26 to 50 of 139 Security Posture Jobs in England

Oliver James is proud to be partnering with a globally renowned reinsurance company in their search for a Cyber Security Governance, Risk & Compliance (GRC) and Third-Party Risk Management (TPRM) Specialist. This role will play a crucial part in strengthening the organisation's security posture, focusing heavily on vendor risk, regulatory readiness, and cyber governance. Overview Oliver … James is proud to be partnering with a globally renowned reinsurance company in their search for a Cyber Security Governance, Risk & Compliance (GRC) and Third-Party Risk Management (TPRM) Specialist. This role will play a crucial part in strengthening the organisation's security posture, focusing heavily on vendor risk, regulatory readiness, and cyber governance. Based in the … loyalty bonuses. Key Responsibilities Third-Party Risk Management: Lead and own the third-party vendor risk assessment process across a portfolio of 100-120 vendors. Review and validate vendor security documentation (e.g., SOC 2, ISO 27001), evaluate control effectiveness, and coordinate remediation efforts for identified gaps. Ensure relevant business stakeholders are informed of potential risks. Governance, Risk & Compliance (GRC More ❯

Role: Information Security Analyst Location: Guildford (Hybrid options available) Salary: Circa £45,000 (plus comprehensive benefits package) Start date: ASAP My client, a leading financial services organisation, is looking for an Information Security Analyst to join their team. This is an excellent opportunity to play a key role in advancing the company's security posture by … delivering Governance, Risk, and Compliance (GRC) initiatives and embedding the NIST Cyber Security Framework (CSF) across the business. Key skills/responsibilities: Deliver day-to-day GRC activities, including designing and implementing security controls and managing information security risks Interpret and apply requirements from the Group Information Security Framework Conduct gap assessments, identify risks, and support … maturity uplift across security functions Develop and maintain an information security controls catalogue, policies, and procedures aligned with NIST CSF Collaborate with business units to integrate security measures into operations Support compliance activities for frameworks such as Cyber Essentials, PCI DSS, and the Group Information Security Framework Facilitate reviews and updates to ensure controls remain effective More ❯

At Vanta, our mission is to secure the internet and protect consumer data. We believe that security should be monitored and verified continuously, and we empower companies to practice better security and prove it with ease. Vanta has a kind and talented team, and while some have prior security experience, many have been successful at Vanta without … it. As Vanta's Customer Success Manager you will play a pivotal role in guiding some of our largest customers through their security and compliance journeys with Vanta's specialised solutions. By combining your customer-centric approach with expertise in Vanta's products and security best practices, you contribute to the overall success and satisfaction of Vanta's … customers in achieving robust security and compliance outcomes. Vanta's success over the last year was exponential and we are now working to solve the problem of how to provide world-class customer experience to as many security-minded software companies as possible. As Vanta's Customer Success Manager, you will be the voice of Vanta, responsible for More ❯

At Vanta, our mission is to secure the internet and protect consumer data. We believe that security should be monitored and verified continuously, and we empower companies to practice better security and prove it with ease. Vanta has a kind and talented team, and while some have prior security experience, many have been successful at Vanta without … it. As Vanta's Upmarket Customer Success Manager you will play a pivotal role in guiding some of our largest customers through their security and compliance journeys with Vanta's specialized solutions. By combining your customer-centric approach with expertise in Vanta's products and security best practices, you contribute to the overall success and satisfaction of Vanta … s customers in achieving robust security and compliance outcomes. Vanta's success over the last year was exponential and we are now working to solve the problem of how to provide world-class customer experience to as many security-minded software companies as possible. As Vanta's Upmarket Customer Success Manager, you will be the voice of Vanta More ❯

