected candidate will rely on Cybersecurity and Information … Assurance (IA) background to be a technical leader and support Enterprise activities and Boeing customers throughout multiple classified computing domains. The ISSO is responsible for maintaining and implementing all Information System Security policies, standards, and directives to ensure assessment and authorization of information systems processing classified information. Position Responsibilities: Contribute to the development and deployment of program … information security for assigned systems to meet the program and enterprise requirements, policies, standards, guidelines and procedures Implement Assessment and Authorization (A&A) processes under the Risk Management Framework (RMF), as well as product development and product maintenance for assigned systems Perform security compliance continuous monitoring (CONMON) Participate in security assessments and audits Prepare and present More ❯

clients. That means a career packed with opportunities to grow and the ability to have an impact on every client you work with. ARSIEM is currently looking for an Information Systems Security Engineer 2 to participate as a security engineering representative on engineering teams for the design, development, implementation, and/or integration of secure networking, computing … and enclave environments. This position will support one of our Government clients in Columbia, MD. Responsibilities Perform, or review, technical security assessments of computing environments to identify points of vulnerability, non-compliance with established Information Assurance (IA) standards and regulations, and recommend mitigation strategies. Validate and verify system security requirements definitions and analysis and establishes system security designs. Design, develop, implement and/or integrate IA and security systems and system components including those for networking, computing, and enclave environments to include those with multiple enclaves and with differing data protection/classification requirements. Build IA into systems deployed to operational environments. Assist architects and systems developers in the identification and implementation of appropriate information More ❯

gTANGIBLE Corporation (gTC) is a S corporation and a registered Government contractor that provides services and solutions in: National Security Programs Professional, Administrative, and Management Support Mission and Warfighter Support We are a Service Disabled Veteran Owned Small Business (SDVOSB) and the founder has years of successful experience in the Government contracting arena. Our leadership team is an exceptional … group of Government contracting professionals. gTANGIBLE is in the process of identifying candidates for the following position. Requisition Type: Contingent (Open) Position Status: Full Time Position Title: Information Systems Security Manager (ISSM) III Location: Arlington, VA Security Clearance Level: Top Secret/SCI, SAP Information eligible, consent for Counterintelligence polygraph Duties and Responsibilities The Air Force … AF) Special Access Program (SAP) Security Support Services (SSS) assists the AF cognizant security authority in oversight of enhanced National Security Objectives supporting AF SAP interests through active and integrated security operations, processes, mechanisms, and management. This support provides multi- disciplinary security support, including specialized analytical/program protection support, while being responsive and flexible More ❯

Information System Security Officer (ISSO) Job Category: Security Time Type: Full time Minimum Clearance Required to Start: TS/SCI with Polygraph Employee Type: Regular Percentage of Travel Required: None Type of Travel: None The Opportunity: CACI is seeking a cleared Information System Security Officer (ISSO) to provide support to the Information System Security Manager (ISSM) for maintaining the appropriate operations IA posture for a system, program, or enclave at Annapolis Junction, MD. Responsibilities: Maintain operational security posture for an information system or program. Provide Cyber Security oversight, guidance, and support in support of Assessment and Authorization ( A&A ) as required by the Federal Information Security Management Act … FISMA) . Prepare system security plan (SSP) and provide recommendations to assist in obtaining ATOs based on RMF experience IAW established cybersecurity policies and procedures. Verify package submissions have met the threshold for approval such as: CCIs, SCA-V results, POA&Ms, STIGs, Cyber Security Strategies and System Security Plans (SSPs) and other RMF documentation etc. Identify More ❯

to where you can take your career. Our mission is clear: to lead through innovation. Join the transformation and innovate with us. OVERVIEW: BlueHalo, an AV Company, is seeking Information Systems Security Engineers (ISSE) who will perform, or review, technical security assessments of computing environments to identify points of vulnerability, non-compliance with established Information Assurance … IA) standards and regulations, and recommend mitigation strategies. Key responsibilities will include: Validate and verify system security requirements definitions and analysis and establishes system security designs. Design, develop, implement and/or integrate IA and security systems and system components including those for networking, computing, and enclave environments to include those with multiple enclaves and with differing … data protection/classification requirements. Build IA into systems deployed to operational environments. Assist architects and systems developers in the identification and implementation of appropriate information security functionality to ensure uniform application of Agency security policy and enterprise solutions. Support the building of security architectures. Enforce the design and implementation of trusted relations among external systems More ❯

