351 to 375 of 581 Information Security Jobs in England

Intaso is representing a leading independent cyber security consultancy dedicated to helping UK businesses navigate the complex world of digital risk. They are recognised as a trusted partner to a growing portfolio of mid-market commercial clients, providing pragmatic, risk-based security advice that goes beyond simple box-ticking. The Role This is a unique and exciting opportunity … compliance services, including Gap Analyses, Scoping Workshops, Remediation Advisory, and formal assessments (Report on Compliance (RoC) and Self-Assessment Questionnaires (SAQ)). Act as a virtual CISO or trusted security advisor to key clients, providing ongoing strategic guidance on their compliance programmes. Translate complex technical PCI DSS requirements and security findings into clear, business-oriented language for senior … skills, with the ability to engage credibly with technical teams, business managers, and C-level executives. Strong understanding of the UK mid-market commercial landscape. Broad knowledge of complementary security domains and standards (e.g., ISO 27001, Cyber Essentials, cloud security, risk management). Self-motivated, proactive, and able to work with a high degree of autonomy. Full UK More ❯

and proactive SaaS GRC Specialist to strengthen our Governance, Risk, and Compliance framework as we scale our SaaS operations. In this role, you will ensure that our business processes, security controls, and regulatory obligations are consistently met. You will work across multiple teams—security, legal, product, and operations—helping us maintain trust with customers and regulators while supporting … due diligence requests. Deliver GRC training and awareness sessions to employees across the business. Track regulatory changes and advise leadership on potential business impacts. Requirements Bachelor’s degree in Information Security, Business, Compliance, or related field. 2+ years of experience in GRC, risk management, or compliance (preferably within SaaS or technology companies). Strong knowledge of SaaS compliance … certifications (CISM, CRISC, ISO 27001 Lead Implementer, or similar). Experience working with SaaS platforms (AWS, Azure, Salesforce, HubSpot, etc.). Familiarity with vendor risk management and third-party security assessments. Exposure to data privacy laws beyond GDPR (CCPA, UK-GDPR, HIPAA). Role Type Permanent or Contract London-based (Hybrid) or remote About Us Discover tailored data privacy More ❯

and proactive SaaS GRC Specialist to strengthen our Governance, Risk, and Compliance framework as we scale our SaaS operations. In this role, you will ensure that our business processes, security controls, and regulatory obligations are consistently met. You will work across multiple teams—security, legal, product, and operations—helping us maintain trust with customers and regulators while supporting … due diligence requests. Deliver GRC training and awareness sessions to employees across the business. Track regulatory changes and advise leadership on potential business impacts. Requirements Bachelor’s degree in Information Security, Business, Compliance, or related field. 2+ years of experience in GRC, risk management, or compliance (preferably within SaaS or technology companies). Strong knowledge of SaaS compliance … certifications (CISM, CRISC, ISO 27001 Lead Implementer, or similar). Experience working with SaaS platforms (AWS, Azure, Salesforce, HubSpot, etc.). Familiarity with vendor risk management and third-party security assessments. Exposure to data privacy laws beyond GDPR (CCPA, UK-GDPR, HIPAA). Role Type Permanent or Contract London-based (Hybrid) or remote About Us Discover tailored data privacy More ❯

Description We re seeking a hands-on Security Architect to lead the design and assurance of security across our Financial Advice & Wealth Management SaaS platform. This is a pivotal role where you ll own the security architecture across cloud infrastructure and networking, drive secure-by-design application architectures, and ensure … robust security for integrations with external partners and systems. As part of the Technical Architecture team, you ll collaborate with business stakeholders, product teams, engineers, and the wider InfoSec function to embed security as a first-class concern throughout our technology landscape. Your work will help us meet the expectations of our customers, clients, and regulators What you … for applications and services. Define secure patterns for APIs and partner integrations. Support governance activities including audit, risk acceptance, and internal forums. Review implementation progress to ensure alignment with security design. Provide technical guidance and coaching to architects and engineers. Promote a culture of security awareness in product and engineering practices. Align security standards and frameworks with More ❯

