301 to 325 of 581 Information Security Jobs in England

challenge across the organisation’s principal risks — including credit, financial, and operational risks. The Technology and Change Risk Team is responsible for risk oversight of IT Risk, Data Risk, Information Security, Change Management, Operational Resilience, and Intra-Group Risk. The team also ensures there is a consistent and objective view of all technology-related risks, as well as … Proven experience working directly with senior Technology leadership (e.g., Heads of Functions or equivalent). Advanced understanding of Technology and Change Risk disciplines such as IT Risk, Data Risk, Information Security, IT-led and Business-led Change, IT Resilience and Recovery, and Intra-group Risks across both operational and transformation activities. Prior experience within a regulated environment with More ❯

Security Operations Engineer Birmingham (hybrid working - 3 days per week onsite) £55,000 - £60,000 PA plus excellent benefits Our client, a public facing and well know organisation with a reputation for dependable services, modernisation and a people-first approach to both customers and employees is seeking an ambitious Security Engineer to join their well established IT department … This is a great opportunity for a confident, driven IT professional with a strong infrastructure background who's ready to take the next step into security engineering. You don't need to be a security expert yet, but you do need to be genuinely passionate about cybersecurity, eager to learn and confident working in a hands-on technical … environment. You'll be joining a collaborative IT team, working closely with the Information Security Manager. As Security Operations Engineer, you'll play a key part in protecting and improving the organisation's digital infrastructure. The work is operational and hands-on, maintaining and enhancing existing tools and controls, monitoring vulnerabilities and ensuring systems are patched and More ❯

monorepos, GitOps, branching and release strategies, etc.) Experience in designing system-level architecture and navigating trade-offs in web based systems (e.g. Microservices, REST APIs, CQRS) An understanding of information security including common attack vectors, awareness of relevant regulation and restrictions (e.g. PCI, GDPR ) Experience in design and testing strategies to enable gradual evolution of systems over time … to solve distributed computing problems (e.g. content-based addressing, immutable data structures, CRDTs, consensus protocols, merkle DAGs, etc. It'd be amazing if you can also An understanding of information security including common attack vectors, awareness of relevant regulation and restrictions Experience with running live services with significant volume of users and establishing appropriate SLOs and error budgets More ❯

monorepos, GitOps, branching and release strategies, etc.) Experience in designing system-level architecture and navigating trade-offs in web based systems (e.g. Microservices, REST APIs, CQRS) An understanding of information security including common attack vectors, awareness of relevant regulation and restrictions (e.g. PCI, GDPR ) Experience in design and testing strategies to enable gradual evolution of systems over time … to solve distributed computing problems (e.g. content-based addressing, immutable data structures, CRDTs, consensus protocols, merkle DAGs, etc. It'd be amazing if you can also An understanding of information security including common attack vectors, awareness of relevant regulation and restrictions Experience with running live services with significant volume of users and establishing appropriate SLOs and error budgets More ❯

Lead Cyber Security Engineer DGH Recruitment are currently recruiting on behalf of a leading client in the professional services industry who require a Lead Cyber Security Engineer to join the firm in London. Responsibilities: Implement security architecture of the firm related to transition to cloud (e.g., Azure, Teams/O365 and iManage Cloud) Develops and maintains all … documentation related to Global Security Team operations and functions Analysis of data collected from established Data Loss Prevention system(s) and methods to ensure compliance with Firm policies Manages DLP systems and processes as required Maintains and coordinates incident response planning, assisting in execution of the incident response plan as needed Controls access to the Firm’s Information Systems and related security configuration Key Skills: 5 years of experience in an Information Security department Excellent working knowledge of CISSP, CEH required Excellent knowledge of the ISO 27002 standard preferred Excellent working knowledge of networking and security standards required Good documentation skills and authentication methods experience required Excellent knowledge of a network/firewall More ❯

