101 to 125 of 296 Information Security Jobs in London

and operations 3+ years of experience working with threat intelligence feeds and IOCs Education High School Diploma w/10 years of experience in information security or college diploma with 6 years of information security experience Additional 10 years of IT experience 7+ years in an … information security role 5+ years of experience with threat and vulnerability management program and operations 3+ years of experience working with threat intelligence feeds and IOCs 3+ years of experience in a security engineer role 3+ experience with cloud vulnerabilities 2+ years of experience with endpoint protection … tools 2+ years of experience with security information and event management (SIEM) tools 1+ years of experience with perimeter security Primary Functions Operate within the global Cybersecurity Team within the Information Technology department Ensure global alignment with Company’s best practices for patch, posture, and vulnerability more »

We're collaborating with a reputable financial institution in London, and we're looking for an experienced Information Security Analyst with expertise in Governance, Risk, and Compliance. This role provides an exciting opportunity to contribute to the cybersecurity posture of a leading organisation. Responsibilities: Maintain information security policies and standards, including documentation and version control. Support ISO27001-related projects and audits. Manage third-party security, including client, partner, and supplier due diligence. Conduct training and awareness initiatives in information security. Generate security metrics, dashboards, and reports for management review. Experience Required: Familiarity with … ISO related controls, data protection regulations, and information security management principles. Previous experience in Information Security with a focus on governance, risk, and compliance in Financial Services. Knowledge of IT systems, networking principles, and associated security controls. This is an excellent opportunity to join a more »

We're collaborating with a reputable financial institution in London, and we're looking for an experienced Information Security Analyst with expertise in Governance, Risk, and Compliance. This role provides an exciting opportunity to contribute to the cybersecurity posture of a leading organisation. Responsibilities: Maintain information security policies and standards, including documentation and version control. Support ISO27001-related projects and audits. Manage third-party security, including client, partner, and supplier due diligence. Conduct training and awareness initiatives in information security. Generate security metrics, dashboards, and reports for management review. Experience Required: Familiarity with … ISO related controls, data protection regulations, and information security management principles. Previous experience in Information Security with a focus on governance, risk, and compliance in Financial Services. Knowledge of IT systems, networking principles, and associated security controls. This is an excellent opportunity to join a more »

of interest, please apply or reach out to Madison – 0203 854 2230/m.brookes@locke-mccloud.com Locke & McCloud are the UK’s leading cyber security & information security staffing company – through having a sole focus on the cyber & information security space we have been able to … foster solid relationships with some of the UK’s most exciting cyber security consultancies & end users. Our focus on the information security space allows us to be able to help you find the most exciting opportunities in the cyber security market. If you are on the … lookout for your next cyber security or information security role, please get in touch more »

Title: Lead Product Security Engineer Location: Hybrid Remote (Central London Office); Sector: Finance/Retail, Apparel and Fashion Salary: Banding of £85,000 - 115,000 per year plus package (to be discussed during vetting call). Please note that to apply for this opportunity, you must be a British … security engineering or a similar role, with demonstrated leadership experience in managing a team of peers. As dedicated recruitment professionals, we prioritize confidentiality. InfoSec People values diversity, equity, and inclusion (DE&I). Please share any information or accessibility needs to aid your process; we’ll do our … to specific requirements. For further details, please send the most current version of your CV and a good time to speak to Becca at InfoSec People, or please click apply or get in touch with Becca for an open, honest, and confidential conversation; 📞 01242 507109 📧 becca@infosecpeople.co.uk more »

Our shared mission guides our every action and charts a sustainable path to a better future. An opportunity has become available for an Application Security Manager who will be responsible for evaluating products and applications to ensure they are being designed and deployed in compliance with information security standards and industry best practices. The successful individual will be the key enabler between security, product, and engineering teams. You will need to understand security requirements from a variety of outputs (vulnerability scanners, pen testing, code scans, regulatory requirements), triage and prioritize the findings, and then work … with Product Managers to implement changes to improve the security of our products. You will also provide security consultation to Product Managers, to ensure that security is embedded in product development and strategy, to ensure that security analysis is conducted on any changes or new requirements. more »

Information Security Officer Key Responsibilities: - Perform security assessments for vendors and projects, identifying risks and recommending mitigation strategies. - Ensure compliance with security policies and standards in all vendor and project activities. - Develop and maintain frameworks for security assessments. - Stay updated on emerging security threats … and industry trends. - Participate in incident response and investigations. - Collaborate with procurement to evaluate and manage vendor security. - Review vendor documentation to assess security posture. - Apply risk management principles to prioritize and mitigate security risks. - Support the development and enforcement of security policies and procedures. - Conduct security awareness training for staff. Skills and Experience: - Over 5 years of information security experience. - Preferred certifications: CISA, CISM, or CISSP. - Strong knowledge of security principles, standards (e.g., ISO 27001, NIST), and best practices. - Experience in security assessments and risk management. - Familiarity with regulatory requirements (e.g. more »