Description We’re seeking a hands-on Security Architect to lead the design and assurance of security across our Financial Advice & Wealth Management SaaS platform. This is a pivotal role where you’ll own the security architecture across cloud infrastructure and networking, drive secure-by-design application architectures, and ensure … robust security for integrations with external partners and systems. As part of the Technical Architecture team, you’ll collaborate with business stakeholders, product teams, engineers, and the wider InfoSec function to embed security as a first-class concern throughout our technology landscape. Your work will help us meet the expectations of our customers, clients, and regulators What you … for applications and services. Define secure patterns for APIs and partner integrations. Support governance activities including audit, risk acceptance, and internal forums. Review implementation progress to ensure alignment with security design. Provide technical guidance and coaching to architects and engineers. Promote a culture of security awareness in product and engineering practices. Align security standards and frameworks with More ❯

identity governance, access control, and consolidation programs. Provide technical and strategic leadership for the Microsoft 365 suite. Oversee cloud (Azure, GCP, OCI) and cloud workloads (compute, storage, networking, monitoring, security) and ensure seamless hybrid integration. Ensure secure, resilient, and scalable collaboration across global systems. Operational Excellence & Workplace Technology Ensure global availability, performance, and resilience of networks, data centres, cloud … O365 platforms. Manage office technology setup, relocations, and decommissioning, ensuring smooth transitions with minimal business impact. Oversee capacity planning, lifecycle management, and global disaster recovery/business continuity planning. Security & Compliance Partner with Information Security to enforce compliance with ISO, SOC2, GDPR, and other global standards. Apply robust governance and security policies across identity, cloud, and … technical and operational credibility. Effective global leader able to manage diverse, dispersed teams across regions. Commercially astute with experience managing budgets. Innovation-driven, with a focus on automation, AI, security, and resilience. About Us SymphonyAI is building the leading enterprise AI SaaS company for digital transformation across the most critical and resilient growth verticals, including retail, consumer packaged goods More ❯

Play a key role in managing supplier security risks with national regulations. Hybrid role (1 - 3 days onsite) with competitive salary and benefits About Our Client A major UK-based technology and infrastructure provider offering connectivity, cloud, and security services. The organisation operates across several UK and international sites. Job Description Conduct and maintain supplier security risk … assessments and due diligence activities. Review and report on supplier security declarations in line with national telecom regulations. Provide strategic advice on managing supplier related risks and compliance gaps. Govern relationships with critical suppliers to ensure alignment with security expectations. Support internal and external audits (e.g. ISO27001, TSA, financial audits). Communicate risks clearly to non-technical stakeholders … to support informed decision-making. Monitor and interpret emerging compliance standards and apply them to supplier oversight. The Successful Applicant Extensive experience in security risk management, particularly in third party and supplier contexts. Strong understanding of frameworks such as ISO27001, ISO27005, SOC2, and NIST. Holds certifications such as CISSP, CISM, or CRISC. Telecoms sector experience is a plus. Skilled More ❯

This is a position within a security risk team, focused on assessing and managing third-party risks. The role involves conducting supplier due diligence, reviewing compliance declarations, and supporting audit readiness across multiple frameworks. Reporting to Head of GRC, this is a FTC role with hybrid working in Manchester Client Details A major UK-based technology and infrastructure provider … offering connectivity, cloud, and security services. The organisation operates across several UK and international sites. Description Conduct and maintain supplier security risk assessments and due diligence activities. Review and report on supplier security declarations in line with national telecom regulations. Provide strategic advice on managing supplier-related risks and compliance gaps. Govern relationships with critical suppliers to … ensure alignment with security expectations. Support internal and external audits (e.g. ISO27001, TSA, financial audits). Communicate risks clearly to non-technical stakeholders to support informed decision-making. Monitor and interpret emerging compliance standards and apply them to supplier oversight. Profile Extensive experience in security risk management, particularly in third-party and supplier contexts. Strong understanding of frameworks More ❯

Job Title: Head of IT Location: London, with frequent travel to other locations Department: Operations Reports To: Head of Compliance and Security Position Overview We are seeking an experienced and driven Head of IT to lead the organisation’s IT strategy, infrastructure and service delivery. This role is responsible for overseeing the design, implementation, and management of all internal … Advise leadership on technology trends and opportunities. • Manage and optimise day-to-day IT operations across service management, hardware, applications, infrastructure, networking and data and analytics. • In partnership with Information Security, develop and implement robust processes and tool sets across security architecture and application domains to deter, monitor and respond to threats, vulnerabilities and the changing IT … initiatives. • Establish a structured approach to managing the full lifecycle of existing and future application systems, ensuring all platforms remain scalable, secure, and aligned with business needs. • Ensure uptime, security, and performance of all systems and platforms. • Monitor and control IT budgets, contracts, and vendor relationships including supporting the Procurement function in developing IT compliance requirements and vendor assessments. More ❯