Lead Cyber Security Engineer DGH Recruitment are currently recruiting on behalf of a leading client in the professional services industry who require a Lead Cyber Security Engineer to join the firm in London. Responsibilities: * Implement security architecture of the firm related to transition to cloud (e.g., Azure, Teams/O365 and iManage Cloud) * Develops and maintains all … documentation related to Global Security Team operations and functions * Analysis of data collected from established Data Loss Prevention system(s) and methods to ensure compliance with Firm policies * Manages DLP systems and processes as required * Maintains and coordinates incident response planning, assisting in execution of the incident response plan as needed * Controls access to the Firm's Information Systems and related security configuration Key Skills: * 5 years of experience in an Information Security department * Excellent working knowledge of CISSP, CEH required * Excellent knowledge of the ISO 27002 standard preferred * Excellent working knowledge of networking and security standards required * Good documentation skills and authentication methods experience required * Excellent knowledge of a network/firewall More ❯

secure, scalable, resilient, and aligned with business growth. You will lead a team of skilled network engineers, define the enterprise networking roadmap, and collaborate with cross-functional teams — including Security, Infrastructure, and IT Operations — to deliver a high-performance, high-availability network platform that underpins mission-critical business and customer operations. Key Responsibilities Strategic Leadership Define and execute the … Lead network capacity planning, performance optimisation, and technology refresh cycles . Own the full lifecycle of network-related projects , from requirements gathering through to procurement, budgeting, vendor management , and security assessments . Security, Compliance & Governance Partner with Information Security teams to enhance network security posture , addressing vulnerabilities and implementing intrusion detection/prevention systems. Ensure … and Juniper network technologies, including Cisco IOS/NX-OS and JunOS platforms. Strong background in network monitoring, capacity management, and incident response . Hands-on experience with network security frameworks , firewall configuration (Cisco ASA, Palo Alto, Fortinet, etc.) , and telephony (SIP/VoIP) systems. Familiarity with cloud and hybrid networking (Azure, AWS, GCP) environments preferred. Strong understanding of More ❯

secure, scalable, resilient, and aligned with business growth. You will lead a team of skilled network engineers, define the enterprise networking roadmap, and collaborate with cross-functional teams — including Security, Infrastructure, and IT Operations — to deliver a high-performance, high-availability network platform that underpins mission-critical business and customer operations. Key Responsibilities Strategic Leadership Define and execute the … Lead network capacity planning, performance optimisation, and technology refresh cycles . Own the full lifecycle of network-related projects , from requirements gathering through to procurement, budgeting, vendor management , and security assessments . Security, Compliance & Governance Partner with Information Security teams to enhance network security posture , addressing vulnerabilities and implementing intrusion detection/prevention systems. Ensure … and Juniper network technologies, including Cisco IOS/NX-OS and JunOS platforms. Strong background in network monitoring, capacity management, and incident response . Hands-on experience with network security frameworks , firewall configuration (Cisco ASA, Palo Alto, Fortinet, etc.) , and telephony (SIP/VoIP) systems. Familiarity with cloud and hybrid networking (Azure, AWS, GCP) environments preferred. Strong understanding of More ❯

Application Security Specialist (DevOps) Hybrid – Cambridge, UK (1 day a week in office) We’re looking for an experienced Application Security Specialist to join a growing cyber security team and play a key role in shaping a world-class application security programme. This role will give you the chance to work closely with engineering and development … teams, embedding security into the development lifecycle, driving automation, and influencing remediation plans that have real impact. What you’ll be doing Guiding teams on security best practices, compliance, and secure coding. Collaborating with architects and developers to review designs and code for vulnerabilities. Embedding/improving threat modelling and secure development practices into the SDLC. Designing and … integrating security testing plans. Performing and overseeing application security testing and driving remediation. Managing end-to-end vulnerability workflows, including bug bounty findings. Supporting incident response activities when needed. Monitoring and reporting on application security metrics, KPIs, and emerging threats. Automating processes for vulnerability detection and integrating tools into the pipeline. Note: this position includes participation in More ❯

Application Security Specialist (DevOps) Hybrid – Cambridge, UK (1 day a week in office) We're looking for an experienced Application Security Specialist to join a growing cyber security team and play a key role in shaping a world-class application security programme. This role will give you the chance to work closely with engineering and development … teams, embedding security into the development lifecycle, driving automation, and influencing remediation plans that have real impact. What you'll be doing Guiding teams on security best practices, compliance, and secure coding. Collaborating with architects and developers to review designs and code for vulnerabilities. Embedding/improving threat modelling and secure development practices into the SDLC. Designing and … integrating security testing plans. Performing and overseeing application security testing and driving remediation. Managing end-to-end vulnerability workflows, including bug bounty findings. Supporting incident response activities when needed. Monitoring and reporting on application security metrics, KPIs, and emerging threats. Automating processes for vulnerability detection and integrating tools into the pipeline. Note: this position includes participation in More ❯