Information Security Officer Key Responsibilities: - Perform security assessments for vendors and projects, identifying risks and recommending mitigation strategies. - Ensure compliance with security policies and standards in all vendor and project activities. - Develop and maintain frameworks for security assessments. - Stay updated on emerging security threats … and industry trends. - Participate in incident response and investigations. - Collaborate with procurement to evaluate and manage vendor security. - Review vendor documentation to assess security posture. - Apply risk management principles to prioritize and mitigate security risks. - Support the development and enforcement of security policies and procedures. - Conduct security awareness training for staff. Skills and Experience: - Over 5 years of information security experience. - Preferred certifications: CISA, CISM, or CISSP. - Strong knowledge of security principles, standards (e.g., ISO 27001, NIST), and best practices. - Experience in security assessments and risk management. - Familiarity with regulatory requirements (e.g. more »

seasoned Cybersecurity Engineer to join our client's dynamic team. This role presents an opportunity for an experienced individual to contribute their expertise in security technologies and methodologies within the financial industry. Responsibilities: Provide expert-level security consultancy and engineering support for Windows/Azure security solutions. … Ensure architecture assurance on Windows security initiatives and compliance with existing security standards. Contribute to the design and implementation of Authentication platforms both on premises and in the cloud. Offer security consultancy and engineering support for SAML, OIDC, and Kerberos authentication across various Identity providers. Actively monitor … emerging security technologies, trends, and solutions, assessing their applicability to business initiatives and strategies. Participate in Information Security Incident Response activities. Monitor compliance with information security policies and procedures among employees, contractors, and third parties. Collaborate with key stakeholders to create and enforce policies, including more »

seasoned Cybersecurity Engineer to join our client's dynamic team. This role presents an opportunity for an experienced individual to contribute their expertise in security technologies and methodologies within the financial industry. Responsibilities: Provide expert-level security consultancy and engineering support for Windows/Azure security solutions. … Ensure architecture assurance on Windows security initiatives and compliance with existing security standards. Contribute to the design and implementation of Authentication platforms both on premises and in the cloud. Offer security consultancy and engineering support for SAML, OIDC, and Kerberos authentication across various Identity providers. Actively monitor … emerging security technologies, trends, and solutions, assessing their applicability to business initiatives and strategies. Participate in Information Security Incident Response activities. Monitor compliance with information security policies and procedures among employees, contractors, and third parties. Collaborate with key stakeholders to create and enforce policies, including more »

Job Title: Information Security Manager 3 Days onsite per week (London) Client Overview: Our partner is a leading global commodities firm distinguished for its excellence in Energy and Metals sectors. We are in search of an Information Security Manager who comprehends the integration of Infrastructure IT … with Information Security. Skills & Experience: Profound understanding of infrastructure architecture, including hardware and software systems. Extensive knowledge of cyber risk landscapes and various attack vectors. Ability to uphold confidentiality while efficiently managing multiple projects concurrently. Background in information technology, preferably in an infrastructure role, with a specialised focus … relevant cybersecurity disciplines (e.g., CISSP, GIAC, CISA, CISM) is advantageous. Key Responsibilities & Accountabilities: Collaborate with IT leadership and business units to devise and implement information security strategies that align with organisational objectives. Conduct ongoing risk assessments to pinpoint and mitigate security vulnerabilities, with a prioritisation on high more »

We present an exciting opportunity to join a prominent organization in the financial services sector. They actively seek an experienced Cyber Security Engineer to ensure the company's adherence to security standards. Responsibilities: Collaborate with technology and business teams to implement security processes, technologies, and controls, serving … as the authority for security-related inquiries. Define, design, implement, and maintain security solutions tailored to the business's requirements. Support the definition, execution, and continuous improvement of key cybersecurity processes, including vulnerability and patch management, security incident response, monitoring, endpoint security, identity and access management … network security, and cryptography. Assist in developing and maintaining security policies, processes, incident response management plans, and playbooks. Create and document standard operating procedures and protocols. Provide expertise on security requirements for core technology processes, such as asset management, change management, third-party management, technology development and more »