SC Cleared Azure Security Engineer (Inside IR35) Our technology client is looking for a highly skilled and motivated Azure Security Engineer to join their team on a 6-month, hybrid contract. This is an exciting opportunity to work with a leading organisation from our Derby office and remotely. You will be instrumental in designing, implementing, and managing robust … security solutions across their Azure platform. Key Responsibilities Design, implement, and maintain security controls and policies within the Azure environment. Monitor and respond to security incidents and threats using Azure Sentinel and other security tools. Conduct security audits and vulnerability assessments to identify and mitigate risks. Collaborate with development and operations teams to embed security best practices throughout the software development lifecycle. Manage and configure Azure security services, including Azure Active Directory, Azure Policy, and Azure Security Center. Produce detailed documentation and reports on security posture and incident response. Candidate Requirements Active SC (Security Check) clearance is essential. Must be a UK National. Active Microsoft Azure Security certification More ❯

SC Cleared Azure Security Engineer (Inside IR35) Our technology client is looking for a highly skilled and motivated Azure Security Engineer to join their team on a 6-month, hybrid contract. This is an exciting opportunity to work with a leading organisation from our Derby office and remotely. You will be instrumental in designing, implementing, and managing robust … security solutions across their Azure platform. Key Responsibilities Design, implement, and maintain security controls and policies within the Azure environment. Monitor and respond to security incidents and threats using Azure Sentinel and other security tools. Conduct security audits and vulnerability assessments to identify and mitigate risks. Collaborate with development and operations teams to embed security best practices throughout the software development lifecycle. Manage and configure Azure security services, including Azure Active Directory, Azure Policy, and Azure Security Center. Produce detailed documentation and reports on security posture and incident response. Candidate Requirements Active SC (Security Check) clearance is essential. Must be a UK National. Active Microsoft Azure Security certification More ❯

Cyber Security Consultant - Risk Consultant (MOD/Defence - SC) Location: Remote/Southwest on-site presence Contract Type: Permanent & Full-time Salary: Competitive + Benefits About the Role As a Cyber Security Consultant, you will play a pivotal role in delivering Secure by Design risk and security assurance services within MOD and Public Sector environments. You'll … collaborate with multi-disciplinary teams to define and implement security risk assessments and best practice solutions, ensuring alignment with business risk appetites and transformation goals. You'll be part of a knowledge-sharing culture, working alongside expert peers in Secure Architecture and Risk Planning. Key Responsibilities Deliver Secure by Design risk and security assurance functions within MOD/… Public Sector. Lead and advise on risk management frameworks, ISMS, and Enterprise Security Risk Management. Facilitate security and risk workshops with Authority departments. Produce clear reporting on vulnerabilities, risks, controls, and treatment activities. Provide pragmatic remediation and risk management guidance. Support secure design across technology platforms including cloud infrastructures. Experience Required The successful candidate will possess proven experience More ❯

Cyber and Information Security Lead Bath 75,000 - 85,000 Our client is looking for an ambitious Cyber and Information Security Lead to join their growing SaaS Business. They are seeking a conscientious, personable, and knowledgeable leader, ideally with commercial experience in the public sector. You may already be operating at the CISO level in a small company … or have ambitions to reach the next level in your career. Key Responsibilities: Strategy and Compliance: Design and implement a comprehensive security strategy and roadmap, ensuring our security posture meets the requirements of the NHS Data Security and Protection Toolkit (DSPT), Cyber Essentials Plus, ISO 27001:2022, and other relevant frameworks. Risk Management: Lead the information … security risk management program, including the identification, assessment, mitigation, and monitoring of risks across all systems and operations. Policy and Governance: Support and oversee the creation and enforcement of security policies, standards, and procedures. Incident Response: Develop, implement, and manage the security incident response plan. Leadership: Provide strong leadership and mentorship to the governance, risk, and compliance More ❯

