relationships. As the local Cyber management presence, provide guidance and support for the area. Key Tasks and Responsibilities: Review, analyze, design, and advise on security controls, configurations, and implementations for IT projects Continuously improve the integration and effectiveness of implemented technologies Maintain awareness of cybersecurity threats, events, tactics, techniques … tracking, remediation for identified cybersecurity operational weaknesses Identify, create and mature cybersecurity operations processes Work with IT risk assessment function to ensure the proper security configurations and controls are implemented for IT projects Provide pros/cons of security solutions impact business strategies Create documentation of findings and … CIRT) activities. Assign work to Cyber SOC for remediation Escalate pertinent findings in a timely manner Leverage vendors and internal resources to interface various security tools to automate critical response tasks Support Compliance managers in providing Cybersecurity artifacts Align information cybersecurity operations with NIST, and ISO 27001 requirements Establish more »
Title: Lead Product Security Engineer Location: Hybrid Remote (Central London Office); Sector: Finance/Retail, Apparel and Fashion Salary: Banding of £85,000 - 115,000 per year plus package (to be discussed during vetting call). Please note that to apply for this opportunity, you must be a British … may arise. Demonstrate exceptional communication skills, capable of effectively conveying information to both technical and non-technical key stakeholders. Own and manage the Information Security relationship with an identified portfolio of change initiatives within the organisation. Identify situations where additional Information Security support is required from areas such … as Security Architecture, Security Design, or Security Engineering, and facilitate the necessary engagement. Provide comprehensive security requirements and guidance to support the change activities within the assigned portfolio. Collaborate with the Governance, Risk, and Compliance (GRC) team to inform on risk, compliance, and assurance matters related more »
london, south east england, United Kingdom Hybrid / WFH Options
InfoSec People Ltd
Title: Lead Product Security Engineer Location: Hybrid Remote (Central London Office); Sector: Finance/Retail, Apparel and Fashion Salary: Banding of £85,000 - 115,000 per year plus package (to be discussed during vetting call). Please note that to apply for this opportunity, you must be a British … may arise. Demonstrate exceptional communication skills, capable of effectively conveying information to both technical and non-technical key stakeholders. Own and manage the Information Security relationship with an identified portfolio of change initiatives within the organisation. Identify situations where additional Information Security support is required from areas such … as Security Architecture, Security Design, or Security Engineering, and facilitate the necessary engagement. Provide comprehensive security requirements and guidance to support the change activities within the assigned portfolio. Collaborate with the Governance, Risk, and Compliance (GRC) team to inform on risk, compliance, and assurance matters related more »
Microsoft Security Consultant Location:- Remote, visits to office locations/customers when required. Salary:- £60-70k + 10% Bonus + Bens dep on exp and certifications Environment:- Architecture, LLD, Implementation, Microsoft Defender, Microsoft Azure Security Centre, Azure, Intune, Endpoint Protection Platforms, EDR, SIEM, SOC, Risk Assessments, MDM … IAM, Customer Facing, Configuration. My client, a prestigious provider of managed services is looking to hire at Microsoft Security Consultant/Architect with strong LLD and Implementation skills. The ideal candidate will have a deep understanding of security principles, excellent problem-solving skills, and a proactive approach to … identifying and mitigating security risks. Day to Day Duties Include:- As a Security Consultant/Architect you will liaise with customers on a consultancy basis, designing bespoke solutions for communicated problems. Working with the wider Security team, you will oversee the implementation of solutions and will provide more »
Technical Information Security Consultant required for market-leading financial services firm. The role will be centred on ensuring security is delivered into a wide range of projects. There will be a focus on working closely with DevOps teams and embedding security throughout a software development life cycle. … Responsibilities: Act as the main security point of contact & SME for required projects Manage security risk for the whole project life cycle Perform security activities, including but not limited to, security design reviews, risk assessments, threat modelling, and vulnerability management and risk mitigation on internally & externally … developed software Embedding security within DevOps (eg CI/CD pipelines), developing security requirements On-demand Security assessment of various components like Web apps, Containers, Platforms etc Reviewing security assessment reports and create a remediation pipeline Experience in web applicationsecurity assessments like SAST more »
