51 to 75 of 131 Security Posture Jobs in England

Information Security GRC Manager | ISO27001, SOC2, Azure Security | Global Trading Platform £70–80k base + 10% bonus Hybrid in London Training budget for certifications + conference attendance Strong emphasis on professional autonomy and ethical leadership A newly created opportunity to lead and shape the GRC function of a global financial group at a pivotal time, supporting the secure … role with real scope: oversight of policy, third-party risk, architectural reviews, and cloud compliance. You'll work closely with the Head of InfoSec to maintain audit readiness, improve security posture, and influence business-wide awareness and accountability. What you’ll bring: 5+ years in InfoSec, IT Security or Ops within a regulated environment Certification required: CISSP … CISM, CRISC, or equivalent Strong knowledge of ISO27001:2022, SOC2 Type II, NIST CSF, PCI DSS, GDPR, DORA Confident with security risk assessments, audit responses, and policy governance Hands-on cloud security experience: ideally with Azure and the Shared Responsibility Model Comfort with complexity: able to analyze architecture, track metrics, and translate acronyms into actionable plans Mentorship ability More ❯

Information Security GRC Manager | ISO27001, SOC2, Azure Security | Global Trading Platform £70–80k base + 10% bonus Hybrid in London Training budget for certifications + conference attendance Strong emphasis on professional autonomy and ethical leadership A newly created opportunity to lead and shape the GRC function of a global financial group at a pivotal time, supporting the secure … role with real scope: oversight of policy, third-party risk, architectural reviews, and cloud compliance. You'll work closely with the Head of InfoSec to maintain audit readiness, improve security posture, and influence business-wide awareness and accountability. What you’ll bring: 5+ years in InfoSec, IT Security or Ops within a regulated environment Certification required: CISSP … CISM, CRISC, or equivalent Strong knowledge of ISO27001:2022, SOC2 Type II, NIST CSF, PCI DSS, GDPR, DORA Confident with security risk assessments, audit responses, and policy governance Hands-on cloud security experience: ideally with Azure and the Shared Responsibility Model Comfort with complexity: able to analyze architecture, track metrics, and translate acronyms into actionable plans Mentorship ability More ❯

Information Security GRC Manager | ISO27001, SOC2, Azure Security | Global Trading Platform £70–80k base + 10% bonus Hybrid in London Training budget for certifications + conference attendance Strong emphasis on professional autonomy and ethical leadership A newly created opportunity to lead and shape the GRC function of a global financial group at a pivotal time, supporting the secure … role with real scope: oversight of policy, third-party risk, architectural reviews, and cloud compliance. You'll work closely with the Head of InfoSec to maintain audit readiness, improve security posture, and influence business-wide awareness and accountability. What you’ll bring: 5+ years in InfoSec, IT Security or Ops within a regulated environment Certification required: CISSP … CISM, CRISC, or equivalent Strong knowledge of ISO27001:2022, SOC2 Type II, NIST CSF, PCI DSS, GDPR, DORA Confident with security risk assessments, audit responses, and policy governance Hands-on cloud security experience: ideally with Azure and the Shared Responsibility Model Comfort with complexity: able to analyze architecture, track metrics, and translate acronyms into actionable plans Mentorship ability More ❯

be cyber resilient, supporting Transformation Directorate's purpose of delivering the best care and outcomes for the NHS. The Cyber Operations sub-directorate consists of 4 operational areas: Cyber Security Operations Unit (CSOU) Cyber Delivery Unit (CDU) Cyber Improvement Programme Chief Information Security Office Function (CISO) The Security Analyst (XDR) role is within the Security Operations … pillar of the CSOC (Cyber Security Operations Centre) providing second line security analytics and incident response services. The post of Security Analyst has been awarded a Recruitment and Retention Premia (RRP) in response to current labour market conditions. In recognition of this, the role attracts an additional monthly RRP payment equal to 20% per annum. Please be … aware that RRP is non contractual and subject to review. Main duties of the job As a Security Analyst (XDR) you will: Act as a Tier 2 Extended Detection and Response (XDR) analyst for the Security Operations team. Deputise for Senior Analysts in their absence. Act as an escalation point for Tier 1 Junior Analysts for incidents and More ❯