Job Title: Head of IT Location: London, with frequent travel to other locations Department: Operations Reports To: Head of Compliance and Security Position Overview We are seeking an experienced and driven Head of IT to lead the organisation’s IT strategy, infrastructure and service delivery. This role is responsible for overseeing the design, implementation, and management of all internal … Advise leadership on technology trends and opportunities. • Manage and optimise day-to-day IT operations across service management, hardware, applications, infrastructure, networking and data and analytics. • In partnership with Information Security, develop and implement robust processes and tool sets across security architecture and application domains to deter, monitor and respond to threats, vulnerabilities and the changing IT … initiatives. • Establish a structured approach to managing the full lifecycle of existing and future application systems, ensuring all platforms remain scalable, secure, and aligned with business needs. • Ensure uptime, security, and performance of all systems and platforms. • Monitor and control IT budgets, contracts, and vendor relationships including supporting the Procurement function in developing IT compliance requirements and vendor assessments. More ❯

IAM Engineer plays a key role in developing, implementing, and maintaining advanced solutions that protect an organisation’s systems and sensitive information. This position is central to strengthening digital security, enabling innovation, and ensuring compliance across all business operations. Key Responsibilities Provide expert knowledge and guidance on security systems, cryptographic engineering, and identity management best practices. Design, develop … Manage and protect secrets by ensuring secure generation, storage, and usage across all digital platforms. Conduct regular audits to identify vulnerabilities, assess risks, and support swift response to potential security threats. Drive innovation by identifying and implementing advancements in cryptographic technologies and techniques. Collaborate closely with developers, architects, and security teams to align cryptographic and IAM solutions with … business goals, regulatory standards, and internal security policies. Build, deploy, and maintain robust Identity and Access Management (IAM) systems and frameworks that support organisational security objectives. Leadership and Collaboration Expectations Provide expert consultation, shaping policies and operational decisions while ensuring effectiveness across teams and business divisions. Lead a high-performing team, setting clear objectives, coaching for excellence, and More ❯

Protection Act, UK Corporate Reform) and industry-specific regulations Highly skilled in designing and implementing compliance and control frameworks. Proficient in IT governance and quality standards Knowledge of common information security management frameworks, such as ISO/IEC 27001, ITIL, COBIT as well as those from NIST, including 800-53 and Cybersecurity Framework Excellent stakeholder management skills High More ❯

Protection Act, UK Corporate Reform) and industry-specific regulations Highly skilled in designing and implementing compliance and control frameworks. Proficient in IT governance and quality standards Knowledge of common information security management frameworks, such as ISO/IEC 27001, ITIL, COBIT as well as those from NIST, including 800-53 and Cybersecurity Framework Excellent stakeholder management skills High More ❯

or coordinate initial assessments to identify gaps against Cyber Essentials and Cyber Essentials Plus requirements Develop and manage detailed project plans, timelines, milestones, and budgets Coordinate internal teams (IT, InfoSec, HR, Legal, etc.) and third-party vendors/consultants involved in the compliance process Ensure ongoing compliance with data protection regulations and alignment with ISO27001 and other relevant standards Provide … looking for from you: Proven experience delivering end-to-end Cyber Essentials or Cyber Essentials Plus projects Strong background in technical project management, ideally within a regulated or high-security environment Working knowledge of information security frameworks (e.g., ISO27001, NIST, GDPR) Excellent communication and stakeholder management skills – able to engage confidently with both technical and non-technical More ❯

or coordinate initial assessments to identify gaps against Cyber Essentials and Cyber Essentials Plus requirements Develop and manage detailed project plans, timelines, milestones, and budgets Coordinate internal teams (IT, InfoSec, HR, Legal, etc.) and third-party vendors/consultants involved in the compliance process Ensure ongoing compliance with data protection regulations and alignment with ISO27001 and other relevant standards Provide … looking for from you: Proven experience delivering end-to-end Cyber Essentials or Cyber Essentials Plus projects Strong background in technical project management, ideally within a regulated or high-security environment Working knowledge of information security frameworks (e.g., ISO27001, NIST, GDPR) Excellent communication and stakeholder management skills – able to engage confidently with both technical and non-technical More ❯

