1 to 25 of 50 Information Security Jobs in Berkshire

Information Security Manager – Information Security, ISO 27001, Data Governance, Data Quality, Data Protection, GDPR, Data Strategy & Architecture, Varonis, Microsoft Purview, Power BI, Stakeholder Management, London (Hybrid) £70,000 + Benefits This is a fantastic Information Security Manager opportunity to work with a leading engineering services organisation, to lead the development and execution of information security and data governance frameworks to ensure information and data is accurate, secure, and supports confident, informed decision-making. The Information Security Manager is a hybrid working role, initially in the London office 4 days p/w, dropping to 3 days p/w following successful probation. As the Information Security Manager … you will play a critical role in maintaining information and data quality, security, and regulatory compliance, responsible for the strategic oversight of the organization's information security and data governance framework. Credible experience in data governance, GDPR, and a track record of overseeing and applying information security and data governance frameworks (ISO 27001) and More ❯

Information Security Analyst Hyrbrid Working Offered **Note Preference will be given to candidates from a financial services/banking environments** Salary: Up to £65,000 Purpose of the Role Supporting the organisation’s Information Security function by helping to develop, operate, and improve its Information Security Management System (ISMS). The role is responsible … for providing advice, assurance, and oversight to reduce risks that could compromise the confidentiality, integrity, and availability of business systems and data. Experience in designing and monitoring security controls is essential, supporting compliance with industry standards and regulation, and ensuring alignment with group-wide information security practices. Key Responsibilities Carry out assurance activities to measure compliance with … security policies and control objectives, identifying gaps and opportunities for improvement within the first line of defence. Record, track, and report on findings from security reviews, audits, and incidents, including the preparation of management information and risk reporting. Develop, update, and deliver information security awareness training to ensure all employees understand their obligations and responsibilities. More ❯

Job summary We are seeking a highly skilled and motivated Information Security Analyst to join our Digital Data & Technology (DDaT) team. This is a pivotal role supporting the Chief Information Security Officer (CISO) in delivering cyber security services across the Trust and wider health and care system. The role will support the CISO in delivering … digital safety, security and overall improvement, adhering to the Target Operating Model. The Information Security Analyst will manage the delivery of all cyber security related services. This will include cyber risk management, Data Security Protection Toolkit (DSPT) compliance against cyber relatedassertions, policy and procedure lifecycle management, and ensuring theTrust's information compliance adheres to … the Cyber Assurance Framework (CAF) and ISO27001. Main duties of the job Provide expert guidance on the selection, design, justification,implementation and operation of Cyber Security strategies, technologies,processes, procedures and standards. Support the development of controlsand management approaches to maintain the safety, confidentiality,integrity, availability and security of the Trust's digital infrastructure andsystems; including the protection More ❯

Job Title: Information Security Architect Location: London Hybrid Working: 50% Remote/50% Office Leading Financial Services/FinTech are seeking a highly technical and broad Information Security Architect to join their security architecture team. This is a key position responsible for ensuring that the design, delivery, and operation of systems and services meet the … highest security architecture and compliance standards. Information Security Architect will provide architectural leadership across multiple security domains — combining deep hands-on technical security expertise with strategic enterprise security architecture thinking. You will play a critical role in embedding security throughout the technology landscape, from solution-level security reviews to security solutions … and enterprise-wide security architecture standards. This role requires a balance of security solution architecture, technical review and assurance, and enterprise security architecture skills. You will define and validate security controls, assess new technologies, perform security design reviews, and ensure security-by-design principles are consistently applied across hybrid, on-premise, and cloud environments. More ❯

Information Security Manager £70,000 - £75,000 PA Central London A well-established construction engineering business is seeking an experienced Information Security Manager to join them on a permanent basis. You’ll be joining at a critical time as the organisation expands its technical capability, with ambitious growth plans and multiple acquisitions planned over the coming … years. The Information Security Manager will play a pivotal role in both the technical cyber security environment and the wider information security and data governance framework for the business. This includes ownership of the entire data lifecycle, from ingestion to delivery, ensuring accuracy, security, compliance and enabling confident, data-driven decision-making. This role … is responsible for ensuring robust cyber security controls, with a strong emphasis on ISO 27001 readiness and accreditation. You will liaise with assessors and internal teams, drive ISO-related strategies and ensure certification plans stay on track. In addition, you will develop and implement the company’s data governance strategy, ensure GDPR compliance and define policies and procedures for More ❯

