1 to 25 of 154 Information Security Jobs in London

Overview Join Chambers and Partners as our next Cyber Security Analyst/Lead, a pivotal role at the heart of our commitment to safeguarding information and maintaining trust. You’ll lead the development and delivery of our information security programme, protecting our systems, data, and digital assets from evolving threats. This is an exciting opportunity to … drive key security initiatives, oversee cutting-edge technologies, and ensure compliance with leading industry frameworks within a globally respected organisation. Main Duties and Responsibilities 1. Security Strategy & Governance: Develop, implement, and maintain the organization's information security strategy, policies, standards, and procedures in alignment with business objectives and regulatory requirements. Lead the development and implementation of … an Information Security Management System (ISMS), based on ISO 27001 Conduct regular security risk assessments, identify vulnerabilities, and recommend appropriate mitigation strategies. Stay up-to-date with the latest cybersecurity threats, trends, technologies, and best practices. Provide expert advice and guidance on information security matters to various stakeholders across the organization. 2. Security Operations More ❯

Your new role - Permanent - ON SITE 5 Days per week. You will be required to obtain security clearance and undergo vigorous onboarding checks - UK Only. Sponsorship NOT available.The main purpose of this job mainly focusses on information security, cybersecurity, and data security, including a wide scope, such as physical security of computer rooms, operating system … level security of Windows and Linux, network security of firewall and other security devices, application security both development and testing phrases, terminal security, backup security, third party and supply chain security of IT service provider.Liaison with the Head Office, Security Operation Centre or Data Centre for implementing security policies, projects and … security controls. Work with Internal Audit and other departments to execute penetration tests, cybersecurity risk self-assessment, ensure best practice and international baseline standards are in place and in line with local regulations.The ideal candidate will be responsible for managing information security systems, ensuring compliance with regulatory requirements, and conducting thorough security audits.You will be part More ❯

Your new role - Permanent - ON SITE 5 Days per week. You will be required to obtain security clearance and undergo vigorous onboarding checks - UK Only. Sponsorship NOT available. The main purpose of this job mainly focusses on information security, cybersecurity, and data security, including a wide scope, such as physical security of computer rooms, operating … system level security of Windows and Linux, network security of firewall and other security devices, application security both development and testing phrases, terminal security, backup security, third party and supply chain security of IT service provider. Liaison with the Head Office, Security Operation Centre or Data Centre for implementing security policies … projects and security controls. Work with Internal Audit and other departments to execute penetration tests, cybersecurity risk self-assessment, ensure best practice and international baseline standards are in place and in line with local regulations. The ideal candidate will be responsible for managing information security systems, ensuring compliance with regulatory requirements, and conducting thorough security audits. More ❯

Senior Information Security Analyst DGH Recruitment are currently recruiting on behalf of a leading client in the professional services industry who require an Senior Information Security Analyst to join the firm in London. Key Responsibilities: * Develop and deliver the firm's information security strategy and roadmap. * Provide subject matter expertise and guidance on information security to partners and staff. * Lead and mentor a small team, fostering professional growth and development. * Lead the implementation and ongoing management of ISO 27001, including policy and control implementation and stakeholder engagement. * Lead the development, implementation, and review of security policies, standards, and procedures. * Own and manage the relationship with the firm's Managed Security Operations Centre (SOC), acting as the primary point of contact, ensuring service levels are met, and coordinating incident response. * Oversee operational security including server and endpoint protection, M365 security, identity and access management, vulnerability assessments, patching, and system hardening. Required Experience: * Extensive experience in information security management, ideally within professional services environments. * Proven management capabilities More ❯

Information Security and Governance Officer Location: Bexleyheath Job Type: Temporary (6 months) with potential for permanent Salary: £127 per day We are seeking an Information Security and Governance Officer to join a local authority based in Bexleyheath. This role offers an immediate start and is an excellent opportunity for individuals with strong administrative backgrounds and relevant … governance experience looking to advance their careers. Day-to-day of the role: Policy Support: Assist with the maintenance and implementation of the Council’s Information Governance Framework, policies, and procedures. Security Standards: Monitor compliance with information security and data handling policies, identifying and reporting potential risks or non-compliance. Information Risk: Contribute to the … management of information risks, ensuring these are logged and escalated in accordance with agreed processes. Data Sharing: Review and record data sharing arrangements and support the completion of data sharing agreements and contracts under supervision. Statutory Requests: Manage or assist with the processing of requests made under FOIA, EIR, and Subject Access Requests (SARs), ensuring statutory deadlines are met More ❯