Information Security Manager Location: London, Hybrid Salary: Up to 75,000 Reports to: Head of Cyber Security A well regarded Managed Service Provider is seeking an experienced Information Security Manager to join its team on a permanent basis. This role offers the opportunity to lead and deliver strategic security initiatives across a varied client base, with … have a proven background within an MSP or MSSP environment, hold CISSP certification, and demonstrate deep expertise in GRC frameworks, particularly ISO27001. Experience acting as a virtual Chief Information Security Officer (vCISO) is essential. This business has made significant investment into its SOC-as-a-Service offering, positioning itself at the forefront of managed security solutions and enabling … clients to benefit from cutting-edge threat detection and response capabilities. Key Responsibilities: Serve as a vCISO for clients, providing strategic guidance on security posture and compliance Lead the development and implementation of security policies, procedures, and controls Manage ISO27001 compliance, including internal and external audits Conduct risk assessments and oversee incident response planning Collaborate with technical More ❯

Information Security Manager Location: London, Hybrid Salary: Up to 75,000 Reports to: Head of Cyber Security A well regarded Managed Service Provider is seeking an experienced Information Security Manager to join its team on a permanent basis. This role offers the opportunity to lead and deliver strategic security initiatives across a varied client base, with … have a proven background within an MSP or MSSP environment, hold CISSP certification, and demonstrate deep expertise in GRC frameworks, particularly ISO27001. Experience acting as a virtual Chief Information Security Officer (vCISO) is essential. This business has made significant investment into its SOC-as-a-Service offering, positioning itself at the forefront of managed security solutions and enabling … clients to benefit from cutting-edge threat detection and response capabilities. Key Responsibilities: Serve as a vCISO for clients, providing strategic guidance on security posture and compliance Lead the development and implementation of security policies, procedures, and controls Manage ISO27001 compliance, including internal and external audits Conduct risk assessments and oversee incident response planning Collaborate with technical More ❯

team. Working closely with the Cyber team as well as the digital team to ensure cybersecurity is embedded across all digital platforms. Key skills & Responsibility Lead the integration of security into the software development lifecycle (SDLC) using DevSecOps principles. Define and implement release strategies with a strong emphasis on application security. Identify and remediate security vulnerabilities through detailed … and automated tooling. Collaborate with cross-functional teams to establish secure coding standards and quality benchmarks. Provide expert consultancy and guidance to engineering teams, enabling them to meet strategic security goals. Drive adoption of security best practices across CI/CD pipelines and cloud-native environments. Accountabilities Provide technical cyber leadership across all development teams, focusing on application … security for our various digital platforms (web and mobile). Secure our CI/CD pipelines and provide improvement plans and requirements to those that use them, while overseeing the consistent adoption of secure practices across teams. Support the vulnerability management process, raising awareness and embedding secure development principles with development teams. Evaluate, implement, support and communicate new tools More ❯

Type: Contract (6 months) | Rate: Market| Start Date: ASAP About the Role Our client, a leading global organization, is looking for an experienced DevSecOps Pentester to join a leading security team in London. Youll perform penetration tests and security assessments across CI/CD pipelines, cloud environments, and applications, integrating automated security tools and practices into DevOps … is ideal for someone who can identify vulnerabilities in code, containers, APIs, and infrastructure-as-code before production, collaborate closely with DevOps and development teams, and help improve enterprise security posture. Key Responsibilities Integrate security tools and practices into CI/CD pipelines for continuous validation. Conduct manual and automated security testing on web apps, APIs, pipelines … and actionable remediation guidance. Validate remediation efforts and perform retesting cycles. Advise on secrets management, IAM, and secure deployment practices. Educate and collaborate with development and operations teams on security best practices. Required Skills & Experience Strong application security knowledge (OWASP Top 10, API security). Manual pentesting experience on modern web apps, APIs, and CI/CD More ❯