provide a compelling benefits package, and we are a great bunch of folks to work with - though we would say that! Qualifications and skills Required An honours degree in Information Systems, Computer Science, Information Technology, Software Engineering or similarly related and quantitative discipline. AWS certification - AWS Certified Data Engineer, Associate certification. 4-5+ years of commercial experience … working primarily in an AWS Cloud environment using approaches/tooling like ours (see technical skills), delivering scalable, performant, reliable solutions. Strong data reliability/observability, data governance and information security credentials. What technical skills are required? ETL/ELT & Data Transformation: Amazon Redshift (query tuning, distribution/sort keys, workload management) Data modelling (normalisation, dimensional) dbt (modeling … Airflow (DAG design, scheduling, monitoring, scaling) Best practices for dependency management, retries, and alerting Cloud & Serverless: AWS Lambda (Python-based serverless pipelines, event-driven processing) IAM roles, policies, and security best practices Programming & Scripting: Python (data processing, automation, testing) SQL (advanced query writing and optimization) Data Engineering Best Practices: CI/CD for data pipelines (Git, GitHub Actions, etc. More ❯

the cadence, communication flow, and rituals that make execution smooth and transparent. 4. Governance, Compliance & Risk Maintain Trudenty's SOC 2 and ISO 27001 frameworks, keeping our compliance and security posture strong as we scale. Manage the compliance calendar, coordinate audits, and ensure cross functional accountability for controls and evidence. Collaborate closely with engineering, legal, and external auditors to … uphold data privacy and protection standards. Lead company wide security training and annual policy refreshes - keeping security woven into daily operations. Track compliance KPIs and drive continuous improvement of our Information Security Management System (ISMS). Partner with leadership on GDPR readiness and client specific compliance requirements. 5. Finance, Legal & Vendor Operations Partner with the founder More ❯

technology infrastructure, interfacing closely with the business to understand and support their needs. You'll provide technical expertise to build, deliver and improve solutions required to enhance business function, information security and infrastructure you'll proactively monitor the health of the supported infrastructure, and ensure all components are regularly patched, maintained, and work reliably to meet the needs … of the organisation. Partaking and leading activities to continually improve service effectiveness you'll ensure security is maintained at the highest standards achievable. Working arrangements Please note this is a fixed term contract for 18 months, covering an internal secondment. This is a hybrid role, where your work will be split between your home and 1 day per week … on-prem and cloud stack (AD/AzureAD, Server/Client OSes, Exchange Hybrid, M365, Intune) Microsoft Azure cloud services, including Azure Networking, RBAC/IAM and Storage Microsoft Security stack tools (Defender, Security and Compliance, Purview) Virtualisation Technologies (VMWare) Networking Technologies (LAN/WLAN, WAN/MPLS) Storage Management (physical SAN and software-defined) With practical experience More ❯

delivering data privacy compliance frameworks and/or programmes; In depth knowledge of data privacy laws in particular EU GDPR, UK GDPR and Data Protection Act 2018; Experience of information governance practises and information security management systems (ISO27001); Experience in digital health; Experience in emerging technologies such as AI and the evolving legislative framework. Certified Information … the world every year. Location: This role is based at our clients site in Burgess Hill, 2 days a week, and rest of the week remote. Apply: For more information, or to apply for this Data Privacy Manager please contact the Key Accounts Team on (phone number removed) or email (url removed). Please quote reference (phone number removed More ❯

the strategic direction and operational excellence of our IT function with a regional focus on the EMEA market. This role will be pivotal in ensuring the resilience, scalability, and security of our technology landscape, while aligning regional IT initiatives with global business goals. The ideal candidate will bring deep technical expertise, strong leadership, and a collaborative mindset to lead … systems. Oversee cloud infrastructure (preferably Azure), including IaaS, PaaS, storage, compute, and identity management. Champion ISO 20000 and ISO 27001 standards, ensuring compliance and audit readiness. Collaborate with the Information Security team to implement and maintain robust cybersecurity measures including firewalls, antivirus, and intrusion detection systems. Ensure compliance with UK and EU data protection regulations (e.g., GDPR), and More ❯

