1 to 25 of 55 Security Management Jobs in London

Head of Information Security, Europe page is loaded Head of Information Security, Europe Apply locations London - 2 Gresham Street time type Full time posted on Posted 5 Days Ago job requisition id R-5246 The Head of Information Security, Europe reports directly to the Chief Information Security Officer, TMX Group and has a dotted line reporting … relationship to the Chief Technology Officer, Trayport. The Head of Information Security will be responsible for defining, implementing, and managing the organization's information security strategy and framework for Europe. This critical role involves overseeing all aspects of information security, including a strong focus on application security, ensuring compliance with ISO27001 standards, financial services regulations, and … other relevant legal and contractual requirements. As a senior leader of the Enterprise Information Security team, the role will also be accountable to provide information security oversight, through leadership and guidance across the TMX Group. The successful candidate will be a strategic leader with a strong technical background, including deep application security knowledge, and the ability to More ❯

Information Security Compliance Officer Required Qualifications & Certifications: Education Bachelor's degree in Cybersecurity, Information Technology, Computer Science , or a related field. A master's degree in information security , Risk Management, or Compliance is a plus. Certifications (Highly Valued) CISSP (Certified Information Systems Security Professional) CISM (Certified Information Security Manager) CISA (Certified Information Systems Auditor) ISO … Certified in Risk and Information Systems Control) GDPR Certification (e.g., IAPP CIPP/E, CIPM for data protection compliance) Experience Requirements: 3-5+ years of experience in Information Security, Compliance, or IT Risk Management. Experience with regulatory frameworks in UK & EU : GDPR (General Data Protection Regulation) ISO 27001 (Information Security Management Systems) Cyber Essentials Plus (UK … government-backed security framework) DORA (Digital Operational Resilience Act) - EU financial sector PCI-DSS (if handling payment data) Experience in: Managing vendor risk assessments for third-party compliance. Handling incident response & reporting (e.g., Data Breach Notifications under GDPR). Key Skills & Technical Knowledge: Deep understanding of data protection laws (UK GDPR, EU GDPR, DPA 2018) . Familiarity with risk More ❯

Your new company - Financial Services Your new role - Permanent - ON SITE 5 Days per week. - UK OnlyWe are looking for a highly skilled Information technology Security Engineer to join the IT team. As the first line of defence in the IT department, the principal purpose of this job mainly focusses on information security, cybersecurity and data security, including a wide scope, such as physical security of computer rooms, operating system level security of Windows and Linux, network security of firewall and other security devices, application security both development and testing phrase, terminal security, backup security, third party and supply chain security of IT service provider.Liaison with the Head … Office, Security Operation Centre of Data Centre for implementing security policies, projects and security controls. Work with Internal Audit and other departments to execute penetration tests, cybersecurity risk self-assessment, ensure best practice and international baseline standards are in place and in line with local regulations.The ideal candidate will be responsible for managing information security systems More ❯

to our success and of great importance to our clients, our partners and to our team. This is why we are currently looking for someone to help evolve the security function. As the Information Security Manager in the team, you will be working with our Security engineers as well as other teams and stakeholders to drive improvements … to our security program and ensure a pragmatic approach to security and risk. Responsibilities Develop, implement, and maintain the organization's information security policies, standards, and procedures in alignment with business objectives, while considering operational needs. Direct the management and continuous improvement of the Information Security Management System (ISMS). Oversee and manage Ravelin … s PCI DSS and PCI 3DS compliance program, ensuring requirements are fulfilled, maintained, and areas for enhancement are identified. Conduct routine risk assessments to determine and reduce information security risks across the business through the establishment of risk treatment plans. Serve as the primary liaison for security matters, both internally and externally. Collaborate with leadership and internal stakeholders More ❯

Information Security Manager Role Description This is a full-time role as an Information Security Manager for Bank in Central London. The Information Security Manager will be responsible for day-to-day tasks related to information security management, including implementing and maintaining Information Security Management Systems (ISMS), ensuring cybersecurity and network security, and protecting sensitive information. This is a hybrid role, based in London with the flexibility for some remote work. Qualifications Information Security Management, ISMS, and Cybersecurity skills Network Security and Information Security knowledge Experience in implementing and maintaining ISMS Proficient in identifying and addressing information security vulnerabilities Strong analytical and problem-solving skills Excellent … communication and interpersonal skills Certifications such as CISSP, CISM, or equivalent are preferred Bachelor's degree in Information Security, Computer Science, or related field Information Security Manager role (permanent) reporting into Head of IT (CIO | CISO) Need an individual with a strong hands on network and security background Cisco networking Cisco firewalls (Firepower/Threat Detection) Palo More ❯