CISO | Global SaaS | PE-Backed | Build & Lead Security Function A high-growth global SaaS business with 600 people worldwide (130 in Engineering) is entering a critical phase: consolidating multiple products and scaling from ~$100m ARR to ~$200m over the next three years. Backed by a leading private equity firm, this is a rare opportunity to own and build the … security function from scratch , shaping strategy, operations, and security culture across the company. We’re looking for a hands-on, technically credible CISO who thrives at the intersection of strategy and execution. You’ll define the security agenda, build the team, implement robust practices across engineering and product teams, and create a culture where security is … embedded into every aspect of the business. You’ll need experience scaling security in SaaS, ideally in PE-backed environments, and a track record of delivering measurable improvements across people, processes, and technology. Reporting to the CTO, you’ll take full ownership of the security function, partnering closely with Engineering, Product, and leadership to protect growth, enable innovation More ❯

CISO | Global SaaS | PE-Backed | Build & Lead Security Function A high-growth global SaaS business with 600 people worldwide (130 in Engineering) is entering a critical phase: consolidating multiple products and scaling from ~$100m ARR to ~$200m over the next three years. Backed by a leading private equity firm, this is a rare opportunity to own and build the … security function from scratch , shaping strategy, operations, and security culture across the company. We’re looking for a hands-on, technically credible CISO who thrives at the intersection of strategy and execution. You’ll define the security agenda, build the team, implement robust practices across engineering and product teams, and create a culture where security is … embedded into every aspect of the business. You’ll need experience scaling security in SaaS, ideally in PE-backed environments, and a track record of delivering measurable improvements across people, processes, and technology. Reporting to the CTO, you’ll take full ownership of the security function, partnering closely with Engineering, Product, and leadership to protect growth, enable innovation More ❯

automation initiatives — moving from spreadsheets to data visualisation and AI-driven reporting. Provide insight that directly improves marketing effectiveness, sales performance, and customer experience . Ensure compliance with GDPR, information security, and client governance standards. Qualifications Automotive experience essential. Proven expertise in CRM data strategy , governance, and reporting — ideally in Salesforce environments. Strong hands-on knowledge of Salesforce … CRM Analytics and Tableau . Track record of translating complex data into clear, actionable commercial insight. Confident leader with experience managing data teams across functions. Deep understanding of GDPR , information security, and ethical data management. What's in it for you? Salary of £80k-90k (DOE) 25 days holiday rising to 30 with each year of service Hybrid More ❯

GRC Specialist - PCI-DSS - Manchester We're seeking an experienced GRC Specialist with excellent cyber security, GRC & PCI-DSS payments experience to join our client's growing Cyber Security team. They need somebody who has excellent knowledge in PCI-DSS along with good governance, risk and compliance experience and familiarity with other standards. Experience Required: At least … years in a Cyber security & GRC role Be a PCI-DSS expert around payments ISO 27001and GDPR Knowledge of Risk Management, including risk identification, assessment, and mitigation techniques Good experience around Audits and compliance Any penetration testing experience would be a bonus You'll work closely with both internal and external stakeholders across Legal, Risk & Audit, Procurement, and IT … standards such as ISO 27001, NIST CSF, and GDPR. The position combines both strategic oversight and hands-on delivery, providing clear visibility of risks and driving measurable improvements in security maturity. This role is majority onsite in Central Manchester but there is flex on start and finish times. They have just opened their brand-new UK based headquarters in More ❯

The IT Security Risk & Compliance Lead plays a central role across Cyber and Information security. The primary purpose of this role is to manage and influence all aspects of security risk management activity across the Group, but particularly in respect to IT and Information Security. You will also assist in the delivery of Security Policy … and skills through the rollout of tools, policies and procedures, formal training and coaching and mentoring, working with individual Project Teams and Asset Owners ensuring that they understand their security responsibilities. You will also deliver against the business strategy, the technical roadmap and objectives set out in the Security strategy covering Operational Information, Cyber, Digital and Physical. … You'll need to have • Previous experience working with IT Systems in a corporate environment. • Good knowledge of control frameworks such as ISO27001, ITIL (Information Technology Infrastructure Library), NIST, IEC 62443 and SABSA. • Good knowledge of Risk Management Methodologies such as ISO27005, IRAM2 and IEC (phone number removed)-2. • Strong technical skills across IT. • Ability to interpret regulations More ❯