The Role: As our Cyber Intelligence Specialist, you will proactively identify, analyse, respond, and mitigate cyber threats that pose risks to Vanquis Banking Groups cybersecurity posture. This involves monitoring security events, conducting incident response activities, enhancing our threat detection capabilities, and ensuring compliance with policy, standards, and regulation. Your contributions will directly impact our ability to protect sensitive data … cybersecurity risks. As a Cyber Intelligence Specialist, you will: Actively participate the delivery of services provided by the Cyber Intelligence Centre including by not limited to Cyber Threat Intelligence, Security Posture Management, Cyber Security Incident Response, Threat Hunting, Penetration Testing & Red Team Testing, and Cyber Risk Mitigation. Incorporate threat intelligence into CIC activities. Collaborate and assist with … the investigation and resolution of complex security incidents. Support the delivery of retrospective improvements based on incident analysis, RCAs and PIRs. Engage with third-party security partners to enhance and mature services. Maintain centralised processes across all VBG product lines, promoting synergy and efficiency. Stay updated on the latest cyber threats, attack vectors, and trends in the cybersecurity More ❯

The Role: As our Cyber Intelligence Specialist, you will proactively identify, analyse, respond, and mitigate cyber threats that pose risks to Vanquis Banking Groups cybersecurity posture. This involves monitoring security events, conducting incident response activities, enhancing our threat detection capabilities, and ensuring compliance with policy, standards, and regulation. Your contributions will directly impact our ability to protect sensitive data … cybersecurity risks. As a Cyber Intelligence Specialist, you will: Actively participate the delivery of services provided by the Cyber Intelligence Centre including by not limited to Cyber Threat Intelligence, Security Posture Management, Cyber Security Incident Response, Threat Hunting, Penetration Testing & Red Team Testing, and Cyber Risk Mitigation. Incorporate threat intelligence into CIC activities. Collaborate and assist with … the investigation and resolution of complex security incidents. Support the delivery of retrospective improvements based on incident analysis, RCAs and PIRs. Engage with third-party security partners to enhance and mature services. Maintain centralised processes across all VBG product lines, promoting synergy and efficiency. Stay updated on the latest cyber threats, attack vectors, and trends in the cybersecurity More ❯

The Role: As our Cyber Intelligence Specialist, you will proactively identify, analyse, respond, and mitigate cyber threats that pose risks to Vanquis Banking Groups cybersecurity posture. This involves monitoring security events, conducting incident response activities, enhancing our threat detection capabilities, and ensuring compliance with policy, standards, and regulation. Your contributions will directly impact our ability to protect sensitive data … cybersecurity risks. As a Cyber Intelligence Specialist, you will: Actively participate the delivery of services provided by the Cyber Intelligence Centre including by not limited to Cyber Threat Intelligence, Security Posture Management, Cyber Security Incident Response, Threat Hunting, Penetration Testing & Red Team Testing, and Cyber Risk Mitigation. Incorporate threat intelligence into CIC activities. Collaborate and assist with … the investigation and resolution of complex security incidents. Support the delivery of retrospective improvements based on incident analysis, RCAs and PIRs. Engage with third-party security partners to enhance and mature services. Maintain centralised processes across all VBG product lines, promoting synergy and efficiency. Stay updated on the latest cyber threats, attack vectors, and trends in the cybersecurity More ❯

The Role: As our Cyber Intelligence Specialist, you will proactively identify, analyse, respond, and mitigate cyber threats that pose risks to Vanquis Banking Groups cybersecurity posture. This involves monitoring security events, conducting incident response activities, enhancing our threat detection capabilities, and ensuring compliance with policy, standards, and regulation. Your contributions will directly impact our ability to protect sensitive data … cybersecurity risks. As a Cyber Intelligence Specialist, you will: Actively participate the delivery of services provided by the Cyber Intelligence Centre including by not limited to Cyber Threat Intelligence, Security Posture Management, Cyber Security Incident Response, Threat Hunting, Penetration Testing & Red Team Testing, and Cyber Risk Mitigation. Incorporate threat intelligence into CIC activities. Collaborate and assist with … the investigation and resolution of complex security incidents. Support the delivery of retrospective improvements based on incident analysis, RCAs and PIRs. Engage with third-party security partners to enhance and mature services. Maintain centralised processes across all VBG product lines, promoting synergy and efficiency. Stay updated on the latest cyber threats, attack vectors, and trends in the cybersecurity More ❯