Join our Cyber Security Team as a Governance, Risk and Compliance Analyst. If you have been involved in practical aspects of GRC including ISO270001, want to work with a team of dedicated professionals and are able to understand wider business impacts of GRC on a business, please read more and apply. Location We operate a flexible, hybrid working environment … and dental insurance Work. Life. Smarter. Our commitment to a flexible and hybrid working culture As a GRC Analyst you will: Support the development and maintenance of our Information Security Management System (ISMS) including policies, objectives, and risk assessments Assist with internal audits and help prepare for external audits to maintain compliance with ISO27001 and other standards Help … identify and assess information security risks, working closely with the Cyber Risk Manager Provide guidance to colleagues on basic security best practices and requirements Contribute to reporting on the ISMS performance and improvement plans Support continual improvement initiatives and track progress Keep up to date with key trends and changes in information security and ISO standards Help More ❯

Job Title: Head of Technology & Data About Us BGIS is a global leader in technical integrated building facility management services. Offering a full range of facility and real estate management services, BGIS partners with clients globally to bring forward innovative solutions. At BGIS, we believe there is always a better way. We seek out opportunities, encourage change and … communities, and planet. In-depth As the Head of Technology and Data, you will be leading and managing a diverse suite of service technologies such as Computer Aided Facilities Management (CAFM), Finance and Workflow management systems and the associated data ensuring the information can be transformed into tactical actions and decisions. You will provide leadership and management … and introduce continuous improvement process and manage technology vendors stakeholders to ensuring their performance and value for money. You will support and lead good standards and practices around workflow management and roll out awareness programmes to the organisation ensuring the business processes are adhered. You will work closely with global technology team and provide UK centric reporting strategy and More ❯

Role Description This is a full-time hybrid role for an Information Security Manager with 2nd and 3rd Line IT support experience. The role involves day-to-day tasks associated with planning, implementing, and maintaining an Information Security Management System (ISMS), including managing cybersecurity risks, implementing network security measures, and ensuring compliance with industry standards. The … Information Security Manager will also provide IT support to the company and will be based in the London office, with flexibility for some remote work. Your past experience must include 2nd and 3rd line infrastructure support where you are able to advise and direct the technical team. Qualifications Experience in Information Security Management and creating and implementing … an ISMS Experience in Cybersecurity and Network Security Expertise in Information security best practices and standards Excellent problem-solving skills and attention to detail Strong communication and collaboration skills Bachelor's or Master's degree in Computer Science, Information Technology, or related field Certifications such as CISSP, CISM, CCNA, or equivalent are a plus Experience in IT support More ❯

Job Title: Information Security Manager Basis: Full-time, permanent Location: Canary Wharf, London - WeWork Reporting to: Co-founder About Onetrace Great products start with great people. Our relentless focus on user experience has been the cornerstone of our growth, helping us become the market leading software for fire protection subcontractors across the UK. We've grown by staying obsessed … matter, and your work shapes what comes next. Want to learn more about our journey? Check out our LinkedIn page. About the Role We're looking for an Information Security Manager to lead the systems, practices, and frameworks that protect Onetrace's data, people and infrastructure as we grow. This is a cross-functional, hands-on role with a … strong strategic lens -you'll own our information security posture end-to-end, ensuring we maintain our ISO 27001 accreditation, while preparing for other relevant accreditations (such as SOC2 and Cyber Essentials). You'll proactively manage risks and help create a secure environment where teams can move fast without compromising on trust or safety. You'll also guide More ❯

Security Compliance Specialist, Amazon Stores Security Are you interested in driving exceptional security for customers? Do you see information security as a business enabler? Amazon's Stores Security organization is seeking an experienced Security Compliance Specialist. As part of the Amazon Stores Security InfoSec Japan team, this role will build the bridges between … security, technology, and compliance by working across remote and local teams within Amazon Security organization, healthcare business teams, and related Amazon corporate teams. This candidate should be an innovative security/compliance professional who has the ability to dive deep into a variety of complex issues, understand IT processes, and drive compliance assessment to existing and emerging … Japan healthcare information security standards. The ideal candidate will have strong leadership and problem-solving skills, excellent communication skill, and effectively work with cross-functional Amazon teams to support service build-up, service launch and on-going service operation activities. Key job responsibilities This position will be responsible for: - Establish credibility and maintain strong working relationships with groups involved More ❯

