1 to 25 of 32 Permanent Information Security Specialist Jobs

As a Senior Control Assurance Assessor, you'll test security controls both on-premise and in the cloud to ensure design implementation, safeguarding Experian's assets. You'll assess control design, performance, and compliance with standards and regulations, reporting to the Information Security Control Assurance Testing Manager. Identifying gaps, documenting findings, and recommending improvements to mitigate risks … are important responsibilities. Using data-driven testing techniques and a defined methodology, you'll collaborate to ensure controls meet current risks and regulatory requirements. Primary Responsibilities Conduct security control assessments, using documented control activities (where they exist) and regulatory requirements. Develop test plans, test cases, and procedures, applying data from security tools to capture evidence. Use queries and … Contribute lessons learned by integrating partner feedback to improve the control testing program. About Experian About us, but we'll be brief Experian is the world's leading global information services company, unlocking the power of data to create more opportunities for consumers, businesses, and society. Experian is a global data and technology company, powering opportunities for people and More ❯

OVERVIEW The Information System Security Engineer II and III is responsible for supporting all aspects of a Program Information Assurance (IA) processes tailored to include minimum qualification standards, fundamental awareness and familiarity to demonstrated competency with specific experience in Cyber Security, Engineering, Test & Evaluation, (T&E) and/or Security Control Assessor (SCA) under a … Certification & Accreditation (C&A) and/or Assessment & Authorization (A&A) process. Must have active Secret clearance and be a US Citizen. The Information System Security Engineer II and III: Support all aspects of Program Information Assurance (IA) activities across the Certification & Accreditation (C&A) and/or Assessment & Authorization (A&A) lifecycle. Apply knowledge and experience … in cybersecurity, engineering, Test & Evaluation (T&E), and/or Security Control Assessment (SCA) roles. Demonstrate working knowledge of the Risk Management Framework (RMF) and/or prior experience with Defense Information Assurance Certification and Accreditation Process (DIACAP). Interpret and apply relevant security policies and guidance documents to support the development and maintenance of IA artifacts More ❯

with one heart, one mind, and one purpose, we can accomplish our mission and be an organization anyone would be proud to be a part of. POSITION SUMMARY The Information Security Specialist is vital in safeguarding the confidentiality, integrity, and availability of systems and data within the Distributed Common Ground System (DCGS) and the STATEFARM programs. This … cybersecurity postures, implementing RMF controls, responding to vulnerabilities, and supporting continuous monitoring initiatives. Working closely with the Zero Trust Architect, DevSecOps engineers, system administrators, and government cybersecurity personnel, the specialist will manage system security controls, support developing and reviewing System Security Plans (SSPs), and assist with Security Analysis Reports. The specialist monitors network and user … while addressing emerging threats and maintaining system resiliency. ESSENTIAL JOB FUNCTIONS Evaluate, implement, and maintain cybersecurity frameworks following the DoD Risk Management Framework (RMF). Develop and update System Security Plans (SSPs), Security Analysis Reports, and associated RMF documentation for DCGS and STATEFARM systems. Design and enforce access control policies, user authentication procedures, and network monitoring protocols. Conduct More ❯

Information Security Specialist (Information Security and Cyber Security) Hybrid working: 3 days per week in the office. The Information Security Specialist will play a pivotal role in shaping my clients cyber resilience strategy. The role involves providing expert guidance to stakeholders on information security matters, managing technical cybersecurity tools … and operations, and overseeing compliance with regulatory standards. It will lead the development and execution of the cyber and information security strategy, ensuring alignment with ISO 27001, GDPR and Cyber Essentials. The ideal candidate will have strong information security experience alongside hands-on technical knowledge of SIEM, EDR, vulnerability management, and incident response. Responsibilities: - Serve as … a subject matter expert for information security, advising stakeholders on risks, controls, and security best practices. - Support business units with risk-based security input for projects, client bids, and technology initiatives. - Manage cybersecurity tooling including SIEM, EDR, and mail filtering systems to ensure effective threat detection and response. - Monitor, investigate, and respond to alerts and incidents More ❯

improve the well-being of all by taking life science further and combine our attention to detail with the extraordinary, because it all matters. The opportunity Reporting to the Information Security Officer you will contribute to the efficiency, capability and profitability of the business by gathering, analysing and recommending changes to processes/systems within BUs, across multiple … Internal Audit team on the development, implementation and operation of ITGCs Supporting the implementation of ISO27001 controls and perform regular control audits to monitor compliance Developing and managing a security risk framework, aligning with the enterprise risk management approach Coordinating the performance of regular business impact assessments (BIAs) and the recording of results and updates Contributing to the design … and implementation of information security process and control improvements Mentoring other members of the Information security team and promote risk management best practices across IT Supporting the development and delivery of compliance training and awareness, fostering a culture of risk awareness and accountability across the organisation Providing advice to stakeholders on IT risk and compliance topics More ❯