Are you interested in using your skills to help shape the Cyber, Security, & Intel space? If so, look no further. Amentum is seeking a Senior Information System Security Engineer to join our team of passionate individuals in San Antonio, TX. In this role you will support challenging, mission-critical projects that make a direct impact on the … Nation's security and intelligence mission. Your Impact: The mission of the Lone Wolf program is to support, operate, and maintain the Distributed Continuity Integrated Network - Top Secret Enterprise Services (DCIN-TS ES) which is a DoD-provided, TS/SCI, integrated voice, video, and data, global communications network that facilitates collaboration among senior leaders and key staff. The … Lone Wolf program boasts a professional workforce comprised of specialists throughout the Information Technology lifecycle and who contribute to a positive work environment. The Lone Wolf Team is Mission Focused, Customer Oriented, Process Guided, and Solutions Driven. Candidates interested in joining the team must be critical thinkers, have a strong work ethic, and be able to work independently or More ❯

Responsibilities & Qualifications RESPONSIBILITIES The Information Systems Security Officer is expected to be able to : Support Engineering and Operations network solutions and strategic adherence to all aspects of the Information Assurance (IA) program as stipulated by various U.S. Government requirements including (but not limited to): Director of Central Intelligence Directives (DCID), IC Directive (ICD) 503 and associated NIST … publications. Preparation of Assessment and Authorization (A&A) documents and procedures. Interface with other IA team members, other security disciplines (industrial security, physical security, special programs security, etc.), program personnel, and Government security representatives . Serve as a principal advisor to the Government and service lane leads on all matters, technical and otherwise, involving the … security of an Information System including, but not limited to, accreditation status, emerging threats, current security posture, ongoing activities, and Plan of Action and Milestones (POA&Ms) . Adhere s to DIA Risk Management Framework (RMF) standards for the performance of the ISSO role, the recommendations comply with the Federal Information Security Modernization Act (FISMA More ❯

Responsibilities & Qualifications RESPONSIBILITIES The Information Systems Security Engineer is expected to be able to : Support Engineering and Operations network solutions and strategic adherence to all aspects of the Information Assurance (IA) program as stipulated by various U.S. Government requirements including (but not limited to): Director of Central Intelligence Directives (DCID), IC Directive (ICD) 503 and associated NIST … publications. Preparation of Assessment and Authorization (A&A) documents and procedures. Interface with other IA team members, other security disciplines (industrial security, physical security, special programs security, etc.), program personnel, and Government security representatives . Serve as a principal advisor to the Government and service lane leads on all matters, technical and otherwise, involving the … security of an Information System including, but not limited to, accreditation status, emerging threats, current security posture, ongoing activities, and Plan of Action and Milestones (POA&Ms) . Adhere s to DIA Risk Management Framework (RMF) standards for the performance of the ISSO role, the recommendations comply with the Federal Information Security Modernization Act (FISMA More ❯

Overview FTI is looking for an Advisory Cyber Analyst to join our team. This individual will serve as a Lead Cyber Analyst for cyber survivability test planning and support OPTEVFOR 01D oversight for cyber survivability test planning to ensure overall More ❯

adhere to CCM principles Support the Audits and Sarbanes Oxley ensuring systems are compliant and follow documented IT Controls Forward thinking/planning Maintaining relationships with technology, software, and security vendors Information within the business. Support, guide, influences where necessary Ensuring that Information Security is factored into the evaluation, selection, installation and configuration of hardware, applications … problems. To be available for "out-of-hours" work to resolve support calls or planned activities. Put security at the heart of the solutions created and supporting the Infosec teams as required. Works with the wider senior team to ensure that all activities and operations are performed in compliance with regulations and laws governing business operations. Person specification : Knowledge … level technical expertise across a Microsoft, Dell, and Citrix infrastructure. Exchange 2016/2019 Hybrid, Office 365 and Azure AD PowerShell, including knowledge of scripting Understanding and expertise in security products and services Dell and Netapp hardware, including traditional 3-tier and HCI (VxRail/VSAN/NSX). Storage and Backup Management using SAN/NAS based technologies More ❯