Information Security Analyst - 6-Month FTC Governance, Risk and Compliance Location: London/Hybrid Contract Type: Fixed Term (6 months) Salary: Competitive A global professional services firm is seeking a proactive Information Security Analyst to support the delivery of robust security and privacy policies across its global operation. This role is ideal for someone with hands-on … experience in information risk management, policy compliance, ISO 27001 , and client security due diligence . Key Responsibilities: Maintain and evolve the firm’s Information Security Management System (ISMS) and associated documentation Support audits and ensure security practices align with industry standards (e.g., ISO 27001, Cyber Essentials) Assist with Business Continuity Management (BCM) - including BIAs … BCPs, exercises, and training Manage and respond to security incidents, conducting root cause analysis and recommending improvements Deliver risk assessments , Data Privacy Impact Assessments (DPIAs) , and third-party compliance checks Handle client cyber due diligence questionnaires and close remedial actions Work closely with Risk & Compliance, IT, and other business teams to embed security practices into operations Support the More ❯

Senior Cyber Security Engineer Excellent opportunity for an experienced Cyber Security Engineer with MSP experience to join a high-performing team delivering security solutions across Microsoft technologies and supporting compliance frameworks. Full-time, permanent position based in London with hybrid working (3 days in office, 2 remote), offering up to £60,000 depending on experience. Immediate start … available - candidates with hands-on Microsoft Security experience and relevant certifications are highly encouraged to apply. To apply, please email Who are the client? Our client is a recognised UK-based Managed Services Provider with strong accreditations and a reputation for excellence in technology and employee development. They are an IASME certification body and work with a broad client … base across sectors to deliver robust cyber security strategies. The company is growing and offers an outstanding culture of innovation, development, and recognition. What will you be doing? This senior, client-facing cyber security position is ideal for someone who enjoys both technical implementation and supporting security frameworks such as Cyber Essentials. You will play a key More ❯

Senior Cyber Security Engineer Excellent opportunity for an experienced Cyber Security Engineer with MSP experience to join a high-performing team delivering security solutions across Microsoft technologies and supporting compliance frameworks. Full-time, permanent position based in London with hybrid working (3 days in office, 2 remote), offering up to £60,000 depending on experience. Immediate start … available - candidates with hands-on Microsoft Security experience and relevant certifications are highly encouraged to apply. To apply, please email Who are the client? Our client is a recognised UK-based Managed Services Provider with strong accreditations and a reputation for excellence in technology and employee development. They are an IASME certification body and work with a broad client … base across sectors to deliver robust cyber security strategies. The company is growing and offers an outstanding culture of innovation, development, and recognition. What will you be doing? This senior, client-facing cyber security position is ideal for someone who enjoys both technical implementation and supporting security frameworks such as Cyber Essentials. You will play a key More ❯

Senior Cyber Security Engineer Excellent opportunity for an experienced Cyber Security Engineer with MSP experience to join a high-performing team delivering security solutions across Microsoft technologies and supporting compliance frameworks. Full-time, permanent position based in London with hybrid working (3 days in office, 2 remote), offering up to £60,000 depending on experience. Immediate start … available - candidates with hands-on Microsoft Security experience and relevant certifications are highly encouraged to apply. To apply, please email Who are the client? Our client is a recognised UK-based Managed Services Provider with strong accreditations and a reputation for excellence in technology and employee development. They are an IASME certification body and work with a broad client … base across sectors to deliver robust cyber security strategies. The company is growing and offers an outstanding culture of innovation, development, and recognition. What will you be doing? This senior, client-facing cyber security position is ideal for someone who enjoys both technical implementation and supporting security frameworks such as Cyber Essentials. You will play a key More ❯

this newly-created role, you’ll lead the execution of the Group GRC programme, align risk and compliance efforts with wider business goals, and ensure robust governance across information security and operational practices. Key Responsibilities: Develop and implement a comprehensive GRC framework across the group Conduct regular risk assessments and support vulnerability management Maintain and evolve security … of risk awareness through training and communication Monitor changes in regulation and adapt the GRC framework accordingly Ideal Candidate Profile: Minimum 5 years' experience in GRC, compliance, or risk management Solid understanding of regulatory frameworks and industry standards Hands-on experience with risk assessments and compliance auditing Strong communication and stakeholder engagement skills Professional certifications such as CISSP, CISM … governance and compliance strategy of a global business. You’ll gain exposure to high-profile projects and contribute to the company’s ongoing commitment to excellence in risk and security management. More ❯