Cyber and Information Security Lead Bath £75,000 - £85,000 Our client is looking for an ambitious Cyber and Information Security Lead to join their growing SaaS Business. They are seeking a conscientious, personable, and knowledgeable leader, ideally with commercial experience in the public sector. You may already be operating at the CISO level in a small company … or have ambitions to reach the next level in your career. Key Responsibilities: Strategy and Compliance: Design and implement a comprehensive security strategy and roadmap, ensuring our security posture meets the requirements of the NHS Data Security and Protection Toolkit (DSPT), Cyber Essentials Plus, ISO 27001:2022, and other relevant frameworks. Risk Management: Lead the information … security risk management program, including the identification, assessment, mitigation, and monitoring of risks across all systems and operations. Policy and Governance: Support and oversee the creation and enforcement of security policies, standards, and procedures. Incident Response: Develop, implement, and manage the security incident response plan. Leadership: Provide strong leadership and mentorship to the governance, risk, and compliance More ❯

Cyber Security Engineer (DevSecOps) Automation/Cloud/Salesforce Rate: Circa £600/day (Outside IR35) Length: 12 months Location: Milton Keynes/Initially Hybrid (Flexibility) We're working with a well-known insurance company currently undergoing a company-wide transformation programme. As the organisation moves from on-premise to a cloud-based environment, the need for an improved … security posture is mission critical. As the Cyber Security Engineer, you'll be focused primarily on hands-on engineering work, with some strategic responsibilities. You'll be joining a small but growing security team, reporting into the InfoSec Manager and Head of Technology. Your role will cover areas such as: Setting up a DevSecOps practice - embedding … security within DevOps and automation processes. Embedding security into the organisation's new cloud-based SaaS platform (Salesforce). Improving the use of Elastic (monitoring & security tool). Have worked in a PRA or Insurance regulated background Data security Establishing security policies. risk assessments and mitigation planning - documentation and write ups for board presentations write More ❯

Cyber Security Engineer (DevSecOps) Automation/Cloud/Salesforce Rate: Circa 600/day (Outside IR35) Length: 12 months Location: Milton Keynes/Initially Hybrid (Flexibility) We're working with a well-known insurance company currently undergoing a company-wide transformation programme. As the organisation moves from on-premise to a cloud-based environment, the need for an improved … security posture is mission critical. As the Cyber Security Engineer, you'll be focused primarily on hands-on engineering work, with some strategic responsibilities. You'll be joining a small but growing security team, reporting into the InfoSec Manager and Head of Technology. Your role will cover areas such as: Setting up a DevSecOps practice - embedding … security within DevOps and automation processes. Embedding security into the organisation's new cloud-based SaaS platform (Salesforce). Improving the use of Elastic (monitoring & security tool). Have worked in a PRA or Insurance regulated background Data security Establishing security policies. risk assessments and mitigation planning - documentation and write ups for board presentations write More ❯

Governance, Risk & Compliance (MOD/Defence - SC) Location: Remote/Southwest on-site presence Contract Type: Permanent & Full-time Salary: Competitive + Benefits About the Role As a Cyber Security Consultant, you will play a pivotal role in delivering Secure by Design risk and security assurance services within MOD and Public Sector environments. You'll collaborate with multi … disciplinary teams to define and implement security risk assessments and best practice solutions, ensuring alignment with business risk appetites and transformation goals. You'll be part of a knowledge-sharing culture, working alongside expert peers in Secure Architecture and Risk Planning. Key Responsibilities Deliver Secure by Design risk and security assurance functions within MOD/Public Sector. Lead … and advise on risk management frameworks, ISMS, and Enterprise Security Risk Management. Facilitate security and risk workshops with Authority departments. Produce clear reporting on vulnerabilities, risks, controls, and treatment activities. Provide pragmatic remediation and risk management guidance. Support secure design across technology platforms including cloud infrastructures. Experience Required The successful candidate will possess proven experience in cybersecurity, security More ❯