Job summary We are seeking an experienced and visionary Head of Security to lead the Trust's cyber, information security, resilience, and governance strategy. This senior leadership role sits within the Digital Data & Technology (DDaT) team and plays a critical part in safeguarding patient and organisational data, enabling secure digital transformation, and aligning local strategies with ICS … and national initiatives. The postholder will act as the Deputy Senior Information Risk Owner (SIRO) and provide strategic and operational leadership across architecture, infrastructure, live services, cyber security, and information governance. Main duties of the job Develop and implement a comprehensive cyber and information security strategy across the Trust and ICS. Lead risk management, resilience … cyber threats are integrated into resilience planning. Manage budgets, business cases, and funding proposals for cyber initiatives. Promote a culture of continuous improvement, training, and professional development across the security function. Deputise for the Associate Director of Digital Operations when required. About us Diversity makes us interesting... Inclusion is what will make us outstanding. Inequality exists and the journey More ❯

Information Security Officer 📍 London (Hybrid) | 💼 Permanent, Full-time Salary - £60,000 - £70,000 p/a + Benefits About the Role A leading digital bank is seeking a talented and ambitious Information Security Officer to join its growing Cybersecurity Department. This is a key role acting as the bridge between the bank’s London operations and … the Group’s Cyber and Information Security team. You will play a pivotal part in ensuring that cybersecurity controls are effectively implemented, risks are well-managed, and the bank’s information assets remain secure. The ideal candidate will combine strong technical understanding with strategic insight — ensuring the integrity, confidentiality, and availability of critical information while supporting … the business in achieving its goals securely. Key Responsibilities Ensure compliance with Group Cyber and Information Security requirements. Act as the first point of contact for all cybersecurity-related requests in the London office. Perform compliance reviews and oversee remediation of cybersecurity weaknesses. Coordinate security testing, incident management, and reporting of key cybersecurity metrics (KPIs/KCIs More ❯

Cantor Fitzgerald’s Global Information Security team is seeking an Information Security Identity Engineer. The successful candidate will need to be able to work in a fast-paced environment, planning, coordinating, and executing all facets of our program. Responsibilities will include: Strong experience with authentication systems such as LDAP, MS Active Directory, Kubernetes, and Microsoft Entra … solutions like SailPoint, IBM, Oracle, etc. Partner with DevSecOps teams to embed IAM best practices into CI/CD pipelines, automating identity governance and access controls. Define and enforce security and identity policies across cloud platforms. (AWS, Azure, GCP) Document system configurations, standards, and procedures in a centralized location. Support Incident Response on security incidents globally, including contributing … to table-top security incident exercises. Advise project teams, application owners, infrastructure services, and other digital Information Technology teams on information security controls. Continually improve team documentation, including solution run books, architecture, knowledge base articles, FAQs, SharePoint. Provide evidentiary support for Audit and Compliance teams. Manage the remediation process including tracking and resolutions of findings from More ❯

Lead Information Security Analyst We’re partnering with a leading digital business that takes cyber risk seriously. Their InfoSec team is award-winning, collaborative, and one of the most gender-diverse in the industry. They’re looking for a Lead Information Security Analyst to strengthen their security governance, risk, and compliance functions — ensuring customer data … and company systems remain secure while leading a small, capable team of analysts. What you’ll be doing: • Leading and supporting all aspects of security governance activities – from policy and exception management to risk and vendor assessments • Managing compliance and audit activities (ISO 27001, NIST, PCI DSS, NYDFS, etc.) and working closely with tech, legal, and audit teams • Overseeing … major projects to ensure security is baked in from inception to implementation • Coaching and developing a team of Information Security Analysts, fostering a proactive and high-performing culture • Acting as a hands-on leader who can balance strategy, delivery, and stakeholder engagement What you’ll bring: • Strong background in GRC (Governance, Risk, and Compliance) within cybersecurity • Practical More ❯