london (city of london), south east england, United Kingdom
Barclay Simpson
Technical Information Security Consultant required for market-leading financial services firm. The role will be centred on ensuring security is delivered into a wide range of projects. There will be a focus on working closely with DevOps teams and embedding security throughout a software development life cycle. … Responsibilities: Act as the main security point of contact & SME for required projects Manage security risk for the whole project life cycle Perform security activities, including but not limited to, security design reviews, risk assessments, threat modelling, and vulnerability management and risk mitigation on internally & externally … developed software Embedding security within DevOps (eg CI/CD pipelines), developing security requirements On-demand Security assessment of various components like Web apps, Containers, Platforms etc Reviewing security assessment reports and create a remediation pipeline Experience in web applicationsecurity assessments like SAST more »
Manchester, North West, United Kingdom Hybrid / WFH Options
Erin Associates
Security Development Analyst Fully Remote - £35-45k Join a successful organisation as a Security Development Analyst. You'll review code, conduct security tests, and collaborate with key stakeholders within Software development. Candidates must be able to review code written in Java & C#. Key responsibilities for this … IT Security role Code analysis and applicationsecurity reviews. Dynamic ApplicationSecurity Testing (DAST) Identifying and addressing security vulnerabilities Working with stakeholders to enhance processes. Core skills & experience for this Security Analyst role: Security review methodologies: SAST, DAST, SBOM, SCA Implementing security tooling in CI/CD pipelines Threat modeling Code review (Java or C#) Familiarity with security frameworks like PCI, ISO 27001, Cyber Essentials This company offers structured training, career development opportunities, and competitive compensation including incentives. For more details, call 0161 438 1177 or follow us on Twitter more »
stoke-on-trent, midlands, United Kingdom Hybrid / WFH Options
bet365
Who we are looking for An Information Security Specialist who will focus on the technical side of IT Security, specifically looking at applicationsecurity and code analysis to ensure applications are built securely. The Information Security team deal with the security of closed-sourced … open-source and in-house written applications. The objective is to ensure that systems and services are built with privacy and security by design. You will be working closely with the Software Development team, to confirm that application based vulnerabilities are understood and mitigated. This is done from … a security assessment point of view rather than code QA, therefore code reading skills are desirable. The team comprises of a variety of individuals, ranging from graduates to time served engineers with backgrounds as sys-admin, networks, service operation as well as security. We use first-class, enterprise-level more »
reading, south east england, United Kingdom Hybrid / WFH Options
Oracle
Senior Principal Security Researcher Hybrid - 50% Reading, Berkshire Are you a passionate security researcher with experience assessing large, complex software products? We are looking for talented individuals who are excited about security research and developing creative solutions for some of Oracle’s most critical customers. Finding and … combining bugs to create new attacks is essential in this role. We are a world-class team of applicationsecurity researchers who love new challenges. We are an inclusive and diverse, with a full range of experience and a global reach. We have the resources of a large … start-up, and we’re working on a critical software assurance initiative with our cloud and mobile engineering teams. Our mission is to make applicationsecurity and software assurance a reality, at scale. We’re a dedicated team that leverages each other’s strengths to produce cutting-edge more »
Manchester, England, United Kingdom Hybrid / WFH Options
bet365
Who we are looking for A Senior Information Security Specialist to focus on the technical side of IT Security, specifically looking at applicationsecurity and code analysis to ensure applications are built securely. The Information Security team deal with the security of closed sourced … open source and in house written applications. The objective is to ensure that systems and services are built with privacy and security by design. You will work closely with the Software Development team to confirm that application based vulnerabilities are understood and mitigated. This is done from a … security assessment point of view rather than code QA, therefore code reading skills are desirable. The team comprises of graduates to time served engineers with backgrounds as sys-admin, networks, service operation as well as security. We use first-class, enterprise-level tools to identify threats to the systems more »