Job summary The Senior Security Analyst (Ops) sits within the Protective Monitoring function of the Cyber Security Operations Centre (CSOC). The CSOC is made up of Protective Monitoring, Incident Management, Threat Operations, Engineering and Consultancy. The role is a Tier 3 analyst in the XDR Protective Monitoring Sub team. Cyber Operations purpose is to support safe care … be cyber resilient, supporting Transformation Directorate's purpose of delivering the best care and outcomes for the NHS. The Cyber Operations sub-directorate consists of 4 operational areas: Cyber Security Operations Unit (CSOU) Cyber Delivery Unit (CDU). Cyber Improvement Programme. Chief Information Security Office Function (CISO) The post of Senior Security Analyst has been awarded a … additional monthly RRP payment equal to 20% per annum. Please be aware that RRP is non contractual and subject to review. Main duties of the job As a Senior Security Analyst Ops you will: Provide Tier 3 security analytics and incident response for service-specific security monitoring. Deputise for Security Lead (Analyst) in their absence. Act More ❯

Job summary We are looking for a Head of Cyber Security to deliver an industry leading security posture at West London NHS Trust. This is a critical role with responsibility for all aspects of Information Security. The role will ensure West London meets all public sector (particularly healthcare) compliance and standards while delivering exceptional operational performance across … the business. You will work with internal teams to help maintain a safe working environment for trust staff and patients. Protecting West London from security threats and cyber risk is of paramount importance for a public sector organisation delivering critical health services, this role is pivotal to upholding security standards. You will be responsible for staying up to … date with and delivering the Data Security and Protection Toolkit (DSPT) and other central requirements as they manifest. Reporting to the Director of Digital Services, the Head of Cyber Security is a key member of the digital senior management team. The Head of Cyber Security is responsible for the development, direction, management and delivery of information security More ❯

We are currently recruiting for a Regional Information Security Officer , reporting to the Global Chief Information Security Officer (CISO), to oversee the information security function across the countries and Tunstall entities in their scope. This is an incredibly exciting time to join Tunstall as we embark on an exciting period of transformation. You will be joining a … recently created and growing global Information Security team within Tunstall and will be in a leadership position playing a key part in the success of this transformation. This role would be based at either our Manchester office or our Whitley site (DN14 0HR) working on a hybrid basis. We are flexible on number of days in the office. What … will you be doing in this role? As our Regional Security Officer , you will be responsible for implementing, running and overseeing the information security function across the countries and Tunstall entities in your scope, ensuring consistent and strong information security management in support of our business goals and in line with the global Information Security strategy More ❯

Position Available: Security & Identity Consultant Location: London (Hybrid, 2 days a week in office) Salary: £75,000 - £85,000 (DoE) + Bonus Experience needed: We are seeking a senior-level IAM and security professional with experience designing and implementing IAM frameworks, managing access governance, and improving security posture in large-scale environments. You'll combine hands … on technical skills with strategic leadership, working closely with senior security stakeholders. Experience with IAM tools (Saviynt preferred), authentication protocols, cloud security, and frameworks like RBAC and least privilege is highly desirable. About the role: We're seeking a senior-level Identity & Access Management (IAM) and Security specialist to take ownership of a global security roadmap … and design IAM frameworks that protect operations across multiple countries. This is not a generic IT security position, you'll act as the strategic bridge between senior security leadership and global technology teams, turning high-level security objectives into practical, scalable solutions. Key Responsibilities: Own and deliver the Global Technology Operations security roadmap Design & implement IAM More ❯

INFORMATION SECURITY MANAGER Our client is one of the largest owner-operator of rapid electric vehicle charging stations across the UK and Europe. They are award winners and are currently short listed for " The Best Place to Work" . They are growing and expanding at pace, are you up for the ride. They are seeking a highly skilled and … experienced Information Security Manager to join our team. You will work closely with the clients international IT team to lead the organisation’s cybersecurity and information risk agenda, including oversight of ISO 27001 and broader security governance across the business. Key Responsibilities : Maintain the Information Security Management System (ISMS) in compliance with ISO 27001:2022 standards. Establish … maintain and enforce security policies, procedures, and controls to mitigate information security risks and vulnerabilities. Conduct regular risk assessments and vulnerability assessments to identify potential threats and weaknesses in our information security infrastructure. Collaborate with internal stakeholders to ensure that information security requirements are integrated into business processes and systems. Lead internal audits and coordinate external More ❯