Governance, Risk & Compliance (GRC) Lead Location: Fully Remote - UK Wide Department: Technology – IT Security and Service Management Contract Type: Permanent Salary: £55,000 - £65,000 About the Role We are seeking a highly experienced and motivated GRC Lead to join our Cyber Security team. This role is critical in shaping and delivering our information assurance strategy, ensuring … that cyber security risks are effectively managed across the organisation. As a senior member of the team, you will lead a small group of risk and security professionals, drive the implementation of Secure by Design principles, and oversee compliance with key frameworks such as DSPT , CAF , and DORA . You will also play a key role in stakeholder … leadership and translating complex technical requirements into actionable governance strategies. With a significant project pipeline launching in 2026, this is a unique opportunity to influence the future of cyber security governance in a regulated environment. Key Responsibilities Own and evolve the Information Security Assurance Framework and programme. Lead themed reviews to assess the effectiveness of security More ❯

Governance, Risk & Compliance (GRC) Lead Location: Fully Remote - UK Wide Department: Technology - IT Security and Service Management Contract Type: Permanent Salary: £55,000 - £65,000 About the Role We are seeking a highly experienced and motivated GRC Lead to join our Cyber Security team. This role is critical in shaping and delivering our information assurance strategy, ensuring … that cyber security risks are effectively managed across the organisation. As a senior member of the team, you will lead a small group of risk and security professionals, drive the implementation of Secure by Design principles, and oversee compliance with key frameworks such as DSPT , CAF , and DORA . You will also play a key role in stakeholder … leadership and translating complex technical requirements into actionable governance strategies. With a significant project pipeline launching in 2026, this is a unique opportunity to influence the future of cyber security governance in a regulated environment. Key Responsibilities Own and evolve the Information Security Assurance Framework and programme. Lead themed reviews to assess the effectiveness of security More ❯

for a Head of Compliance. This is an exciting time to be joining this local, growing and forward thinking organising in Bristol. This role will be to lead their information security compliance efforts, specifically in line with ISO/IEC 27001 , ISO/IEC 42001 and Cyber Essentials PLUS standards. In this role you will be responsible for … maintaining, auditing, and continuously improving their Information Security Management System (ISMS), overseeing compliance initiatives, coordinating with internal teams, and ensuring the organization remains audit-ready. Additionally you will be implementing (alongside the technical and sales team) a Compliance as a Service ( CasS ) in which helps their clients with Pre Audits, Gap Analysis, Training and helping customer maintain their … ISO Certifications. Key Responsibilities: Instrumental in the building of a new Team to deliver CaaS and supporting services. Develop, implement, and maintain the Information Security Management System (ISMS) aligned with ISO/IEC 27001 and Cyber Essentials PLUS standards. Lead internal audits, gap assessments, and risk assessments for ISO 27001 and Cyber Essentials PLUS. Coordinate and manage external More ❯

role for a Head of Compliance. This is an exciting time to be joining this local, growing and forward thinking organising in Bristol. This role will be tolead their information security compliance efforts, specifically in line with ISO/IEC 27001 , ISO/IEC 42001 and Cyber Essentials PLUS standards. In this role you will be responsible for … maintaining, auditing, and continuously improving their Information Security Management System (ISMS), overseeing compliance initiatives, coordinating with internal teams, and ensuring the organization remains audit-ready. Additionally you will be implementing (alongside the technical and sales team) a Compliance as a Service ( CasS ) in which helps their clients with Pre Audits, Gap Analysis, Training and helping customer maintain their … ISO Certifications. Key Responsibilities: Instrumental in the building of a new Team to deliver CaaS and supporting services. Develop, implement, and maintain the Information Security Management System (ISMS) aligned with ISO/IEC 27001 and Cyber Essentials PLUS standards. Lead internal audits, gap assessments, and risk assessments for ISO 27001 and Cyber Essentials PLUS. Coordinate and manage external More ❯

Are you looking for an exciting new opportunity? Join a London based, product-agnostic consultancy specialising in information security governance, risk, and compliance management for clients across Europe. With a deep-rooted passion for cyber risk, the team excels at developing measurable controls that align with an organisation's risk appetite, capacity, and tolerance for breaches. Known for … crafting innovative and cost-effective Information Security Management Systems (ISMS), the consultancy enables quantifiable compliance with key information security legislation, regulations, and industry standards, including PCI DSS, the UK Data Protection Act 2018 (DPA 2018), GDPR, and ISO/IEC 27001. If you would like to learn more about this opportunity, feel free to reach out … of OWASP methodologies and offensive testing across black/grey/white-box approaches. Proficiency in tools like Burp Suite, Kali, Nmap, Nessus, Qualys, Metasploit. Familiarity with cloud platform security testing (AWS, Azure, GCP). Understanding of mobile security (Android & iOS), networking protocols, and the OSI model. Excellent verbal and written communication skills, especially for client-facing engagements. More ❯