stoke-on-trent, midlands, United Kingdom Hybrid / WFH Options
bet365
Who we are looking for A Senior Information Security Specialist to focus on the technical side of IT Security, specifically looking at applicationsecurity and code analysis to ensure applications are built securely. The Information Security team deal with the security of closed sourced … open source and in house written applications. The objective is to ensure that systems and services are built with privacy and security by design. You will work closely with the Software Development team to confirm that application based vulnerabilities are understood and mitigated. This is done from a … security assessment point of view rather than code QA, therefore code reading skills are desirable. The team comprises of graduates to time served engineers with backgrounds as sys-admin, networks, service operation as well as security. We use first-class, enterprise-level tools to identify threats to the systems more »
manchester, north west england, United Kingdom Hybrid / WFH Options
bet365
Who we are looking for An Information Security Specialist who will focus on the technical side of IT Security, specifically looking at applicationsecurity and code analysis to ensure applications are built securely. The Information Security team deal with the security of closed-sourced … open-source and in-house written applications. The objective is to ensure that systems and services are built with privacy and security by design. You will be working closely with the Software Development team, to confirm that application based vulnerabilities are understood and mitigated. This is done from … a security assessment point of view rather than code QA, therefore code reading skills are desirable. The team comprises of a variety of individuals, ranging from graduates to time served engineers with backgrounds as sys-admin, networks, service operation as well as security. We use first-class, enterprise-level more »
Lead Security Architect - Application £80,000 - £95,000 + 10% bonus + benefits West Yorkshire/Hybrid Fruition IT are partnering with a UK national services provider who are going through change, and looking to bring in a skilled Architect to help them set direction and architecture roadmaps … Security. This is a newly created role within a structure of SME domain specialists. This a fantastic opportunity to really take ownership of the applicationsecurity domain and really be autonomous within that space, own the process and the business unit. The role: Setting the direction and implementing … architecture roadmaps. Be the SME specialist for Application Security. Be autonomous within ApplicationSecurity, take true ownership! Establish and advocate for security best practices. Take a lead, own the process and business unit. Act as the go-to expert, leveraging internal and external resources to deliver more »
of value to our 16.3 million Members and engage our 18,000 colleagues around new ways of working. We are looking for a (Senior) Security Consultant (dependant on skills and experience) to work in our Security Consultancy team. This role sits within our Security & Resilience function where … least two days per week, or if part time you'll spend 40% of your working time, at one of our offices. If your application is successful, your hiring manager will provide further details on how this works. You can also find out more about our approach to hybrid … working here. What you'll be doing As a Security Consultant you will be accountable for ensuring that services and change initiatives in the business areas you are aligned to are delivered in a secure and compliant manner. You’ll be working in a matrix manner with our business more »
burton upon trent, midlands, United Kingdom Hybrid / WFH Options
Clinigen
of issues and incidents. Participate in the upgrade/patching planning and execution of the Middleware software. Provide subject matter expertise (SME) for Issues, security related threats and vulnerabilities as it pertains to middleware. Participation in establishing and test disaster recovery policies and procedures across all Middleware environments. Ensure … and Release Management processes. Develop technical documentation and procedure on monitoring, performance. Lead problem determination on system errors or malfunctions and works with the application team/supplier to identify, diagnose and rectify the problem. Supports internal and external audit exercises for the maintenance of various certifications and contractual … new software or hardware solutions that may affect decisions on systems building or enhancements Role Requirements: ITIL Foundation-level knowledge. Experience in the following security domain areas; Vulnerability Assessment and Management, Security Risk and Compliance, Cloud Security Architecture, ApplicationSecurity, Security Operations Centre and more »
