51 to 75 of 388 Information Security Jobs in London

Job summary Are you a self-motivated cyber security professional with sharp situational judgement, a growth mindset, and a proven ability to navigate complex technical challenges? Do you thrive in high-impact environments where your work directly supports mission critical systems and healthcare delivery? NHS England's CISO Portfolio Office (CPO) is seeking an exceptional individual to join our … industry-leading cyber security function. Reporting directly to the Deputy Chief Information Security Officer, you will lead and deliver a diverse range of innovative and high-profile technical projects across the organisation, with the opportunity to directly influence key initiatives. The CISO team at NHS England has received national and international recognition from the National Cyber Security … its pioneering work in areas such as risk remediation, quantum computing, and third-party risk management. At NHS England, your work will have direct impact on the availability and security of systems relied upon by thousands of clinicians and millions of patients across the country. You will be joining a forward-thinking, inclusive, and collaborative cyber security team More ❯

securely. We're not just growing-we're evolving. As part of a forward-thinking organisation with a strong mandate to harness data and embrace cutting-edge technologies, our InfoSec team is central to enabling and securing the NAO's digital future. We're on the lookout for passionate, curious, and collaborative security professionals across a wide range of … specialisms. Whether your expertise lies in governance, engineering, threat detection, or cloud security, you'll find real scope to make an impact-both within InfoSec and across the wider organisation. Be part of a diverse and expanding team that thrives on challenge and innovation. Work in a complex, data-rich environment where your insights will shape national-level outcomes. … at the NAO and be part of a high performing, and fun team. Context and main purpose of the job: Why are we recruiting for this role? The InfoSec DevSecOps Engineer is an additional role within the NAO's Information Security function. Working within the Cyber Security team, they will be responsible for ensuring the security More ❯

million passengers this year, we employ over 10,000 people. Its big-scale stuff and we're still growing. Team The role situated in a team of cyber security professionals and working closely with the wider business to ensure that the principles of Digital Safety are as engrained as Aircraft Safety. This means close alignment to Operational, Commercial along … with Regulatory and Audit functions. The role requires working closely with the Senior Digital Safety Risk Manager, the Head of Digital Safety Assurance and the Technical Security and Business Partner functions to support the Digital Safety vision . The Cyber Risk Assurance Analyst role involves using data and analytical skills to identify, measure, and track cyber security risks … within easyJet. This role requires collaboration with various business areas to gather the necessary information that enables the creation of informative risk reports, aiding decision making in the relevant forums supporting the Digital Safety Assurance team's objectives and assists in shedding light on key areas pertaining to our regulatory compliance and control maturity. Job Accountabilities Effectively leverage the More ❯

Role Profile - Cloud Security Engineer Purpose: A leading insurance sector client is seeking a highly skilled and experienced Cloud Security Engineer to play a critical role in advancing the organization's cloud security capabilities. The successful candidate will lead the design, implementation, and continuous improvement of cloud security across multi-cloud platforms-primarily Google Cloud Platform … Azure. This role is essential in ensuring that all cloud infrastructure, services, and data remain protected, compliant, and resilient against emerging cyber threats. Working within the broader technology and security teams, the Cloud Security Engineer will be responsible for policy enforcement, incident response, security tooling, and embedding security across the development lifecycle. Key Responsibilities: Develop, implement … and maintain comprehensive cloud security policies, standards, and technical controls for GCP and Azure environments. Configure, manage, and optimize native cloud security tools such as GCP Security Command Center, Cloud IAM, VPC Service Controls, Azure Security Center, Microsoft Defender for Cloud, and Azure Active Directory. Lead regular vulnerability assessments, security audits, and penetration testing activities More ❯

million passengers this year, we employ over 10,000 people. Its big-scale stuff and we're still growing. Team The role situated in a team of cyber security professionals and working closely with the wider business to ensure that the principles of Digital Safety are as engrained as Aircraft Safety. This means close alignment to Operational, Commercial along … with Regulatory and Audit functions. The role requires working closely with the Senior Digital Safety Risk Manager, the Head of Digital Safety Assurance and the Technical Security and Business Partner functions to support the Digital Safety vision . The Cyber Risk Assurance Analyst role involves using data and analytical skills to identify, measure, and track cyber security risks … within easyJet. This role requires collaboration with various business areas to gather the necessary information that enables the creation of informative risk reports, aiding decision making in the relevant forums supporting the Digital Safety Assurance team's objectives and assists in shedding light on key areas pertaining to our regulatory compliance and control maturity. Job Accountabilities Effectively leverage the More ❯