INFORMATION SECURITY MANAGER Our client is one of the largest owner-operator of rapid electric vehicle charging stations across the UK and Europe. They are award winners and are currently short listed for " The Best Place to Work" . They are growing and expanding at pace, are you up for the ride. They are seeking a highly skilled and … experienced Information Security Manager to join our team. You will work closely with the clients international IT team to lead the organisation’s cybersecurity and information risk agenda, including oversight of ISO 27001 and broader security governance across the business. Key Responsibilities : Maintain the Information Security Management System (ISMS) in compliance with ISO 27001:2022 standards. Establish … maintain and enforce security policies, procedures, and controls to mitigate information security risks and vulnerabilities. Conduct regular risk assessments and vulnerability assessments to identify potential threats and weaknesses in our information security infrastructure. Collaborate with internal stakeholders to ensure that information security requirements are integrated into business processes and systems. Lead internal audits and coordinate external More ❯

Network Security Engineer – Contract Location: Fully Remote Rate: Up to £450 per day (Inside IR35) Duration: 6 Months About the Role We are seeking an experienced Network Security Engineer to join on a 6-month contract . This is a fully remote role, offering an opportunity to work on high-impact security projects and infrastructure initiatives. You … ll be responsible for strengthening the security posture, managing critical systems, and mitigating risks across cloud and network environments. Key Responsibilities Manage, configure, and troubleshoot Palo Alto firewalls to ensure optimal security. Implement and maintain Azure security controls , including identity, networking, and monitoring solutions. Configure and manage Web Application Firewalls (WAFs) to protect against application-layer attacks. … Conduct security audits , review findings, and produce comprehensive reports. Proactively mitigate vulnerabilities identified in security reports and assessments. Collaborate with cross-functional teams to ensure security best practices are followed. Stay up to date with emerging threats, vulnerabilities, and industry trends. Skills & Experience Required Proven experience as a Network Security Engineer or similar role. Strong hands More ❯

Cyber Security Consultant Location: Remote Salary: 60k + excellent benefits Type: Permanent An excellent opportunity to join a renowned Microsoft Managed Security Service Provider (MSSP) as a Cyber Security Consultant with a strong emphasis on Governance, Risk & Compliance (GRC). The role involves working with enterprise clients to navigate complex regulatory requirements, enhance their security posture, and align with industry standards using the Microsoft security ecosystem. Responsibilities: Delivering GRC consultancy across varied client environments Conducting risk assessments, compliance audits, and control gap analyses Advising on security frameworks including ISO 27001, NIST, and GDPR Supporting implementation and optimisation of Microsoft Security solutions such as Defender, Sentinel, and Purview Translating compliance requirements into actionable … security controls Building and maintaining strong client relationships through strategic guidance and clear communication Experience required: Proven experience in cyber security consultancy with a GRC focus Strong understanding of security frameworks and regulatory obligations Familiarity with the Microsoft Security stack (Defender, Sentinel, Entra, etc.) Excellent communication and stakeholder engagement skills CISSP certification (or working towards) considered More ❯

ROLE OVERVIEW//We are recruiting for an experienced IT Security and Resilience Specialist to join the IT Infrastructure Engineering Team. Which is part of the Technology Department, and the wider Business Services function based at the firm’s head office in London. This is a hybrid role that is both hands-on and process-focused, ensuring that … our disaster recovery (DR), failover, and operational resilience capabilities are effective, tested, annually reviewed and continually improved. The Security & Resilience Specialist will plan and execute DR and resilience testing, drive remediation activities through to closure, and ensure that evidence and documentation meet client, regulatory, and audit standards. This is not a purely administrative role; the successful candidate will work … directly with infrastructure and security teams to fix issues as well as document them. KEY RESPONSIBILITIES//The key responsibilities of this role are set out below and there may be others which are not listed. You may be required on occasion to work outside our normal working hours of 9:30am to 5:30pm. Cyber Security More ❯

