1 to 25 of 56 Security Posture Jobs in London

Your mission As a Security Engineer, you play a crucial role in developing and implementing comprehensive security strategies, policies, and procedures to safeguard Intigriti's information assets across corporate IT and the Intigriti platform. You are a passionate individual who enjoys building defences against today's cyber threats, targeting infrastructure, data, and employees. You should be able to … analyse the current threat environment and Intigriti's security posture, then design and implement controls in line with our risk appetite. This position requires strategic thinking, technical expertise, and a deep understanding of cybersecurity principles. You will be expected to deploy, manage and maintain preventive and detective controls leveraging security tools including EDR, SIEM, phishing simulation, compliance … solutions, among others. You will collaborate with colleagues in security and across the organisation, including Engineering and Legal teams. If tackling complex security challenges using tools that make sense excites you, this position is for you! What you'll be doing Infrastructure Security Oversee the design, implementation, and maintenance of security across Intigriti infrastructure, ensuring the More ❯

Senior Cyber Security Engineer - 12 months FTC. Maternity Cover page is loaded Senior Cyber Security Engineer - 12 months FTC. Maternity Cover Apply locations London time type Full time posted on Posted 8 Days Ago job requisition id R4203 The TP ICAP Group is a world leading provider of market infrastructure. Our purpose is to provide clients with access … work as one to achieve our vision of being the world's most trusted, innovative, liquidity and data solutions specialist. Role Overview This role sits within the Global IT Security department and operates as a global team responsible for cyber security at TP ICAP. The Senior Cyber Security Engineer has the remit of proactively driving development of … the cyber security capability in line with the evolving threat landscape. This includes; vulnerability management, access control, security platform engineering, detection and response activities. Coordinate with offensive security personnel to improve security posture based on Red/Purple team campaign findings. The role requires a self-starter, capable of taking the initiative either as part More ❯

Job Summary: The Senior Security Engineer plays a pivotal role in strengthening our security posture across our corporate infrastructure and online platforms. Collaborating with security colleagues and wider IT and Digital teams you'll provide expertise and practical support to implement effective and optimised security controls. Your responsibilities will balance driving proactive security improvements … to our preventative controls, managing and optimising our SIEM platform and supporting security architecture reviews. Your role will also include opportunity to influence how we secure our games and back-end infrastructure. The role offers the opportunity to further develop a career in Cyber Security in an exciting, fast-moving industry. Key Deliverables: SIEM Management and Optimisation Lead … the management, administration and support of our SIEM platform and incident response environment, including general infrastructure and system administration. On-board, maintain and manage security log sources for our SIEM platform, including agent and policy deployment and creating ingest pipelines. Collaborate with security analysts to improve effectiveness of threat detection through creation and tuning of detection rules. Proactive More ❯

and throughout all levels of the client organization, generating results that allow our clients to thrive. What You'll Do The Global Platform Team Lead and Senior Director - IT Security is responsible for leading the design, delivery, and continuous evolution of BCG's security platforms across identity, device, and data protection domains. This role ensures end-to-end … security engineering across all technology environments, including cloud, on-prem, and hybrid systems. The leader will drive strategic planning, execution, and operations of scalable, automated, and resilient security controls that protect BCG's global operations and users, while enabling innovation and agility across BCG Core, BCG X, and CT worldwide. This role is also accountable for embedding security within DevSecOps practices, enforcing automation at scale, and applying Site Reliability Engineering (SRE) principles across all security services. The role requires strong partnership with ISRM, with a focus on balancing and prioritizing security requirements, automation opportunities, user experience needs, and broader business outcomes. Key Responsibilities: Strategic Leadership & Transformation: Define and execute a unified security engineering strategy More ❯