improve the well-being of all by taking life science further and combine our attention to detail with the extraordinary, because it all matters. The opportunity Reporting to the Information Security Officer you will contribute to the efficiency, capability and profitability of the business by gathering, analysing and recommending changes to processes/systems within BUs, across multiple … Internal Audit team on the development, implementation and operation of ITGCs Supporting the implementation of ISO27001 controls and perform regular control audits to monitor compliance Developing and managing a security risk framework, aligning with the enterprise risk management approach Coordinating the performance of regular business impact assessments (BIAs) and the recording of results and updates Contributing to the design … and implementation of information security process and control improvements Mentoring other members of the Information security team and promote risk management best practices across IT Supporting the development and delivery of compliance training and awareness, fostering a culture of risk awareness and accountability across the organisation Providing advice to stakeholders on IT risk and compliance topics More ❯

This position is contingent upon funding with an expected start date of December 2025 SECRET Clearance required We are seeking an Information Systems Security Specialist II; this role is focused on conducting Security Technical Implementation Guide (STIG) assessments and performing vulnerability assessments using the Assured Compliance Assessment Solution (ACAS). You will manage security authorization … packages and risk assessment documentation in eMASS, while developing and maintaining Plans of Actions and Milestones (POA&M) to remediate security vulnerabilities. As part of your responsibilities, you'll execute Risk Management Framework (RMF) Step 5 authorizations as an Information System Security Engineer (ISSE), providing critical security risk mitigation recommendations and guidance to stakeholders. On-site … only, no telework. Position Responsibilities: Conduct Security Technical Implementation Guide (STIG) assessments, utilizing SCAP benchmarks and Evaluate STIG. Perform vulnerability assessments using the Assured Compliance Assessment Solution (ACAS) tool. Manage security authorization packages and risk assessment documentation within eMASS. Develop and maintain Plans of Actions and Milestones (POA&M) to remediate security vulnerabilities. Execute Risk Management Framework More ❯

Social network you want to login/join with: We are seeking a proactive Information Security Specialist skilled in security operations, threat intelligence, and risk management. This role is crucial for maintaining robust security protocols, identifying vulnerabilities, and ensuring compliance with security standards. The ideal candidate will have a strong background in IT infrastructure … security, preferably within financial institutions, experience with network infrastructure components, solid analytical and problem-solving skills, and a deep understanding of threat intelligence and incident response. Having CISSP or other relevant certifications (e.g., Network+, Security+, MCSP, CAN) would be beneficial for performing this role. Day-to-Day of the Role: Security Operations and Infrastructure Assist in identifying, analyzing … and following up on security vulnerabilities in IT systems. Help maintain accurate IT asset inventory across various security platforms (e.g., CMDB, AV, SIEM). Participate in regular security reviews, vulnerability assessments, and help ensure compliance with established security standards. Monitor user access and permissions, identifying and reporting potential unauthorized access. Implement and maintain Active Directory and More ❯

Information Security Specialist Crédit Agricole CIB London, United Kingdom Apply now Posted 11 days ago Permanent Competitive Information Security Specialist Vacancy details General information Entity About Crédit Agricole Corporate and Investment Bank (Crédit Agricole CIB) Crédit Agricole CIB is the corporate and investment banking arm of Crédit Agricole Group, the 10th largest banking … are a Group committed to diversity and inclusion and place people at the heart of all our transformations. All our job offersare open to persons with disabilities. For more information, please visit www.ca-cib.com Twitter: https://twitter.com/ca_cib LinkedIn: https://www.linkedin.com/company/credit-agricole-cib/By working every day in … are open to people with disabilities. Reference 2025-100846 Update date 02/06/2025 Job description Business type Types of Jobs - IT, Digital et Data Job title Information Security Specialist Contract type Permanent Contract Management position No Job summary We are seeking a proactive Information Security Specialist skilled in security operations More ❯