Information Security Manager £70,000- £75,000 PA Central London Well-established construction engineering business is seeking an experienced Information Security Manager to join them on a permanent basis. You'll be joining at a critical time where they are expanding their technical team with an ambitious growth plan with multiple acquisitions planned over the coming … years. The Information Security Manager will be a crucial component in ensuring the effective management of both the technical cyber security environment and wider information security management piece for the business. This role is responsible for ensuring robust cyber security controls with a strong emphasis on ISO 27001 readiness. You'll liaise with assessors … and internal teams, drive ISO-related strategies and use prior experience to ensure certification plans stay on track. Working with external teams to align processes, you'll also oversee InfoSec/Cyber services, conduct risk assessments and recommend security improvements. Responsibilities: Ownership and maintenance of all security related policies and procedures, implementing Security by Design and driving More ❯

Information Security Manager £70,000- £75,000 PA Central London Well-established construction engineering business is seeking an experienced Information Security Manager to join them on a permanent basis. You'll be joining at a critical time where they are expanding their technical team with an ambitious growth plan with multiple acquisitions planned over the coming … years. The Information Security Manager will be a crucial component in ensuring the effective management of both the technical cyber security environment and wider information security management piece for the business. This role is responsible for ensuring robust cyber security controls with a strong emphasis on ISO 27001 readiness. You'll liaise with assessors … and internal teams, drive ISO-related strategies and use prior experience to ensure certification plans stay on track. Working with external teams to align processes, you'll also oversee InfoSec/Cyber services, conduct risk assessments and recommend security improvements. Responsibilities: Ownership and maintenance of all security related policies and procedures, implementing Security by Design and driving More ❯

Chief Information Security Officer page is loaded Chief Information Security Officerlocations: London, UKtime type: Full timeposted on: Posted Todayjob requisition id: JR100302 Who we are We're the people behind global loyalty currency, Avios, and home to two ambitious, growing businesses across Loyalty and Holidays. Each business has its own goals, strategy and team, but collectively … story to tell our people and the rest of the world. This is where you come in. The opportunity We have a brand new opportunity for an experienced Chief Information Security Officer (CISO) to lead the information and cyber security strategy across IAG Loyalty companies, which include Loyalty (the Avios currency) and British Airways Holidays.Reporting to … the Chief Technology, Data & AI Officer you'll establish a unified security vision and governance framework, while tailoring risk-based solutions to the unique needs of each company.You'll be the principal advisor to the executive team and board on cybersecurity matters affecting our businesses, but you'll also play a key role across the wider IAG group of More ❯

is driven by a commitment to excellence, innovation, and customer satisfaction. Role Overview Our client is looking for a well-rounded leader who will be responsible for building the security program and improving our client's overall security posture. This area is very important to our client as it is a requirement for them to be better positioned … of safeguarding their customers' assets and data against an evolving landscape of sophisticated global and local threats. Job Type: Permanent Location: London, UK Work Place: Remote Requirements Experience with information security governance, risk and compliance experience for a global organization Knowledge of technical infrastructure, networks, databases and systems in relation to IT Security and IT Risk A … strategic business partner with the ability to articulate complex security concepts and risks in business terms to non-technical stakeholders, including the executive team and the board Possesses the capacity to effectively lead, manage, and inspire a team, enabling them to achieve both strategic and functional objectives Experience developing and publishing company-wide policies, standards, and other governance documents More ❯

firms ability to keep our clients data secure is a bedrock for our reputation as a trustworthy professional services partner to many of the worlds large and prestigious organisations. Information security is not an afterthought; it is core to all that we do, to protect not only our data but that of our clients, and has the unwavering … support of the Board. Led by our new CISO, the in-house Information Security team is a core part of our technology services structure with mature or evolving capability across all areas of digital security and cyber defence. We align our efforts to the NIST framework and other recognised certifications including ISO27001 and SOC2 and strive to … you will do The Identity and Access Senior Architect will be part of the Digital Trust team, and will be responsible for maintaining the identity and access management (IAM) security of the firms assets. This role is critical in translating the organisations IAM vision into a workable, mature and optimized function and service. This role requires extensive experience across More ❯