science and technology and want to have a real impact on the future of healthcare, we'd love to hear from you. Role Purpose: Are you a hands-on security expert with a passion for designing and implementing cutting-edge cybersecurity solutions? We're looking for a Cybersecurity Engineer to take the lead on securing our workplace and cloud … infrastructure, product security, and customer-facing services. This is a technical leadership role where you'll work closely with our Senior Lead for Information Security to maintain and strengthen our security posture across the business. A Day in the Life: Design and implement technical security architecture across IT systems, cloud platforms, and customer-facing services … Lead advanced security operations including penetration testing, forensic analysis, threat hunting, and incident response Drive security automation initiatives and integrate DevSecOps best practices into our CI/CD pipelines Provide expert cybersecurity guidance to IT operations, engineers, and product teams Research emerging threats, evaluate cutting-edge technologies, and contribute to business continuity and disaster recovery planning Play a More ❯

you will be responsible for identifying vulnerabilities in systems, applications, and networks through a variety of penetration testing methodologies. Your expertise will play a critical role in strengthening our security posture and safeguarding our valuable assets from cyber threats. We are keen to develop our own people and will look at individuals, you will be involved in so … many business projects whilst working with passionate Cyber Security Professionals. If you are looking for a team that offers development and flexibility look no further and apply today What you'll do A highly skilled and motivated Penetration Tester to join our dynamic cybersecurity team. In this role, you will be responsible for identifying vulnerabilities in our systems, applications … and networks through various penetration testing methodologies. You will play a critical role in strengthening our security posture and protecting our valuable assets from cyber threats. You will: Conduct comprehensive penetration tests: Execute internal and external network penetration tests, web application penetration tests, mobile application penetration tests, API penetration tests, cloud security assessments, and social engineering simulations. More ❯

for electrifying their homes, shifting usage to off-peak hours, and supporting grid stability-critical for scaling AI and energy-intensive industries. We're looking for a Chief Information Security Officer (CISO) to lead our company-wide security strategy. You'll protect our infrastructure, digital assets, and customer data while enabling fast, secure growth. Key Responsibilities Security Strategy & Leadership Define and lead Fuse's security strategy across infrastructure, applications, and data. Lead hands-on development of security roadmaps, maturity models, and control frameworks tailored to Fuse's risk profile. Directly contribute to architecture reviews, threat modelling sessions, and key design decisions across product and platform teams. Build and mentor a high-performing security team, including hiring, coaching, and managing performance. Develop KPIs and reporting structures to measure and communicate security posture to leadership and the board. Advise the executive team on security risks, regulatory exposure, and investment priorities to support long-term growth. Governance & Compliance Own company-wide security governance, including data protection, access control, and insider risk. More ❯

Oliver James is proud to be partnering with a globally renowned reinsurance company in their search for a Cyber Security Governance, Risk & Compliance (GRC) and Third-Party Risk Management (TPRM) Specialist. This role will play a crucial part in strengthening the organisation's security posture, focusing heavily on vendor risk, regulatory readiness, and cyber governance. Overview Oliver … James is proud to be partnering with a globally renowned reinsurance company in their search for a Cyber Security Governance, Risk & Compliance (GRC) and Third-Party Risk Management (TPRM) Specialist. This role will play a crucial part in strengthening the organisation's security posture, focusing heavily on vendor risk, regulatory readiness, and cyber governance. Based in the … loyalty bonuses. Key Responsibilities Third-Party Risk Management: Lead and own the third-party vendor risk assessment process across a portfolio of 100-120 vendors. Review and validate vendor security documentation (e.g., SOC 2, ISO 27001), evaluate control effectiveness, and coordinate remediation efforts for identified gaps. Ensure relevant business stakeholders are informed of potential risks. Governance, Risk & Compliance (GRC More ❯