talent, technologies, and tools that empower you to own your career. Join MUFG, where being inspired is expected and making a meaningful impact is rewarded. The department covers Cyber Security, Information Security, IT Audit, IT Risks, IT Controls, Access Management and the portfolio for change for all these areas. MAIN PURPOSE OF THE ROLE To ensure latest … cyber threat information is monitored and raise awareness across MUFG EMEA by disseminating reports and interacting with the stakeholders to sort out the issues. The role will involve liaising and coordinating with the other information security functions within MUFG EMEA and global stakeholders to ensure a consistent approach to all controls, standards and policies is adopted across … the organisation. To ensure all necessary Information Security controls are in place and that an appropriate strategy to protect the firm from all Cyber, external and internal threats is defined and being implemented. To support the relationship and associated reporting requirements between Technology and internal and external bodies e.g. Tokyo head office, global Threat Intelligence Teams. KEY RESPONSIBILITIES More ❯

The Security Operations Manager will oversee and enhance security processes, ensuring the protection of systems and data within the technology department. This role is fully remote and involves managing teams that implement and maintain security controls and those that respond. The Security Operations Manager will support the Head of Cyber Security in the delivery of … the organisations Security Strategy Client Details This is a well-established organisation within the not-for-profit industry, committed to making a positive impact on the communities it serves. Operating as a medium-sized organisation, it is known for its focus on innovation within the technology space to achieve its mission. Description Oversight of security operations teams, procedures … and documentation, ensuring adherence and effectiveness, including cloud security practices and automated threat responses. Review of actual or potential security breaches and vulnerabilities and oversight of prompt and thorough investigations, including recommending actions and appropriate control improvements. Line management of the assigned team members, ensuring their skills and capabilities meet the current and future needs of the Society. More ❯

Information Security Risk & Compliance Specialist About CyberArk : CyberArk (NASDAQ: CYBR ), is the global leader in Identity Security . Centered on privileged access management, CyberArk provides the most comprehensive security offering for any identity - human or machine - across business applications, distributed workforces, hybrid cloud workloads and throughout the DevOps lifecycle. The world's leading organizations trust CyberArk … the Role: We are seeking a highly motivated and detail-oriented GRC Compliance Expert to join our Governance, Risk, and Compliance team. This role is pivotal in supporting customer security assessments during RFx processes, driving compliance initiatives including DORA , NIS2 , and other regulatory frameworks, and assisting with broader GRC activities across the organization. The ideal candidate is a self … located in our office in London. We ask to come to the office twice per week. Support the sales and legal teams during RFx processes by responding to customer security questionnaires, assessments, and due diligence requests. Coordinate and manage responses to customer security audits and assurance inquiries. Monitor regulatory changes and contribute to compliance initiatives such as DORA More ❯

Join our Cyber Security Team as a Governance, Risk and Compliance Analyst. If you have been involved in practical aspects of GRC including ISO270001, want to work with a team of dedicated professionals and are able to understand wider business impacts of GRC on a business, please read more and apply. Location We operate a flexible, hybrid working environment … travel and dental insurance Work. Life. Smarter. Our commitment to a flexible and hybrid working culture As a GRC Analyst you will: Support the development and maintenance of our Information Security Management System (ISMS) including policies, objectives, and risk assessments Assist with internal audits and help prepare for external audits to maintain compliance with ISO27001 and other standards … Help identify and assess information security risks, working closely with the Cyber Risk Manager Provide guidance to colleagues on basic security best practices and requirements Contribute to reporting on the ISMS performance and improvement plans Support continual improvement initiatives and track progress Keep up to date with key trends and changes in information security and More ❯

The team you'll be working with: Senior Security Consultant (Architect) - pre-sales The team that you'll be working with: NTT DATA is one of the world's largest global security service providers, partnering with some of the most recognized security technology brands. We're looking for passionate, curious, and motivated individuals to join our team. … What you'll be doing: What you'll be doing: Using your background in Security Architecture, you will help our clients: Security Architecture: Translate business, data protection and security requirements into practical and well-structured architectural designs, utilizing industry best practices and security frameworks (e.g., NIST, ISO 27001, CIS). Develop and maintain secure architectural patterns … and standards, with a solid working knowledge of cloud security (AWS, Azure, GCP). Apply risk-based and threat-based approaches to evaluate and recommend appropriate and proportionate security technologies and solutions (e.g., SIEM, IAM, CASB, container security). Outline key security components, interfaces, and dependencies. Develop architectural diagrams and overviews. Document security design principles More ❯