the Business Transformation, Resilience & Oversight Manager and the direct team in both: 1) the execution/ongoing management of the banks Cyber Resilience activities & also 2) the new Cyber Security and Digital Operational Resilience Act (DORA) related capabilities. This is an opportunity for a motivated self-starter, with a can-do mindset and the ability to connect information … and alignment with DORA requirements. Support DORA compliance by coordinating the activities required across all six pillars of DORA: ICT Risk Management, ICT related Incident Reporting, Digital Resilience Testing, Information Sharing, ICT Third Party Risk and General Governance Principles. Stay up to date with the changing cyber risk landscape, emerging threats, regulatory requirements and cybersecurity industry best practises in … the UK and EU (e.g. Network and Information Security (NIS2) Directive). Plan and execute DORA deliverables in cooperation with similar initiatives e.g. Operational Resilience, Business Continuity and Incident Management. Design and oversee regular testing exercises to evaluate the effectiveness of Digital Resilience and Cyber Security, contributing to the Bank’s overall resilience. Collaborate with various teams More ❯

experience) + car allowance Overview An exciting opportunity has arisen for an experienced Cyber Governance Analyst to join a forward-thinking and collaborative business. Reporting directly to the Group Information Security Officer (GISO), the successful candidate will act as a first line of defence-ensuring that robust security controls are maintained in line with company policies and … practices, and overseeing audit readiness. Key Responsibilities Collaborate with IT, legal, and policy teams to develop, manage, and ensure compliance with industry regulations and internal policies Implement and support information security and privacy standards/frameworks (e.g. ISO 27001, NIST, CIS) Work directly with engineering teams and architects to review system and data architectures in line with best … practices Analyse and communicate the impact of vulnerabilities, controls, and mitigations on existing and future systems Conduct thorough risk assessments and effectively translate security and risk implications for technical and non-technical audiences Manage stakeholder expectations across projects with a pragmatic, agile, and solution-oriented approach Key Skills & Experience In-depth knowledge of cybersecurity frameworks such as NIST, ISO More ❯

Join us now, the Security Operations Centre Team are growing, we are looking to recruit a candidate with SIEM/SOC experience to join the team and become a Security Analyst. WHO ARE WE? Our success over the last 25 years and our ongoing growth can be attributed to our people and our strong culture. Culture and engagement … varied range of benefits that support a good work-life balance, including a hybrid approach to work, which enables you the flexibility needed to thrive. THE TEAM Creditsafe's Information Security and Compliance team are motivated by protecting company reputation, safeguarding existing revenue, and supporting the generation of future revenue. We realise that security can often be … misunderstood so our approach is enabling new and existing customers to interact with our products and services, and we pride ourselves on balancing a positive security culture with a robust control environment. Our responsibilities include setting security policies, educating users on good security practices, managing security risks, and auditing our security posture. We interact with More ❯

salary up to £60,000 per annum Job grade B Closing date 15/07/2025 The Policy Support Analyst will be responsible for developing, implementing, and maintaining security policies, standards, and procedures to ensure the protection of our information assets. This role requires a good understanding of security frameworks and regulatory requirements. In addition, this … role requires you to have experience of Information Security. The role will be based in Reading and will report directly to the Head of Go vernance, Risk and Compliance , with whom you will work to deliver the goals of the company to have a fit for purpose security standards framework. This is a role that requires the individual … fulfilment in a challenging and fast paced environment and takes accountability to meet and drive the needs of the programme. What you'll do as a Policy Support Analyst Security Standards Management: Develop and maintain comprehensive security policies, standards and procedures across the organisation. Align all standards with applicable regulatory requirements and frameworks (e.g., ISO 27001, GDPR, NIS More ❯