Information Systems Security Specialist vacancy in Berkshire (060DM) Are you a former military professional with a background in information security, risk management, and assurance? Your experience in secure environments, risk analysis, and stakeholder engagement makes you the perfect fit for this Information Systems Security Specialist role. This is an opportunity to continue … making an impact by protecting critical systems and ensuring robust security measures in a complex environment. 12-month contract, with a chance of extension. Key Responsibilities Conduct risk analysis for information systems, providing strategic recommendations to decision-makers. Advise senior leadership and project teams on information security best practices. Develop and implement security architectures to … safeguard critical data and infrastructure. Assess and manage information risks across projects, supply chains, and stakeholders. Stay ahead of evolving security threats, leveraging industry standards and best practices. Oversee vulnerability assessments and ensure security compliance across IT systems. Provide technical risk assessments and contribute to the professional development of information security standards. What We're More ❯

Job information: Functional Title - IT Security Specialist Department – Security Governance and Risk Management Corporate level – Associate Vice President Report to – Director of Security Location - London, onsite 2 days per week About the role: The individual will be part of the security function that is responsible for security governance, risk and assurance, to ensure … the organisations security posture is robust, compliant against the security policy, standards and controls. The position will require close collaboration with technical, operational, compliance and audit teams to create a secure and compliant technology environment. What you will be doing: Maintain security policy, standards, procedures and frameworks. Ensure alignment with security industry standards such as NIST … CSF and NIST 800-53. Act as an advisor to colleagues across the organisation on best security practice. Conduct regular risk assessments and maintain risk register in RSA Archer. Identify assess and prioritize security risk across the organisation’s information assets and environments. Understanding security gaps and provide evaluation and treatment options, consultation on remediation More ❯

Job information: Functional Title - IT Security Specialist Department – Security Governance and Risk Management Corporate level – Associate Vice President Report to – Director of Security Location - London, onsite 2 days per week About the role: The individual will be part of the security function that is responsible for security governance, risk and assurance, to ensure … the organisations security posture is robust, compliant against the security policy, standards and controls. The position will require close collaboration with technical, operational, compliance and audit teams to create a secure and compliant technology environment. What you will be doing: Maintain security policy, standards, procedures and frameworks. Ensure alignment with security industry standards such as NIST … CSF and NIST 800-53. Act as an advisor to colleagues across the organisation on best security practice. Conduct regular risk assessments and maintain risk register in RSA Archer. Identify assess and prioritize security risk across the organisation’s information assets and environments. Understanding security gaps and provide evaluation and treatment options, consultation on remediation More ❯

Job information: Functional Title - IT Security Specialist Department – Security Governance and Risk Management Corporate level – Associate Vice President Report to – Director of Security Location - London, onsite 2 days per week About the role: The individual will be part of the security function that is responsible for security governance, risk and assurance, to ensure … the organisations security posture is robust, compliant against the security policy, standards and controls. The position will require close collaboration with technical, operational, compliance and audit teams to create a secure and compliant technology environment. What you will be doing: Maintain security policy, standards, procedures and frameworks. Ensure alignment with security industry standards such as NIST … CSF and NIST 800-53. Act as an advisor to colleagues across the organisation on best security practice. Conduct regular risk assessments and maintain risk register in RSA Archer. Identify assess and prioritize security risk across the organisation’s information assets and environments. Understanding security gaps and provide evaluation and treatment options, consultation on remediation More ❯

Information Security Specialist, Crawley, West Sussex Client: DGH Recruitment Location: Crawley, West Sussex, United Kingdom Job Category: Other EU work permit required: Yes Job Views: 3 Posted: 26.06.2025 Expiry Date: 10.08.2025 Job Description: The Information Security Specialist will play a pivotal role in shaping the client's cyber resilience strategy. The role involves providing … expert guidance on information security, managing cybersecurity tools and operations, and ensuring compliance with standards such as ISO 27001, GDPR, and Cyber Essentials. This position offers hybrid working: 3 days per week in the office. Responsibilities include: Serving as a subject matter expert on information security, advising on risks and controls. Supporting business units with security input for projects and bids. Managing cybersecurity tools like SIEM, EDR, and email filtering systems. Monitoring and responding to security alerts and incidents. Conducting vulnerability scans and coordinating penetration tests. Maintaining compliance with ISO27001, GDPR, and Cyber Essentials. Required Skills/Experience: Strong understanding of information security principles, risk management, and compliance standards. Hands-on experience More ❯

Social network you want to login/join with: Senior Information Security Specialist, manchester col-narrow-left Client: bet365 Location: manchester, United Kingdom Job Category: Other - EU work permit required: Yes col-narrow-right Job Views: 4 Posted: 28.04.2025 Expiry Date: 12.06.2025 col-wide Job Description: Who we are looking for A Senior Information Security Specialist, who will focus on the technical side of IT Security, specifically looking at application security and code analysis to ensure applications are built securely. The application security team deal with the security of closed source, open source and in house written applications. The objective is to ensure applications are developed in a way … and mitigated. It is therefore important that you possess an understanding of the Secure Software Development Lifecycles and the assessment of code. This role is part of the broader Information Security department, which is comprised of engineers and analysts with varying backgrounds. Collectively, the team utilises enterprise and bespoke tooling to identify and mitigate threats to safeguard the More ❯

