Can you work as a part of a dedicated InformationSecurity team, contributing to security-related initiatives? My client is an (re)insurance firm partnered with a global financial institution who are managing intricate risks and are innovating a method to blend data, advanced automation, and human … audit and assurance tasks. Manage and report IT risks. Collaborate with key stakeholders (Procurement, Delegated Authority, Compliance, Risk, Operations, Technology Services). Contribute to security initiatives within the InformationSecurity team. Conduct third-party cybersecurity maturity assessments and provide feedback. Develop and report informationsecurity metrics. About you Demonstrable background in InformationSecurity/Security Assurance. Experience conducting cyber maturity assessments and managing findings. Strong communication, influencing, and relationship management skills. Experience in IT Audit/Recertifications (e.g., access control reviews) is desirable. Ability to produce management information for reporting. more »
InformationSecurity Officer Key Responsibilities: - Perform security assessments for vendors and projects, identifying risks and recommending mitigation strategies. - Ensure compliance with security policies and standards in all vendor and project activities. - Develop and maintain frameworks for security assessments. - Stay updated on emerging security threats … and industry trends. - Participate in incident response and investigations. - Collaborate with procurement to evaluate and manage vendor security. - Review vendor documentation to assess security posture. - Apply risk management principles to prioritize and mitigate security risks. - Support the development and enforcement of security policies and procedures. - Conduct security awareness training for staff. Skills and Experience: - Over 5 years of informationsecurity experience. - Preferred certifications: CISA, CISM, or CISSP. - Strong knowledge of security principles, standards (e.g., ISO 27001, NIST), and best practices. - Experience in security assessments and risk management. - Familiarity with regulatory requirements (e.g. more »
Active SC Clearance requried* Job Summary: The Security Lead will oversee the security aspects of the Oracle Cloud Fusion migration, ensuring that all data and systems are secure throughout the process. This role involves developing security strategies, implementing security controls, and monitoring compliance with security standards. Responsibilities: Develop and implement a comprehensive security strategy for the Oracle Cloud Fusion migration. Ensure compliance with all relevant security standards and regulations. Identify potential security risks and develop mitigation plans. Implement security controls and monitoring mechanisms to protect data and systems. Conduct security audits and assessments to ensure the integrity of the migration process. Provide training and guidance to the project team on security best practices. Monitor and respond to security incidents during and after the migration. Qualifications: Bachelor's or Master's degree in Cybersecurity, InformationSecuritymore »
Technical InformationSecurity Consultant required for market-leading financial services firm. The role will be centred on ensuring security is delivered into a wide range of projects. There will be a focus on working closely with DevOps teams and embedding security throughout a software development life … cycle. Responsibilities: Act as the main security point of contact & SME for required projects Manage security risk for the whole project life cycle Perform security activities, including but not limited to, security design reviews, risk assessments, threat modelling, and vulnerability management and risk mitigation on internally … externally developed software Embedding security within DevOps (eg CI/CD pipelines), developing security requirements On-demand Security assessment of various components like Web apps, Containers, Platforms etc Reviewing security assessment reports and create a remediation pipeline Experience in web application security assessments like SAST more »
Office 365 Infrastructure Security Engineer - Azure, Security, O365, McAfee EPO My client are a Global Manufacturing company who are looking for a Office 365 Security Infrastructure Engineer. This role you will work closely with the European Network and Security Manager working on O365 and Azure. The … company is looking for someone looking to progress from day to day 1st/2nd line support into the security side of the business and build on an existing informationsecurity program as well as ongoing security projects that address informationsecurity risks and … tolerances, recommend treatment plans and communicate information. You will need to have ideally worked within a global business and dealt with dealing with Infrastructure Security on a 5000+ users scale. This is a hybird role onsite 2-3 days a week onsite in London and Harlow. Key Skills MS more »
City of London, London, United Kingdom Hybrid / WFH Options
Marston Holdings Ltd
technology-enabled solutions from design and implementation to management and recovery. The Role & Key Responsibilities In this role you will proactively identify and mitigate security vulnerabilities within our digital infrastructure. This role is crucial in maintaining the integrity, confidentiality, and availability of our systems and data, ensuring robust defence … mechanisms against potential cyber threats. Conduct comprehensive penetration tests and vulnerability scans on network infrastructure, applications, and other critical systems Identify, analyse, and report security vulnerabilities in a clear and actionable manner. Develop and maintain security testing methodologies and protocols. Collaborate with the IT, external support and internal … development teams to remediate identified vulnerabilities. Provide technical guidance and support during security incidents and investigations Participate in security audits and compliance assessments Contribute to the development of security policies and procedures. Assist in the implementation of security tools and technologies. Person Specification Bachelor's degree more »
About us Information Services Division (ISD) is the primary provider of IT services to UCL. We support and enhance learning, teaching, research and administrative processes by providing information- and technology-related services to over 50,000 staff and students of UCL and associated institutions. Our goal is to … be the leading IT services group in the HE sector and we are growing our team's capability in experience/UX, agile development, security, cloud, service management and partnering. We are modernising our technology foundations, digitising the processes of the university to transform experience for students and staff … candidate will have the ability to lead the team to develop network solutions through all stages of the product lifecycle alongside colleagues from Architecture, InformationSecurity, and other relevant areas. Coming from a strong technical background, the candidate will have good knowledge and management experience across a breadth more »
and delivery of a broad range of resilience tests. Producing clear and accurate MI and reporting by way of Operational Resilience dashboards. Support the Security Due Diligence process. Provide support for Internal and External audits and reviews. Assist with the development and maintenance of the IT Control Framework Play … Experience of Business Continuity and Disaster Recovery Experience operating within Operational Resilience Has worked in or has an interest in IT Compliance Understanding of InformationSecurity best practice and its implementation Prior experience of working with Internal and External Auditors in a regulated environment Enjoys problem solving, able more »
a deep technical level, communicate with stakeholders, and provide guidance and leadership. The Responsibilities C-Suite Stakeholder and Vendor Management. Leading the team in security tasks. Getting stuck in with hands-on work, for example, helping automate IAM/JLT processes using Python against an API. Essential experience A more »