At Vanta, our mission is to secure the internet and protect consumer data. We believe that security should be monitored and verified continuously, and we empower companies to practice better security and prove it with ease. Vanta has a kind and talented team, and while some have prior security experience, many have been successful at Vanta without … it. As Vanta's Customer Success Manager you will play a pivotal role in guiding some of our largest customers through their security and compliance journeys with Vanta's specialised solutions. By combining your customer-centric approach with expertise in Vanta's products and security best practices, you contribute to the overall success and satisfaction of Vanta's … customers in achieving robust security and compliance outcomes. Vanta's success over the last year was exponential and we are now working to solve the problem of how to provide world-class customer experience to as many security-minded software companies as possible. As Vanta's Customer Success Manager, you will be the voice of Vanta, responsible for More ❯

At Vanta, our mission is to secure the internet and protect consumer data. We believe that security should be monitored and verified continuously, and we empower companies to practice better security and prove it with ease. Vanta has a kind and talented team, and while some have prior security experience, many have been successful at Vanta without … it. As Vanta's Upmarket Customer Success Manager you will play a pivotal role in guiding some of our largest customers through their security and compliance journeys with Vanta's specialized solutions. By combining your customer-centric approach with expertise in Vanta's products and security best practices, you contribute to the overall success and satisfaction of Vanta … s customers in achieving robust security and compliance outcomes. Vanta's success over the last year was exponential and we are now working to solve the problem of how to provide world-class customer experience to as many security-minded software companies as possible. As Vanta's Upmarket Customer Success Manager, you will be the voice of Vanta More ❯

Job summary We are looking for a Head of Cyber Security to deliver an industry leading security posture at West London NHS Trust. This is a critical role with responsibility for all aspects of Information Security. The role will ensure West London meets all public sector (particularly healthcare) compliance and standards while delivering exceptional operational performance across … the business. You will work with internal teams to help maintain a safe working environment for trust staff and patients. Protecting West London from security threats and cyber risk is of paramount importance for a public sector organisation delivering critical health services, this role is pivotal to upholding security standards. You will be responsible for staying up to … date with and delivering the Data Security and Protection Toolkit (DSPT) and other central requirements as they manifest. Reporting to the Director of Digital Services, the Head of Cyber Security is a key member of the digital senior management team. The Head of Cyber Security is responsible for the development, direction, management and delivery of information security More ❯

Position Available: Security & Identity Consultant Location: London (Hybrid, 2 days a week in office) Salary: £75,000 - £85,000 (DoE) + Bonus Experience needed: We are seeking a senior-level IAM and security professional with experience designing and implementing IAM frameworks, managing access governance, and improving security posture in large-scale environments. You'll combine hands … on technical skills with strategic leadership, working closely with senior security stakeholders. Experience with IAM tools (Saviynt preferred), authentication protocols, cloud security, and frameworks like RBAC and least privilege is highly desirable. About the role: We're seeking a senior-level Identity & Access Management (IAM) and Security specialist to take ownership of a global security roadmap … and design IAM frameworks that protect operations across multiple countries. This is not a generic IT security position, you'll act as the strategic bridge between senior security leadership and global technology teams, turning high-level security objectives into practical, scalable solutions. Key Responsibilities: Own and deliver the Global Technology Operations security roadmap Design & implement IAM More ❯

Network Security Engineer – Contract Location: Fully Remote Rate: Up to £450 per day (Inside IR35) Duration: 6 Months About the Role We are seeking an experienced Network Security Engineer to join on a 6-month contract . This is a fully remote role, offering an opportunity to work on high-impact security projects and infrastructure initiatives. You … ll be responsible for strengthening the security posture, managing critical systems, and mitigating risks across cloud and network environments. Key Responsibilities Manage, configure, and troubleshoot Palo Alto firewalls to ensure optimal security. Implement and maintain Azure security controls , including identity, networking, and monitoring solutions. Configure and manage Web Application Firewalls (WAFs) to protect against application-layer attacks. … Conduct security audits , review findings, and produce comprehensive reports. Proactively mitigate vulnerabilities identified in security reports and assessments. Collaborate with cross-functional teams to ensure security best practices are followed. Stay up to date with emerging threats, vulnerabilities, and industry trends. Skills & Experience Required Proven experience as a Network Security Engineer or similar role. Strong hands More ❯