Key Responsibilities: Security Architecture Plans : Own and contribute to the organisation’s security architecture plans. Enterprise Architecture : Contribute to enterprise architecture plans. Network Architecture : Contribute to forward network architecture plans. Platform/Product Ownership : Own and strategize multiple security and compliance tools. Continuous Improvement : Identify areas for … improvement in Security Operations, IT Development, and Information Security teams, guiding engineering teams accordingly. Leadership : Provide architectural leadership for medium to large-sized initiatives. Collaboration and Advocacy : Work closely with IT teams to promote effective processes and policies. Mentoring : Provide training and mentoring to data, security, and … network engineers. Technical Scope: Security Domains : Architecture and strategy across IT security areas such as Identity & Access Management, SIEM/SOAR, Threat Prevention, Network Security, ApplicationSecurity, Data Privacy. Compliance : Ensure data security and compliance with relevant regulatory and security standards (e.g., NIST more »
Key Responsibilities: Security Architecture Plans : Own and contribute to the organisation’s security architecture plans. Enterprise Architecture : Contribute to enterprise architecture plans. Network Architecture : Contribute to forward network architecture plans. Platform/Product Ownership : Own and strategize multiple security and compliance tools. Continuous Improvement : Identify areas for … improvement in Security Operations, IT Development, and Information Security teams, guiding engineering teams accordingly. Leadership : Provide architectural leadership for medium to large-sized initiatives. Collaboration and Advocacy : Work closely with IT teams to promote effective processes and policies. Mentoring : Provide training and mentoring to data, security, and … network engineers. Technical Scope: Security Domains : Architecture and strategy across IT security areas such as Identity & Access Management, SIEM/SOAR, Threat Prevention, Network Security, ApplicationSecurity, Data Privacy. Compliance : Ensure data security and compliance with relevant regulatory and security standards (e.g., NIST more »
reading, south east england, United Kingdom Hybrid / WFH Options
Areti Group
Areti have partnered with a Leading Telco in Reading for a Security Consultants to work in one of the most exciting companies in the UK 🌳🌳🌳 Security Consultant (Multiple) 🌳🌳🌳 · Salary - Up to £70 - 78k · Location - Reading/Hybrid 2 days a week · Car - £6k · Bonus - 10% · Pension · Health Care … Experience required - I will provide more detail on application · Blend of security consulting, design, and professional services expertise · Lead the creation and assessment of secure system blueprints by applying established patterns and principles. Willing to question norms to establish new practices and guide the team's direction. · Understand … Ability to assess the ease or difficulty of exploiting these vulnerabilities. · Proficient in one or more of the following technical areas: Cloud/Hybrid security , Infrastructure and data center security, Network security, Applicationsecurity, Identity and access management , Vulnerability Management. · Skilled in defining and overseeing more »
strong commitment to sustainability and good corporate citizenship, we have over 250,000 dedicated employees serving clients across 66 countries. About the role: Experienced Security Engineer - Cloud WAF who has expertise in web applicationsecurity, content distribution and other IT infrastructure services. We expect the candidate to … experience with cloud services and their WAF controls, ideally including one or more of the following: AWS, Azure, and GCP Strong understanding of Web Applicationsecurity attack methods and mitigations Proficiency in WAF tuning and configuration, coupled with a strong foundation in web security principles and practices. … Develop custom WAF rules and features, addressing gaps and enhancing overall security measures Capability to design and implement bespoke WAF processes and documentation, underpinned by a thorough understanding of web application security. Analytical skills to review and align platforms with MVP and Baseline Configurations, leveraging a deep knowledge more »
strong commitment to sustainability and good corporate citizenship, we have over 250,000 dedicated employees serving clients across 66 countries. About the role: Experienced Security Engineer - Cloud WAF who has expertise in web applicationsecurity, content distribution and other IT infrastructure services. We expect the candidate to … experience with cloud services and their WAF controls, ideally including one or more of the following: AWS, Azure, and GCP Strong understanding of Web Applicationsecurity attack methods and mitigations Proficiency in WAF tuning and configuration, coupled with a strong foundation in web security principles and practices. … Develop custom WAF rules and features, addressing gaps and enhancing overall security measures Capability to design and implement bespoke WAF processes and documentation, underpinned by a thorough understanding of web application security. Analytical skills to review and align platforms with MVP and Baseline Configurations, leveraging a deep knowledge more »