Portsmouth Hybrid : 3 days onsite a week Permanent Cyber Security Assurance Manager Location: Portsmouth, UK Hybrid: 3 days onsite per week Salary: Up to £65,000 Employment Type: Permanent Job Summary: Our client, a leading IT services and consulting firm, is seeking a Cyber Security Assurance Manager to ensure their SOC meets and maintains top security certifications … activities, supporting RFIs, RFPs, and client audit requests Deliver training and awareness sessions on SOC assurance standards to internal teams Develop customer-facing assurance documentation demonstrating the organisation's security posture Lead the delivery and ongoing maintenance of SOC-related certifications (SOC 2 Type II, SOC 3, ISO/IEC 27001, Cyber Essentials Plus, CREST) Embed certification requirements into … assurance strategy Drive continuous improvement in assurance processes and evidence collection efficiency Produce regular reports and dashboards on certification status, audit outcomes, and assurance performance Collaborate with SOC operations, Information Security, Risk & Compliance, and Commercial teams Essential Qualifications & Requirements: Proven experience delivering and maintaining cybersecurity certifications (ISO/IEC 27001, SOC 2 Type II, Cyber Essentials Plus, CREST More ❯

partners, and team members is essential for building strong relationships Private Medical Insurance Training Training & Development: You will complete a Level 3 Digital Support Technician Apprenticeship, covering: Operate digital information systems Digital architecture (physical storage vs cloud, the role of operating systems and servers) Maintaining end-user systems (software, hardware and operating systems) Information security principals System … security Account management (optional) Managing & analysing data Digital marketing This apprenticeship offers blended learning, combining online training with practical workplace experience, setting you up for a successful career in IT. This apprenticeship offers blended learning, combining online training with practical workplace experience, setting you up for a successful career in IT Apprenticeship Standard Digital support technician (level 3) Training More ❯

We're Hiring: GSOC Technical Adoption Manager/Technical Project Manager 📍 Location: London (Remote working available) 🌐 Company: KPMG International 🔐 Team: Global Information Security Group (GISG) Are you passionate about cybersecurity and technology adoption? Join KPMG International’s Global Security Operations Center (GSOC) as a Technical Adoption Manager and play a pivotal role in onboarding cutting-edge security … Track, report, and document adoption activities and processes. Contribute to the strategic direction of GSOC. What We’re Looking For Strong background in IT and cybersecurity. Experience in operational security environments and SOC dynamics. Familiarity with Microsoft Azure, Google Cloud Platform, and other cloud technologies. Proven ability to lead globally distributed teams. Excellent communication and documentation skills. Relevant certifications More ❯

We're Hiring: GSOC Technical Adoption Manager/Technical Project Manager 📍 Location: London (Remote working available) 🌐 Company: KPMG International 🔐 Team: Global Information Security Group (GISG) Are you passionate about cybersecurity and technology adoption? Join KPMG International’s Global Security Operations Center (GSOC) as a Technical Adoption Manager and play a pivotal role in onboarding cutting-edge security … Track, report, and document adoption activities and processes. Contribute to the strategic direction of GSOC. What We’re Looking For Strong background in IT and cybersecurity. Experience in operational security environments and SOC dynamics. Familiarity with Microsoft Azure, Google Cloud Platform, and other cloud technologies. Proven ability to lead globally distributed teams. Excellent communication and documentation skills. Relevant certifications More ❯

respected retail brands who are seeking an experienced Infrastructure Operations Manager to lead the groups Infrastructure and Endpoint teams. This is a pivotal role, responsible for ensuring the performance, security, and resilience of the groups IT infrastructure across all divisions and sites. Reporting to the Director of IT, you will oversee the operation and continuous improvement of the hybrid … your key responsibilities will include: Leading and developing the Infrastructure and Endpoint teams, fostering collaboration, accountability, and technical excellence. Overseeing the day-to-day operations ensuring reliability, availability, and security of systems, networks, storage, cloud services, and endpoints. Planning and delivering infrastructure projects that align with Group IT strategy including modernisation, cloud enablement, and technology refresh initiatives. Managing hybrid … infrastructure platforms including VMware, Microsoft Azure, storage, firewalls, and enterprise networking. Defining and implementing infrastructure standards, security controls and disaster recovery plans to safeguard business operations. Monitoring performance and capacity, driving proactive improvements and optimisation. Managing supplier relationships, contracts and budgets, ensuring value for money and service excellence. Evaluating emerging technologies and making recommendations that enhance scalability, security More ❯