ROLE OVERVIEW//We are recruiting for an experienced IT Security and Resilience Specialist to join the IT Infrastructure Engineering Team. Which is part of the Technology Department, and the wider Business Services function based at the firm’s head office in London. This is a hybrid role that is both hands-on and process-focused, ensuring that … our disaster recovery (DR), failover, and operational resilience capabilities are effective, tested, annually reviewed and continually improved. The Security & Resilience Specialist will plan and execute DR and resilience testing, drive remediation activities through to closure, and ensure that evidence and documentation meet client, regulatory, and audit standards. This is not a purely administrative role; the successful candidate will work … directly with infrastructure and security teams to fix issues as well as document them. KEY RESPONSIBILITIES//The key responsibilities of this role are set out below and there may be others which are not listed. You may be required on occasion to work outside our normal working hours of 9:30am to 5:30pm. Cyber Security More ❯

ROLE OVERVIEW//We are recruiting for an experienced IT Security and Resilience Specialist to join the IT Infrastructure Engineering Team. Which is part of the Technology Department, and the wider Business Services function based at the firm’s head office in London. This is a hybrid role that is both hands-on and process-focused, ensuring that … our disaster recovery (DR), failover, and operational resilience capabilities are effective, tested, annually reviewed and continually improved. The Security & Resilience Specialist will plan and execute DR and resilience testing, drive remediation activities through to closure, and ensure that evidence and documentation meet client, regulatory, and audit standards. This is not a purely administrative role; the successful candidate will work … directly with infrastructure and security teams to fix issues as well as document them. KEY RESPONSIBILITIES//The key responsibilities of this role are set out below and there may be others which are not listed. You may be required on occasion to work outside our normal working hours of 9:30am to 5:30pm. Cyber Security More ❯

ROLE OVERVIEW//We are recruiting for an experienced IT Security and Resilience Specialist to join the IT Infrastructure Engineering Team. Which is part of the Technology Department, and the wider Business Services function based at the firm’s head office in London. This is a hybrid role that is both hands-on and process-focused, ensuring that … our disaster recovery (DR), failover, and operational resilience capabilities are effective, tested, annually reviewed and continually improved. The Security & Resilience Specialist will plan and execute DR and resilience testing, drive remediation activities through to closure, and ensure that evidence and documentation meet client, regulatory, and audit standards. This is not a purely administrative role; the successful candidate will work … directly with infrastructure and security teams to fix issues as well as document them. KEY RESPONSIBILITIES//The key responsibilities of this role are set out below and there may be others which are not listed. You may be required on occasion to work outside our normal working hours of 9:30am to 5:30pm. Cyber Security More ❯

ROLE OVERVIEW//We are recruiting for an experienced IT Security and Resilience Specialist to join the IT Infrastructure Engineering Team. Which is part of the Technology Department, and the wider Business Services function based at the firm’s head office in London. This is a hybrid role that is both hands-on and process-focused, ensuring that … our disaster recovery (DR), failover, and operational resilience capabilities are effective, tested, annually reviewed and continually improved. The Security & Resilience Specialist will plan and execute DR and resilience testing, drive remediation activities through to closure, and ensure that evidence and documentation meet client, regulatory, and audit standards. This is not a purely administrative role; the successful candidate will work … directly with infrastructure and security teams to fix issues as well as document them. KEY RESPONSIBILITIES//The key responsibilities of this role are set out below and there may be others which are not listed. You may be required on occasion to work outside our normal working hours of 9:30am to 5:30pm. Cyber Security More ❯