Job description We are currently recruiting for an AI Security Senior Architect to join our London office. DEPARTMENT PURPOSE The Information Security team is a strategic enabler for our global law firm, focused on protecting client data, intellectual property, and business operations while enabling secure innovation. Through four key pillars Digital Trust, Technical Assurance, Security Operations … and Governance, Risk and Compliance (GRC) the team delivers comprehensive security solutions that align with our firms strategic objectives as well as client and regulatory requirements. Our integrated approach combines secure by design principles relying on Identity and Access Management, Technical Assurance, continuous monitoring and incident response through Security Operations, and proactive risk management through GRC. Working closely … model allows us to stay ahead of evolving threats while supporting the firms digital transformation initiatives and maintaining the trust of our clients and stakeholders. ROLE PURPOSE The AI Security Senior Architect will be part of the Digital Trust team and will be responsible for architecting, maintaining and implementing the security of the Artificial Intelligence ecosystem in the More ❯

Information Security Officer - International Law Firm (London-Based) Permanent | Hybrid Working | Competitive Salary I am working with a leading international law firm to support their search for an experienced and proactive Information Security Officer (ISO) to lead their global information and data security programme. This senior-level role offers the opportunity to shape the … firm's long-term security strategy, drive ISO 27001 certification, and ensure the resilience of systems and data across offices in the UK, US, and Europe. The position reports to the Director of IT and works closely with regional IT teams and external partners. Key Responsibilities: Lead the firm's information security governance framework across all offices … and platforms Maintain and enhance the ISO 27001-aligned Information Security Management System (ISMS) Ensure compliance with frameworks including CIS Controls, NIST, ISO 27701, and GDPR Oversee incident response, threat detection, and access governance across systems such as iManage, Intapp, Aderant, Microsoft 365, and Azure Drive firm-wide security awareness and training initiatives Monitor regulatory changes and More ❯

One of the most exciting prospects in the UK cyber security sector today, Bridewell is a leading cyber security services company specialising in protecting and transforming critical business functions for some of the world's most trusted organisations. We are the trusted partner for operators of essential services and provide end-to-end cyber security capabilities that … help our clients overcome their security challenges, allowing them to operate safely and securely. Bridewell holds the Gold level, Investors in People award which we feel solidifies and reflects on the outstanding calibre that makes us truly one team. Who are we looking for? A passionate technology focused individual, with an honest and empathic approach to customer conversations. You … will have hands on experience in Security Architecture and Cloud Security and can deliver comprehensive and robust security solutions to different audiences. You will have owned, led and developed end to end solution architectures for projects which have high security requirements. Requirements This role sits within our Security Architecture and Cyber Consulting teams meaning you More ❯

of Thrones, House of the Dragon, through to Amazon's The Boys, Marvel's Ant-Man and the Wasp: Quantumania and many more. We're looking for an IT Security Administrator to join our IT team. In this role, you will provide expert guidance on IT security, contribute to the development of policies and procedures, and support the … Compliance Lead and coordinate incident response remediation activities across Office tenant and related infrastructure. Oversee the application security request review process, including white paper evaluations and coordination with InfoSec teams. Conduct Infosec Criticality Assessments (ICAs) and participate in DAART and IR meetings. Represent PXO in Sony CISO meetings and ensure alignment with broader Sony InfoSec policies. Enforce Sony security … collaboration with vendors. Advise on on-set data handling procedures, ensuring certified media and secure practices are in place. Legal & Regulatory Compliance Act as the liaison between IT/InfoSec and Legal on matters related to GDPR, data retention policies, and compliance. Ensure proper documentation, communication, and enforcement of data protection practices in line with regulatory standards. Requirements Five plus More ❯

We’re recruiting on behalf of a leading legal firm for an Information Security Manager to lead and strengthen their information security function. This is a hands-on, strategic role where you’ll manage a small team, oversee ISO 27001 and Cyber Essentials Plus compliance, and drive continuous improvement across the business. What You’ll Do … Develop and deliver the firm’s information security strategy. Lead and mentor a small team of IT security professionals. Own ISO 27001 implementation and Cyber Essentials Plus certification. Manage operational security: endpoint protection, M365 security, SIEM/SOC, vulnerability management, and incident response. Lead security projects. Build strong relationships with stakeholders and deliver security awareness training. What We’re Looking For: Proven experience in information security management, ideally in professional services. Hands-on experience with ISO 27001 and Cyber Essentials Plus. Strong technical knowledge: endpoint security, M365/Entra ID, SIEM, network security, encryption, backup/recovery. Certifications highly desirable: CISM, CISSP, ISO 27001 Lead Implementer . Excellent communicator More ❯