Job title: Information & Cyber Security Analyst Client: Financial Services Salary: £50,000-£70,000 + Bonus Location: London/Hybrid Skills: Information Security, Monitoring, Compliance, Best Practices The role: My client are seeking a knowledgeable Information & Cyber Security Analyst to join their team. This … role is focused on the business side of Security, and is absolutely key in assuring that information is protected and secured at all times. The position is broadly split into 2 main areas: Compliance Security monitoring and compliance Detecting any issues or security breaches across global … infrastructure Monitoring of devices and infrastructure, including reporting Investigating potential threats and issues Risk management and analysis Utilising tooling such as packet inspection and security forensics to resolve and report issues Security & Best Practice Working with various other Security personnel Mitigating Information and Cyber based risks more »

Job title: Information & Cyber Security Analyst Client: Financial Services Salary: £50,000-£70,000 + Bonus Location: London/Hybrid Skills: Information Security, Monitoring, Compliance, Best Practices The role: My client are seeking a knowledgeable Information & Cyber Security Analyst to join their team. This … role is focused on the business side of Security, and is absolutely key in assuring that information is protected and secured at all times. The position is broadly split into 2 main areas: Compliance Security monitoring and compliance Detecting any issues or security breaches across global … infrastructure Monitoring of devices and infrastructure, including reporting Investigating potential threats and issues Risk management and analysis Utilising tooling such as packet inspection and security forensics to resolve and report issues Security & Best Practice Working with various other Security personnel Mitigating Information and Cyber based risks more »

Help strengthen our team as our Level 2 SOC/Security Analyst - Compliance, Assurance & Continual Improvement. Home based role. A great opportunity to join our operational security team to support our initial and ongoing assessment of Operational Security controls against Cyber Security best practice, Organizational Policies … and recognized Security Frameworks, working with relevant stakeholders to identify areas for improvement, and support development, enhancement and implementation of robust security controls. In addition, this role will identify areas of improvement within the Operational Security function, proactively identifying opportunities to enhance and optimize internal processes, ensuring … that they are both efficient and effective. This role is crucial in ensuring that even the most sophisticated cyber security controls are robustly implemented and enhanced. What You’ll Be Doing: Verification and Compliance: Verify that systems and processes meet specified security requirements. Assess the correctness of cyber more »

Help strengthen our team as our Level 2 SOC/Security Analyst - Compliance, Assurance & Continual Improvement. Home based role. A great opportunity to join our operational security team to support our initial and ongoing assessment of Operational Security controls against Cyber Security best practice, Organizational Policies … and recognized Security Frameworks, working with relevant stakeholders to identify areas for improvement, and support development, enhancement and implementation of robust security controls. In addition, this role will identify areas of improvement within the Operational Security function, proactively identifying opportunities to enhance and optimize internal processes, ensuring … that they are both efficient and effective. This role is crucial in ensuring that even the most sophisticated cyber security controls are robustly implemented and enhanced. What You’ll Be Doing: Verification and Compliance: Verify that systems and processes meet specified security requirements. Assess the correctness of cyber more »

INFORMATION SECURITY MANAGER - LONDON CITY 2 DAYS PER WEEK ON SITE - NO SPONSORSHIP AVAILABLE. Must be available within 1 month. We … are looking to speak with experienced ISO27001 IT risk/compliance SME's who can hit the ground running. Taking ownership of the internal Infosec dept & manage external 3rd parties. You will play a big part of creating an ISO framework and embedded internal security within a global insurance … the support of the head of technology. Would you like to create a legacy within their information security infrastructure and implement IT, Infosec, and compliance frameworks. Would you like to assist with the design and roll out of a group wide Cyber Security manual. Would you like more »

INFORMATION SECURITY MANAGER - LONDON CITY 2 DAYS PER WEEK ON SITE - NO SPONSORSHIP AVAILABLE. Must be available within 1 month. We … are looking to speak with experienced ISO27001 IT risk/compliance SME's who can hit the ground running. Taking ownership of the internal Infosec dept & manage external 3rd parties. You will play a big part of creating an ISO framework and embedded internal security within a global insurance … the support of the head of technology. Would you like to create a legacy within their information security infrastructure and implement IT, Infosec, and compliance frameworks. Would you like to assist with the design and roll out of a group wide Cyber Security manual. Would you like more »

Technical Information Security Consultant required for market-leading financial services firm. The role will be centred on ensuring security is delivered into a wide range of projects. There will be a focus on working closely with DevOps teams and embedding security throughout a software development life … cycle. Responsibilities: Act as the main security point of contact & SME for required projects Manage security risk for the whole project life cycle Perform security activities, including but not limited to, security design reviews, risk assessments, threat modelling, and vulnerability management and risk mitigation on internally … externally developed software Embedding security within DevOps (eg CI/CD pipelines), developing security requirements On-demand Security assessment of various components like Web apps, Containers, Platforms etc Reviewing security assessment reports and create a remediation pipeline Experience in web application security assessments like SAST more »