Information Security Lead - create the security strategy for a SaaS startup - £60,000 - £75,000 + 10% Bonus A dynamic and rapidly expanding technology company focused on revolutionizing learning and upskilling is seeking its first dedicated Information Security Lead. This is a crucial role for a fast-growing SaaS platform that empowers individuals to learn what they … need, when they need it, and is already trusted by major organizations. This is an exciting opportunity for an experienced Information Security professional to be the subject matter expert and build the security function from the ground up. You will take ownership of identifying, assessing, and mitigating information security risks across the business, as well as establishing … and maintaining robust security processes and controls to support commercial, engineering, and product teams. The ideal Information Security Lead will be responsible for: Owning and leading the information security function, working collaboratively across all departments. Maintaining and evolving ISO 27001 certification and managing the Information Security Management System (ISMS) lifecycle. Performing regular risk assessments, developing More ❯

Security Engineer, Governance, Risk and Compliance Create the future of travel with us Whether it's to visit the people closest to us, starting an exciting adventure, or a career-defining business trip, travel is an essential part of our lives. Yet we've all experienced the aches and pains of getting to our destination. Today, more than … is growing, and we're looking for talented people to join us on our journey. Foundations at Duffel The Foundations team is responsible for the reliability, performance, resilience and security of our infrastructure and applications. The team is working closely with our various engineering teams to understand their needs and help meet the demands of our platform as we … scale globally. What you'll do As a Security Engineer on our Foundations team, you will play a crucial role in establishing and maintaining a robust security governance framework. Your work will be instrumental in ensuring the organisation's compliance with industry standards and regulations, safeguarding our data and systems and building trust with key partners. You will More ❯

Senior Cyber Security Risk Specialist – Make This Role Your Own! 3 days a week on-site in London or Crawley Circa £75K + up to 15% bonus + 10% pension + guaranteed annual salary increases Are you passionate about Cyber Security Risk and ready to play a key role in shaping a GRC function from the ground up … a business that’s right at the beginning of its cyber journey. With offices in both London and Crawley, they’re looking to build a best-in-class cyber security function and you’ll be right at the heart of that transformation. This isn’t a tick-box auditing role. It’s hands-on, it’s strategic, and it … front and centre. The best part? This role has space to be shaped by you. There are, of course, some core responsibilities, including: What You’ll Be Doing: Risk Management: Carry out cyber security risk assessments using the company’s risk framework, identifying key issues and tracking remediation actions. Communicate risks and treatments clearly to internal and external More ❯

Are you looking for an exciting new opportunity? Join a London based, product-agnostic consultancy specialising in information security governance, risk, and compliance management for clients across Europe. With a deep-rooted passion for cyber risk, the team excels at developing measurable controls that align with an organisation's risk appetite, capacity, and tolerance for breaches. Known for … crafting innovative and cost-effective Information Security Management Systems (ISMS), the consultancy enables quantifiable compliance with key information security legislation, regulations, and industry standards, including PCI DSS, the UK Data Protection Act 2018 (DPA 2018), GDPR, and ISO/IEC 27001. If you would like to learn more about this opportunity, feel free to reach out and … of OWASP methodologies and offensive testing across black/grey/white-box approaches. Proficiency in tools like Burp Suite, Kali, Nmap, Nessus, Qualys, Metasploit. Familiarity with cloud platform security testing (AWS, Azure, GCP). Understanding of mobile security (Android & iOS), networking protocols, and the OSI model. Excellent verbal and written communication skills, especially for client-facing engagements. More ❯

A fantastic award winning MSP is looking for a talented Senior Cyber Security Engineer to come and join their team. This is a fantastic opportunity for someone who wants to work for one of the best MSP and voted the best work place. The role is 3 days in the office and 2 days WFH. Excellent Benefits After … to Work scheme, quarterly team nights out/events, monthly games night with pizzas and breakfast on Wednesdays Job Description This great MSP is looking for a Senior Cyber Security Engineer to join their expanding UK based Cyber Security Projects team. The ideal candidate would be someone that is already in a similar role and has minimum of …/2-year experience. As a Senior Cyber Security Engineer, you will be primarily responsible for deploying Security Technology Solutions for our clients together with assisting our Chief Information Security Officer with Cyber Essentials and Cyber Essentials Plus Audits and Assessment. You will be reporting to the Project Management Office Team on a Daily Basis and More ❯