The IT Security Risk & Compliance Lead plays a central role across Cyber and Information security. The primary purpose of this role is to manage and influence all aspects of security risk management activity across the Group, but particularly in respect to IT and Information Security. You will also assist in the delivery of Security Policy … and skills through the rollout of tools, policies and procedures, formal training and coaching and mentoring, working with individual Project Teams and Asset Owners ensuring that they understand their security responsibilities. You will also deliver against the business strategy, the technical roadmap and objectives set out in the Security strategy – covering Operational Information, Cyber, Digital and Physical. … You'll need to have • Previous experience working with IT Systems in a corporate environment. • Good knowledge of control frameworks such as ISO27001, ITIL (Information Technology Infrastructure Library), NIST, IEC 62443 and SABSA. • Good knowledge of Risk Management Methodologies such as ISO27005, IRAM2 and IEC (phone number removed)-2. • Strong technical skills across IT. • Ability to interpret regulations More ❯

Infrastructure Security Engineer- Italian/Spanish speaking We are currently recruiting for a Infrastructure Security Engineer on a 6 month initial contract. Hybrid basis (2-3 days) London, Milton Keynes or Birmingham They are looking for a candidate to take responsibility for leading, guiding, supporting and delivering secure architectural design for the group cyber security maturity programme. … They are also looking for a candidate who is able to provide advice and recommendations for the programme. Key Skills Support the integration of new cyber security technologies that meets the next generation threats and can be adopted by the group globally You will be required to travel to the local sites, data centre or multiple offices location in … order to complete your tasks for off the network countries. Support global cyber security team to ensure open Continuous Security Improvement Programme (CSIP’s) are managed effectively up to closure Information Security Management System (Infrastructure Security Operations). Azure cloud infrastructure and configuration. System Centre Configuration Manager, Operations Manager and Virtual Machine Manager. Microsoft Exchange More ❯

Infrastructure Security Engineer- Italian/Spanish speaking We are currently recruiting for a Infrastructure Security Engineer on a 6 month initial contract. Hybrid basis (2-3 days) London, Milton Keynes or Birmingham They are looking for a candidate to take responsibility for leading, guiding, supporting and delivering secure architectural design for the group cyber security maturity programme. … They are also looking for a candidate who is able to provide advice and recommendations for the programme. Key Skills Support the integration of new cyber security technologies that meets the next generation threats and can be adopted by the group globally You will be required to travel to the local sites, data centre or multiple offices location in … order to complete your tasks for off the network countries. Support global cyber security team to ensure open Continuous Security Improvement Programme (CSIP’s) are managed effectively up to closure Information Security Management System (Infrastructure Security Operations). Azure cloud infrastructure and configuration. System Centre Configuration Manager, Operations Manager and Virtual Machine Manager. Microsoft Exchange More ❯

Monitor and respond to incident and task related events utilizing individual judgment to determine the best course of action and actively utilizing discretion to remediate events. Triage and remediate security detections. This includes escalation when to Tier 2/3 teams when required. Assist Tier2/3 teams in implementing changes and performing routine maintenance tasks. Create and maintain … documentation support the security environment. Collaborate with various Information Security and Information Technology teams to ensure the overall security of the firm. More ❯

Cyber Security Architect £60,000–£70,000 + bonus + excellent pension Hybrid | Coventry (3 days/week on average) We’re partnering with a leading UK utility provider to hire a Cyber Security Architect who’ll set the standard for “secure by design” across major change, safeguarding critical national infrastructure and millions of customers. The impact you … ll make Lead security architecture across multiple programmes/Agile Release Trains; shape option reviews and high-level designs that deliver proportionate, effective controls. Act as Product Owner for a flagship cyber programme — owning epics/features, prioritisation and roadmaps to outcomes. Govern security by design, ensure compliance (ISO 27001, PCI DSS, GDPR/NIS) and align to … enterprise security strategy. Advise senior stakeholders; collaborate across architecture, engineering and suppliers to land pragmatic, secure solutions. What you’ll bring 5–10 years in technical/information security with 3–5 years in security architecture. Strong coverage across IAM/PAM, endpoint/EDR, network, O365/email, app & cloud (Azure/AWS), CASB, DLP More ❯