recognized as a "Best Company to Work For," and we're proud of our team for receiving awards for workplace effectiveness and flexibility. What You'll Do As our Security Engineer, you'll be responsible for managing our security posture as well as keeping our application safe from external threats. Our ideal Security Engineer will be … able to manage IT-related security issues, such as firewall management, HIDS/HIPS configuration, log monitoring, and audit compliance (SOC II). You will ensure that our software application is both manually and automatically penetration tested for security vulnerabilities (both Red Team and Blue Team exercises), and be a decision maker in all things security management … the plug" on a feature, application, or other business function if it represents a significant risk to the company. You will: Conduct penetration tests against web applications infrastructure Validate security on new hardware and software infrastructure Assist front-line company representatives with security questions Manage firewall rules and internal pentesting Manage SOC II controls and external pentesting Manage More ❯

Enterprise Security Architect at University of Canterbury, Canterbury Located in Ōtautahi Christchurch, Aotearoa New Zealand Full-time (37.5 hours per week) Generous annual leave provisions and professional development opportunities Āu Mahi What You Will Do Are you a security leader who thrives on shaping strategy and rolling up your sleeves to deliver technical solutions? As our Enterprise Security … frameworks, and influence senior decisions - while also engaging directly in technical design, configuration, and solution delivery. You will: Lead the design, delivery, and ongoing evolution of UC's enterprise security architecture Define and embed security frameworks, policies, and technologies that meet global best practice Drive security-by-design across major initiatives, from cloud migration to zero-trust … architectures Collaborate with leaders, architects, engineers, and vendors to align security with UC's digital strategy Apply emerging technologies and practical solutions to strengthen UC's security posture. We're looking for a security architect who can see the big picture and make it real - someone who can shape enterprise-wide strategy while delivering hands-on technical More ❯

be cyber resilient, supporting Transformation Directorate's purpose of delivering the best care and outcomes for the NHS. The Cyber Operations sub-directorate consists of 4 operational areas: Cyber Security Operations Unit (CSOU) Cyber Delivery Unit (CDU) Cyber Improvement Programme Chief Information Security Office Function (CISO) The post of Security Analyst has been awarded a Recruitment and … attracts an additional monthly RRP payment equal to 20% per annum. Please be aware that RRP is non contractual and subject to review. Main duties of the job The Security Analyst (Ops Networks and Infrastructure) role is within the Security Operations pillar of the CSOC (Cyber Security Operations Centre) providing second line security analytics and incident … response services. Act as a Tier 2 National Networks and Infrastructure analyst for the Security Operations team. Deputise for Senior Analysts in their absence. Act as an escalation point for Tier 1 Junior Analysts for incidents and investigations. Offer mentorship and guidance to Tier 1 Junior Analysts to support others and their own growth and development. Keep up to More ❯

Join a leading semiconductor company as a Cyber Security Project Manager ! Are you an experienced project manager with a passion for cybersecurity? This is your opportunity to lead high-impact security initiatives within a global technology leader. You'll work across teams to deliver complex projects that strengthen our security posture and support our business growth. … Job Overview We’re looking for a confident and capable Cyber Security Project Manager to lead the delivery of security-focused projects across cloud and on-prem environments. You’ll be responsible for managing cross-functional teams, driving remediation efforts, and ensuring alignment with business goals and compliance standards. Contract Details Contract Length: 6 months (with visibility to … cybersecurity projects and managing complex, multi-stream programmes. Strong background in risk, issue, and escalation management. Solid experience using Jira for project planning and tracking. Familiarity with EDR, email security, GRC, and cloud security controls across multiple cloud platforms. Experience integrating security in M&A activities, including OT risk and compliance. Preferred certifications: PMP, Agile/Scrum More ❯

Join a leading semiconductor company as a Cyber Security Project Manager ! Are you an experienced project manager with a passion for cybersecurity? This is your opportunity to lead high-impact security initiatives within a global technology leader. You'll work across teams to deliver complex projects that strengthen our security posture and support our business growth. … Job Overview We’re looking for a confident and capable Cyber Security Project Manager to lead the delivery of security-focused projects across cloud and on-prem environments. You’ll be responsible for managing cross-functional teams, driving remediation efforts, and ensuring alignment with business goals and compliance standards. Contract Details Contract Length: 6 months (with visibility to … cybersecurity projects and managing complex, multi-stream programmes. Strong background in risk, issue, and escalation management. Solid experience using Jira for project planning and tracking. Familiarity with EDR, email security, GRC, and cloud security controls across multiple cloud platforms. Experience integrating security in M&A activities, including OT risk and compliance. Preferred certifications: PMP, Agile/Scrum More ❯