Frankfurt am Main, Hesse, Germany; London, England, United Kingdom This is a hybrid role and can be based in London or Frankfurt. The Role As a Senior IT Security Analyst at euNetworks, you will play a key role in protecting the organisation against information security threats by implementing and maintaining both technical and organisational safeguards. Working closely with … the Information Security Steering Team and as part of the broader IT function, you will be instrumental indriving forward our security posture. What will you be doing? Administer and maintain the Security Information and Event Management (SIEM) system and other IT security platforms. Review and evaluate security aspects of IT projects, identifying risks and … ensuring appropriate controls are implemented. Investigate and respond to security incidents and queries, coordinating with relevant teams. Continuously monitor IT infrastructure for vulnerabilities, anomalies, and other potential security issues. Plan and coordinate external penetration tests to identify and address security weaknesses. Compile and deliver regular reports (monthly and quarterly) on the organisation's security status and More ❯

UCL research activities. Research Data Stewards (also known as research data managers, data consultants, data wranglers, or bioinformaticians) offer technical support and consultancy to UCL researchers, assisting with data management, policy compliance, and promoting Open Science and FAIR data principles. They will be embedded within research projects but also contribute to new research proposals and collaborate on designing research … are essential to clearly explain technical concepts to non-technical staff. At the Senior grade, candidates should have a strong background working with sensitive data, understanding data governance, information security, and risk management, and be familiar with issues related to handling and disseminating sensitive data. We are especially interested in applicants with experience in areas such as ISO27001 … certification, Information Security Management Systems (ISMS), Trusted Research Environments (TRE), Secure Data Environments (SDE), Data Safe Havens (DSH), the Five Safes model, healthcare data processing, NHS Data Security and Protection Toolkit, anonymising personal data, data protection, and ethics. More ❯

and our relentless drive to deliver the most successful outcomes, we align our capabilities to our customers' objectives to create a lasting positive impact. We serve the Infrastructure; Nuclear, Security & Environmental; Energy; Mining & Metals, and the Manufacturing and Technology markets. Our services span from initial planning and investment, through start-up and operations. This position is for an Information … Configuration Manager who will work a multi-year United Kingdom (UK) nuclear infrastructure for which Bechtel are the Technical Partner (covering Project Management and Engineering services). This programme involves a multi-billion investment in nuclear and non-nuclear facilities. Job Summary: The Information & Configuration Manager will be responsible for managing the project information, data & configuration management requirements. … The individual will consider Client requirements and Contractual agreements and will ensure that systems for data lifecycle management are implemented on the project. The individual will work to ensure that the project's information & data management is delivered in compliance with the requirement's identified within the Client's processes and procedures. The Information & Configuration Manager will work More ❯

Personnel Security Analyst, AWS Security Job ID: Amazon Web Services Australia Pty Ltd Amazon Web Services (AWS) is the leading cloud service provider, providing virtualised infrastructure, storage, networking, messaging, and many other services to customers all over the world. AWS runs a globally distributed environment, operating at massive levels of scale. Businesses, from start-ups to enterprises to … large government customers, run their operations and applications on AWS' highly secure infrastructure. The AWS Personnel Security (PerSec) team is responsible managing security clearance and vetting activities for AWS employees supporting programs, including continual assessments on suitability. As a Personnel Security Analyst, you will join a team of industry-leading security experts working with customer representatives … to operate and continuously improve industry-leading personnel security programs and processes. The AWS Security team requires innovative thinking that is balanced with a strong customer focus on quality and execution. You will have a strong track record of leading and supporting security programs, demonstrable program/project management experience, comprehensive knowledge of government clearance (e.g. More ❯

distributed environment, operating at massive levels of scale. Businesses, from start-ups to enterprises to large government customers, run their operations and applications on AWS' highly secure infrastructure. AWS Security is looking for a GRC Specialist to contribute to the certification, accreditation, assurance, and authorisation activities across the security program. The successful candidate is a problem-solver, quick … study, with a broad understanding of the regulatory landscape, cloud technologies, experience in security and compliance. Key job responsibilities - Serve as the GRC Specialist for designated (physical and/or logical) components within the cloud capability, to perform assurance and authorization activities to ensure adherence to standards and protocols. - Collaborate with internal teams and customers to establish baselines and … level-set the security requirements, security controls, and security objectives. - Implement ISM, PSPF, DSPF, ASIO T4, NIST and/or other security compliance frameworks into design and build baselines to achieve the agreed security posture. - Create, optimise, and support cross-functional working groups and projects aimed at enhancing security efficiency and effectiveness across the More ❯