current frontier AI systems and considering what measures could and should be used to secure such systems in the future. The Safeguard Analysis Team takes a broad view of security threats and interventions. It's keen to hire researchers with expertise developing and analysing attacks and protections for systems based on large language models, but is also keen to … hire security researchers who have historically worked outside of AI, such as in - non-exhaustively - computer security, information security, web technology policy, and hardware security. Diverse perspectives and research interests are welcomed. The Team seeks people with skillsets leaning in the direction of either or both of Research Scientist and Research Engineer, recognising that some technical … seniority and experience. Person Specification You may be a good fit if you have some of the following skills, experience and attitudes: Experience working on machine learning, AI, AI security, computer security, information security, or some other security discipline in industry, in academia, or independently. Experience working with a world-class research team comprised of More ❯

in entertainment, innovation, and immersive experiences. From our iconic brands to our cutting-edge content, we are committed to excellence, imagination, and responsibility - including ensuring the highest standards of security across our global operations. The Global Security EMEA organization plays a central role in maintaining safe, secure, and resilient environments for Disney employees, productions, facilities, events, and operations … across the region. The Senior Security Manager, EMEA , based in London and reporting to the Director, Security Operations - EMEA , leads corporate security risk management for multiple markets - including TWDC employees and sites, productions in the Nordics, and the EMEA Publicity portfolio. This critical role bridges strategic security planning with operational execution, ensuring all risks are identified … assessed, and mitigated in alignment with Disney standards. The Senior Security Manager leads a team of regional security professionals, coordinates with business leaders and key stakeholders, and helps shape our security strategy across EMEA. We are seeking a proven security leader who is both analytical and operationally agile - someone who thrives in complex environments, builds trusted More ❯

Information Security Lead Auditor Department: Audit Employment Type: Permanent Location: London, UK Reporting To: Regional Operations Manager Description Please note, that a full driving licence is required as this is a field-based role. Join our growing Lead Auditor teams across the UK! At ISOQAR, we draw on our experience, knowledge, and ambition to empower organisations to achieve … solutions, the Alcumus Group helps organisations increase resilience and manage risk, protecting its customers, workforce, stakeholders, and the environment. Due to our continued growth, we are seeking professionals within information security to join our expanding Lead Auditor teams supporting a broad range of clients across the UK . With onsite practical experience and deep knowledge of industry processes … will undertake a 12-week training programme, including classroom and onsite learning with a Senior Lead Auditor, to achieve your Lead Auditor qualifications in Quality Management Systems (9001) and Information Security Management Systems (27001). What that means day to day The life of a Lead Auditor is varied and engaging, with no two days the same. Responsibilities More ❯

Security Engineer, Identity and Access Management (IAM) Meta's security team is the central engine driving data and systems security at the company, supporting Meta and all of its family of apps. The security organization is responsible for inhibiting malicious actors from compromising our environment, preventing, detecting and responding to them before they do damage if … the work we do. We work across all parts of the company, from the corporate infrastructure to production to external services, interfacing with nearly every team in the company.The Security Engineer should have prior experience with security policy, risk, and access management disciplines and be experienced in collaborating with cross-functional teams. This position will be responsible for … identifying and enforcing solutions to control access to internal systems. An ideal candidate is someone that has technical knowledge of the broad aspects of information security, and is able to identify deficiencies in the access management space. This role specifically needs conceptual understanding of the IAM concepts that can be applied to our internal IAM solutions. This role More ❯

Security Behaviours & Culture Specialist page is loaded Security Behaviours & Culture Specialist Apply locations UK - Greater London time type Full time posted on Posted Yesterday time left to apply End Date: August 22, 2025 (12 days left to apply) job requisition id 534833 Hello. We're Haleon. A new world-leading consumer health company. Shaped by all who join … strong, successful business. This is an exciting time to join us and help shape the future. It's an opportunity to be part of something special. Role Description: The Security Behaviour & Culture Specialist plays a pivotal role in advancing Haleon's human risk strategy by proactively addressing the behavioural factors that influence our cyber security posture. This role … security, psychology/behavioural science, engineering or communications. Professional certification in human risk management, cyber security, or related fields, such as SANS Security Awareness Professional (SSAP), Infosec Certified Security Awareness Practitioner (CSAP), NICCS Certified Cybersecurity Awareness Professional (CCAP), CISSP, CISM While certifications are not mandatory, a demonstrable commitment to professional development in cyber security human More ❯