Information Security/Information Privacy SME (Contract) Location: Central London (Hybrid – 2 days onsite per week) Contract: Inside IR35 or Umbrella Engagement Duration: 6–12 months (with potential extension) Industry: Private Banking/Wealth Management Role Overview: We are seeking a highly experienced Information Security/Information Privacy Subject Matter Expert (SME) to support … a leading private bank in London. This role is focused on providing strategic and operational guidance on cybersecurity, data protection, and regulatory compliance to ensure the bank’s information assets and customer data remain secure and compliant with applicable standards (e.g., ISO 27001, GDPR, FCA requirements). Key Responsibilities: Serve as the SME for all matters related to information security and privacy. Advise on the development and maintenance of security policies, procedures, and frameworks. Review and strengthen current information security architecture and controls. Conduct risk assessments, gap analyses, and privacy impact assessments (DPIAs). Provide expert input on GDPR, UK Data Protection Act, and other relevant regulations. Partner with internal stakeholders across legal, compliance More ❯

now has a presence in 200+ countries and legal territories to serve a community of more than 12,000 banks and financial institutions. We are looking for a GRC Specialist like you to join our growing Information Security Governance (ISG) team. In this role, you will: Develop and implement robust GRC frameworks to ensure compliance with increasingly … stringent industry regulations and standards. Support the reporting and presentation of our GRC activities to internal and external stakeholders, ensuring transparency and accountability. Collaborate with cross-functional security teams to maintain and communicate our Information Security Management System (ISMS). Maintain clear and accurate GRC documentation. Drive continuous improvement in our GRC processes, ensuring they meet regulatory … expectations. Provide strategic insights to senior leadership, enabling data-driven decision-making in a regulated environment. What to expect: You will join a great team of cyber security experts supporting SWIFT Global Security GRC practices. As part of our Governance function, you will work with diverse talented teams committed to excellence: you will work closely with business units More ❯

Job Title : Information Security Assurance Specialist Contract Type: Permanent, Full Time Salary Range: £33,200-£41,500 depending on experience Location: Eastleigh Information Security Assurance Specialist: At Ageas, we are committed to protecting our customers, employees, and systems through robust information security practices. We are seeking a Information Security Assurance … and Architecture Specialist to join our growing team. This role is critical in ensuring our security architecture aligns with business goals and regulatory requirements, while also providing assurance over the effectiveness of our security controls. Reporting into the Assurance and Architecture Manager, you will be responsible for supporting and operating the day-to-day activities relating to … security, initiatives, controls and governance processes. This role is a combination of internal consultancy, change management and assurance activities to provide confidence to the business that we are meeting our security goals. You will act as the bridge between our technical teams and operational functions and are therefore required to have excellent communication skills, including the ability to More ❯

Job Title : Information Security Assurance Specialist Contract Type: Permanent, Full Time Salary Range: £33,200-£41,500 depending on experience Location: Eastleigh Information Security Assurance Specialist: At Ageas, we are committed to protecting our customers, employees, and systems through robust information security practices. We are seeking a Information Security Assurance … and Architecture Specialist to join our growing team. This role is critical in ensuring our security architecture aligns with business goals and regulatory requirements, while also providing assurance over the effectiveness of our security controls. Reporting into the Assurance and Architecture Manager, you will be responsible for supporting and operating the day-to-day activities relating to … security, initiatives, controls and governance processes. This role is a combination of internal consultancy, change management and assurance activities to provide confidence to the business that we are meeting our security goals. You will act as the bridge between our technical teams and operational functions and are therefore required to have excellent communication skills, including the ability to More ❯

Job Title : Information Security Assurance Specialist Contract Type: Permanent, Full Time Salary Range: £33,200-£41,500 depending on experience Location: Eastleigh Information Security Assurance Specialist: At Ageas, we are committed to protecting our customers, employees, and systems through robust information security practices. We are seeking a Information Security Assurance … and Architecture Specialist to join our growing team. This role is critical in ensuring our security architecture aligns with business goals and regulatory requirements, while also providing assurance over the effectiveness of our security controls. Reporting into the Assurance and Architecture Manager, you will be responsible for supporting and operating the day-to-day activities relating to … security, initiatives, controls and governance processes. This role is a combination of internal consultancy, change management and assurance activities to provide confidence to the business that we are meeting our security goals. You will act as the bridge between our technical teams and operational functions and are therefore required to have excellent communication skills, including the ability to More ❯