Senior Pen Tester/ApplicationSecurity Tester 6 Month Contract Hybrid (occasional trips to the London office) Financial Services ASAP Start Date My Financial Services client is currently seeking for a Senior Penetration Tester to join the team. Responsibilities/Requirements: - Manually conduct applicationsecurity testing … on web applications on prem and AWS cloud reporting issues - Manage DAST ans SAST scanning tools - 6 years + experience within the security testing field - Hands on experience testing and explaining OWASP top 10 vulnerabilities - Previously worked within the financial services industry Logistics: - 6 Month Rolling Contract more »
The role holder will be a subject matter expert in DevSecOps approaches and best practices, playing a crucial role in bridging development, security, and operations. Demonstrable knowledge of the DevOps culture and principles, Secure Software Development Life Cycle (SDLC) practices, Applicationsecurity knowledge, Cloud infrastructure knowledge and … familiarity with CI/CD tools, security tooling, and automation tools. The role holder will have overall accountability and oversight for the technical solution delivered for this domain. What I'll be doing - your accountabilities? * Creates and owns the E2E technical solution that underpins the goal of Establishing a … a range of specialisms, through collaboration with subject matter experts as necessary. * You are a subject matter expert in domain specialism relevant to DevSecOps, ApplicationSecurity * You produce solutions collaboratively in an agile environment, evolving solutions in partnership with engineering teams through the build/measure/learn more »
Hartlepool, County Durham, North East, United Kingdom Hybrid / WFH Options
Hireful
alike (Glassdoor/Trustpilot) . If so this could be the job for you.. Role DevSecOps Engineer aka DevOps Engineer, Azure DevOps Engineer, Azure Security Engineer, Platform Engineer, ApplicationSecurity Engineer Location– North East Nr Hartlepool, Middlesborough, Stockton-Upon -Tees 2/3 days in the office … Devops Engineering/Platform team as the first designated DevSecOps Engineer. You will have the opportunity to take ownership of evaluation and implementation of security based tools (e.g. Vulnerability Scanners, Code Analysis, Automated pen testing etc) and Azure Security capabilities working with development, security and infrastructure teams. …/CD pipelines Implement Infrastructure as Code (IaC) with Terraform Integrate DevSecOps in software development Mentor and lead with a focus on automation and security Looking for Candidates With : 5+ years in DevOps, cloud security, ideally Azure Expertise in Kubernetes and/or Azure DevOps with YAML pipelines more »
Employment Type: Permanent
Salary: to 75K + 5% Pension, 25 Days (buy / Sell), Annual Bonus, Health Cash,
Job Description: Cloud Security Engineer £450 - £500 Per Day Inside IR35 1 day per week on site in Central London Candidate MUST BE UK BASED & HAVE FULL UK RIGHT TO WORK SPONSORSHIP IS NOT PROVIDED FOR THIS ROLE Purpose of the Job As a Cloud Security Engineer, your … mission is to enhance and maintain the security posture of our Cloud environments, ensuring they are secure and compliant with industry best practices. In this key role, you will: Drive Strategic Projects: Collaborate on essential initiatives that shape the Cloud security landscape of our organization. Architect Security Solutions: Design and implement robust security measures to protect our Cloud infrastructure. Manage Risks: Identify, assess, and effectively manage Cloud security risks. Collaborate on ApplicationSecurity: Partner with our Software Engineering teams to explore opportunities for enhanced security. Cross-Functional Cooperation: Work closely with other more »
you have Test Lead experience and you’re seeking a new role in London, we want to hear from you. Cognizant is recruiting a Security Test Lead for a Government and Public Sector client, and the role comes with an attractive salary and benefits package. As a Security … you an idea of how this flexible role would look and feel, here are some of the things you could expect to do: Static applicationsecurity testing using tools like Checkmarx, Veracode Dynamic applicationsecurity testing using tools such as AppScan, WebInspect, etc False positive analysis … and working with Developers fixing security vulnerabilities End-to-end security testing. To apply for this Security Test Lead role, your soft skills, expertise and experience should include: Extensive experience in security testing with expertise in SAST using tools like Fortify, App Scan Source, Checkmarx, VeraCode more »