Dollars for electrifying their homes, shifting usage to off-peak hours, and supporting grid stability-critical for scaling AI and energy-intensive industries. We're looking for a Chief Information Security Officer (CISO) to lead our company-wide security strategy. You'll protect our infrastructure, digital assets, and customer data while enabling fast, secure growth. Key Responsibilities … Security Strategy & Leadership Define and lead Fuse's security strategy across infrastructure, applications, and data. Lead hands-on development of security roadmaps, maturity models, and control frameworks tailored to Fuse's risk profile. Directly contribute to architecture reviews, threat modelling sessions, and key design decisions across product and platform teams. Build and mentor a high-performing security team, including hiring, coaching, and managing performance. Develop KPIs and reporting structures to measure and communicate security posture to leadership and the board. Advise the executive team on security risks, regulatory exposure, and investment priorities to support long-term growth. Governance & Compliance Own company-wide security governance, including data protection, access control, and insider risk. Ensure More ❯

objectives. Act as a strategic advisor to leadership and a key voice on the exec team, delivering proactive, commercially-focused legal and compliance guidance. Manager and Develop Our Legal & Information Security Team: Lead and develop our internal Legal team of 4. Legal & Regulatory Compliance: Ensure Prolific stays ahead of continuously evolving regulations. Anticipate legal and regulatory shifts, advising … supporting multiple data initiatives. Risk Management: Own our enterprise risk framework, including the risk management process. Collaborate closely with the business to, supporting risk assessments, mitigation strategies, and reporting. Information Security: Lead the legal and compliance aspects of Prolific's information security programme, including ISO 27001 and SOC2 standards. Maintain Prolific's information security certifications. Closely collaborate with the tech team to ensure robust information and cyber security. Corporate Governance: Manage corporate governance, including board and shareholders approvals, company records and filings, investor ESG requests, and secretarial duties. Corporate Development: Lead legal workstreams on fundraising and M&A activity. Act as a trusted partner to the finance and exec teams on strategic More ❯

objectives. Act as a strategic advisor to leadership and a key voice on the exec team, delivering proactive, commercially-focused legal and compliance guidance. Manager and Develop Our Legal & Information Security Team: Lead and develop our internal Legal team of 4. Legal & Regulatory Compliance: Ensure Prolific stays ahead of continuously evolving regulations. Anticipate legal and regulatory shifts, advising … supporting multiple data initiatives. Risk Management: Own our enterprise risk framework, including the risk management process. Collaborate closely with the business to, supporting risk assessments, mitigation strategies, and reporting. Information Security: Lead the legal and compliance aspects of Prolific's information security programme, including ISO 27001 and SOC2 standards. Maintain Prolific's information security certifications. Closely collaborate with the tech team to ensure robust information and cyber security. Corporate Governance: Manage corporate governance, including board and shareholders approvals, company records and filings, investor ESG requests, and secretarial duties. Corporate Development: Lead legal workstreams on fundraising and M&A activity. Act as a trusted partner to the finance and exec teams on strategic More ❯

Security Platform Engineer, UK Security Operations link Copy link corporate_fare Google place London, UK Mid Experience driving progress, solving problems, and mentoring more junior team members; deeper expertise and applied knowledge within relevant area. Apply link Copy link Bachelor's degree in Computer Science, Information Security, a related field, or equivalent practical experience. 5 years … of experience in security engineering, DevSecOps, or platform engineering roles. Experience with technical troubleshooting and scripting languages such as Python, Go, or Bash. Experience with Kubernetes security, including workload isolation, RBAC, and network policies, containerisation, orchestration, and Kubernetes observability tools (e.g., Falco, Prometheus, Grafana). Experience with infrastructure-as-code and configuration management tools (e.g., Terraform, Helm, ArgoCD … . Eligibility to obtain UK Developed Vetting (DV) security clearance; British Citizenship is required for this role. Preferred qualifications: Certifications in Security (e.g., GSEC, CISSP, CISM, OSCP). Experience with Kubernetes threat detection and anomaly detection. Experience with service mesh security concepts (e.g., Istio, Linkerd) and workload identity. Experience in detection engineering, logging pipeline development, or SIEM More ❯

Senior Information Security & Quality Officer London, UK Job Description Headquartered in London, CACI Ltd is a wholly owned subsidiary of CACI International Inc., a publicly listed company on the NYSE with annual revenue in excess of US $6.2bn and employing approx. 22,000 people worldwide. CACI Ltd is an international data and technology consultancy with £154m turnover and … innovation wisely to deliver well thought-out digital solutions and software. THE ROLE CACI are seeking an experienced individual to join our ISQG team in the role of Senior Information Security & Quality Officer. The successful candidate will be responsible for supporting our ISO9001, ISO20000 and ISO27001 certifications, and provide advice and guidance on other quality and security … you to occasionally visit client sites to support ongoing CACI projects both in the UK and Ireland. KEY RESPONSIBILITIES Support the ISQG Team with day-to-day adherence to security and quality standards. Conduct quality and service management internal audits, workshops, and various related meetings. Maintenance of the organisation's quality and service management documentation, including regular reviews and More ❯