Aylesbury United Kingdom Job ID: JR APPLY NOW Job Title: Customer Success Manager About Skyhigh Security: Skyhigh Security is a dynamic, fast-paced, cloud company that is a leader in the security industry. Our mission is to protect the world's data, and because of this, we live and breathe security. We value learning at our core … underpinned by openness and transparency. Since 2011, organizations have trusted us to provide them with a complete, market-leading security platform built on a modern cloud stack. Our industry-leading suite of products radically simplifies data security through easy-to-use, cloud-based, Zero Trust solutions that are managed in a single dashboard, powered by hundreds of employees … across the world. With offices in Santa Clara, Aylesbury, Paderborn, Bengaluru, Sydney, Tokyo and more, our employees are the heart and soul of our company. Skyhigh Security Is more than a company; here, when you invest your career with us, we commit to investing in you. We embrace a hybrid work model, creating the flexibility and freedom you need More ❯

National Information Security Advisor Location: Open to location but Bristol is preferred Clearance: UK National BPSS & SC preferred Contract Type: Inside IR35 Rate: £33.50 per hour Hours per week: 30 hours per week and 2 days in the office ideally The Opportunity We're currently supporting a leading organisation in their search for a National Information Security Advisor … with experience supporting UK Defence projects and delivering FM (Facilities Management) security implementation workstreams. This role requires a proactive and knowledgeable professional who understands the security and compliance landscape within UK Defence, with a particular emphasis on ISO/IEC 27001 and related certification processes. Key Responsibilities Support FM security implementation projects, ensuring alignment with UK Defence … risk, and compliance initiatives across both business and technical functions Liaise effectively with internal stakeholders and external partners across various departments Contribute to the development and maintenance of information security policies and frameworks Maintain awareness of UK Defence-specific security requirements and ensure compliance across all relevant projects Support documentation, training, and improvement processes to enhance organisational security More ❯

SOC Solutions Engineer - IBM QRadar Location: Birmingham (hybrid) Salary: Up to £80,000 (depending on experience) + bonus Eligibility: Candidates must be eligible for UK Security Clearance We are seeking a SOC Solutions Engineer to join a growing security practice and play a pivotal role in enhancing cyber defence capabilities. This position offers the opportunity to work on … cutting-edge security operations, with a strong focus on IBM QRadar , threat modelling, and automation. What You’ll Do Deploy, configure, and maintain IBM QRadar SIEM solutions. Onboard and normalise log sources across both cloud and on-premise environments. Develop and optimise analytical rules for advanced threat detection and behavioural analysis. Design and implement incident response playbooks and integrate … Cyber Kill Chain) and translate them into actionable use cases. Perform in-depth investigations, coordinate incident response, and collaborate with threat intelligence teams. Produce dashboards, reports, and insights on security posture and incident trends. Support scoping and demonstrations of SOC tools for new opportunities. Mentor junior analysts and contribute to continual service improvements. What We’re Looking For More ❯

DV Security Consultant We are seeking an experienced Contract Security Consultant with active DV clearance to support high-assurance UK Government and Defence projects. The ideal candidate will bring deep expertise across Security Architecture, Engineering and secure system design, contributing to the delivery of robust and compliant solutions in sensitive and mission-critical environments. Day Rate … 900pd IR35 Status: Outside Duration: 6 Months initially Travel: 4 days a week in Cambridgeshire Office (1 day WFH) Clearance Level: Active DV This Security Consultant will have the previous following experience: Design and implement secure systems for classified and unclassified networks, assess vulnerabilities, apply risk mitigation strategies, and validate security posture to meet baseline compliance and … operational requirements Partner with engineering teams, customers, and government agencies to develop security policies, operational processes, technical designs, and ensure integration with SIEM and monitoring systems. Demonstrated proficiency in network/system security (firewalls, IDS/IPS, micro-segmentation), IAM (RBAC, ABAC, JWT), secure coding practices (OWASP, SANS), and hands-on experience with tools like Trellix, Ivanti, ClearSwift. More ❯