The work we do matters We protect and defend our customers and communities by providing the most comprehensive range of cyber security professional services in the region. With more than 1,400 team members across Australia, New Zealand, the UK and US, we are a leading force in cyber security, offering services from strategy, GRC, managed security services, cloud security, digital forensics and cyber education. If you’re ready to work with teammates that get you, a leader that supports you and customers that need you, then you’re ready for CyberCX. How you will make an impact The Senior Consultant will be responsible for engaging with customers to solve their most challenging cyber security problems, protect their future, and empower them to thrive in an uncertain world. This role requires an experienced cyber security professional capable of leading client meetings and producing high-quality deliverables with minimal supervision while also using their business acumen to identify new opportunities and support business development activities including proposals and presentations. ISO specialism is required. Day More ❯

Location: London/Leicester/Essex Hybrid: 2-3 days in office Our client is financial service company. They are looking for a passionate and detail-oriented Information & Cyber Security Executive to join the teams. The role encompasses all aspects of information security including organisational security and governance, people security, physical (site) security and technical security controls. The role will assess evolving technologies and threats and communicate the risks. They offer salary up to £80k base + £5k car allowance and other benefits. What You'll Do Assess compliance with internal security policies and industry standards (eg, ISO/IEC 27001/2, PCI-DSS). Conduct supplier risk assessments … and third-party due diligence. Support vulnerability assessments, incident investigations, and operational resilience activities. Monitor the effectiveness of security controls to ensure confidentiality, integrity, and availability (CIA). Assist with security certifications and regulatory frameworks including GDPR. Translate technical risks into clear, business-friendly advice. Stay on-call during scheduled weeks for incident support and response. Requirements Essential More ❯

We are seeking an experienced Head of Custody Security to lead our efforts in ensuring robust security for digital asset custody and blockchain infrastructure. This role will focus on designing and implementing security controls, supporting client assurance, and ensuring compliance with regulatory standards. The ideal candidate is a strategic thinker with deep expertise in security assurance … audit, and cloud security, and a passion for advancing Web3 and blockchain technologies. Key Responsibilities Design, conduct, and implement testing of security controls for identity management, key management, and infrastructure (network and cloud) configurations. Support client assurance by preparing responses to Requests for Proposals (RFPs), Requests for Information (RFIs), and Due Diligence Questionnaires (DDQs). Analyze trends … in client inquiries and provide actionable feedback to internal teams to enhance documentation and control readiness. Perform security due diligence and ongoing monitoring of Web3/blockchain vendors, including assessing control maturity, reviewing SOC reports, and identifying residual risks. Facilitate external audit activities, coordinating walkthroughs, evidence collection, and response tracking. Identify and analyze gaps in current and new processes More ❯

Logiq is a fast‐growing technology company delivering secure, modern platforms for high‐risk, mission‐critical environments across the private sector and UK Central Government. We are expanding our Security Architecture capability and seeking experienced Principal Security Architects who can shape, assure, and enable delivery of secure, cloud‐native services at scale. You will be comfortable working across … to live, serving as a trusted “customer friend”. You’ll partner with engineering, product, and senior leadership to embed Secure by Design, de‐risk complex change, and simplify security for decision‐makers. A strong grasp of how contemporary cloud‐native services (containers, Kubernetes, microservices/serverless, identity, secrets, and zero trust patterns) are designed and implemented is essential … to success in this role. Our consultants lead parallel workstreams spanning security engineering and assurance, maintain day‐to‐day client engagement, and contribute to presales and bid activity when needed. What you’ll do Secure product & platform delivery (cloud‐native focus) • Provide hands‐on cyber consultancy across digital product lifecycles, championing Secure by Design and privacy‐by‐default. • Conduct More ❯

McFall Recruitment are partnering with a Financial Services company seeking a pragmatic and experienced Head of Cyber Security Governance, Risk & Compliance to lead and evolve our global Information Security control framework. This pivotal role will shape the resilience, responsiveness, and maturity of our Information Security function across all regions and business units. Reporting directly to … the Chief Information Security Officer (CISO) , you’ll play a key leadership role in transforming Cyber Security —enhancing people, processes, and technology to protect the business and maintain operational resilience. What you’ll do Lead the global Cyber Security risk management programme , driving best-in-class governance and compliance. Develop and maintain cybersecurity policies, standards, and … oversee treatment planning. Embed cyber risk into enterprise risk frameworks through collaboration with global teams. Oversee vendor risk management and ensure third-party compliance. Chair and lead the Cyber Security Digital Resilience Forum . Support the NIST maturity uplift programme and alignment with ISO 27001:2022 . Ensure compliance with key regulatory standards (e.g. DORA, GDPR, MAS, CPS230, SOX More ❯