Information Security Risk & Compliance Specialist About CyberArk : CyberArk (NASDAQ: CYBR ), is the global leader in Identity Security . Centered on privileged access management, CyberArk provides the most comprehensive security offering for any identity - human or machine - across business applications, distributed workforces, hybrid cloud workloads and throughout the DevOps lifecycle. The world's leading organizations trust … the Role: We are seeking a highly motivated and detail-oriented GRC Compliance Expert to join our Governance, Risk, and Compliance team. This role is pivotal in supporting customer security assessments during RFx processes, driving compliance initiatives including DORA , NIS2 , and other regulatory frameworks, and assisting with broader GRC activities across the organization. The ideal candidate is a self … located in our office in London. We ask to come to the office twice per week. Support the sales and legal teams during RFx processes by responding to customer security questionnaires, assessments, and due diligence requests. Coordinate and manage responses to customer security audits and assurance inquiries. Monitor regulatory changes and contribute to compliance initiatives such as DORA More ❯

value everybody for who they are and what they bring to the table, supporting one another as we continue to deliver for our customers. LI-KS1 Create & Maintain an information security management system (ISMS) capable of demonstrating compliance against internal security requirements and external commitments including certification and regulatory requirements. Provide subject matter expertise in the application … to any new or existing programme of work. Prepare and support internal and/or external compliance audit activities. Manage remediation of any audit (internal & External) non-conformities. Ensure security policies (on a risk-based approach) are produced, signed off by relevant stakeholders, published, and communicated. Also, ensure that policies are managed throughout their lifecycle and updated through yearly … or ad-hoc reviews. Produce relevant security standards documentation in consultation with Technical teams. Lead on providing information to Three UK Customers (B2B) regarding Three UK's security practices. Support proactive and effective oversight of technology and security risk management frameworks, methodologies, processes, assurance, remediation, and reporting activities across the company. Assist in designing, building, and More ❯

connects us. It brings people together from around the world to share in unforgettable moments. At Sportradar, we harness this power to shape the future of sports technology. Our Information Security GRC team plays a critical role in protecting the trust and integrity that underpins our services. We are seeking a skilled and dedicated Information Security GRC Specialist to help drive the maturity of our Information Security Management System (ISMS), lead initiatives across risk and compliance domains, and strengthen third-party risk and business continuity capabilities. Sportradar is a global company. The role is hybrid with three office days per week and can be based in the following locations: Trondheim, London or … Warsaw. THE CHALLENGE: As an Information Security GRC Specialist, you will: Collaborate in a dynamic, fast-paced environment, contributing across all key GRC domains. Maintain and enhance the ISMS aligned with ISO/IEC 27001 and related standards. Develop, implement, and manage information security policies, standards, and procedures. Support the organization-wide adoption of security More ❯

right conditions for long-term success. We welcome all applications regardless of race, colour, religion or belief, gender, gender identity, age, national origin, marital status, military veteran status, genetic information, sexual orientation and physical or mental disability. The Role Working as part of a global information security team, and reporting into our Chief Information Security Officer, you will be a proven self-starter, have excellent organisational and communication skills, have a genuine passion for cyber security and be calm under pressure. You will be engaging directly with the appropriate Business or Technology teams to ensure new products, services, applications, third party relationships have been assessed for compliance with our policies and controls and … that any identified risks are appropriately addressed. Here’s what you’ll be doing: Working under the direction of the GRC Lead, contribute to the maintenance of our Information Security Management System (ISMS) based on NIST CSF. Participate in security risk assessments; collaborate on the development of mitigation plans, and work with internal stakeholders to assign and More ❯

health. We provide a range of expert services across the drug development lifecycle to pharmaceutical and biotech companies, supporting them in finding treatments for patients. Skills and Attributes IT Security Management Description Information Security Specialist Business Unit : Central Services Open To : Internal and External Applicants Ref No.: HRJOB10191 The Role The Information Security Specialist supports the operation of the Information Security Management system that defends mission critical information and 24 x 7 systems at all Almac sites. As part of a busy team within a rapidly growing organisation, operating within a challenging industry, you will benefit from the numerous personal and professional developmental opportunities available throughout the Almac group. Key …/IE OR possess a valid work permit that will allow you to take up full-time employment in the UK/IE Bachelor’s Degree (or equivalent) in Information Technology or a similar technical related field OR Significant relevant experience Significant experience of working in a similar Information Security role Expertise in firewalls, SIEM, and IPS More ❯