Senior Cyber Security & Infrastructure Engineer - Azure - FinTech A well known FinTech is seeking a skilled Senior Cyber & Infrastructure Engineer to drive the next phase of its Microsoft cloud environment and cyber security strategy. This role offers an opportunity to join a forward-thinking IT function and be a key player in building secure, scalable systems and ensuring the … organisation stays ahead of evolving cyber threats. The successful candidate will take ownership of security architecture in a Microsoft cloud infrastructure environment to deliver resilient, and future proof solutions. Key Responsibilities: Implement and enhance secure, Microsoft Azure and Microsoft 365 platforms. Strengthen and manage the organisations security posture using Microsoft Defender for Endpoint, Sentinel, Intune, and other … Microsoft security solutions. Integrate and optimise EDR, XDR, and CrowdStrike (or similar platforms) to improve threat detection and response capabilities. Maintain effective access controls, including RBAC and Conditional Access Collaborate with Risk & Compliance teams to align infrastructure with ISO 27001, NIST, and CIS frameworks. Act as the technical SME for security infrastructure and collaborate with other Cloud, Compliance More ❯

Job Opportunity: Security Governance and Service Management Specialist Are you passionate about security governance and service management? Do you want to make a difference in the financial sector? If so, we have an exciting temporary position for you in the heart of London! Location: City of London Contract Type: Temporary Commute: Just a 1-minute walk from Liverpool … Street train station! Join our dynamic team at a leading financial institution and insurance provider! We're looking for a dedicated Security Governance and Service Management Specialist to help us enhance our security posture and ensure top-notch service delivery. What You'll Do: Develop and implement security governance frameworks to safeguard our assets. Collaborate with … cross-functional teams to ensure compliance with regulatory requirements. Monitor and manage security incidents, providing timely reporting and resolution. Conduct risk assessments and audits to identify vulnerabilities. Assist in the formulation of security policies and procedures. Provide training and support to staff on security best practises. What We're Looking For: Proven experience in security governance More ❯

About the Role We are seeking a skilled SOC Analyst to join our growing in-house security operations team on a permanent basis in Manchester . This is a fantastic opportunity to be at the heart of cyber defence operations, working hands-on with SIEM tools and ensuring compliance with Cyber Essentials standards. You’ll play a key role … in monitoring, detecting, and responding to threats, while continuously improving our security posture and supporting the wider IT security strategy. Key Responsibilities Monitor, triage, and investigate alerts generated by SIEM and security monitoring platforms. Conduct log analysis and threat hunting to proactively identify suspicious activity. Support incident response efforts including containment, investigation, and remediation. Ensure security … with Cyber Essentials and other best practice frameworks. Optimise SIEM tooling for enhanced visibility and detection capability. Produce clear reporting and recommendations for senior stakeholders. Collaborate with IT and security colleagues to strengthen organisational defences. Skills & Experience Required Previous experience as a SOC Analyst or in a security operations role. Strong hands-on knowledge of SIEM platforms (e.g. More ❯

About the Role We are seeking a skilled SOC Analyst to join our growing in-house security operations team on a permanent basis in Manchester . This is a fantastic opportunity to be at the heart of cyber defence operations, working hands-on with SIEM tools and ensuring compliance with Cyber Essentials standards. You’ll play a key role … in monitoring, detecting, and responding to threats, while continuously improving our security posture and supporting the wider IT security strategy. Key Responsibilities Monitor, triage, and investigate alerts generated by SIEM and security monitoring platforms. Conduct log analysis and threat hunting to proactively identify suspicious activity. Support incident response efforts including containment, investigation, and remediation. Ensure security … with Cyber Essentials and other best practice frameworks. Optimise SIEM tooling for enhanced visibility and detection capability. Produce clear reporting and recommendations for senior stakeholders. Collaborate with IT and security colleagues to strengthen organisational defences. Skills & Experience Required Previous experience as a SOC Analyst or in a security operations role. Strong hands-on knowledge of SIEM platforms (e.g. More ❯