Our Client is seeking an experienced Head of Information Security to lead the InfoSec function across their UK and European operations. This is a leadership role that combines deep cybersecurity expertise, regulatory awareness, and business acumen to drive the security agenda in a fast-paced, regulated financial services environment. As the Head of Information Security, you'll be the primary InfoSec business partner across the region, responsible for the integrity and performance of security and cyber risk controls. You'll shape and implement enterprise-wide strategies aligned with global objectives while ensuring regulatory compliance and operational excellence. Reporting directly to the Group CISO, you'll work closely with executive leaders, regulatory stakeholders, and … the global InfoSec team. The role will oversee the delivery and quality of security services from internal, shared, and external resources and you would act as a trusted advisor to executives across the region. You will drive compliance across standards including ISO 27001, SOC2, PCI, SOX, GDPR, and others while managing a high-performing InfoSec team (both direct and More ❯

the Application Development & Release team reporting into the Testing Manager. The main purpose of the role is to be responsible for test planning, execution, coordination, and reporting of FSCS information systems and software applications to ensure the delivery of high-quality business applications following industry best practices. The Test Lead will work closely with our suppliers and partners delivering … based on industry standards, process and product KPIs, QA reports, and frameworks, embracing agile ways of working. Identify and document Risks, Issues, Assumptions, and Dependencies during the test phase. Information Security and Data Protection Responsibilities Pass the FSCS information security induction training annually. Adhere to FSCS policies including Information Security, Data Protection, and acceptable More ❯

tasks are the following: Providing counsel on all aspects of cybersecurity incident prevention and response, including customer and regulatory notifications, contractual obligations, and legal risk mitigation, to cyber and information security stakeholders. Advising business stakeholders on regulatory inquiries regarding cyber and information security issues and/or events. Instructing Citi's Cybersecurity Fusion Center and Citi … s business lines on legal risks associated with various components of Citi's cyber and information security program, including matters involving incident response strategies, incident investigations, and regulatory compliance. Tracking existing and proposed cybersecurity rules and regulations (such as DORA and the EU Cyber Resilience Act) and advising on legal interpretations in order to inform a compliance strategy. … and initiatives to provide legal risk mitigation advice. Drafting cybersecurity presentations, exercises, and trainings, as well as presenting and participating as needed. Counseling on the development and implementation of information security governance. Updating cybersecurity policies, playbooks, and procedures. What we'll need from you We are looking for an attorney who has experience advising clients on cybersecurity issues More ❯

West Midlands, United Kingdom Posted on 21/03/2025 The Cyber Defence Engineer will join agrowing security team responsible for the testing, implementation, deployment,maintenance, configuration and troubleshooting of the SOC's technology stack(hardware and software). The engineer will also assist with the continueddevelopment and maintenance of data pipelines and signature updates and theprofessional development … background - experience in system administration. Knowledge of big datatechnologies and ecosystems (e.g. Apache NiFi). Knowledge of currentmarket and emerging tools in data analytical and SIEM platforms. Knowledgeof network security implementations (e.g., IDS, IPS, EDR), including theirfunction and placement in an enterprise network. Knowledgeof intrusion detection systems and signature development. Knowledge of front-endcollection systems, including network traffic collection … filtering, andselection. Knowledge of cyber security threats,vulnerabilities, and privacy principles. Working knowledge inconfigurating collection sensors for enterprise networks. Knowledgeof system administration concepts for operating systems such as but not limitedto Linux, Android, and Windows operating systems. Knowledge of cyberdefence and information security policies, procedures, and regulations. Knowledge of networksecurity architecture concepts including topology, protocols, components, andprinciples. More ❯

A bit about the IT Team: In addition to Information Security the IT Team in KINTO UK fulfil numerous responsibilities including provisioning a Service Desk, Infrastructure and Applications Support, a complex Data Warehouse, Software Development, Project Management, Change Management and Testing/QA. We work in close partnership with colleagues across the KINTO Business functions, other Teams within … design for new data interfaces Lead the implementation of new data interfaces through oversight or development as needed Ensure unit testing and system integration testing is completed Ensure IT security and compliance standards are met Assist the Development DBA to maintain and stabilise existing database requirements Monitor daily data loads, troubleshoot issues and restart any failed loads Minimum … analytical & conceptual thinking abilities Excellent IT skills and ability to assess documents and systems for conformity to internal and external standards. Familiarity with principles of good data governance, cyber security and data protection Excellent problem solving and root cause analysis skills Proven ability to work with minimal supervision Attributes and Behaviours Self-starter with an analytical mind and natural More ❯

In this newly-created role, you’ll lead the execution of the Group GRC programme, align risk and compliance efforts with wider business goals, and ensure robust governance across information security and operational practices. Key Responsibilities: Develop and implement a comprehensive GRC framework across the group Conduct regular risk assessments and support vulnerability management Maintain and evolve security … governance and compliance strategy of a global business. You’ll gain exposure to high-profile projects and contribute to the company’s ongoing commitment to excellence in risk and security management. More ❯