Location: London Hybrid: 2-3 days per week in office Salary: up to £105k dependant on experience InfoSec Manager required by a global Law Firm based in central London in a permanent role paying up to £105k per annum + benefits. The role is hybrid working, with people management responsibilities … communication skills Demonstratable knowledge across all areas of information security, risk management, audit, and compliance Experience growing and motivating a team of InfoSec professionals Experience delivering presentations and engaging with senior leadership Experience collaborating with cross functional teams to identify and implement best practice risk processes Experience working … them Ensure the success of key programmes Manage security technical reviews and attend ARBs, TDAs and CABs An excellent opportunity for an experienced InfoSec Manager with strong interpersonal skills to join a supportive and collaborative team in a newly created role to support the Head of Information Security. more »

our Senior SOC Analyst. Home based role. A great opportunity to join our team as our Senior SOC Analyst to be responsible for handing security incidents received/escalated from the SOC Analyst (Tier 1 or Tier 2) and perform a business impact analysis on the security incident. … You will leverage a deep understanding of information security technologies, you will aid in triaging threat intelligence from multiple sources and add contextual information to the security incident, perform additional analysis and based on the business impact will recommend the response actions and escalation path. You … will be guided by Threat Intelligence which is actionable information (e.g. IOCs/TTPs), conduct threat hunting activities; leveraging and analyzing sources of information as available through the SIEM, in addition identify and investigate potential suspicious activity as well as helping organizations identify, isolate, and contain security more »

our Senior SOC Analyst. Home based role. A great opportunity to join our team as our Senior SOC Analyst to be responsible for handing security incidents received/escalated from the SOC Analyst (Tier 1 or Tier 2) and perform a business impact analysis on the security incident. … You will leverage a deep understanding of information security technologies, you will aid in triaging threat intelligence from multiple sources and add contextual information to the security incident, perform additional analysis and based on the business impact will recommend the response actions and escalation path. You … will be guided by Threat Intelligence which is actionable information (e.g. IOCs/TTPs), conduct threat hunting activities; leveraging and analyzing sources of information as available through the SIEM, in addition identify and investigate potential suspicious activity as well as helping organizations identify, isolate, and contain security more »

We are looking for a Security Consultant with extensive experience in providing end-to-end security assurance for business projects. The ideal candidate will have a strong background in threat assessments, architectural design reviews, third-party risk assessments, RFP security requirements, network security, IDAM projects, ransomware … remediation, pen test scoping, and HLD/LLD reviews. Responsibilities: Perform threat modelling to identify potential security vulnerabilities and risks. Assess high and low-level architectural designs to identify security risks and provide recommendations for mitigation. Provide security requirements for RFPs and score RFPs based on security criteria. Conduct assessments of third-party security posture to ensure compliance with security standards. Create scopes for penetration testing, organize pen tests, review results, and oversee remediation efforts. Collaborate with project teams to agree on specific security controls and gather evidence of implementation. Identify and articulate more »

VP - Information Security London - Hybrid Salary: £110,000-120,000 Gresham Hunt are currently partnered with a leading international bank who are seeking a well-rounded Cyber professional, to work alongside the CISO as a senior member of the team and trusted advisor on a range of cyber … challenges and issues. The successful candidate will have: Strong Security governance, risk and compliance (GRC) with knowledge of information security standards such as Cyber Essentials, ISO 27001, NIST. Experience developing and implementing operational policies and standards. Demonstrable experience in a variety of areas such as cloud security, IAM, 3rd party risk, threat assessments and vulnerability management. Strong knowledge of cyber security architecture. Relevant certifications would be beneficial (e.g. TOGAF, SABSA). Ability to interact with and challenge technical teams and the methodologies they are implementing. Experience working with the Financial Services industry. Strong interpersonal skills more »

VP - Information Security London - Hybrid Salary: £110,000-120,000 Gresham Hunt are currently partnered with a leading international bank who are seeking a well-rounded Cyber professional, to work alongside the CISO as a senior member of the team and trusted advisor on a range of cyber … challenges and issues. The successful candidate will have: Strong Security governance, risk and compliance (GRC) with knowledge of information security standards such as Cyber Essentials, ISO 27001, NIST. Experience developing and implementing operational policies and standards. Demonstrable experience in a variety of areas such as cloud security, IAM, 3rd party risk, threat assessments and vulnerability management. Strong knowledge of cyber security architecture. Relevant certifications would be beneficial (e.g. TOGAF, SABSA). Ability to interact with and challenge technical teams and the methodologies they are implementing. Experience working with the Financial Services industry. Strong interpersonal skills more »