Lead Information Security Engineer Location: London | Hybrid (3 days office/2 WFH) Salary: Competitive + benefits Are you an experienced information security professional ready to make an impact on a global scale? Our client, a leading international law firm, is seeking a Lead Engineer – Information Security to join their London-based global technology … team. This is a key opportunity to take ownership of critical security architecture and strategy across a complex, multi-region enterprise. The Role As Lead Engineer, you will be responsible for developing, implementing, and maintaining secure solutions that protect global systems and data. You’ll play a pivotal role in the firm’s cloud transformation journey, ensuring compliance, resilience … Lead the design and implementation of secure authentication, authorisation, and data protection frameworks. Manage and enhance Data Loss Prevention (DLP) systems, incident response, and risk management processes. Oversee cloud security architecture across Azure, O365, and iManage Cloud environments. Collaborate with global IT, compliance, and risk teams to deliver a consistent security posture. Drive employee security awareness and More ❯

Lead Information Security Engineer DGH Recruitment are currently recruiting on behalf of a leading client in the professional services industry who require a Lead Information Security Engineer to join the firm in London. Responsibilities: * Implement security architecture of the firm related to transition to cloud (e.g., Azure, Teams/O365 and iManage Cloud) * Develops and … maintains all documentation related to Global Security Team operations and functions * Analysis of data collected from established Data Loss Prevention system(s) and methods to ensure compliance with Firm policies * Manages DLP systems and processes as required * Maintains and coordinates incident response planning, assisting in execution of the incident response plan as needed * Controls access to the Firm's … Information Systems and related security configuration Key Skills: * 5 years of experience in an Information Security department * Excellent working knowledge of CISSP, CEH required * Excellent knowledge of the ISO 27002 standard preferred * Excellent working knowledge of networking and security standards required * Good documentation skills and authentication methods experience required * Excellent knowledge of a network/ More ❯

summary The NHS Counter Fraud Authority (NHSCFA) is the national body responsible for all matters relating to the prevention, detection and investigation of economic crime across the NHS. Further information about our work and annual plan for delivering this is available on our website. An exciting opportunity has arisen to join the NHSCFA Technology team as an Information & Cyber Security Analyst. We are looking for someone with a proven background in Information/Cyber security and a flexible 'can do' attitude and approach to work in the Information & Cyber Security (I&CS) Team who manage and maintain the security of NHSCFA ICT infrastructure and information systems. You will work within … and ISO20000 Demonstrate knowledge in some of the following areas: oEncryption Systems. oSecurity Products (Authentication, Data Loss Prevention, SEIM). oFirewall/WAF administration Desirable Demonstrate knowledge of HMG Infosec standards and Good Practice Guides, including IS1 ITIL foundation level certification. Demonstrate knowledge of current best practice in obtaining electronic evidence. Knowledge of one or more digital forensic tools. Qualifications More ❯

Company description: We are seeking a Tech Lead - SOC Responder. This is an opportunity to meaningfully contribute to a highly visible security operations function with global impact upon Colt, business units, partners, and customers. While working as part of this team, the successful individual will provide world class incident response functions to detect, protect, respond, and sustain operations within … the followingSIEM, IR tools platform management including all design, implementation and administrationactivities , Use cases preparation and implementation, connector deployment, maintenance & health checks Responsible for operational activities, Technology escalation support, Security Solution assessment, build activities , existing Service maturing and Build activities assist Analyse potential infrastructure security incidents to determine if incident qualifies as a legitimate security breach Establishing … and governing the security incident response processes, investigations and security operational processes. Maintenance and enhancement of formal service catalogue, service descriptions, targets and performance against these. Ensure security services, tools and platforms are adequately maintained. Monitoring of and reporting on the effectiveness of our security enforcing technologies. Identification and ongoing monitoring of specific security risks More ❯

Information Security Analyst Up to £200 per day (Inside IR35) | 3 Month Contract | Fully Remote Working Our client are seeking an experienced Information Security Analyst to provide immediate support to the Information Security team. This role is a hybrid of technical security analysis and governance, risk, and compliance (GRC)activities. The successful candidate … will play a key role in assessing risks, reviewing supplier and project security documentation, responding to security questionnaires and tenders, supporting incident investigations, and helping to maintain security posture and compliance with relevant standards (Cyber Essentials Plus, ISO 27001, DSPT, GDPR, NCSC). This is a hands-on delivery role for someone who can work independently, make … sound judgements, and communicate clearly with both technical and non-technical stakeholders. Key Responsibilities Security Governance & Risk Technical Security Oversight Supplier and Third-Party Security Assurance Advisory and Awareness Desirable Relevant certifications such as CISSP, CISM, CRISC, CEH, CompTIA Security+, or equivalent experience. Experience working in healthcare, charity, or public sector environments. Familiarity with NCSC CAF and More ❯