Home " Jobs " Markets Product Security Engineer This is an amazing opportunity to work with Information Security and Compliance Team at ION. As a Product Security Engineer, you would be the key enabler of secure and compliant products. You should have knowledge of attack paths across the technology stack, including tactics, techniques and procedures (TTPs) used by … adversaries to exploit vulnerabilities. You will be trusted advisor throughout the product development lifecycle, incorporating knowledge of emerging threats, business goals and system design to improve platform security posture. You will be responsible for aligning the Markets security strategy, security design and controls engineering to product roadmap. You will also be responsible for providing transparency to leadership … on product control performance and associated risk. Key Responsibilities: Within the Product Security Team as part of the ION Markets CISO function, you will deal with the following activities: Monitor and identify security events and emerging threats associated with the product line you are managing and any dependencies; Act as the interface between CSIRT and Product teams as More ❯

Cyber Security Specialist ** Location: London/Hybrid (2 days in office) Rate: A highly competitive salary is available for suitable candidates Role Profile As a Cyber Security Specialist, you will be the go-to Subject Matter Expert (SME) for various projects, offering your insights and recommendations to enhance our security posture. With a strong technical background, you … will work independently while leveraging the support of a tight-knit team. Your primary focus will be on providing expert advice and guidance on security solutions, particularly in cloud environments, especially Azure. Key Responsibilities: Provide expert security advice and guidance on a range of projects. Act as the security SME, ensuring security considerations are integrated into … project plans and deliverables. Collaborate with project teams to identify and mitigate security risks effectively. Conduct comprehensive security assessments and reviews of systems, applications, and processes. Identify vulnerabilities and recommend appropriate security measures. Ensure compliance with security policies, standards, and regulations, contributing to the ongoing maturity of organisational security. Promote security awareness across the organisation. More ❯

Storage and Applications. • ITIL 4 Foundation Certificate. • Understanding of the Financial Services Industry. Desirable • ITIL Change Management Practitioners Certificate • Understanding of the Vocalink processes and systems • Commercial understanding Corporate Security Responsibility Every person working for, or on behalf of, Mastercard is responsible for information security. All activities involving access to Mastercard assets, information, and networks comes with … in inherent risk to the organization and therefore, it is expected that the successful candidate for this position must: • Abide by Mastercard's security policies and practices; • Ensure the confidentiality and integrity of the information being accessed; • Report any suspected information security violation or breach, and • Complete all periodic mandatory security trainings in accordance with … Mastercard's guidelines. Corporate Security Responsibility All activities involving access to Mastercard assets, information, and networks comes with an inherent risk to the organization and, therefore, it is expected that every person working for, or on behalf of, Mastercard is responsible for information security and must: Abide by Mastercard's security policies and practices; Ensure More ❯

Head of Infosec Policy & Advisory page is loaded Head of Infosec Policy & Advisory Apply locations UK - Greater London USA - New Jersey - Warren time type Full time posted on Posted Today time left to apply End Date: August 14, 2025 (6 days left to apply) job requisition id 534800 Hello . We're Haleon . A new world-leading consumer health … t a question. This is an exciting time to join us and help shape the future. It's an opportunity to be part of something special. The Head of InfoSec Policy & Advisory is a strategic leadership role responsible for overseeing the development and maintenance of Global Information and Cyber Security policies and standards and developing an Information … Gather feedback on policies and standards from implementation teams, GRC and cyber operations to improve and optimize the policies and standards. Act as a point of escalation for any infosec or policy issues, and undertaking risk assessments before approving any deviations/exceptions to policy or escalating risk to more senior leadership as necessary. Why you? Basic Qualifications: We are More ❯

First Line Security Risk Manager Department: IT Operations Employment Type: Permanent - Full Time Location: London Reporting To: Kirsty Kelly Description We are seeking a proactive and experienced First Line Security Risk Manager to lead the implementation and management of information security risk practices across our organisation. In this role, you will be the first line of … defense for security risk management and play a critical part in ensuring security governance, policy compliance, and operational risk ownership across business functions. You will report directly to the Group CISO and work closely with business units, IT, compliance, and audit to ensure security risks are effectively identified, assessed, documented, and mitigated in line with our overall … risk appetite. About the role The ideal manager for this position will lead and maintain the first line Information Security Risk Management function. Additionally, this person will be responsible for: Conducting and documenting security risk assessments across systems, projects, and processes. Owning and managing the Group security risk register, ensuring timely updates, mitigation tracking, and escalation More ❯