Information Security GRC Manager | ISO27001, SOC2, Azure Security | Global Trading Platform £70–80k base + 10% bonus Hybrid in London Training budget for certifications + conference attendance Strong emphasis on professional autonomy and ethical leadership A newly created opportunity to lead and shape the GRC function of a global financial group at a pivotal time, supporting the secure … role with real scope: oversight of policy, third-party risk, architectural reviews, and cloud compliance. You'll work closely with the Head of InfoSec to maintain audit readiness, improve security posture, and influence business-wide awareness and accountability. What you’ll bring: 5+ years in InfoSec, IT Security or Ops within a regulated environment Certification required: CISSP … CISM, CRISC, or equivalent Strong knowledge of ISO27001:2022, SOC2 Type II, NIST CSF, PCI DSS, GDPR, DORA Confident with security risk assessments, audit responses, and policy governance Hands-on cloud security experience: ideally with Azure and the Shared Responsibility Model Comfort with complexity: able to analyze architecture, track metrics, and translate acronyms into actionable plans Mentorship ability More ❯

Information Security GRC Manager | ISO27001, SOC2, Azure Security | Global Trading Platform £70–80k base + 10% bonus Hybrid in London Training budget for certifications + conference attendance Strong emphasis on professional autonomy and ethical leadership A newly created opportunity to lead and shape the GRC function of a global financial group at a pivotal time, supporting the secure … role with real scope: oversight of policy, third-party risk, architectural reviews, and cloud compliance. You'll work closely with the Head of InfoSec to maintain audit readiness, improve security posture, and influence business-wide awareness and accountability. What you’ll bring: 5+ years in InfoSec, IT Security or Ops within a regulated environment Certification required: CISSP … CISM, CRISC, or equivalent Strong knowledge of ISO27001:2022, SOC2 Type II, NIST CSF, PCI DSS, GDPR, DORA Confident with security risk assessments, audit responses, and policy governance Hands-on cloud security experience: ideally with Azure and the Shared Responsibility Model Comfort with complexity: able to analyze architecture, track metrics, and translate acronyms into actionable plans Mentorship ability More ❯

Information Security GRC Manager | ISO27001, SOC2, Azure Security | Global Trading Platform £70–80k base + 10% bonus Hybrid in London Training budget for certifications + conference attendance Strong emphasis on professional autonomy and ethical leadership A newly created opportunity to lead and shape the GRC function of a global financial group at a pivotal time, supporting the secure … role with real scope: oversight of policy, third-party risk, architectural reviews, and cloud compliance. You'll work closely with the Head of InfoSec to maintain audit readiness, improve security posture, and influence business-wide awareness and accountability. What you’ll bring: 5+ years in InfoSec, IT Security or Ops within a regulated environment Certification required: CISSP … CISM, CRISC, or equivalent Strong knowledge of ISO27001:2022, SOC2 Type II, NIST CSF, PCI DSS, GDPR, DORA Confident with security risk assessments, audit responses, and policy governance Hands-on cloud security experience: ideally with Azure and the Shared Responsibility Model Comfort with complexity: able to analyze architecture, track metrics, and translate acronyms into actionable plans Mentorship ability More ❯

Information Security GRC Manager | ISO27001, SOC2, Azure Security | Global Trading Platform £70–80k base + 10% bonus Hybrid in London Training budget for certifications + conference attendance Strong emphasis on professional autonomy and ethical leadership A newly created opportunity to lead and shape the GRC function of a global financial group at a pivotal time, supporting the secure … role with real scope: oversight of policy, third-party risk, architectural reviews, and cloud compliance. You'll work closely with the Head of InfoSec to maintain audit readiness, improve security posture, and influence business-wide awareness and accountability. What you’ll bring: 5+ years in InfoSec, IT Security or Ops within a regulated environment Certification required: CISSP … CISM, CRISC, or equivalent Strong knowledge of ISO27001:2022, SOC2 Type II, NIST CSF, PCI DSS, GDPR, DORA Confident with security risk assessments, audit responses, and policy governance Hands-on cloud security experience: ideally with Azure and the Shared Responsibility Model Comfort with complexity: able to analyze architecture, track metrics, and translate acronyms into actionable plans Mentorship ability More ❯