ROLE OVERVIEW//We are recruiting for an experienced IT Security and Resilience Specialist to join the IT Infrastructure Engineering Team. Which is part of the Technology Department, and the wider Business Services function based at the firm’s head office in London. This is a hybrid role that is both hands-on and process-focused, ensuring that … our disaster recovery (DR), failover, and operational resilience capabilities are effective, tested, annually reviewed and continually improved. The Security & Resilience Specialist will plan and execute DR and resilience testing, drive remediation activities through to closure, and ensure that evidence and documentation meet client, regulatory, and audit standards. This is not a purely administrative role; the successful candidate will work … directly with infrastructure and security teams to fix issues as well as document them. KEY RESPONSIBILITIES//The key responsibilities of this role are set out below and there may be others which are not listed. You may be required on occasion to work outside our normal working hours of 9:30am to 5:30pm. Cyber Security More ❯

ROLE OVERVIEW//We are recruiting for an experienced IT Security and Resilience Specialist to join the IT Infrastructure Engineering Team. Which is part of the Technology Department, and the wider Business Services function based at the firm’s head office in London. This is a hybrid role that is both hands-on and process-focused, ensuring that … our disaster recovery (DR), failover, and operational resilience capabilities are effective, tested, annually reviewed and continually improved. The Security & Resilience Specialist will plan and execute DR and resilience testing, drive remediation activities through to closure, and ensure that evidence and documentation meet client, regulatory, and audit standards. This is not a purely administrative role; the successful candidate will work … directly with infrastructure and security teams to fix issues as well as document them. KEY RESPONSIBILITIES//The key responsibilities of this role are set out below and there may be others which are not listed. You may be required on occasion to work outside our normal working hours of 9:30am to 5:30pm. Cyber Security More ❯

ROLE OVERVIEW//We are recruiting for an experienced IT Security and Resilience Specialist to join the IT Infrastructure Engineering Team. Which is part of the Technology Department, and the wider Business Services function based at the firm’s head office in London. This is a hybrid role that is both hands-on and process-focused, ensuring that … our disaster recovery (DR), failover, and operational resilience capabilities are effective, tested, annually reviewed and continually improved. The Security & Resilience Specialist will plan and execute DR and resilience testing, drive remediation activities through to closure, and ensure that evidence and documentation meet client, regulatory, and audit standards. This is not a purely administrative role; the successful candidate will work … directly with infrastructure and security teams to fix issues as well as document them. KEY RESPONSIBILITIES//The key responsibilities of this role are set out below and there may be others which are not listed. You may be required on occasion to work outside our normal working hours of 9:30am to 5:30pm. Cyber Security More ❯

ROLE OVERVIEW//We are recruiting for an experienced IT Security and Resilience Specialist to join the IT Infrastructure Engineering Team. Which is part of the Technology Department, and the wider Business Services function based at the firm’s head office in London. This is a hybrid role that is both hands-on and process-focused, ensuring that … our disaster recovery (DR), failover, and operational resilience capabilities are effective, tested, annually reviewed and continually improved. The Security & Resilience Specialist will plan and execute DR and resilience testing, drive remediation activities through to closure, and ensure that evidence and documentation meet client, regulatory, and audit standards. This is not a purely administrative role; the successful candidate will work … directly with infrastructure and security teams to fix issues as well as document them. KEY RESPONSIBILITIES//The key responsibilities of this role are set out below and there may be others which are not listed. You may be required on occasion to work outside our normal working hours of 9:30am to 5:30pm. Cyber Security More ❯