IT Security Engineer Feltham (Hybrid) £50,000 Base + Benefits Overview The IT Security Engineer is responsible for designing, implementing, and maintaining the security controls that protect the organization’s systems, networks, and data. This role works closely with IT, DevOps, and business teams to ensure that security is embedded throughout technology operations and architecture. The … IT Security Engineer is key to detecting, preventing, and responding to cybersecurity threats in a proactive and efficient manner. Key Responsibilities: Security Architecture & Implementation Design, deploy, and manage security solutions including firewalls, intrusion detection/prevention systems, endpoint protection, SIEM, and identity management platforms. Implement secure network architecture and enforce segmentation and least-privilege access controls. Support … secure cloud environments across Azure, AWS, or GCP (e.g., IAM, security groups, encryption, KMS). Threat Detection & Incident Response Monitor and analyze security alerts and network traffic for threats or suspicious activity. Lead or support incident response activities: investigation, containment, eradication, recovery, and reporting. Conduct root cause analysis and implement security hardening improvements. Vulnerability & Risk Management Run More ❯

eligible items selected by employees, our mental and financial health resources, and our personalized learning opportunities - just to name a few! Job Description The Principal Consultant on the Offensive Security team is focused on assessing and challenging the security posture across a comprehensive portfolio of clients. The individual will utilize a variety of tools developed and act as … to automate and streamline internal processes and engagements Conducts IT application testing, cybersecurity tool and systems analysis, system and network administration, and systems engineering support for the sustainment of information technology systems (mobile application testing, penetration testing, application, security, and hardware testing) Conduct threat hunting and/or compromise assessment engagements to identify active or dormant indicators of … Azure, containers, or other PaaS and SaaS instances) for vulnerabilities and subsequently attempt to exploit identified weakness after receiving permission from client stakeholders Provide recommendations to clients on specific security measures to monitor and protect sensitive data and systems from infiltration and cyber-attacks including response and recovery of a data security breach Ability to perform travel requirements More ❯

Cantor Fitzgerald’s Global Information Security team is seeking an Information Security Operations Engineer with background and knowledge of Linux systems and Cloud infrastructure. The successful candidate will need to be able to work in a fast-paced environment, planning, coordinating, and executing all facets of our program and will play a critical role in detecting … responding to, and mitigating security threats across enterprise environment. Responsibilities will include: Monitor, analyze, and respond to security events and incidents using SIEM and other security tools. Develop and maintain detection rules, playbooks, and automation scripts to improve incident response efficiency. Perform threat hunting and forensic investigations across IT environment. Collaborate with infrastructure and application teams to … documents. Develop and maintain a strong partnership with relevant global businesses and technical leaders and teams, including 3rd parties and affiliate businesses. Stay current with emerging threats, vulnerabilities, and security technologies. Qualifications and Skills: Education Bachelor's Degree in MIS, CIS, Cybersecurity or similar. At least five years of Security Operations. At least three years of Linux Administration. More ❯

Security Consultant – GRC (Governance, Risk & Compliance) Location: Reading (Remote role with once or twice per month on-site) Rate: Negotiable (DOE) Contract: Until May 2026An excellent opportunity has arisen for an experienced Security Consultant (GRC) to join a global technology organisation that’s expanding its EMEA cyber security consulting practice and investing heavily in a new Centre … of Excellence.This is a hands-on consulting position delivering Governance, Risk and Compliance (GRC) projects for major enterprise clients — including risk management, cloud security governance, and compliance frameworks such as ISO27001, NIST CSF, CIS Top 18 and COBIT .You’ll play a key role in engaging with senior stakeholders, assessing cyber maturity, and driving best-practice improvements across a … of industries. Key Responsibilities Deliver Cyber GRC consulting engagements end-to-end — from scoping and planning through to delivery and close-out. Provide advisory services covering areas such as Information Security Governance, Risk Management, Compliance, Business Continuity, and Cloud Security. Translate complex security and compliance requirements into actionable business solutions. Build trusted relationships with clients at both More ❯