Information Security Manager Location: London, Hybrid Salary: Up to 75,000 Reports to: Head of Cyber Security A well regarded Managed Service Provider is seeking an experienced Information Security Manager to join its team on a permanent basis. This role offers the opportunity to lead and deliver strategic security initiatives across a varied client base, with … have a proven background within an MSP or MSSP environment, hold CISSP certification, and demonstrate deep expertise in GRC frameworks, particularly ISO27001. Experience acting as a virtual Chief Information Security Officer (vCISO) is essential. This business has made significant investment into its SOC-as-a-Service offering, positioning itself at the forefront of managed security solutions and enabling … clients to benefit from cutting-edge threat detection and response capabilities. Key Responsibilities: Serve as a vCISO for clients, providing strategic guidance on security posture and compliance Lead the development and implementation of security policies, procedures, and controls Manage ISO27001 compliance, including internal and external audits Conduct risk assessments and oversee incident response planning Collaborate with technical More ❯

Information Security Manager Location: London, Hybrid Salary: Up to 75,000 Reports to: Head of Cyber Security A well regarded Managed Service Provider is seeking an experienced Information Security Manager to join its team on a permanent basis. This role offers the opportunity to lead and deliver strategic security initiatives across a varied client base, with … have a proven background within an MSP or MSSP environment, hold CISSP certification, and demonstrate deep expertise in GRC frameworks, particularly ISO27001. Experience acting as a virtual Chief Information Security Officer (vCISO) is essential. This business has made significant investment into its SOC-as-a-Service offering, positioning itself at the forefront of managed security solutions and enabling … clients to benefit from cutting-edge threat detection and response capabilities. Key Responsibilities: Serve as a vCISO for clients, providing strategic guidance on security posture and compliance Lead the development and implementation of security policies, procedures, and controls Manage ISO27001 compliance, including internal and external audits Conduct risk assessments and oversee incident response planning Collaborate with technical More ❯

team. Working closely with the Cyber team as well as the digital team to ensure cybersecurity is embedded across all digital platforms. Key skills & Responsibility Lead the integration of security into the software development lifecycle (SDLC) using DevSecOps principles. Define and implement release strategies with a strong emphasis on application security. Identify and remediate security vulnerabilities through detailed … and automated tooling. Collaborate with cross-functional teams to establish secure coding standards and quality benchmarks. Provide expert consultancy and guidance to engineering teams, enabling them to meet strategic security goals. Drive adoption of security best practices across CI/CD pipelines and cloud-native environments. Accountabilities Provide technical cyber leadership across all development teams, focusing on application … security for our various digital platforms (web and mobile). Secure our CI/CD pipelines and provide improvement plans and requirements to those that use them, while overseeing the consistent adoption of secure practices across teams. Support the vulnerability management process, raising awareness and embedding secure development principles with development teams. Evaluate, implement, support and communicate new tools More ❯

Type: Contract (6 months) | Rate: Market| Start Date: ASAP About the Role Our client, a leading global organization, is looking for an experienced DevSecOps Pentester to join a leading security team in London. Youll perform penetration tests and security assessments across CI/CD pipelines, cloud environments, and applications, integrating automated security tools and practices into DevOps … is ideal for someone who can identify vulnerabilities in code, containers, APIs, and infrastructure-as-code before production, collaborate closely with DevOps and development teams, and help improve enterprise security posture. Key Responsibilities Integrate security tools and practices into CI/CD pipelines for continuous validation. Conduct manual and automated security testing on web apps, APIs, pipelines … and actionable remediation guidance. Validate remediation efforts and perform retesting cycles. Advise on secrets management, IAM, and secure deployment practices. Educate and collaborate with development and operations teams on security best practices. Required Skills & Experience Strong application security knowledge (OWASP Top 10, API security). Manual pentesting experience on modern web apps, APIs, and CI/CD More ❯