Primary Details Time Type: Full time Worker Type: Employee Cyber Security Consultant Permanent London/Hybrid At QBE, our purpose is to enable a more resilient future. We are an international insurer and reinsurer with a local presence in 27 countries. The opportunity We're hiring a Cyber Security Consultant on a permanent, full-time basis based in … London, where you’ll help shape how cyber and information security risks are understood and managed across our business. This is your chance to be part of a global team that’s always one step ahead - keeping QBE safe, secure, and resilient in a fast-moving digital world. Your new role: This is a hands-on, collaborative role … where your curiosity and technical insight will help drive real change. Reporting to the Cyber Security Lead, you’ll work across teams and borders to ensure security is built into everything we do; from day-to-day operations to major transformation projects. Main responsibilities: Leading security assurance, assessments, and advisory for IT and business projects (both Cloud More ❯

OT Cyber Security Specialist £450 - £470/day Outside IR35 6 month contract Oxford - 1 day per week on-site We have an exciting opportunity to join a leading UK organisation operating in the critical infrastructure sector. As part of a greenfield initiative, they are building out their OT security capability and require an experienced Information Security Consultant to lead and shape this journey. This role is pivotal in defining and implementing the OT Security Strategy , developing governance frameworks, and introducing robust security controls across OT environments. You'll be working closely with engineering teams and third-party providers to ensure alignment with industry standards and enterprise cyber objectives. You'll be involved in … in a highly regulated environment, so experience with frameworks such as IEC 62443, NIST CSF, CAF, and ISO 27001 is essential. Experience required: Proven expertise in Operational Technology (OT) security within ICS or critical infrastructure environments Ability to define and implement OT security strategies, policies, and standards Strong knowledge of OT security frameworks - IEC 62443, NIST CSF More ❯

As a Cyber Security Apprentice, you’ll play a vital role in protecting our organisation’s digital assets while developing your skills in one of the most in-demand areas of technology. Under the guidance of experienced professionals, you’ll learn how to detect, prevent, and respond to cyber threats while supporting the wider IT and security teams. … Role Assist in monitoring and maintaining the organisation’s information security systems and networks. Help identify, investigate, and respond to potential security incidents. Support vulnerability assessments, penetration testing, and system audits. Learn to implement and maintain firewalls, antivirus software, and other security tools. Assist in maintaining and updating security policies, procedures, and documentation. Help with … user access control, password management, and account provisioning. Participate in security awareness training initiatives and promote best practices across the business. Support compliance efforts related to frameworks such as ISO 27001, GDPR, or NIST. Collaborate with IT and other departments to ensure secure configuration and patch management. Training Training will take place online via weekly lessons through Velocity Academy. More ❯

best technology in-house , using new data sources, machine learning and AI to make machines do the heavy lifting About the role We're looking for a Head of InfoSec to champion security across Lendable, ensuring our products, platforms, and processes remain secure as we scale. This is a high-impact leadership role with broad responsibility across application security, operations, and governance. As Head of InfoSec, you'll be the champion of security across the organisation, balancing business growth with operational resilience. You'll shape how we embed security into every part of our product and operations, and play a critical role in building trust with customers, partners, and regulators. You will lead a team of … exceptional security engineers, delivering a technical roadmap that you will shape. What you'll be doing Application Security (AppSec) : Driving secure development practices, code analysis, and threat modelling. Security Operations (SOC) : Overseeing monitoring, incident response, vulnerability management, and operational resilience. Governance, Risk & Compliance (GRC) : Leading our efforts to achieve and maintain compliance with PCI, GDPR, SOC2, and More ❯

Cyber Security Assurance Manager Overview An exciting opportunity has arisen for an experienced Cyber Security Assurance Manager to take ownership of security certifications, audits, and assurance standards for a leading Security Operations Centre (SOC) environment. This role will focus on delivering and maintaining key certifications such as ISO/IEC 27001 , SOC 2 Type II , Cyber … Cyber Essentials Plus , and CREST . Manage sector-specific compliance such as PCI DSS and NCSC CIR/CHECK . Ensure timely renewals and proactively address compliance gaps. Security Assurance for SOC Operations Integrate certification and assurance requirements into SOC governance, processes, and operations. Maintain evidence collection and audit readiness for both internal and external audits. Translate assurance and … assurance activities related to SOC services. Support RFIs, RFPs , and audit requests with accurate and professional certification documentation. Develop and maintain customer-facing assurance materials that demonstrate a strong security posture. Regulatory & Framework Alignment Monitor changes in global cybersecurity regulations and standards (e.g. NIST CSF , NCSC , NIS2 , GDPR ). Ensure SOC assurance aligns with evolving regulatory and industry expectations. More ❯