Job Description What is the opportunity? You will be a key member of the RBC Global Security Incident Response team as an experienced Security Analyst. This is a key role within the Global Security Operations Centre (GSOC). You will be providing technical expertise and leadership support to the proactive and reactive responses to cyber threats targeting … Senior Manager, Incident Response and works with a team of 4-6 technical specialists. You will act as the focal point of contact for GSOC management with regards to security incidents. You will support local and extended team members with critical incidents impacting RBC users, systems, infrastructure, and resources. RBC's expectation is that all employees and contractors will … in the office with some flexibility to work up to 1 day per week remotely, depending on working arrangements. What will you do? Global accountability to respond to critical security incidents/events providing accurate and timely reporting to Global Cyber Security Leadership. Provide 7/24/365 support for security incidents impacting mission critical business More ❯

The Role: We are looking for a Cloud Security Engineer with experience on AWS, to join our growing team. The successful candidate will have an essential role in ensuring the information security of our business. You will be working in a team that is designing and building resilient and secure Cloud environments that proactively prevent security threats. You will typically have industry accreditations like AWS Certified Security - Specialty The main responsibilities of the position include: Design and build resilient Cloud infrastructures that are protected against security threats Develop and assess Cloud security solutions to secure systems, databases and networks Conduct assessment and make recommendations to ensure that appropriate controls are in place … Gain insight into security incidents and threats by monitoring/analyzing logs and performing vulnerability assessments Participate in efforts that shape the company’s security policies, procedures and standards for use in Cloud environments Create technical and managerial level security reports for Cloud-based applications and infrastructure Implement and tests network and security Disaster Recovery procedures More ❯

current frontier AI systems and considering what measures could and should be used to secure such systems in the future. The Safeguard Analysis Team takes a broad view of security threats and interventions. It's keen to hire researchers with expertise developing and analysing attacks and protections for systems based on large language models, but is also keen to … hire security researchers who have historically worked outside of AI, such as in - non-exhaustively - computer security, information security, web technology policy, and hardware security. Diverse perspectives and research interests are welcomed. The Team seeks people with skillsets leaning in the direction of either or both of Research Scientist and Research Engineer, recognising that some technical … seniority and experience. Person Specification You may be a good fit if you have some of the following skills, experience and attitudes: Experience working on machine learning, AI, AI security, computer security, information security, or some other security discipline in industry, in academia, or independently. Experience working with a world-class research team comprised of More ❯

Hedge Fund PERM GCP Cloud Security Engineer - GCP, AWS, Azure, Python, Bash, IAM, Terraform, Automation Cloud Security Engineer The successful candidate will be a subject matter expert with hands-on experience in a wide range of cloud technologies, tools and methodologies. The role is suited for an experienced Cloud Engineer with focus in Google Cloud Platform, the candidate … must have proven understanding in enterprise security and will focus on building toolsets and processes. Principal Responsibilities Contribute to the vision, strategy, and drive execution for integrated security controls across Software-as-a-Service (SaaS), Platform-as-a-Service (PaaS), Infrastructure-as-a-Service (IaaS) and for Google Cloud Platform (GCP) efforts. Able to demonstrate clear understanding of … current risks and threats to Cloud infrastructure and/or IT infrastructures at technical and managerial levels. Ability to conduct Red Team security testing tasks in GCP to continuously assess security posture in GCP platform Drive Identity and Access Management (IAM), configuration management, and monitoring strategy for GCP platform. Provide security consultancy and engineering support for cloud More ❯

Our client, a leading firm in the Defence & Security sector, is currently seeking an experienced Information Assurance Consultant to join their team for a contract role within the National Crime Agency based in London. This position is initially for one year, with the potential for an extension based on performance and project needs. Key Responsibilities: Implementing and maintaining … information assurance and cyber security strategies Providing expert advice on cloud security and IT cyber security practices Conducting risk assessments and developing mitigative measures Ensuring compliance with relevant security policies and standards Collaborating with internal and external stakeholders to enhance information security frameworks Reviewing and improving security documentation and procedures Regularly liaising … with the National Crime Agency to address security concerns Supporting the improvement of security cleared environments Job Requirements: Experience in IT cyber security and cloud security practices Strong understanding of information security principles and frameworks Security Clearance - SC minimum Familiarity with the Skills Framework for the Information Age (SFIA) levels 3/ More ❯