join their Data Risk Team within Risk & Compliance, based in London, Edinburgh, Chelmsford or Manchester. This is a fantastic opportunity to support the global management of data, privacy, and information risk - particularly across areas like information security, emerging technologies (including AI), and regulatory compliance. You’ll collaborate with stakeholders across the firm, including General Counsel, Information Security, and Emerging Tech Risk teams, helping to shape best practices and ensure compliance with regulations such as UK/EU GDPR, DORA, HIPAA, and EU AI Act. The role offers a dynamic mix of hands-on risk management, internal auditing, and strategic input into global processes. It’s ideal for someone with a solid foundation in data More ❯

explain the impact of technical issues to non-technical stakeholders Providing supervision and guidance to development teams to ensure project success. Compliance and Security: Working closely with the Infosec Security manager to ensure compliance to the required standards and supporting improvement initiatives and protecting the business from risks arising from data loss. To support and contribute actively to … health and safety, environmental, business continuity and information security arrangements that meets our obligations to our customers Technical Skill Proven Experience working within Azure API Management Integration API REST API Power Platforms Our commitment to Equity, Diversity, and Inclusion (EDI) is fundamental to our success. We strive to cultivate an inclusive environment where every employee feels valued, respected More ❯

larger companies (e.g. FTSE 100) Exposure to infrastructure and multi-platform environments; preferably within the energy or utility sector. Ability to demonstrate stakeholder management at most levels, including management, Information Technology colleagues and business representatives. Explaining to and communicating with both non-technical and very technical audiences You should have awareness of common Information Security management frameworks … such as ISO 27001, COBIT, Information Security Forum and NIST. If you are available and interested, please apply today More ❯

larger companies (e.g. FTSE 100) Exposure to infrastructure and multi-platform environments; preferably within the energy or utility sector. Ability to demonstrate stakeholder management at most levels, including management, Information Technology colleagues and business representatives. Explaining to and communicating with both non-technical and very technical audiences You should have awareness of common Information Security management frameworks … such as ISO 27001, COBIT, Information Security Forum and NIST. If you are available and interested, please apply today More ❯

that all documents, trackers, and related materials are kept up to date and stored appropriately in the correct drives Assist with any additional tasks or responsibilities as needed Maintain information security by complying with the company's Information Security Management System (ISMS) and all relevant policies About you: Experience: Project scheduling and coordination experience is an … be advantageous Personal Attributes: Possesses good written and verbal communication skills and the ability to communicate complex technical issues to non-technical clients. Keen to research new products and information around technical solutions that could provide answers and solve problems that benefit the whole team. Feel that every day is a day of learning and knowledge. Harnesses pressure to More ❯

we unfortunately are not able to provide visa sponsorship. ⚠️ ⚠️ Also, this is an experienced hire role. Please do not apply if you are seeking your first role in cyber security - look out for our Graduate SOC Analyst roles instead ⚠️ What we’re offering (saves you scrolling straight to the bottom): Salary: £40,000–46,000 depending on experience Shares … Budget for one certification/course per year Socials: We meet regularly to have a drink, throw some axes Start Date: ASAP About CyPro: We are an innovative cyber security start-up united in a shared mission: to redefine cyber security for small and medium-sized businesses (SMBs). Our Founders – Jonny & Rob – spent most of their early … careers delivering cyber security for large enterprises and central government. They saw a clear need for a new approach to cyber security as SMBs became increasingly targeted by cyber criminals. By 2022, SMBs accounted for 75% of attacks, largely due to being easy targets. Together, CyPro is already setting new standards, defining innovative solutions and equipping its clients More ❯

challenge across the organisation’s principal risks — including credit, financial, and operational risks. The Technology and Change Risk Team is responsible for risk oversight of IT Risk, Data Risk, Information Security, Change Management, Operational Resilience, and Intra-Group Risk. The team also ensures there is a consistent and objective view of all technology-related risks, as well as … Proven experience working directly with senior Technology leadership (e.g., Heads of Functions or equivalent). Advanced understanding of Technology and Change Risk disciplines such as IT Risk, Data Risk, Information Security, IT-led and Business-led Change, IT Resilience and Recovery, and Intra-group Risks across both operational and transformation activities. Prior experience within a regulated environment with More ❯